{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,4,30]],"date-time":"2025-04-30T04:25:52Z","timestamp":1745987152162,"version":"3.40.4"},"publisher-location":"Berlin, Heidelberg","reference-count":28,"publisher":"Springer Berlin Heidelberg","isbn-type":[{"type":"print","value":"9783642371189"},{"type":"electronic","value":"9783642371196"}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2013]]},"DOI":"10.1007\/978-3-642-37119-6_11","type":"book-chapter","created":{"date-parts":[[2013,3,27]],"date-time":"2013-03-27T00:34:59Z","timestamp":1364344499000},"page":"162-179","source":"Crossref","is-referenced-by-count":2,"title":["Policy Administration in Tag-Based Authorization"],"prefix":"10.1007","author":[{"given":"Sandro","family":"Etalle","sequence":"first","affiliation":[]},{"given":"Timothy L.","family":"Hinrichs","sequence":"additional","affiliation":[]},{"given":"Adam J.","family":"Lee","sequence":"additional","affiliation":[]},{"given":"Daniel","family":"Trivellato","sequence":"additional","affiliation":[]},{"given":"Nicola","family":"Zannone","sequence":"additional","affiliation":[]}],"member":"297","reference":[{"issue":"4","key":"11_CR1","doi-asserted-by":"publisher","first-page":"706","DOI":"10.1145\/155183.155225","volume":"15","author":"M. Abadi","year":"1993","unstructured":"Abadi, M., Burrows, M., Lampson, B.: A calculus for access control in distributed systems. ACM Transactions on Programming Languages and Systems\u00a015(4), 706\u2013734 (1993)","journal-title":"ACM Transactions on Programming Languages and Systems"},{"issue":"4","key":"11_CR2","doi-asserted-by":"crossref","first-page":"619","DOI":"10.3233\/JCS-2009-0364","volume":"18","author":"M.Y. Becker","year":"2010","unstructured":"Becker, M.Y., Fournet, C.Y., Gordon, A.D.: SecPAL: Design and semantics of a decentralized authorization language. Journal of Computer Security\u00a018(4), 619\u2013665 (2010)","journal-title":"Journal of Computer Security"},{"key":"11_CR3","doi-asserted-by":"crossref","unstructured":"Bell, D.E.: Looking Back at the Bell-La Padula Model. In: Proceedings of ACSAC 2005, pp. 337\u2013351. IEEE Computer Society (2005)","DOI":"10.1109\/CSAC.2005.37"},{"key":"11_CR4","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"190","DOI":"10.1007\/978-3-540-88625-9_13","volume-title":"Information and Communications Security","author":"M. Ben-Ghorbel-Talbi","year":"2008","unstructured":"Ben-Ghorbel-Talbi, M., Cuppens, F., Cuppens-Boulahia, N., Bouhoula, A.: Revocation Schemes for Delegation Licences. In: Chen, L., Ryan, M.D., Wang, G. (eds.) ICICS 2008. LNCS, vol.\u00a05308, pp. 190\u2013205. Springer, Heidelberg (2008)"},{"issue":"3","key":"11_CR5","doi-asserted-by":"publisher","first-page":"209","DOI":"10.1007\/s10207-010-0104-3","volume":"9","author":"M. Ben-Ghorbel-Talbi","year":"2010","unstructured":"Ben-Ghorbel-Talbi, M., Cuppens, F., Cuppens-Boulahia, N., Bouhoula, A.: A delegation model for extended RBAC. Int. J. Inf. Sec.\u00a09(3), 209\u2013236 (2010)","journal-title":"Int. J. Inf. Sec."},{"issue":"1","key":"11_CR6","doi-asserted-by":"publisher","first-page":"85","DOI":"10.1109\/69.567051","volume":"9","author":"E. Bertino","year":"1997","unstructured":"Bertino, E., Samarati, P., Jajodia, S.: An Extended Authorization Model for Relational Databases. IEEE Trans. Knowl. Data Eng.\u00a09(1), 85\u2013101 (1997)","journal-title":"IEEE Trans. Knowl. Data Eng."},{"issue":"2","key":"11_CR7","doi-asserted-by":"publisher","first-page":"133","DOI":"10.1007\/s10207-007-0017-y","volume":"6","author":"J.G. Cederquist","year":"2007","unstructured":"Cederquist, J.G., Corin, R., Dekker, M.A.C., Etalle, S., den Hartog, J.I., Lenzini, G.: Audit-based compliance control. Int. J. Inf. Sec.\u00a06(2), 133\u2013151 (2007)","journal-title":"Int. J. Inf. Sec."},{"issue":"2","key":"11_CR8","doi-asserted-by":"publisher","first-page":"123","DOI":"10.1007\/s10207-007-0044-8","volume":"7","author":"J. Crampton","year":"2008","unstructured":"Crampton, J., Khambhammettu, H.: Delegation in role-based access control. Int. J. Inf. Sec.\u00a07(2), 123\u2013136 (2008)","journal-title":"Int. J. Inf. Sec."},{"issue":"1","key":"11_CR9","doi-asserted-by":"publisher","first-page":"137","DOI":"10.1093\/comjnl\/44.2.137","volume":"44","author":"J. Crampton","year":"2001","unstructured":"Crampton, J., Loizou, G., Oshea, G.: A logic of access control. The Computer Journal\u00a044(1), 137\u2013149 (2001)","journal-title":"The Computer Journal"},{"key":"11_CR10","doi-asserted-by":"crossref","unstructured":"Dekker, M., Crampton, J., Etalle, S.: RBAC administration in distributed systems. In: Proceedings of SACMAT 2008, pp. 93\u2013102. ACM (2008)","DOI":"10.1145\/1377836.1377852"},{"issue":"6","key":"11_CR11","doi-asserted-by":"publisher","first-page":"1389","DOI":"10.1109\/TKDE.2003.1245280","volume":"15","author":"G. Greco","year":"2003","unstructured":"Greco, G., Greco, S., Zumpano, E.: A logical framework for querying and repairing inconsistent databases. IEEE Trans. Knowl. Data Eng.\u00a015(6), 1389\u20131408 (2003)","journal-title":"IEEE Trans. Knowl. Data Eng."},{"issue":"3","key":"11_CR12","doi-asserted-by":"publisher","first-page":"242","DOI":"10.1145\/320473.320482","volume":"1","author":"P.P. Griffiths","year":"1976","unstructured":"Griffiths, P.P., Wade, B.W.: An authorization mechanism for a relational database system. ACM Trans. Database Syst.\u00a01(3), 242\u2013255 (1976)","journal-title":"ACM Trans. Database Syst."},{"issue":"8","key":"11_CR13","doi-asserted-by":"publisher","first-page":"461","DOI":"10.1145\/360303.360333","volume":"19","author":"M.A. Harrison","year":"1976","unstructured":"Harrison, M.A., Ruzzo, W.L., Ullman, J.D.: Protection in operating systems. Communications of the ACM\u00a019(8), 461\u2013471 (1976)","journal-title":"Communications of the ACM"},{"key":"11_CR14","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"255","DOI":"10.1007\/978-3-540-74917-2_20","volume-title":"Self-Organizing Systems","author":"S. Heeps","year":"2007","unstructured":"Heeps, S., Sventek, J., Dulay, N., Schaeffer Filho, A.E., Lupu, E., Sloman, M., Strowes, S.: Dynamic Ontology Mapping for Interacting Autonomous Systems. In: Hutchison, D., Katz, R.H. (eds.) IWSOS 2007. LNCS, vol.\u00a04725, pp. 255\u2013263. Springer, Heidelberg (2007)"},{"key":"11_CR15","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"198","DOI":"10.1007\/978-3-642-29420-4_13","volume-title":"Formal Aspects of Security and Trust","author":"T.L. Hinrichs","year":"2012","unstructured":"Hinrichs, T.L., Garrison III, W.C., Lee, A.J., Saunders, S., Mitchell, J.C.: TBA: A Hybrid of Logic and Extensional Access Control Systems. In: Barthe, G., Datta, A., Etalle, S. (eds.) FAST 2011. LNCS, vol.\u00a07140, pp. 198\u2013213. Springer, Heidelberg (2012)"},{"key":"11_CR16","doi-asserted-by":"crossref","unstructured":"Koshutanski, H., Martinelli, F., Mori, P., Vaccarelli, A.: Fine-grained and History-based Access Control with Trust Management for Autonomic Grid Services. In: Proceedings of ICAS 2006, pp. 34\u201343. IEEE Computer Society (2006)","DOI":"10.1109\/ICAS.2006.25"},{"key":"11_CR17","doi-asserted-by":"crossref","unstructured":"Li, N., Mao, Z.: Administration in role-based access control. In: Proceedings of ASIACCS 2007, pp. 127\u2013138. ACM (2007)","DOI":"10.1145\/1229285.1229305"},{"key":"11_CR18","unstructured":"Li, N., Mitchell, J.C., Winsborough, W.H.: Design of a Role-Based Trust-Management Framework. In: Proceedings of S&P 2002, pp. 114\u2013130. IEEE Computer Society (2002)"},{"issue":"1","key":"11_CR19","doi-asserted-by":"crossref","first-page":"35","DOI":"10.3233\/JCS-2003-11102","volume":"11","author":"N. Li","year":"2003","unstructured":"Li, N., Winsborough, W.H., Mitchell, J.C.: Distributed credential chain discovery in trust management. Journal of Computer Security\u00a011(1), 35\u201386 (2003)","journal-title":"Journal of Computer Security"},{"key":"11_CR20","doi-asserted-by":"crossref","unstructured":"Najafian Razavi, M., Iverson, L.: Supporting selective information sharing with people-tagging. In: Proceedings of CHI 2008, pp. 3423\u20133428. ACM (2008)","DOI":"10.1145\/1358628.1358868"},{"issue":"2","key":"11_CR21","doi-asserted-by":"publisher","first-page":"85","DOI":"10.1145\/354876.354878","volume":"3","author":"S. Osborn","year":"2000","unstructured":"Osborn, S., Sandhu, R., Munawer, Q.: Configuring role-based access control to enforce mandatory and discretionary access control policies. ACM Trans. Inf. Syst. Secur.\u00a03(2), 85\u2013106 (2000)","journal-title":"ACM Trans. Inf. Syst. Secur."},{"key":"11_CR22","unstructured":"Ribeiro, C., Zuquete, A., Ferreira, P., Guedes, P.: SPL: An access control language for security policies with complex constraints. In: Proceedings of NDSS 2011 (2001)"},{"issue":"1","key":"11_CR23","doi-asserted-by":"publisher","first-page":"105","DOI":"10.1145\/300830.300839","volume":"2","author":"R. Sandhu","year":"1999","unstructured":"Sandhu, R., Bhamidipati, V., Munawer, Q.: The ARBAC97 model for role-based administration of roles. ACM Trans. Inf. Syst. Secur.\u00a02(1), 105\u2013135 (1999)","journal-title":"ACM Trans. Inf. Syst. Secur."},{"key":"11_CR24","doi-asserted-by":"crossref","unstructured":"Trivellato, D., Spiessens, F., Zannone, N., Etalle, S.: Reputation-Based Ontology Alignment for Autonomy and Interoperability in Distributed Access Control. In: Proceedings of CSE 2009, vol.\u00a03, pp. 252\u2013258. IEEE Computer Society (2009)","DOI":"10.1109\/CSE.2009.123"},{"key":"11_CR25","doi-asserted-by":"crossref","unstructured":"Trivellato, D., Zannone, N., Etalle, S.: GEM: a Distributed Goal Evaluation Algorithm for Trust Management. Journal of Theory and Practice of Logic Programming (2012) (to appear)","DOI":"10.1017\/S1471068412000397"},{"key":"11_CR26","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"268","DOI":"10.1007\/978-3-642-04444-1_17","volume-title":"Computer Security \u2013 ESORICS 2009","author":"Q. Wang","year":"2009","unstructured":"Wang, Q., Jin, H., Li, N.: Usable Access Control in Collaborative Environments: Authorization Based on People-Tagging. In: Backes, M., Ning, P. (eds.) ESORICS 2009. LNCS, vol.\u00a05789, pp. 268\u2013284. Springer, Heidelberg (2009)"},{"key":"11_CR27","doi-asserted-by":"crossref","unstructured":"Wijesekera, D., Jajodia, S.: Policy algebras for access control - the predicate case. In: Proceedings of CCS 2001, pp. 171\u2013180. ACM (2001)","DOI":"10.1145\/501989.501990"},{"issue":"1","key":"11_CR28","doi-asserted-by":"crossref","first-page":"1","DOI":"10.3233\/JCS-2008-16101","volume":"16","author":"N. Zhang","year":"2008","unstructured":"Zhang, N., Ryan, M., Guelev, D.P.: Synthesising verified access control systems through model checking. Journal of Computer Security\u00a016(1), 1\u201361 (2008)","journal-title":"Journal of Computer Security"}],"container-title":["Lecture Notes in Computer Science","Foundations and Practice of Security"],"original-title":[],"link":[{"URL":"http:\/\/link.springer.com\/content\/pdf\/10.1007\/978-3-642-37119-6_11","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,4,30]],"date-time":"2025-04-30T02:13:06Z","timestamp":1745979186000},"score":1,"resource":{"primary":{"URL":"http:\/\/link.springer.com\/10.1007\/978-3-642-37119-6_11"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2013]]},"ISBN":["9783642371189","9783642371196"],"references-count":28,"URL":"https:\/\/doi.org\/10.1007\/978-3-642-37119-6_11","relation":{},"ISSN":["0302-9743","1611-3349"],"issn-type":[{"type":"print","value":"0302-9743"},{"type":"electronic","value":"1611-3349"}],"subject":[],"published":{"date-parts":[[2013]]}}}