{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,12,31]],"date-time":"2025-12-31T22:18:27Z","timestamp":1767219507371},"publisher-location":"Berlin, Heidelberg","reference-count":27,"publisher":"Springer Berlin Heidelberg","isbn-type":[{"type":"print","value":"9783540698609"},{"type":"electronic","value":"9783540698616"}],"license":[{"start":{"date-parts":[[2007,1,1]],"date-time":"2007-01-01T00:00:00Z","timestamp":1167609600000},"content-version":"tdm","delay-in-days":0,"URL":"http:\/\/www.springer.com\/tdm"}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2007]]},"DOI":"10.1007\/978-3-540-69861-6_4","type":"book-chapter","created":{"date-parts":[[2007,6,11]],"date-time":"2007-06-11T16:17:51Z","timestamp":1181578671000},"page":"39-53","source":"Crossref","is-referenced-by-count":12,"title":["Authorization and Access Control"],"prefix":"10.1007","author":[{"given":"Sabrina","family":"De Capitani di Vimercati","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Sara","family":"Foresti","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Pierangela","family":"Samarati","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"297","reference":[{"key":"4_CR1","volume-title":"Foundations of Security Analysis and Design","author":"P. Samarati","year":"2001","unstructured":"P. Samarati, S. De Capitani di Vimercati (2001). Access control: Policies, models, and mechanisms. In: R. Focardi, R. Gorrieri (eds.), Foundations of Security Analysis and Design. Springer-Verlag, New York."},{"issue":"9","key":"4_CR2","doi-asserted-by":"publisher","first-page":"550","DOI":"10.1109\/32.629493","volume":"23","author":"R. Focardi","year":"1997","unstructured":"R. Focardi, R. Gorrieri (1997). The compositional security checker: A tool for the verification of information flow security properties. IEEE Transaction Software Engineering, 23(9):550\u2013571.","journal-title":"IEEE Transaction Software Engineering"},{"key":"4_CR3","unstructured":"G.S. Graham, P.J. Denning (1972). Protection-principles and practice. In AFIPS Proc. of the Spring Jt. Computer Conference, Montvale, NJ, USA."},{"issue":"8","key":"4_CR4","doi-asserted-by":"publisher","first-page":"461","DOI":"10.1145\/360303.360333","volume":"19","author":"H.H. Harrison","year":"1976","unstructured":"H.H. Harrison, W.L. Ruzzo, J.D. Ullman (1976). Protection in operating systems. Communications of the SCM, 19(8):461\u2013471.","journal-title":"Communications of the SCM"},{"issue":"1","key":"4_CR5","doi-asserted-by":"publisher","first-page":"18","DOI":"10.1145\/775265.775268","volume":"8","author":"B.W. Lampson","year":"1974","unstructured":"B.W. Lampson (1974). Protection. ACM Operating Systems Review, 8(1):18\u201324.","journal-title":"ACM Operating Systems Review"},{"issue":"2","key":"4_CR6","doi-asserted-by":"publisher","first-page":"214","DOI":"10.1145\/383891.383894","volume":"26","author":"S. Jajodia","year":"2001","unstructured":"S. Jajodia, P. Samarati, M.L. Sapin, V.S. Subrahmanian (2001). Flexible support for multiple access control policies. ACM Transaction on Database Systems, 26(2):214\u2013260.","journal-title":"ACM Transaction on Database Systems"},{"key":"4_CR7","unstructured":"T.F. Lunt (1988). Access control policies: Some unanswered questions. In Proc. of IEEE Computer Security Foundations Workshop II, Franconia, New Hampshire."},{"issue":"11","key":"4_CR8","doi-asserted-by":"crossref","first-page":"9","DOI":"10.1109\/2.241422","volume":"26","author":"R.S. Sandhu","year":"1993","unstructured":"R.S. Sandhu (1993). Lattice-based access control models. IEEE Computer, 26(11):9\u201319.","journal-title":"IEEE Computer"},{"key":"4_CR9","series-title":"Technical Report","volume-title":"Secure computer systems: A mathematical model","author":"D. Bell","year":"1973","unstructured":"D. Bell and L. LaPadula (1973). Secure computer systems: A mathematical model. Technical Report MTR-2547, Vol. 2, MITRE Corp., Bedford, MA."},{"key":"4_CR10","series-title":"Technical Report","volume-title":"Secure computer systems: Mathematical foundations","author":"D. Bell","year":"1973","unstructured":"D. Bell and L. LaPadula (1973). Secure computer systems: Mathematical foundations. Technical Report MTR-2547, Vol. 1, MITRE Corp., Bedford, MA."},{"key":"4_CR11","series-title":"Technical Report","volume-title":"Secure computer systems: A refinement of the mathematical model","author":"D. Bell","year":"1974","unstructured":"D. Bell and L. LaPadula (1974). Secure computer systems: A refinement of the mathematical model. Technical Report MTR-2547, Vol. 3, MITRE Corp., Bedford, MA."},{"key":"4_CR12","series-title":"Technical Report","volume-title":"Secure computer systems: Unified exposition and multics interpretation","author":"D. Bell","year":"1975","unstructured":"Bell D and LaPadula L (1975). Secure computer systems: Unified exposition and multics interpretation. Technical Report MTR-2997, Vol. 4, MITRE Corp., Bedford, MA."},{"key":"4_CR13","unstructured":"K.J. Biba (1977). Integrity considerations for secure computer systems. Technical Report MTR-3153, rev., MITRE Corp., Vol. 1, Bedford, MA."},{"key":"4_CR14","doi-asserted-by":"crossref","unstructured":"J.C. Wray (1991). An analysis of covert timing channels. In Proc. of the IEEE Symposium on Security and Privacy, Oakland, CA, USA.","DOI":"10.1109\/RISP.1991.130767"},{"key":"4_CR15","unstructured":"J. McLean (1994). Security models. In: Marciniak J (ed.), Encyclopedia of Software Engineering. John Wiley & Sons."},{"key":"4_CR16","doi-asserted-by":"crossref","unstructured":"J.A. Goguen, J. Meseguer (1984). Unwinding and inference control. In IEEE Symposium on Security and Privacy, Los Angeles, CA, USA.","DOI":"10.1109\/SP.1984.10019"},{"key":"4_CR17","doi-asserted-by":"crossref","unstructured":"S. Jajodia, R. Sandhu (1991). Toward a multilevel secure relational data model. In Proc. of the ACM SIGMOD Conference on Management of Data, Denver, CO, USA.","DOI":"10.1145\/119995.115796"},{"key":"4_CR18","doi-asserted-by":"crossref","unstructured":"T.F. Lunt (1991). Polyinstantiation: An inevitable part of a multilevel world. In Proc. of the IEEE Workshop on Computer Security Foundations, Franconia, New Hampshire.","DOI":"10.1109\/CSFW.1991.151597"},{"issue":"6","key":"4_CR19","doi-asserted-by":"publisher","first-page":"593","DOI":"10.1109\/32.55088","volume":"16","author":"T.F. Lunt","year":"1990","unstructured":"T.F. Lunt, D.E. Denning, R.P. Schell, M. Heckman, W.R. Shockley (1990). The seaview security model. IEEE Transaction on Software Engineering, 16(6):593\u2013607.","journal-title":"IEEE Transaction on Software Engineering"},{"key":"4_CR20","doi-asserted-by":"crossref","unstructured":"R.S. Sandhu, S. Jajodia (1992). Polyinstantiation for cover stories. In Proc. 2nd European Symposium on Research in Computer Security \u2014 ESORICS\u2019 92, Toulouse, France.","DOI":"10.1007\/BFb0013905"},{"issue":"3","key":"4_CR21","doi-asserted-by":"publisher","first-page":"242","DOI":"10.1145\/320473.320482","volume":"1","author":"P.P. Griffiths","year":"1976","unstructured":"P.P. Griffiths, B.W. Wade (1976). An authorization mechanism for a relational database system. ACM Transactions on Database Systems, 1(3):242\u2013255.","journal-title":"ACM Transactions on Database Systems"},{"key":"4_CR22","unstructured":"Database language SQL-part 2: Foundation (SQL\/foundation) (1999). ISO International Standard, ISO\/IEC 9075:1999."},{"issue":"1","key":"4_CR23","first-page":"85","volume":"9","author":"E. Bertino","year":"1997","unstructured":"E. Bertino, P. Samarati, S. Jajodia (1997). An extended authorization model for relational databases. IEEE-TKDE, 9(1):85\u2013101.","journal-title":"IEEE-TKDE"},{"issue":"1","key":"4_CR24","doi-asserted-by":"publisher","first-page":"1","DOI":"10.1145\/504909.504910","volume":"5","author":"P. Bonatti","year":"2002","unstructured":"P. Bonatti, S. De Capitani di Vimercati, P. Samarati (2002). An algebra for composing access control policies. ACM Transactions on Information and System Security, 5(1):1\u201335.","journal-title":"ACM Transactions on Information and System Security"},{"key":"4_CR25","doi-asserted-by":"crossref","unstructured":"L. Wang, D. Wijesekera, S. Jajodia (2004). A logic-based framework for attribute based access control. In Proc. of the 2004 ACM Workshop on Formal Methods in Security Engineering, Washington DC, USA.","DOI":"10.1145\/1029133.1029140"},{"issue":"2","key":"4_CR26","doi-asserted-by":"publisher","first-page":"169","DOI":"10.1145\/505586.505590","volume":"5","author":"E. Damiani","year":"2002","unstructured":"E. Damiani, S. De Capitani di Vimercati, S. Paraboschi, P. Samarati (2002). A fine-grained access control system for XML documents. ACM Transactions on Information and System Security, 5(2):169\u2013202.","journal-title":"ACM Transactions on Information and System Security"},{"key":"4_CR27","unstructured":"S. Godik, T. Moses (2003). eXtensible Access Control Markup Language (XACML) version 1.1. http:\/\/www.oasis-open.org\/committees\/xacml\/repository\/cs-xacml-specification-1.1.pdf."}],"container-title":["Security, Privacy, and Trust in Modern Data Management"],"original-title":[],"language":"en","link":[{"URL":"http:\/\/link.springer.com\/content\/pdf\/10.1007\/978-3-540-69861-6_4","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2019,5,18]],"date-time":"2019-05-18T22:16:04Z","timestamp":1558217764000},"score":1,"resource":{"primary":{"URL":"http:\/\/link.springer.com\/10.1007\/978-3-540-69861-6_4"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2007]]},"ISBN":["9783540698609","9783540698616"],"references-count":27,"URL":"https:\/\/doi.org\/10.1007\/978-3-540-69861-6_4","relation":{},"subject":[],"published":{"date-parts":[[2007]]}}}