{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,1,18]],"date-time":"2025-01-18T05:05:57Z","timestamp":1737176757985,"version":"3.33.0"},"publisher-location":"Berlin, Heidelberg","reference-count":35,"publisher":"Springer Berlin Heidelberg","isbn-type":[{"type":"print","value":"9783540698609"},{"type":"electronic","value":"9783540698616"}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2007]]},"DOI":"10.1007\/978-3-540-69861-6_25","type":"book-chapter","created":{"date-parts":[[2007,6,11]],"date-time":"2007-06-11T16:17:51Z","timestamp":1181578671000},"page":"383-397","source":"Crossref","is-referenced-by-count":1,"title":["Privacy Policies"],"prefix":"10.1007","author":[{"given":"Marnix","family":"Dekker","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Sandro","family":"Etalle","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Jerry","family":"den Hartog","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"297","reference":[{"key":"25_CR1","unstructured":"EU Parliament and Council: The data protection directive (95\/46\/EC) (1995)"},{"key":"25_CR2","unstructured":"EU Parliament and Council: Directive on privacy and electronic communications (2002\/58\/EC) (2002)"},{"key":"25_CR3","unstructured":"S. Byers, L.F. Cranor, D. Kormann: Automated analysis of P3P-enabled web sites. In: Proc. Int. Conf. on Electronic Commerce (ICEC). (2003) pp. 326\u2013338"},{"key":"25_CR4","unstructured":"L. Cranor, M. Langheinrich, M. Marchiori, M. Presler-Marshall, J. Reagle: The Platform for Privacy Preferences 1.0 (P3P 1.0) specification \u2014 W3C recommendation 16 april 2002. http:\/\/w3.org\/TR\/P3P (2002)"},{"key":"25_CR5","unstructured":"G. Karjoth, M. Schunter, M. Waidner: Platform for enterprise privacy practices: Privacy-enabled management of customer data. In R. Dingledine, P.F. Syverson eds.: Proc. Int. Workshop on Privacy Enhancing Technologies (PET). Lectures in Computer Science, Springer (2002) pp. 69\u201384"},{"key":"25_CR6","doi-asserted-by":"crossref","unstructured":"J.G. Cederquist, R. Corin, M.A.C. Dekker, S. Etalle, J.I. den Hartog: An audit logic for accountability. In Winsborough, W., Sahai, A., eds.: Proc. Int. Workshop on Policies for Distributed Systems and Networks (POLICY), IEEE Computer Society Press (2005) pp. 34\u201343","DOI":"10.1109\/POLICY.2005.5"},{"issue":"1","key":"25_CR7","doi-asserted-by":"publisher","first-page":"46","DOI":"10.1109\/MPRV.2003.1186725","volume":"2","author":"A.R. Beresford","year":"2003","unstructured":"A.R. Beresford, F. Stajano: Location Privacy in Pervasive Computing. IEEE Pervasive Computing 2(1) (2003) pp. 46\u201355","journal-title":"IEEE Pervasive Computing"},{"issue":"4","key":"25_CR8","doi-asserted-by":"publisher","first-page":"276","DOI":"10.1145\/604596.604598","volume":"2","author":"H. Hochheiser","year":"2002","unstructured":"H. Hochheiser: The platform for privacy preference as a social protocol: An examination within the U.S. policy context. ACM Transactions on Internet Technology (TOIT) 2(4) (2002) pp. 276\u2013306","journal-title":"ACM Transactions on Internet Technology (TOIT)"},{"key":"25_CR9","unstructured":"T. Yu, N. Li, A.I. Ant\u00f3n: A formal semantics for P3P. In: Proc. Workshop On Secure Web Service (SWS), ACM Press (2004) pp. 1\u20138"},{"key":"25_CR10","unstructured":"M. Schunter, E.V. Herreweghen, M. Waidner: Expressive Privacy promises-how to improve P3P. W3C Workshop on the Future of P3P (2002)"},{"key":"25_CR11","doi-asserted-by":"crossref","unstructured":"J. Cattlet: Open letter to P3P developers. http:\/\/junkbusters.com\/standards.html (1999)","DOI":"10.1145\/332186.332276"},{"key":"25_CR12","doi-asserted-by":"crossref","unstructured":"P. Ashley, S. Hada, G. Karjoth, M. Schunter: E-P3P privacy policies and privacy authorization. In Samarati, P., ed.: Proc. Workshop on Privacy in the Electronic Society (WPES), ACM Press (2002) pp. 103\u2013109","DOI":"10.1145\/644527.644538"},{"key":"25_CR13","unstructured":"P. Ashley, S. Hada, G. Karjoth, M. Schunter: (Enterprise privacy authorization language (EPAL 1.2)-W3C member submission 10 november 2003)"},{"key":"25_CR14","doi-asserted-by":"crossref","unstructured":"M. Backes, B. Pfitzmann, M. Schunter: A toolkit for managing enterprise privacy policies. In Gollmann, D., Snekkenes, E., eds.: Proc. European Symp. on Research in Computer Security (ESORICS), Springer (2003) pp. 162\u2013180","DOI":"10.1007\/978-3-540-39650-5_10"},{"key":"25_CR15","doi-asserted-by":"crossref","unstructured":"G. Karjoth, M. Schunter, E.V. Herreweghen: Translating privacy practices into privacy promises-how to promise what you can keep. In: Proc. Int. Workshop on Policies for Distributed Systems and Networks (POLICY), IEEE Computer Society Press (2003) pp. 135\u2013146","DOI":"10.1109\/POLICY.2003.1206967"},{"key":"25_CR16","doi-asserted-by":"crossref","unstructured":"S. Jajodia, P. Samarati, V.S. Subrahmanian, E. Bertino: A unified framework for enforcing multiple access control policies. In Peckham, J., ed.: Proc. Int. Conf. on Management of Data (SIGMOD), ACM Press (1997) pp. 474\u2013485","DOI":"10.1145\/253260.253364"},{"key":"25_CR17","doi-asserted-by":"crossref","unstructured":"J. Park, R. Sandhu: Towards usage control models: Beyond traditional access control. In E. Bertino ed.: Proc. Symp. on Access Control Models and Technologies (SACMAT), ACM Press (2002) pp. 57\u201364","DOI":"10.1145\/507711.507722"},{"issue":"9","key":"25_CR18","doi-asserted-by":"publisher","first-page":"40","DOI":"10.1109\/35.312842","volume":"32","author":"R. Sandhu","year":"1994","unstructured":"R. Sandhu, P. Samarati: Access control: Principles and practice. IEEE Communications Magazine 32(9) (1994) pp. 40\u201348","journal-title":"IEEE Communications Magazine"},{"key":"25_CR19","doi-asserted-by":"crossref","unstructured":"C.N. Chong, R. Corin, S. Etalle, P.H. Hartel, W. Jonker, Y.W. Law: Licens-eScript: A novel digital rights language and its semantics. In K. Ng, C. Busch, P. Nesi eds.: Proc. Int. Conf. on Web Delivering of Music (WEDELMUSIC), IEEE Computer Society Press (2003) pp. 122\u2013129","DOI":"10.1109\/WDM.2003.1233885"},{"key":"25_CR20","unstructured":"C. Conrado, M. Petkovic, M. van der Veen, W. van der Velde: Controlled sharing of personal content using digital rights management. In E. Fern\u00e1ndez-Medina, J.C. Hern\u00e1ndez, L.J. Garc\u00eda eds.: Proc. Int. Workshop On Security in Information Systems (WOSIS) (2005) pp. 173\u2013185"},{"key":"25_CR21","doi-asserted-by":"crossref","unstructured":"C.N. Chong, Z. Peng, P.H. Hartel: Secure audit logging with tamper-resistant hardware. In Gritzalis, D., di Vimercati, S.D.C., Samarati, P., Katsikas, S.K., eds.: IFIP Int. Conf. on Information Security and Privacy in the Age of Uncertainty (SEC), Springer (2003) pp. 73\u201384","DOI":"10.1007\/978-0-387-35691-4_7"},{"key":"25_CR22","doi-asserted-by":"crossref","unstructured":"L. Cranor, M. Langheinric, M. Marchiori: A P3P preference exchange language 1.0 (APPEL 1.0) (2002)","DOI":"10.1145\/644527.644528"},{"key":"25_CR23","unstructured":"O. Lassila, R.P. Swick: Resource Description Framework (RDF) Model and Syntax Specification \u2014 W3C Recommendation 22 February 1999 (2002)"},{"issue":"2","key":"25_CR24","doi-asserted-by":"publisher","first-page":"214","DOI":"10.1145\/383891.383894","volume":"26","author":"S. Jajodia","year":"2001","unstructured":"S. Jajodia, P. Samarati, M.L. Sapino, V.S. Subrahmanian: Flexible support for multiple access control policies. ACM Transactions on Database Systems 26(2) (2001) pp. 214\u2013260","journal-title":"ACM Transactions on Database Systems"},{"key":"25_CR25","doi-asserted-by":"crossref","unstructured":"S. Jajodia, M. Kudo, S. Subrahmanian: Provisional authorization. (In: Proc. 1st Int. Workshop on Security and Privacy in E-Commerce (WSPEC))","DOI":"10.1007\/978-1-4615-1467-1_8"},{"key":"25_CR26","unstructured":"OASIS Access Control TC: eXtensible Access Control Markup Language (XACML) Version 2.0 \u2014 Oasis Standard, 1 Feb 2005 (2005)"},{"key":"25_CR27","doi-asserted-by":"crossref","unstructured":"A. Anderson: Comparison of two privacy languages: EPAL and XACML. Sun Technical Report TR-2005-147 (2005)","DOI":"10.1145\/1180367.1180378"},{"key":"25_CR28","unstructured":"W.H. Stufflebeam, A.I. Ant\u00f3n, Q. He, N. Jain: Specifying privacy policies with P3P and EPAL: lessons learned. In: Proc. Workshop on Privacy in the Electronic Society (WPES). (2004) p. 35"},{"key":"25_CR29","doi-asserted-by":"publisher","first-page":"60","DOI":"10.1109\/POLICY.2002.1011294","volume-title":"Proc. Int. Workshop on Policies for Distributed Systems and Networks (POLICY)","author":"J. Park","year":"2002","unstructured":"J. Park, R. Sandhu: Originator control in usage control. In: Proc. Int. Workshop on Policies for Distributed Systems and Networks (POLICY), Washington, DC, USA, IEEE Computer Society (2002) p. 60"},{"key":"25_CR30","doi-asserted-by":"crossref","unstructured":"M. Abadi: Logic in access control. In Kolaitis, P.G., ed.: Proc. Symp. on Logic in Computer Science (LICS), IEEE Computer Society Press (2003) pp. 228\u2013233","DOI":"10.1109\/LICS.2003.1210062"},{"key":"25_CR31","doi-asserted-by":"crossref","unstructured":"A.W. Appel, E.W. Felten: Proof-carrying authentication. In Tsudik, G., ed.: Proc. Conf. on Comp. and Comm. Sec. (CCS), ACM Press (1999) pp. 52\u201362","DOI":"10.1145\/319709.319718"},{"key":"25_CR32","unstructured":"R.L. Rivest, B. Lampson: SDSI \u2014 A simple distributed security infrastructure. Presented at CRYPTO\u201996 Rumpsession (1996)"},{"issue":"1","key":"25_CR33","doi-asserted-by":"publisher","first-page":"128","DOI":"10.1145\/605434.605438","volume":"6","author":"N. Li","year":"2003","unstructured":"N. Li, B.N. Grosof, J. Feigenbaum: Delegation logic: A logic-based approach to distributed authorization. ACM Transactions on Information and System Security (TISSEC) 6(1) (2003) pp. 128\u2013171","journal-title":"ACM Transactions on Information and System Security (TISSEC)"},{"issue":"1","key":"25_CR34","doi-asserted-by":"crossref","first-page":"167","DOI":"10.3233\/JCS-2005-13107","volume":"13","author":"V. Shmatikov","year":"2005","unstructured":"V. Shmatikov, C.L. Talcott: Reputation-based trust management. Journal of Computer Security 13(1) (2005) pp. 167\u2013190","journal-title":"Journal of Computer Security"},{"key":"25_CR35","doi-asserted-by":"crossref","unstructured":"J.Y. Halpern, V. Weissman: Using first-order logic to reason about policies. In Focardi, R., ed.: Proc. Computer Security Foundations Workshop (CSFW), IEEE Computer Society Press (2003) pp. 187\u2013201","DOI":"10.1109\/CSFW.2003.1212713"}],"container-title":["Security, Privacy, and Trust in Modern Data Management"],"original-title":[],"language":"en","link":[{"URL":"http:\/\/link.springer.com\/content\/pdf\/10.1007\/978-3-540-69861-6_25","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,1,17]],"date-time":"2025-01-17T05:48:11Z","timestamp":1737092891000},"score":1,"resource":{"primary":{"URL":"http:\/\/link.springer.com\/10.1007\/978-3-540-69861-6_25"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2007]]},"ISBN":["9783540698609","9783540698616"],"references-count":35,"URL":"https:\/\/doi.org\/10.1007\/978-3-540-69861-6_25","relation":{},"subject":[],"published":{"date-parts":[[2007]]}}}