{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,3,27]],"date-time":"2025-03-27T10:49:19Z","timestamp":1743072559016,"version":"3.40.3"},"publisher-location":"Cham","reference-count":33,"publisher":"Springer Nature Switzerland","isbn-type":[{"type":"print","value":"9783031430329"},{"type":"electronic","value":"9783031430336"}],"license":[{"start":{"date-parts":[[2023,1,1]],"date-time":"2023-01-01T00:00:00Z","timestamp":1672531200000},"content-version":"tdm","delay-in-days":0,"URL":"https:\/\/www.springernature.com\/gp\/researchers\/text-and-data-mining"},{"start":{"date-parts":[[2023,1,1]],"date-time":"2023-01-01T00:00:00Z","timestamp":1672531200000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.springernature.com\/gp\/researchers\/text-and-data-mining"}],"content-domain":{"domain":["link.springer.com"],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2023]]},"DOI":"10.1007\/978-3-031-43033-6_25","type":"book-chapter","created":{"date-parts":[[2023,10,21]],"date-time":"2023-10-21T05:01:47Z","timestamp":1697864507000},"page":"257-269","update-policy":"https:\/\/doi.org\/10.1007\/springer_crossmark_policy","source":"Crossref","is-referenced-by-count":0,"title":["Blind Auditing and\u00a0Probabilistic Access Controls"],"prefix":"10.1007","author":[{"ORCID":"https:\/\/orcid.org\/0000-0002-7059-9501","authenticated-orcid":false,"given":"Arastoo","family":"Bozorgi","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0002-7352-6463","authenticated-orcid":false,"given":"Jonathan","family":"Anderson","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"297","published-online":{"date-parts":[[2023,10,21]]},"reference":[{"key":"25_CR1","doi-asserted-by":"crossref","unstructured":"Ahmad, A., Saad, M., Bassiouni, M., Mohaisen, A.: Towards blockchain-driven, secure and transparent audit logs. In: Proceedings of the 15th EAI International Conference on Mobile and Ubiquitous Systems: Computing, Networking and Services, pp. 443\u2013448 (2018)","DOI":"10.1145\/3286978.3286985"},{"issue":"8","key":"25_CR2","doi-asserted-by":"publisher","first-page":"848","DOI":"10.1016\/j.cose.2010.07.001","volume":"29","author":"CA Ardagna","year":"2010","unstructured":"Ardagna, C.A., Di Vimercati, S.D.C., Foresti, S., Grandison, T.W., Jajodia, S., Samarati, P.: Access control for smarter healthcare using policy spaces. Comput. Secur. 29(8), 848\u2013858 (2010)","journal-title":"Comput. Secur."},{"key":"25_CR3","doi-asserted-by":"crossref","unstructured":"Ateniese, G., et al.: Provable data possession at untrusted stores. In: Proceedings of the 14th ACM Conference on Computer and Communications Security, pp. 598\u2013609 (2007)","DOI":"10.1145\/1315245.1315318"},{"key":"25_CR4","unstructured":"Benet, J.: IPFS: content addressed, versioned, P2P file system. arXiv preprint arXiv:1407.3561 (2014)"},{"issue":"7655","key":"25_CR5","doi-asserted-by":"publisher","first-page":"1241","DOI":"10.1136\/bmj.39527.628322.AD","volume":"336","author":"A Benjamin","year":"2008","unstructured":"Benjamin, A.: Audit: how to do it in practice. BMJ 336(7655), 1241\u20131245 (2008)","journal-title":"BMJ"},{"key":"25_CR6","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"177","DOI":"10.1007\/978-3-030-57043-9_17","volume-title":"Security Protocols XXVII","author":"A Bozorgi","year":"2020","unstructured":"Bozorgi, A., Jadidi, M.S., Anderson, J.: Challenges in designing a distributed cryptographic file system. In: Anderson, J., Stajano, F., Christianson, B., Maty\u00e1\u0161, V. (eds.) Security Protocols 2019. LNCS, vol. 12287, pp. 177\u2013192. Springer, Cham (2020). https:\/\/doi.org\/10.1007\/978-3-030-57043-9_17"},{"key":"25_CR7","unstructured":"Bozorgi, A., Jadidi, M.S., Anderson, J.: UPSS: a global, least-privileged storage system with stronger security and better performance. IEEE Open J. Comput. Soc. (2022, submitted)"},{"key":"25_CR8","doi-asserted-by":"publisher","first-page":"1","DOI":"10.1016\/j.jbi.2017.11.014","volume":"77","author":"Y Chen","year":"2018","unstructured":"Chen, Y., et al.: Learning bundled care opportunities from electronic medical records. J. Biomed. Inform. 77, 1\u201310 (2018)","journal-title":"J. Biomed. Inform."},{"key":"25_CR9","series-title":"IFIP International Federation for Information Processing","doi-asserted-by":"publisher","first-page":"35","DOI":"10.1007\/0-306-46998-7_3","volume-title":"Trusted Information","author":"C Eckert","year":"2002","unstructured":"Eckert, C., Pircher, A.: Internet anonymity: problems and solutions. In: Dupuy, M., Paradinas, P. (eds.) SEC 2001. IIFIP, vol. 65, pp. 35\u201350. Springer, Boston, MA (2002). https:\/\/doi.org\/10.1007\/0-306-46998-7_3"},{"key":"25_CR10","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"162","DOI":"10.1007\/3-540-45831-X_12","volume-title":"Infrastructure Security","author":"U Flegel","year":"2002","unstructured":"Flegel, U.: Pseudonymizing Unix log files. In: Davida, G., Frankel, Y., Rees, O. (eds.) InfraSec 2002. LNCS, vol. 2437, pp. 162\u2013179. Springer, Heidelberg (2002). https:\/\/doi.org\/10.1007\/3-540-45831-X_12"},{"key":"25_CR11","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"101","DOI":"10.1007\/978-3-642-35170-9_6","volume-title":"Middleware 2012","author":"A Gehani","year":"2012","unstructured":"Gehani, A., Tariq, D.: SPADE: support for provenance auditing in distributed environments. In: Narasimhan, P., Triantafillou, P. (eds.) Middleware 2012. LNCS, vol. 7662, pp. 101\u2013120. Springer, Heidelberg (2012). https:\/\/doi.org\/10.1007\/978-3-642-35170-9_6"},{"issue":"1","key":"25_CR12","doi-asserted-by":"publisher","first-page":"20","DOI":"10.1001\/jamaophthalmol.2017.4816","volume":"136","author":"IH Goldstein","year":"2018","unstructured":"Goldstein, I.H., Hribar, M.R., Read-Brown, S., Chiang, M.F.: Association of the presence of trainees with outpatient appointment times in an ophthalmology clinic. JAMA Ophthalmol. 136(1), 20\u201326 (2018)","journal-title":"JAMA Ophthalmol."},{"key":"25_CR13","unstructured":"Hossain, M.N., et al.: $$\\{$$SLEUTH$$\\}$$: real-time attack scenario reconstruction from $$\\{$$COTS$$\\}$$ audit data. In: 26th USENIX Security Symposium (USENIX Security 17), pp. 487\u2013504 (2017)"},{"issue":"1","key":"25_CR14","doi-asserted-by":"publisher","first-page":"40","DOI":"10.1093\/jamia\/ocx098","volume":"25","author":"MR Hribar","year":"2018","unstructured":"Hribar, M.R., et al.: Secondary use of electronic health record data for clinical workflow analysis. J. Am. Med. Inform. Assoc. 25(1), 40\u201346 (2018)","journal-title":"J. Am. Med. Inform. Assoc."},{"key":"25_CR15","doi-asserted-by":"crossref","unstructured":"Juels, A., Kaliski Jr, B.S.: Pors: proofs of retrievability for large files. In: Proceedings of the 14th ACM Conference on Computer and Communications Security, pp. 584\u2013597 (2007)","DOI":"10.1145\/1315245.1315317"},{"issue":"3","key":"25_CR16","doi-asserted-by":"publisher","first-page":"1131","DOI":"10.1111\/j.1540-6261.1997.tb02727.x","volume":"52","author":"R La Porta","year":"1997","unstructured":"La Porta, R., Lopez-de Silanes, F., Shleifer, A., Vishny, R.W.: Legal determinants of external finance. J. Financ. 52(3), 1131\u20131150 (1997)","journal-title":"J. Financ."},{"key":"25_CR17","unstructured":"Latham, D.C.: Department of defense trusted computer system evaluation criteria. Department of Defense 198 (1986)"},{"key":"25_CR18","unstructured":"Microsoft learn: Event Tracking for Windows (ETW) (2022). https:\/\/learn.microsoft.com\/en-us\/windows-hardware\/drivers\/devtest\/event-tracing-for-windows-etw-"},{"issue":"7","key":"25_CR19","first-page":"1","volume":"13","author":"ND Pattengale","year":"2020","unstructured":"Pattengale, N.D., Hudson, C.M.: Decentralized genomics audit logging via permissioned blockchain ledgering. BMC Med. Genom. 13(7), 1\u20139 (2020)","journal-title":"BMC Med. Genom."},{"key":"25_CR20","unstructured":"Power, M.: The Audit Society: Rituals of Verification. OUP, Oxford (1997)"},{"issue":"1","key":"25_CR21","doi-asserted-by":"publisher","first-page":"111","DOI":"10.1111\/1099-1123.00306","volume":"4","author":"M Power","year":"2000","unstructured":"Power, M.: The audit society-second thoughts. Int. J. Audit. 4(1), 111\u2013119 (2000)","journal-title":"Int. J. Audit."},{"key":"25_CR22","doi-asserted-by":"crossref","unstructured":"Rachmawati, D., Tarigan, J., Ginting, A.: A comparative study of message digest 5 (MD5) and sha256 algorithm. J. Phys. Conf. Ser. 978, 012116 (2018). IOP Publishing","DOI":"10.1088\/1742-6596\/978\/1\/012116"},{"key":"25_CR23","doi-asserted-by":"crossref","unstructured":"Rostad, L., Edsberg, O.: A study of access control requirements for healthcare systems based on audit trails from access logs. In: 2006 22nd Annual Computer Security Applications Conference (ACSAC\u201906), pp. 175\u2013186. IEEE (2006)","DOI":"10.1109\/ACSAC.2006.8"},{"issue":"3","key":"25_CR24","doi-asserted-by":"publisher","first-page":"480","DOI":"10.1093\/jamia\/ocz196","volume":"27","author":"A Rule","year":"2020","unstructured":"Rule, A., Chiang, M.F., Hribar, M.R.: Using electronic health record audit logs to study clinical activity: a systematic review of aims, measures, and methods. J. Am. Med. Inform. Assoc. 27(3), 480\u2013490 (2020)","journal-title":"J. Am. Med. Inform. Assoc."},{"issue":"9","key":"25_CR25","doi-asserted-by":"publisher","first-page":"40","DOI":"10.1109\/35.312842","volume":"32","author":"RS Sandhu","year":"1994","unstructured":"Sandhu, R.S., Samarati, P.: Access control: principle and practice. IEEE Commun. Mag. 32(9), 40\u201348 (1994)","journal-title":"IEEE Commun. Mag."},{"key":"25_CR26","unstructured":"Shah, M.A., Baker, M., Mogul, J.C., Swaminathan, R., et al.: Auditing to keep online storage services honest. In: HotOS (2007)"},{"key":"25_CR27","unstructured":"Shah, M.A., Swaminathan, R., Baker, M.: Privacy-preserving audit and extraction of digital contents. Cryptology ePrint Archive (2008)"},{"key":"25_CR28","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"645","DOI":"10.1007\/978-3-319-68288-4_38","volume-title":"The Semantic Web \u2013 ISWC 2017","author":"A Sutton","year":"2017","unstructured":"Sutton, A., Samavi, R.: Blockchain enabled privacy audit logs. In: d\u2019Amato, C., et al. (eds.) ISWC 2017. LNCS, vol. 10587, pp. 645\u2013660. Springer, Cham (2017). https:\/\/doi.org\/10.1007\/978-3-319-68288-4_38"},{"key":"25_CR29","unstructured":"The FreeBSD project: auditd - The FreeBSD audit log management daemon (2022). https:\/\/www.freebsd.org\/cgi\/man.cgi?query=auditd &sektion=8 &manpath=FreeBSD+13.1-RELEASE+and+Ports"},{"key":"25_CR30","unstructured":"The OpenBSM contributers: OpenBSM: Open Source Basic Security Module (BSM) Audit Implementation (2022). https:\/\/github.com\/openbsm\/openbsm"},{"key":"25_CR31","unstructured":"Ubuntu manpage repository: auditd - The Linux Audit daemon (2019). https:\/\/manpages.ubuntu.com\/manpages\/xenial\/en\/man8\/auditd.8.html"},{"key":"25_CR32","doi-asserted-by":"crossref","unstructured":"Wang, C., Wang, Q., Ren, K., Lou, W.: Privacy-preserving public auditing for data storage security in cloud computing. In: 2010 Proceedings IEEE InfoCom, pp. 1\u20139. IEEE (2010)","DOI":"10.1109\/INFCOM.2010.5462173"},{"key":"25_CR33","doi-asserted-by":"crossref","unstructured":"Yu, H., Li, A., Jiang, R.: Needle in a haystack: attack detection from large-scale system audit. In: 2019 IEEE 19th International Conference on Communication Technology (ICCT), pp. 1418\u20131426. IEEE (2019)","DOI":"10.1109\/ICCT46805.2019.8947201"}],"container-title":["Lecture Notes in Computer Science","Security Protocols XXVIII"],"original-title":[],"language":"en","link":[{"URL":"https:\/\/link.springer.com\/content\/pdf\/10.1007\/978-3-031-43033-6_25","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2023,10,21]],"date-time":"2023-10-21T05:03:55Z","timestamp":1697864635000},"score":1,"resource":{"primary":{"URL":"https:\/\/link.springer.com\/10.1007\/978-3-031-43033-6_25"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2023]]},"ISBN":["9783031430329","9783031430336"],"references-count":33,"URL":"https:\/\/doi.org\/10.1007\/978-3-031-43033-6_25","relation":{},"ISSN":["0302-9743","1611-3349"],"issn-type":[{"type":"print","value":"0302-9743"},{"type":"electronic","value":"1611-3349"}],"subject":[],"published":{"date-parts":[[2023]]},"assertion":[{"value":"21 October 2023","order":1,"name":"first_online","label":"First Online","group":{"name":"ChapterHistory","label":"Chapter History"}},{"value":"Security Protocols","order":1,"name":"conference_acronym","label":"Conference Acronym","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"Cambridge International Workshop on Security Protocols","order":2,"name":"conference_name","label":"Conference Name","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"Cambridge","order":3,"name":"conference_city","label":"Conference City","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"United Kingdom","order":4,"name":"conference_country","label":"Conference Country","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"2023","order":5,"name":"conference_year","label":"Conference Year","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"27 March 2023","order":7,"name":"conference_start_date","label":"Conference Start Date","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"28 March 2023","order":8,"name":"conference_end_date","label":"Conference End Date","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"28","order":9,"name":"conference_number","label":"Conference Number","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"spw2023","order":10,"name":"conference_id","label":"Conference ID","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"https:\/\/www.cl.cam.ac.uk\/events\/spw\/2023\/","order":11,"name":"conference_url","label":"Conference URL","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"Single-blind","order":1,"name":"type","label":"Type","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"CMT3","order":2,"name":"conference_management_system","label":"Conference Management System","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"23","order":3,"name":"number_of_submissions_sent_for_review","label":"Number of Submissions Sent for Review","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"13","order":4,"name":"number_of_full_papers_accepted","label":"Number of Full Papers Accepted","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"0","order":5,"name":"number_of_short_papers_accepted","label":"Number of Short Papers Accepted","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"57% - The value is computed by the equation \"Number of Full Papers Accepted \/ Number of Submissions Sent for Review * 100\" and then rounded to a whole number.","order":6,"name":"acceptance_rate_of_full_papers","label":"Acceptance Rate of Full Papers","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"4","order":7,"name":"average_number_of_reviews_per_paper","label":"Average Number of Reviews per Paper","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"23","order":8,"name":"average_number_of_papers_per_reviewer","label":"Average Number of Papers per Reviewer","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"No","order":9,"name":"external_reviewers_involved","label":"External Reviewers Involved","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}}]}}