{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,6,19]],"date-time":"2025-06-19T21:40:02Z","timestamp":1750369202143,"version":"3.41.0"},"publisher-location":"Cham","reference-count":24,"publisher":"Springer International Publishing","isbn-type":[{"type":"print","value":"9783319611754"},{"type":"electronic","value":"9783319611761"}],"license":[{"start":{"date-parts":[[2017,1,1]],"date-time":"2017-01-01T00:00:00Z","timestamp":1483228800000},"content-version":"tdm","delay-in-days":0,"URL":"https:\/\/www.springernature.com\/gp\/researchers\/text-and-data-mining"},{"start":{"date-parts":[[2017,1,1]],"date-time":"2017-01-01T00:00:00Z","timestamp":1483228800000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.springernature.com\/gp\/researchers\/text-and-data-mining"}],"content-domain":{"domain":["link.springer.com"],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2017]]},"DOI":"10.1007\/978-3-319-61176-1_20","type":"book-chapter","created":{"date-parts":[[2017,6,21]],"date-time":"2017-06-21T01:54:25Z","timestamp":1498010065000},"page":"349-361","update-policy":"https:\/\/doi.org\/10.1007\/springer_crossmark_policy","source":"Crossref","is-referenced-by-count":0,"title":["Toward Group-Based User-Attribute Policies in Azure-Like Access Control Systems"],"prefix":"10.1007","author":[{"given":"Anna Lisa","family":"Ferrara","sequence":"first","affiliation":[]},{"given":"Anna","family":"Squicciarini","sequence":"additional","affiliation":[]},{"given":"Cong","family":"Liao","sequence":"additional","affiliation":[]},{"given":"Truc L.","family":"Nguyen","sequence":"additional","affiliation":[]}],"member":"297","published-online":{"date-parts":[[2017,6,22]]},"reference":[{"key":"20_CR1","unstructured":"Beaver, K.: What admins should know about Microsoft Azure security and vulnerabilities. http:\/\/searchwindowsserver.techtarget.com\/tip\/What-admins-should-know-about-Microsoft-Azure-security"},{"key":"20_CR2","unstructured":"Biz Tech: Why enterprises that value security trust Microsoft Azure. http:\/\/www.biztechmagazine.com\/article\/2016\/10\/why-microsoft-azure-essential-enterprises-value-security"},{"key":"20_CR3","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"184","DOI":"10.1007\/978-3-319-08867-9_12","volume-title":"Computer Aided Verification","author":"AL Ferrara","year":"2014","unstructured":"Ferrara, A.L., Madhusudan, P., Nguyen, T.L., Parlato, G.: Vac - verifier of administrative role-based access control policies. In: Biere, A., Bloem, R. (eds.) CAV 2014. LNCS, vol. 8559, pp. 184\u2013191. Springer, Cham (2014). doi:10.1007\/978-3-319-08867-9_12"},{"key":"20_CR4","doi-asserted-by":"crossref","unstructured":"Ferrara, A.L., Madhusudan, P., Parlato, G.: Security analysis of role-based access control through program verification. In: Chong, S., (ed.) IEEE Computer Security Foundation, pp. 113\u2013125. IEEE (2012)","DOI":"10.1109\/CSF.2012.28"},{"key":"20_CR5","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"432","DOI":"10.1007\/978-3-642-36742-7_30","volume-title":"Tools and Algorithms for the Construction and Analysis of Systems","author":"AL Ferrara","year":"2013","unstructured":"Ferrara, A.L., Madhusudan, P., Parlato, G.: Policy analysis for self-administrated role-based access control. In: Piterman, N., Smolka, S.A. (eds.) TACAS 2013. LNCS, vol. 7795, pp. 432\u2013447. Springer, Heidelberg (2013). doi:10.1007\/978-3-642-36742-7_30"},{"key":"20_CR6","volume-title":"Microsoft Azure Security","author":"R Freato","year":"2015","unstructured":"Freato, R.: Microsoft Azure Security. Packt Publishing Ltd, Birmingham (2015)"},{"key":"20_CR7","unstructured":"Inforworld: The dirty dozen: 12 cloud security threats (2016). http:\/\/www.infoworld.com\/article\/3041078\/security\/the-dirty-dozen-12-cloud-security-threats.html"},{"issue":"4","key":"20_CR8","doi-asserted-by":"publisher","first-page":"18","DOI":"10.1145\/2445566.2445570","volume":"15","author":"K Jayaraman","year":"2013","unstructured":"Jayaraman, K., Tripunitara, M.V., Ganesh, V., Rinard, M.C., Chapin, S.J.: Mohawk: abstraction-refinement and bound-estimation for verifying access control policies. ACM Trans. Inf. Syst. Secur. 15(4), 18 (2013)","journal-title":"ACM Trans. Inf. Syst. Secur."},{"key":"20_CR9","doi-asserted-by":"crossref","unstructured":"Jin, X., Krishnan, R., Sandhu, R.: A role-based administration model for attributes. In: First International Workshop on Secure and Resilient Architectures and Systems, pp. 7\u201312. ACM (2012)","DOI":"10.1145\/2420936.2420938"},{"key":"20_CR10","doi-asserted-by":"crossref","unstructured":"Jin, X., Krishnan, R., Sandhu, R.: Reachability analysis for role-based administration of attributes. In: ACM Workshop on Digital Identity Management, pp. 73\u201384. ACM (2013)","DOI":"10.1145\/2517881.2517891"},{"key":"20_CR11","doi-asserted-by":"crossref","unstructured":"Krishnan, R., Sandhu, R., Niu, J., Winsborough, W.: A conceptual framework for group-centric secure information sharing. In: 4th International Symposium on Information, Computer, and Communications Security, pp. 384\u2013387. ACM (2009)","DOI":"10.1145\/1533057.1533111"},{"key":"20_CR12","volume-title":"Cloud Security: A Comprehensive Guide to Secure Cloud Computing","author":"RL Krutz","year":"2010","unstructured":"Krutz, R.L., Vines, R.D.: Cloud Security: A Comprehensive Guide to Secure Cloud Computing. Wiley Publishing, Hoboken (2010)"},{"key":"20_CR13","doi-asserted-by":"crossref","unstructured":"Li, N., Tripunitara, M.V.: Security analysis in role-based access control. In: 9th ACM SACMAT, pp. 126\u2013135. ACM (2004)","DOI":"10.1145\/990036.990058"},{"key":"20_CR14","unstructured":"Microsoft Azure Documentation. https:\/\/docs.microsoft.com\/en-us\/azure\/active-directory\/role-based-access-control-troubleshooting"},{"key":"20_CR15","unstructured":"Qiu, M., Gai, K., Thuraisingham, B., Tao, L., Zhao, H.: Proactive user-centric secure data scheme using attribute-based semantic access controls for mobile clouds in financial industry. Future Gener. Comput. Syst., 223\u2013238 (2016)"},{"key":"20_CR16","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"273","DOI":"10.1007\/978-3-642-38004-4_18","volume-title":"Security and Trust Management","author":"S Ranise","year":"2013","unstructured":"Ranise, S., Truong, A.T., Armando, A.: Boosting model checking to analyse large ARBAC policies. In: J\u00f8sang, A., Samarati, P., Petrocchi, M. (eds.) STM 2012. LNCS, vol. 7783, pp. 273\u2013288. Springer, Heidelberg (2013). doi:10.1007\/978-3-642-38004-4_18"},{"key":"20_CR17","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"223","DOI":"10.1007\/978-3-642-32946-3_17","volume-title":"Financial Cryptography and Data Security","author":"M Raykova","year":"2012","unstructured":"Raykova, M., Zhao, H., Bellovin, S.M.: Privacy enhanced access control for outsourced data sharing. In: Keromytis, A.D. (ed.) FC 2012. LNCS, vol. 7397, pp. 223\u2013238. Springer, Heidelberg (2012). doi:10.1007\/978-3-642-32946-3_17"},{"issue":"14","key":"20_CR18","first-page":"9","volume":"132","author":"K Riad","year":"2015","unstructured":"Riad, K., Yan, Z.: EAR-ABAC: an extended AR-ABAC access control model for SDN-integrated cloud computing. Environments 132(14), 9\u201317 (2015)","journal-title":"Environments"},{"key":"20_CR19","doi-asserted-by":"crossref","unstructured":"Riad, K., Yan, Z., Hu, H., Ahn, G-J.: AR-ABAC: a new attribute based access control model supporting attribute-rules for cloud computing. In: Collaboration and Internet Computing Conference (CIC), pp. 28\u201335. IEEE (2015)","DOI":"10.1109\/CIC.2015.38"},{"key":"20_CR20","doi-asserted-by":"crossref","unstructured":"Sasturkar, A., Yang, P., Stoller, S.D., Ramakrishnan, C.R.: Policy analysis for administrative role based access control. In: 19th IEEE Computer Security Foundations Workshop, (CSFW-19), pp. 124\u2013138 (2006)","DOI":"10.1109\/CSFW.2006.22"},{"issue":"2","key":"20_CR21","doi-asserted-by":"publisher","first-page":"743","DOI":"10.1109\/TIFS.2011.2172209","volume":"7","author":"Z Wan","year":"2012","unstructured":"Wan, Z., Liu, J., Deng, R.: HASBE: a hierarchical attribute-based solution for flexible and scalable access control in cloud computing. IEEE Trans. Inf. Forensics Secur. 7(2), 743\u2013754 (2012)","journal-title":"IEEE Trans. Inf. Forensics Secur."},{"key":"20_CR22","doi-asserted-by":"crossref","unstructured":"Yu, S., Wang, C., Ren, K., Lou, W.: Achieving secure, scalable, and fine-grained data access control in cloud computing. In: IEEE Infocom, pp. 1\u20139 (2010)","DOI":"10.1109\/INFCOM.2010.5462174"},{"key":"20_CR23","doi-asserted-by":"crossref","unstructured":"Zhang, Y., Patwa, F., Sandhu, R.: Community-based secure information and resource sharing in Azure cloud IaaS. In: 4th International Workshop on Security in Cloud Computing, pp. 82\u201389. ACM (2016)","DOI":"10.1145\/2898445.2898455"},{"key":"20_CR24","doi-asserted-by":"crossref","unstructured":"Zhang, Y., Patwa, F., Sandhu, R., Tang, B.: Hierarchical secure information and resource sharing in openstack community cloud. In: IEEE International Conference on Information Reuse and Integration, pp. 419\u2013426. IEEE (2015)","DOI":"10.1109\/IRI.2015.71"}],"container-title":["Lecture Notes in Computer Science","Data and Applications Security and Privacy XXXI"],"original-title":[],"language":"en","link":[{"URL":"https:\/\/link.springer.com\/content\/pdf\/10.1007\/978-3-319-61176-1_20","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,6,19]],"date-time":"2025-06-19T21:06:49Z","timestamp":1750367209000},"score":1,"resource":{"primary":{"URL":"https:\/\/link.springer.com\/10.1007\/978-3-319-61176-1_20"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2017]]},"ISBN":["9783319611754","9783319611761"],"references-count":24,"URL":"https:\/\/doi.org\/10.1007\/978-3-319-61176-1_20","relation":{},"ISSN":["0302-9743","1611-3349"],"issn-type":[{"type":"print","value":"0302-9743"},{"type":"electronic","value":"1611-3349"}],"subject":[],"published":{"date-parts":[[2017]]},"assertion":[{"value":"22 June 2017","order":1,"name":"first_online","label":"First Online","group":{"name":"ChapterHistory","label":"Chapter History"}},{"value":"DBSec","order":1,"name":"conference_acronym","label":"Conference Acronym","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"IFIP Annual Conference on Data and Applications Security and Privacy","order":2,"name":"conference_name","label":"Conference Name","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"Philadelphia","order":3,"name":"conference_city","label":"Conference City","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"USA","order":4,"name":"conference_country","label":"Conference Country","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"2017","order":5,"name":"conference_year","label":"Conference Year","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"19 July 2017","order":7,"name":"conference_start_date","label":"Conference Start Date","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"21 July 2017","order":8,"name":"conference_end_date","label":"Conference End Date","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"31","order":9,"name":"conference_number","label":"Conference Number","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"dbsec2017","order":10,"name":"conference_id","label":"Conference ID","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"https:\/\/dbsec2017.ittc.ku.edu\/","order":11,"name":"conference_url","label":"Conference URL","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"This content has been made available to all.","name":"free","label":"Free to read"}]}}