{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,10,25]],"date-time":"2025-10-25T14:12:47Z","timestamp":1761401567634,"version":"3.38.0"},"publisher-location":"Berlin, Heidelberg","reference-count":33,"publisher":"Springer Berlin Heidelberg","isbn-type":[{"type":"print","value":"9783642271885"},{"type":"electronic","value":"9783642271892"}],"license":[{"start":{"date-parts":[[2011,1,1]],"date-time":"2011-01-01T00:00:00Z","timestamp":1293840000000},"content-version":"unspecified","delay-in-days":0,"URL":"http:\/\/www.springer.com\/tdm"}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2011]]},"DOI":"10.1007\/978-3-642-27189-2_2","type":"book-chapter","created":{"date-parts":[[2011,12,2]],"date-time":"2011-12-02T14:52:18Z","timestamp":1322837538000},"page":"11-20","source":"Crossref","is-referenced-by-count":36,"title":["A Survey on Access Control Deployment"],"prefix":"10.1007","author":[{"given":"Vivy","family":"Suhendra","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"297","reference":[{"doi-asserted-by":"crossref","unstructured":"Barker, S.: Action-status access control. In: SACMAT, pp. 195\u2013204 (2007)","key":"2_CR1","DOI":"10.1145\/1266840.1266873"},{"doi-asserted-by":"crossref","unstructured":"Brucker, A.D., Br\u00fcgger, L., Kearney, P., Wolff, B.: An approach to modular and testable security models of real-world health-care applications. In: SACMAT, pp. 133\u2013142 (2011)","key":"2_CR2","DOI":"10.1145\/1998441.1998461"},{"doi-asserted-by":"crossref","unstructured":"Brucker, A.D., Petritsch, H.: Extending access control models with break-glass. In: SACMAT, pp. 197\u2013206 (2009)","key":"2_CR3","DOI":"10.1145\/1542207.1542239"},{"doi-asserted-by":"crossref","unstructured":"Brunel, J., Cuppens, F., Cuppens, N., Sans, T., Bodeveix, J.P.: Security policy compliance with violation management. In: FMSE, pp. 31\u201340 (2007)","key":"2_CR4","DOI":"10.1145\/1314436.1314441"},{"doi-asserted-by":"crossref","unstructured":"Cheng, P.C., Rohatgi, P., Keser, C., Karger, P.A., Wagner, G.M., Reninger, A.S.: Fuzzy multi-level security: An experiment on quantified risk-adaptive access control. In: 2007 IEEE Symp. on Security and Privacy, pp. 222\u2013230 (2007)","key":"2_CR5","DOI":"10.1109\/SP.2007.21"},{"doi-asserted-by":"crossref","unstructured":"Damiani, M.L., Bertino, E., Catania, B., Perlasca, P.: GEO-RBAC: A spatially aware RBAC. ACM Trans. Inf. Syst. Secur. 10 (2007)","key":"2_CR6","DOI":"10.1145\/1210263.1210265"},{"key":"2_CR7","doi-asserted-by":"publisher","first-page":"224","DOI":"10.1145\/501978.501980","volume":"4","author":"D.F. Ferraiolo","year":"2001","unstructured":"Ferraiolo, D.F., Sandhu, R.S., Gavrila, S., Kuhn, D.R., Chandramouli, R.: Proposed NIST standard for role-based access control. ACM Trans. Inf. Syst. Secur.\u00a04, 224\u2013274 (2001)","journal-title":"ACM Trans. Inf. Syst. Secur."},{"doi-asserted-by":"crossref","unstructured":"Frank, M., Buhmann, J.M., Basin, D.: On the definition of role mining. In: SACMAT, pp. 35\u201344 (2010)","key":"2_CR8","DOI":"10.1145\/1809842.1809851"},{"doi-asserted-by":"crossref","unstructured":"Fu, C., Li, A., Xu, L.: Hierarchical and dynamic security access control for collaborative design in virtual enterprise. In: IEEE ICIME, pp. 723\u2013726 (2010)","key":"2_CR9","DOI":"10.1109\/ICIME.2010.5477976"},{"doi-asserted-by":"crossref","unstructured":"Hu, H., Ahn, G.J., Kulkarni, K.: Anomaly discovery and resolution in web access control policies. In: SACMAT, pp. 165\u2013174 (2011)","key":"2_CR10","DOI":"10.1145\/1998441.1998472"},{"doi-asserted-by":"crossref","unstructured":"Hu, V.C., Ferraiolo, D.F., Kuhn, D.R.: Assessment of access control systems. Tech. Rep. NIST Interagency Report 7316, NIST (September 2006)","key":"2_CR11","DOI":"10.6028\/NIST.IR.7316"},{"doi-asserted-by":"crossref","unstructured":"Johnson, M.L., Bellovin, S.M., Reeder, R.W., Schechter, S.E.: Laissez-faire file sharing: access control designed for individuals at the endpoints. In: NSPW, pp. 1\u201310 (2009)","key":"2_CR12","DOI":"10.1145\/1719030.1719032"},{"doi-asserted-by":"crossref","unstructured":"Ledru, Y., Qamar, N., Idani, A., Richier, J.L., Labiadh, M.A.: Validation of security policies by the animation of Z specifications. In: SACMAT, pp. 155\u2013164 (2011)","key":"2_CR13","DOI":"10.1145\/1998441.1998471"},{"doi-asserted-by":"crossref","unstructured":"Ma, J., Logrippo, L., Adi, K., Mankovski, S.: Risk analysis in access control systems based on trust theories. In: Proc. 2010 IEEE\/WIC\/ACM Int\u2019l Conf. on Web Intelligence and Intelligent Agent Technology, vol.\u00a03, pp. 415\u2013418 (2010)","key":"2_CR14","DOI":"10.1109\/WI-IAT.2010.143"},{"doi-asserted-by":"crossref","unstructured":"Marinovic, S., Craven, R., Ma, J., Dulay, N.: Rumpole: a flexible break-glass access control model. In: SACMAT, pp. 73\u201382 (2011)","key":"2_CR15","DOI":"10.1145\/1998441.1998453"},{"doi-asserted-by":"crossref","unstructured":"Massacci, F.: Infringo ergo sum: when will software engineering support infringements? In: FoSER, pp. 233\u2013238 (2010)","key":"2_CR16","DOI":"10.1145\/1882362.1882411"},{"doi-asserted-by":"crossref","unstructured":"Molloy, I., Li, N., Li, T., Mao, Z., Wang, Q., Lobo, J.: Evaluating role mining algorithms. In: SACMAT, pp. 95\u2013104 (2009)","key":"2_CR17","DOI":"10.1145\/1542207.1542224"},{"doi-asserted-by":"crossref","unstructured":"Nguyen, N.D., Le, X.H., Zhung, Y., Lee, S., Lee, Y.K., Lee, H.: Enforcing access control using risk assessment. In: Proc. 4th European Conf. on Universal Multiservice Networks, pp. 419\u2013424 (2007)","key":"2_CR18","DOI":"10.1109\/ECUMN.2007.19"},{"doi-asserted-by":"crossref","unstructured":"Ni, Q., Bertino, E.: xfACL: an extensible functional language for access control. In: SACMAT, pp. 61\u201372 (2011)","key":"2_CR19","DOI":"10.1145\/1998441.1998451"},{"doi-asserted-by":"crossref","unstructured":"Ni, Q., Bertino, E., Lobo, J.: Risk-based access control systems built on fuzzy inferences. In: ASIACCS, pp. 250\u2013260 (2010)","key":"2_CR20","DOI":"10.1145\/1755688.1755719"},{"unstructured":"OASIS: eXtensible Access Control Markup Language (XACML) Version 3.0. Committee specification 01, OASIS (August 2010), http:\/\/docs.oasis-open.org\/xacml\/3.0\/xacml-3.0-core-spec-cs-01-en.pdf","key":"2_CR21"},{"doi-asserted-by":"crossref","unstructured":"Ouyang, K., Joshi, J.B.D.: CT-RBAC: A temporal RBAC model with conditional periodic time. In: IPCCC, pp. 467\u2013474 (2007)","key":"2_CR22","DOI":"10.1109\/PCCC.2007.358928"},{"key":"2_CR23","doi-asserted-by":"publisher","first-page":"128","DOI":"10.1145\/984334.984339","volume":"7","author":"J. Park","year":"2004","unstructured":"Park, J., Sandhu, R.S.: The UCON ABC usage control model. ACM Trans. Inf. Syst. Secur.\u00a07, 128\u2013174 (2004)","journal-title":"ACM Trans. Inf. Syst. Secur."},{"unstructured":"Rescorla, E., Lebovitz, G.: A survey of authentication mechanisms version 7. Internet-draft, Internet Engineering Task Force (February 2010), http:\/\/tools.ietf.org\/search\/draft-iab-auth-mech-07","key":"2_CR24"},{"key":"2_CR25","first-page":"32","volume-title":"Proc. 8th Australasian Conf. on Information Security","author":"F. Salim","year":"2010","unstructured":"Salim, F., Reid, J., Dawson, E.: An administrative model for UCON ABC . In: Proc. 8th Australasian Conf. on Information Security, vol.\u00a0105, pp. 32\u201338. Australian Computer Society, Inc., Darlinghurst (2010)"},{"issue":"2","key":"2_CR26","first-page":"69","volume":"2","author":"F. Salim","year":"2010","unstructured":"Salim, F., Reid, J., Dawson, E.: Authorization models for secure information sharing: A survey and research agenda. ISeCure, The ISC Int\u2019l Journal of Information Security\u00a02(2), 69\u201387 (2010)","journal-title":"ISeCure, The ISC Int\u2019l Journal of Information Security"},{"key":"2_CR27","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"137","DOI":"10.1007\/3-540-45608-2_3","volume-title":"Foundations of Security Analysis and Design","author":"P. Samarati","year":"2001","unstructured":"Samarati, P., di Vimercati, S.d.C.: Access control: Policies, models, and mechanisms. In: Focardi, R., Gorrieri, R. (eds.) FOSAD 2000. LNCS, vol.\u00a02171, pp. 137\u2013196. Springer, Heidelberg (2001)"},{"issue":"2","key":"2_CR28","doi-asserted-by":"publisher","first-page":"38","DOI":"10.1109\/2.485845","volume":"29","author":"R.S. Sandhu","year":"1996","unstructured":"Sandhu, R.S., Coyne, E.J., Feinstein, H.L., Youman, C.E.: Role-based access control models. Computer\u00a029(2), 38\u201347 (1996)","journal-title":"Computer"},{"key":"2_CR29","doi-asserted-by":"publisher","first-page":"40","DOI":"10.1109\/35.312842","volume":"32","author":"R.S. Sandhu","year":"1994","unstructured":"Sandhu, R.S., Samarati, P.: Access control: Principles and practice. IEEE Communications Magazine\u00a032, 40\u201348 (1994)","journal-title":"IEEE Communications Magazine"},{"issue":"4","key":"2_CR30","doi-asserted-by":"publisher","first-page":"74","DOI":"10.1109\/MSP.2010.139","volume":"8","author":"S. Sinclair","year":"2010","unstructured":"Sinclair, S., Smith, S.W.: What\u2019s wrong with access control in the real world? Security & Privacy\u00a08(4), 74\u201377 (2010)","journal-title":"Security & Privacy"},{"doi-asserted-by":"crossref","unstructured":"Tripunitara, M.V., Carbunar, B.: Efficient access enforcement in distributed role-based access control (RBAC) deployments. In: SACMAT, pp. 155\u2013164 (2009)","key":"2_CR31","DOI":"10.1145\/1542207.1542232"},{"issue":"3","key":"2_CR32","doi-asserted-by":"publisher","first-page":"300","DOI":"10.1109\/TDSC.2008.61","volume":"7","author":"J. Vaidya","year":"2010","unstructured":"Vaidya, J., Atluri, V., Warner, J., Guo, Q.: Role engineering via prioritized subset enumeration. IEEE Trans. Dependable and Secure Computing\u00a07(3), 300\u2013314 (2010)","journal-title":"IEEE Trans. Dependable and Secure Computing"},{"doi-asserted-by":"crossref","unstructured":"Zhao, X., Johnson, M.E.: Access governance: Flexibility with escalation and audit. In: Proc. 43rd Hawaii Int\u2019l Conf. on System Sciences, pp. 1\u201313 (2010)","key":"2_CR33","DOI":"10.1109\/HICSS.2010.42"}],"container-title":["Communications in Computer and Information Science","Security Technology"],"original-title":[],"link":[{"URL":"http:\/\/link.springer.com\/content\/pdf\/10.1007\/978-3-642-27189-2_2","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,3,14]],"date-time":"2025-03-14T19:15:37Z","timestamp":1741979737000},"score":1,"resource":{"primary":{"URL":"http:\/\/link.springer.com\/10.1007\/978-3-642-27189-2_2"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2011]]},"ISBN":["9783642271885","9783642271892"],"references-count":33,"URL":"https:\/\/doi.org\/10.1007\/978-3-642-27189-2_2","relation":{},"ISSN":["1865-0929","1865-0937"],"issn-type":[{"type":"print","value":"1865-0929"},{"type":"electronic","value":"1865-0937"}],"subject":[],"published":{"date-parts":[[2011]]}}}