{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,3,26]],"date-time":"2025-03-26T21:54:08Z","timestamp":1743026048609,"version":"3.40.3"},"publisher-location":"Berlin, Heidelberg","reference-count":41,"publisher":"Springer Berlin Heidelberg","isbn-type":[{"type":"print","value":"9783642190551"},{"type":"electronic","value":"9783642190568"}],"license":[{"start":{"date-parts":[[2011,1,1]],"date-time":"2011-01-01T00:00:00Z","timestamp":1293840000000},"content-version":"unspecified","delay-in-days":0,"URL":"http:\/\/www.springer.com\/tdm"}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2011]]},"DOI":"10.1007\/978-3-642-19056-8_2","type":"book-chapter","created":{"date-parts":[[2011,2,2]],"date-time":"2011-02-02T00:55:03Z","timestamp":1296608103000},"page":"15-34","source":"Crossref","is-referenced-by-count":0,"title":["Protecting Critical Infrastructures While Preserving Each Organization\u2019s Autonomy"],"prefix":"10.1007","author":[{"given":"Yves","family":"Deswarte","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"297","reference":[{"key":"2_CR1","unstructured":"Abou El Kalam, A., El Baida, R., Balbiani, P., Benferhat, S., Cuppens, F., Deswarte, Y., Miege, A., Saurel, C., Trouessin, G.: Organization Based Access Control. In: Proc. of IEEE 4th Intl Workshop on Policies for Distributed Systems and Networks (POLICY 2003), Lake Come, Italy, June 14-16, pp. 120\u2013131 (2003)"},{"key":"2_CR2","unstructured":"Abou El Kalam, A., Deswarte, Y.: Multi-OrBAC: a New Access Control Model for Distributed, Heterogeneous and Collaborative Systems. In: IEEE Symp. on Systems and Information Security (SSI 2006), Sao Paulo, Brazil (2006)"},{"key":"2_CR3","doi-asserted-by":"crossref","unstructured":"Abou El Kalam, A., Deswarte, Y., Ba\u00efna, A., Ka\u00e2niche, M.: Access Control for Collaborative Systems: A Web Services Based Approach. In: IEEE Intl Conf. on Web Services (ICWS 2007), Salt Lake City, Utah, USA, July 9-13, pp. 1064\u20131071 (2007)","DOI":"10.1109\/ICWS.2007.30"},{"key":"2_CR4","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"95","DOI":"10.1007\/978-3-642-03552-4_9","volume-title":"Critical Information Infrastructure Security","author":"A. Abou El Kalam","year":"2009","unstructured":"Abou El Kalam, A., Deswarte, Y.: Critical Infrastructures Security Modeling, Enforcement and Runtime Checking. In: Setola, R., Geretshuber, S. (eds.) CRITIS 2008. LNCS, vol.\u00a05508, pp. 95\u2013108. Springer, Heidelberg (2009)"},{"key":"2_CR5","doi-asserted-by":"publisher","first-page":"154","DOI":"10.1016\/j.ijcip.2009.08.005","volume":"2","author":"A. Abou El Kalam","year":"2009","unstructured":"Abou El Kalam, A., Deswarte, Y., Ba\u00efna, A., Ka\u00e2niche, M.: PolyOrBAC: A Security Framework for Critical Infrastructures. International Journal of Critical Infrastructure Protection (IJCIP)\u00a02, 154\u2013169 (2009)","journal-title":"International Journal of Critical Infrastructure Protection (IJCIP)"},{"issue":"2","key":"2_CR6","doi-asserted-by":"publisher","first-page":"131","DOI":"10.1023\/A:1008656726700","volume":"2","author":"N.R. Adam","year":"1998","unstructured":"Adam, N.R., Atluri, V., Huang, W.-K.: Modeling and Analysis of Workflows Using Petri Nets. Journal of Intelligent Information Systems, Special Issue on Workflow and Process Management\u00a02(2), 131\u2013158 (1998)","journal-title":"Journal of Intelligent Information Systems, Special Issue on Workflow and Process Management"},{"issue":"2","key":"2_CR7","doi-asserted-by":"publisher","first-page":"183","DOI":"10.1016\/0304-3975(94)90010-8","volume":"126","author":"R. Alur","year":"1994","unstructured":"Alur, R., Dill, D.L.: A Theory of Timed Automata. Theoretical Computer Science\u00a0126(2), 183\u2013235 (1994)","journal-title":"Theoretical Computer Science"},{"issue":"5","key":"2_CR8","doi-asserted-by":"publisher","first-page":"19","DOI":"10.1109\/MSECP.2003.1236231","volume":"1","author":"M. Amin","year":"2003","unstructured":"Amin, M.: North America\u2019s Electricity Infrastructure: Are We Ready for More Perfect Storms? IEEE Security and Privacy\u00a01(5), 19\u201325 (2003)","journal-title":"IEEE Security and Privacy"},{"key":"2_CR9","unstructured":"Ba\u00efna, A.: Mod\u00e8les et politiques de s\u00e9curit\u00e9 pour la protection des infrastructures critiques, Doctorate Thesis, Universit\u00e9 de Toulouse, LAAS-CNRS (September 29, 2009) (in French)"},{"key":"2_CR10","doi-asserted-by":"crossref","unstructured":"Beitollahi, H., Deconinck, G.: An Overlay Protection Layer Against Denial-of-Service Attacks. In: 22nd IEEE Intl Parallel and Distributed Processing Symposium (IPDPS 2008), Miami, Florida, May 14-18, pp. 1\u20138 (2008)","DOI":"10.1109\/IPDPS.2008.4536157"},{"key":"2_CR11","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-662-04558-9","volume-title":"Systems and Software Verification, Model Checking Techniques and Tools","author":"B. Berard","year":"2001","unstructured":"Berard, B., Bidiot, M., Finkel, A., Laroussinie, F., Petit, A., Petrucci, L., Schnoebelen, P., McKenzie, P.: Systems and Software Verification, Model Checking Techniques and Tools. Springer, Heidelberg (2001) ISBN 3-540-41523-7"},{"issue":"1","key":"2_CR12","doi-asserted-by":"publisher","first-page":"65","DOI":"10.1145\/300830.300837","volume":"2","author":"E. Bertino","year":"1999","unstructured":"Bertino, E., Ferrari, E., Alturi, V.: The Specification and Enforcement of Authorization Constraints in Workflow Management Systems. ACM Transactions on Information and System Security (TISSEC)\u00a02(1), 65\u2013104 (1999)","journal-title":"ACM Transactions on Information and System Security (TISSEC)"},{"issue":"2","key":"2_CR13","doi-asserted-by":"publisher","first-page":"214","DOI":"10.1145\/383891.383894","volume":"26","author":"E. Bertino","year":"2001","unstructured":"Bertino, E., Jajodia, S., Samarati, P.: Flexible Support for Multiple Access Control Policies. ACM Transaction on Database Systems (TODS)\u00a026(2), 214\u2013260 (2001)","journal-title":"ACM Transaction on Database Systems (TODS)"},{"key":"2_CR14","doi-asserted-by":"crossref","unstructured":"Bettini, C., Jajodia, S., Wang, X.S., Wijesekera, D.: Obligation Monitoring in Policy Management. In: Proc. of IEEE 3rd Intl Workshop on Policies for Distributed Systems and Networks (POLICY 2002), Monterey, CA, June 5-7, pp. 2\u201312 (2002)","DOI":"10.1109\/POLICY.2002.1011288"},{"key":"2_CR15","doi-asserted-by":"crossref","unstructured":"Beznosov, K., Deng, Y.: A Framework for Implementing Role-Based Access Control Using CORBA Security Service. In: 4th ACM Workshop on Role-Based Access Control, Fairfax, VA, USA, October 28-29, pp. 19\u201330 (1999)","DOI":"10.1145\/319171.319174"},{"key":"2_CR16","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"101","DOI":"10.1007\/11961635_7","volume-title":"Information Systems Security","author":"F. Cuppens","year":"2006","unstructured":"Cuppens, F., Cuppens-Boulahia, N., Coma, C.: O2O: Virtual Private Organizations to Manage Security Policy Interoperability. In: Bagchi, A., Atluri, V. (eds.) ICISS 2006. LNCS, vol.\u00a04332, pp. 101\u2013115. Springer, Heidelberg (2006)"},{"key":"2_CR17","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"18","DOI":"10.1007\/3-540-44569-2_2","volume-title":"Policies for Distributed Systems and Networks","author":"N. Damianou","year":"2001","unstructured":"Damianou, N., Dulay, N., Lupu, E.: The Ponder Policy Specification Language. In: Sloman, M., Lobo, J., Lupu, E.C. (eds.) POLICY 2001. LNCS, vol.\u00a01995, pp. 18\u201338. Springer, Heidelberg (2001)"},{"key":"2_CR18","unstructured":"Feng, X., Guoyuan, L., Xuzhou, X.: Role-based Access Control System for Web Services. In: 4th International Conference on Computer and Information Technology (CIT 2004), Wuhan, China, September 14-16, pp. 357\u2013362 (2004)"},{"issue":"3","key":"2_CR19","doi-asserted-by":"publisher","first-page":"224","DOI":"10.1145\/501978.501980","volume":"4","author":"D. Ferraiolo","year":"2001","unstructured":"Ferraiolo, D., Sandhu, R., Gavrila, S., Kuhn, D.R., Chandramouli, R.: Proposed NIST Standard for Role-Based Access Control. ACM Transactions on Information and System Security (TISSEC)\u00a04(3), 224\u2013274 (2001)","journal-title":"ACM Transactions on Information and System Security (TISSEC)"},{"key":"2_CR20","unstructured":"Garrone, F., Brasca, C., Cerotti, D., Codetta Raiteri, D., Daidone, A., Deconinck, G., Donatelli, S., Dondossola, G., Grandoni, F., Kaaniche, M., Rigole, T.: Analysis of new control applications. CRUTIAL project, Deliverable D2 (January 2007)"},{"key":"2_CR21","unstructured":"Hilt, D.W.: August 14, 2003, Northeast Blackout Impacts and Actions and the Energy Policy Act of 2005. In: North American Electric Reliability Council (NERC), Presentation at ISPE Annual Conference (August 2, 2006), http:\/\/www.nerc.com\/filez\/blackout.html"},{"key":"2_CR22","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"531","DOI":"10.1007\/978-3-540-74835-9_35","volume-title":"Computer Security \u2013 ESORICS 2007","author":"M. Hilty","year":"2007","unstructured":"Hilty, M., Pretschner, A., Basin, D., Schaefer, C., Walter, T.: A Policy Language for Distributed Usage Control. In: Biskup, J., L\u00f3pez, J. (eds.) ESORICS 2007. LNCS, vol.\u00a04734, pp. 531\u2013546. Springer, Heidelberg (2007)"},{"key":"2_CR23","series-title":"Lecture Notes in Computer Science","first-page":"57","volume-title":"Computer Safety, Reliability, and Security","author":"J.C. Laprie","year":"2007","unstructured":"Laprie, J.C., Kanoun, K., Ka\u00e2niche, M.: Modelling Interdependencies Between the Electricity and Information Infrastructures. In: Saglietti, F., Oster, N. (eds.) SAFECOMP 2007. LNCS, vol.\u00a04680, pp. 57\u201367. Springer, Heidelberg (2007)"},{"key":"2_CR24","unstructured":"Leune, K., van den Heuvel, W.-J.: A Methodology for Developing Role-Based Access\/Control to Web-Services. Tilburg University, Infolab Technical Report Series, no. 11 (December 2002)"},{"key":"2_CR25","doi-asserted-by":"crossref","unstructured":"Lin, D., Rao, P., Bertino, E., Li, N., Lobo, J.: Policy Decomposition for Collaborative Access Control. In: 13th ACM Symposium on Access Control Models and Technologies (SACMAT 2008), Estes Park, CO, USA, pp. 103\u2013112 (2008)","DOI":"10.1145\/1377836.1377853"},{"key":"2_CR26","doi-asserted-by":"crossref","unstructured":"Lorch, M., Proctor, S., Lepro, R., Kafura, D., Shah, S.: First Experiences Using XACML for Access Control in Distributed Systems. In: 2003 ACM Workshop on XML Security, Fairfax, VA, pp. 25\u201337 (2003)","DOI":"10.1145\/968559.968563"},{"key":"2_CR27","doi-asserted-by":"crossref","unstructured":"Ni, Q., Bertino, E., Lobo, J.: An Obligation model bridging access control policies and privacy policies. In: 13th ACM SACMAT, Estes Park, CO, USA, June 11-13 (2008)","DOI":"10.1145\/1377836.1377857"},{"key":"2_CR28","unstructured":"OASIS, Universal Description, Discovery and Integration v3.0.2 (UDDI), UDDI Specification TC, OASIS Standard (February 2005)"},{"key":"2_CR29","unstructured":"OASIS, Web Services Security: SOAP Message Security 1.1 (WS-Security 2004), OASIS Standard Specification (February 1, 2006)"},{"key":"2_CR30","unstructured":"OASIS, eXtensible Access Control Markup Language (XACML) Version 2.0, OASIS Standard (February 1, 2005)"},{"key":"2_CR31","unstructured":"OASIS, XML Catalogs, OASIS Standard V1.1 (October 7, 2005)"},{"key":"2_CR32","doi-asserted-by":"crossref","unstructured":"Pearlman, L., Welch, V., Foster, I., Kesselman, C., Tuecke, S.: A Community Authorization Service for Group Collaboration. In: Proc. of IEEE 3rd Intl Workshop on Policies for Distributed Systems and Networks (POLICY 2002), Monterey, CA, June 5-7, pp. 50\u201359 (2002)","DOI":"10.1109\/POLICY.2002.1011293"},{"issue":"6","key":"2_CR33","doi-asserted-by":"publisher","first-page":"11","DOI":"10.1109\/37.969131","volume":"21","author":"S.M. Rinaldi","year":"2001","unstructured":"Rinaldi, S.M., Peerenboom, J.P., Kelly, T.K.: Identifying, understanding, and analyzing critical infrastructure interdependencies. IEEE Control Systems Magazine\u00a021(6), 11\u201325 (2001)","journal-title":"IEEE Control Systems Magazine"},{"issue":"2","key":"2_CR34","doi-asserted-by":"publisher","first-page":"38","DOI":"10.1109\/2.485845","volume":"29","author":"R.S. Sandhu","year":"1996","unstructured":"Sandhu, R.S., Coyne, E.J., Feinstein, H.L., Youman, C.E.: Role-Based Access Control Models. IEEE Computer\u00a029(2), 38\u201347 (1996)","journal-title":"IEEE Computer"},{"key":"2_CR35","doi-asserted-by":"crossref","unstructured":"Shehab, M., Bertino, E., Ghafoor, A.: Secure Collaboration in Mediator-Free Environments. In: 12th ACM Conference on Computer and Communications Security (CCS 2005), Alexandria, VA, pp. 58\u201367 (2005)","DOI":"10.1145\/1102120.1102130"},{"key":"2_CR36","doi-asserted-by":"crossref","unstructured":"Sturm, C., Dittrich, K.R., Ziegler, P.: An access control mechanism for P2P collaborations. In: Proceedings of the 2008 International Workshop on Data Management in Peer-to-peer Systems (DaMaP 2008), Nantes, France, March 25, pp. 51\u201358 (2008)","DOI":"10.1145\/1379350.1379358"},{"key":"2_CR37","unstructured":"UPPAAL tool available at, http:\/\/www.uppaal.com"},{"key":"2_CR38","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"1","DOI":"10.1007\/978-3-540-85571-2_1","volume-title":"Architecting Dependable Systems V","author":"P. Verissimo","year":"2008","unstructured":"Verissimo, P., Neves, N.F., Correia, M., Deswarte, Y., Abou El Kalam, A., Bondavalli, A., Daidone, A.: The CRUTIAL Architecture for Critical Information Infrastructures. In: de Lemos, R., Di Giandomenico, F., Gacek, C., Muccini, H., Vieira, M. (eds.) Architecting Dependable Systems V. LNCS, vol.\u00a05135, pp. 1\u201327. Springer, Heidelberg (2008)"},{"key":"2_CR39","doi-asserted-by":"crossref","unstructured":"Vuong, N., Smith, G.S., Deng, Y.: Managing Security Policies in a Distributed Environment Using eXtensible Markup Language (XML). In: 2001 ACM Symposium on Applied Computing (SAC 2001), Las Vegas, NV, pp. 405\u2013411 (2001)","DOI":"10.1145\/372202.372386"},{"key":"2_CR40","unstructured":"W3C, SOAP Specifications, W3C Recommendation, 2nd edn. (April 27, 2007)"},{"key":"2_CR41","unstructured":"W3C, Web Services Description Language (WSDL) 1.1, W3C Note (March 15, 2001)"}],"container-title":["Lecture Notes in Computer Science","Distributed Computing and Internet Technology"],"original-title":[],"language":"en","link":[{"URL":"http:\/\/link.springer.com\/content\/pdf\/10.1007\/978-3-642-19056-8_2","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,3,2]],"date-time":"2025-03-02T09:11:25Z","timestamp":1740906685000},"score":1,"resource":{"primary":{"URL":"http:\/\/link.springer.com\/10.1007\/978-3-642-19056-8_2"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2011]]},"ISBN":["9783642190551","9783642190568"],"references-count":41,"URL":"https:\/\/doi.org\/10.1007\/978-3-642-19056-8_2","relation":{},"ISSN":["0302-9743","1611-3349"],"issn-type":[{"type":"print","value":"0302-9743"},{"type":"electronic","value":"1611-3349"}],"subject":[],"published":{"date-parts":[[2011]]}}}