{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,9,29]],"date-time":"2025-09-29T08:11:19Z","timestamp":1759133479412},"publisher-location":"Berlin, Heidelberg","reference-count":17,"publisher":"Springer Berlin Heidelberg","isbn-type":[{"type":"print","value":"9783642346002"},{"type":"electronic","value":"9783642346019"}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2012]]},"DOI":"10.1007\/978-3-642-34601-9_39","type":"book-chapter","created":{"date-parts":[[2012,11,16]],"date-time":"2012-11-16T02:04:18Z","timestamp":1353031458000},"page":"516-529","source":"Crossref","is-referenced-by-count":6,"title":["Mitigating the Intractability of the User Authorization Query Problem in Role-Based Access Control (RBAC)"],"prefix":"10.1007","author":[{"given":"Nima","family":"Mousavi","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Mahesh V.","family":"Tripunitara","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"297","reference":[{"key":"39_CR1","unstructured":"zChaff (April 2012), http:\/\/www.princeton.edu\/~chaff\/zchaff.html"},{"key":"39_CR2","doi-asserted-by":"crossref","unstructured":"Armando, A., Ranise, S., Turkmen, F., Crispo, B.: Efficient run-time solving of RBAC user authorization queries: Pushing the envelope. In: Proceedings of the ACM Conference on Data and Applications Security and Privacy (CODASPY 2012). ACM (February 2012)","DOI":"10.1145\/2133601.2133631"},{"key":"39_CR3","doi-asserted-by":"crossref","unstructured":"Arora, S., Barak, B.: Computational Complexity: A Modern Approach. Cambridge University Press (2009)","DOI":"10.1017\/CBO9780511804090"},{"key":"39_CR4","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"689","DOI":"10.1007\/978-3-642-04444-1_42","volume-title":"Computer Security \u2013 ESORICS 2009","author":"L. Chen","year":"2009","unstructured":"Chen, L., Crampton, J.: Set Covering Problems in Role-Based Access Control. In: Backes, M., Ning, P. (eds.) ESORICS 2009. LNCS, vol.\u00a05789, pp. 689\u2013704. Springer, Heidelberg (2009)"},{"key":"39_CR5","doi-asserted-by":"crossref","unstructured":"Cook, S.A.: The complexity of theorem-proving procedures. In: Proceedings of the Third Annual ACM Symposium on Theory of Computing, STOC 1971, pp. 151\u2013158 (1971)","DOI":"10.1145\/800157.805047"},{"key":"39_CR6","unstructured":"Cormen, T.H., Leiserson, C.E., Rivest, R.L., Stein, C.: Introduction to Algorithms, 3rd edn. The MIT Press (September 2009)"},{"issue":"4","key":"39_CR7","doi-asserted-by":"publisher","first-page":"873","DOI":"10.1137\/S0097539792228228","volume":"24","author":"R.G. Downey","year":"1995","unstructured":"Downey, R.G., Fellows, M.R.: Fixed-parameter tractability and completeness I: Basic results. SIAM Journal on Computing\u00a024(4), 873\u2013921 (1995)","journal-title":"SIAM Journal on Computing"},{"key":"39_CR8","doi-asserted-by":"publisher","first-page":"228","DOI":"10.1145\/1133058.1133090","volume-title":"Proceedings of the ACM Symposium on Access Control Models and Technologies, SACMAT 2006","author":"S. Du","year":"2006","unstructured":"Du, S., Joshi, J.B.D.: Supporting authorization query and inter-domain role mapping in presence of hybrid role hierarchy. In: Proceedings of the ACM Symposium on Access Control Models and Technologies, SACMAT 2006, pp. 228\u2013236. ACM, New York (2006)"},{"issue":"3","key":"39_CR9","doi-asserted-by":"publisher","first-page":"224","DOI":"10.1145\/501978.501980","volume":"4","author":"D.F. Ferraiolo","year":"2001","unstructured":"Ferraiolo, D.F., Sandhu, R.S., Gavrila, S., Kuhn, D.R., Chandramouli, R.: Proposed NIST standard for role-based access control. ACM Transactions on Information and Systems Security\u00a04(3), 224\u2013274 (2001)","journal-title":"ACM Transactions on Information and Systems Security"},{"key":"39_CR10","unstructured":"Garey, M.R., Johnson, D.S.: Computers and Intractability; A Guide to the Theory of NP-Completeness. W. H. Freeman & Co., New York (1990)"},{"key":"39_CR11","doi-asserted-by":"crossref","first-page":"121","DOI":"10.1145\/1943513.1943530","volume-title":"Proceedings of the First ACM Conference on Data and Application Security and Privacy, CODASPY 2011","author":"M. Komlenovic","year":"2011","unstructured":"Komlenovic, M., Tripunitara, M., Zitouni, T.: An empirical assessment of approaches to distributed enforcement in role-based access control (rbac). In: Proceedings of the First ACM Conference on Data and Application Security and Privacy, CODASPY 2011, pp. 121\u2013132. ACM, New York (2011)"},{"key":"39_CR12","doi-asserted-by":"crossref","unstructured":"Li, N., Tripunitara, M.V., Bizri, Z.: On mutually exclusive roles and separation-of-duty. ACM Trans. Inf. Syst. Secur., 10 (May 2007)","DOI":"10.1145\/1237500.1237501"},{"key":"39_CR13","unstructured":"Mousavi, N., Tripunitara, M.V.: CNF-SAT and Fixed-Parameter Polynomial-Time Implementations for UAQ (April 2012), https:\/\/ece.uwaterloo.ca\/~tripunit\/uaq\/"},{"issue":"2","key":"39_CR14","doi-asserted-by":"publisher","first-page":"38","DOI":"10.1109\/2.485845","volume":"29","author":"R.S. Sandhu","year":"1996","unstructured":"Sandhu, R.S., Coyne, E.J., Feinstein, H.L., Youman, C.E.: Role-based access control models. IEEE Computer\u00a029(2), 38\u201347 (1996)","journal-title":"IEEE Computer"},{"key":"39_CR15","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"827","DOI":"10.1007\/11564751_73","volume-title":"Principles and Practice of Constraint Programming - CP 2005","author":"C. Sinz","year":"2005","unstructured":"Sinz, C.: Towards an Optimal CNF Encoding of Boolean Cardinality Constraints. In: van Beek, P. (ed.) CP 2005. LNCS, vol.\u00a03709, pp. 827\u2013831. Springer, Heidelberg (2005)"},{"key":"39_CR16","doi-asserted-by":"publisher","first-page":"23","DOI":"10.1145\/1542207.1542213","volume-title":"Proceedings of the ACM Symposium on Access Control Models and Technologies, SACMAT 2009","author":"G.T. Wickramaarachchi","year":"2009","unstructured":"Wickramaarachchi, G.T., Qardaji, W.H., Li, N.: An efficient framework for user authorization queries in rbac systems. In: Proceedings of the ACM Symposium on Access Control Models and Technologies, SACMAT 2009, pp. 23\u201332. ACM, New York (2009)"},{"key":"39_CR17","doi-asserted-by":"publisher","first-page":"83","DOI":"10.1145\/1377836.1377850","volume-title":"Proceedings of the ACM Symposium on Access Control Models and Technologies, SACMAT 2008","author":"Y. Zhang","year":"2008","unstructured":"Zhang, Y., Joshi, J.B.D.: Uaq: a framework for user authorization query processing in rbac extended with hybrid hierarchy and constraints. In: Proceedings of the ACM Symposium on Access Control Models and Technologies, SACMAT 2008, pp. 83\u201392. ACM, New York (2008)"}],"container-title":["Lecture Notes in Computer Science","Network and System Security"],"original-title":[],"link":[{"URL":"http:\/\/link.springer.com\/content\/pdf\/10.1007\/978-3-642-34601-9_39.pdf","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2022,1,31]],"date-time":"2022-01-31T12:37:57Z","timestamp":1643632677000},"score":1,"resource":{"primary":{"URL":"http:\/\/link.springer.com\/10.1007\/978-3-642-34601-9_39"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2012]]},"ISBN":["9783642346002","9783642346019"],"references-count":17,"URL":"https:\/\/doi.org\/10.1007\/978-3-642-34601-9_39","relation":{},"ISSN":["0302-9743","1611-3349"],"issn-type":[{"type":"print","value":"0302-9743"},{"type":"electronic","value":"1611-3349"}],"subject":[],"published":{"date-parts":[[2012]]}}}