{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,3,25]],"date-time":"2025-03-25T14:23:19Z","timestamp":1742912599084,"version":"3.40.3"},"publisher-location":"Wiesbaden","reference-count":24,"publisher":"Springer Fachmedien Wiesbaden","isbn-type":[{"type":"print","value":"9783658003326"},{"type":"electronic","value":"9783658003333"}],"license":[{"start":{"date-parts":[[2012,1,1]],"date-time":"2012-01-01T00:00:00Z","timestamp":1325376000000},"content-version":"tdm","delay-in-days":0,"URL":"https:\/\/www.springernature.com\/gp\/researchers\/text-and-data-mining"},{"start":{"date-parts":[[2012,1,1]],"date-time":"2012-01-01T00:00:00Z","timestamp":1325376000000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.springernature.com\/gp\/researchers\/text-and-data-mining"}],"content-domain":{"domain":["link.springer.com"],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2012]]},"DOI":"10.1007\/978-3-658-00333-3_10","type":"book-chapter","created":{"date-parts":[[2012,12,10]],"date-time":"2012-12-10T06:34:49Z","timestamp":1355121289000},"page":"89-102","update-policy":"https:\/\/doi.org\/10.1007\/springer_crossmark_policy","source":"Crossref","is-referenced-by-count":0,"title":["Implementing Least Privilege for Interconnected, Agile SOAs\/Clouds"],"prefix":"10.1007","author":[{"given":"Ulrich","family":"Lang","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Rudolf","family":"Schreiner","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"297","published-online":{"date-parts":[[2012,12,11]]},"reference":[{"unstructured":"US Cert. Build Security In Website. 2012. https:\/\/buildsecurityin.us-cert.gov\/bsi\/articles\/knowledge\/principles\/351-BSI.html","key":"10_CR1"},{"unstructured":"D.F. Ferraiolo and D.R. Kuhn (October 1992). \u201cRole-Based Access Control\u201d. 15th National Computer Security Conference. pp. 554\u2013563. http:\/\/csrc.nist.gov\/rbac\/ferraiolo-kuhn-92.pdf","key":"10_CR2"},{"unstructured":"Guardian (UK), \u201cUS embassy cables leak sparks global diplomatic crisis\u201d, 28 November 2010, http:\/\/www.guardian.co.uk\/world\/2010\/nov\/28\/us-embassy-cable-leak-diplomacy-crisis","key":"10_CR3"},{"unstructured":"Karp, A. H., H. Haury, and M. H. Davis. \u201cFrom ABAC to ZBAC: The Evolution of Access Control Models\u201d, Journal of Information Warfare, vol. 9, #2, pp. 37-45, September 2010. http:\/\/www.hpl.hp.com\/techreports\/2009\/HPL-2009-30.pdf","key":"10_CR4"},{"unstructured":"Lang, U. and Mullen, J. \u201cSOA & Cloud Application Information Assurance By Enforcing Enterprise Policies\u201d. April 2012 (publication pending)","key":"10_CR5"},{"unstructured":"Lang, U., \u201cSecurity Policy Automation: Improve Cloud Application Security ROI\u201d ISSA Journal, October 2010, https:\/\/www.issa.org\/images\/upload\/files\/Lang-Security%20Policy%20Automation.pdf","key":"10_CR6"},{"doi-asserted-by":"crossref","unstructured":"Lang, U. \u201cCloud & SOA Application Security as a Service\u201d Proceedings of ISSE 2010, Berlin, Germany, 5-7 October 2010","key":"10_CR7","DOI":"10.1007\/978-3-8348-9788-6_6"},{"doi-asserted-by":"crossref","unstructured":"Lang, U. \u201cAuthorization as a Service for Cloud & SOA Applications\u201d, Proceedings of the International Workshop on Cloud Privacy, Security, Risk & Trust (CPSRT 2010), Collocated with 2nd IEEE International Conference on Cloud Computing Technology and Science (Cloudcom) CPSRT 2010, Indianapolis, In-diana, USA, December 2010","key":"10_CR8","DOI":"10.1109\/CloudCom.2010.13"},{"doi-asserted-by":"crossref","unstructured":"U. Lang, \u201cAuthorization as a Service for Cloud & SOA Applications\u201d, Proceedings of the International Workshop on Cloud Privacy, Security, Risk & Trust (CPSRT 2010), Collocated with 2nd IEEE International Conference on Cloud Computing Technology and Science (Cloudcom) CPSRT 2010, Indianapolis, Indiana, USA, December 2010","key":"10_CR9","DOI":"10.1109\/CloudCom.2010.13"},{"unstructured":"Lang, U. Blog. \u201cSecurity policy automation using model driven security\u201d, www.modeldrivensecurity.org","key":"10_CR10"},{"unstructured":"Lang, U. Blog. \u201cStudy estimates 59% accreditation cost saving using automated Correct by Construction (CxC) tools (& more for agile SOA\/Cloud), 2012, http:\/\/objectsecurity-mds.blogspot.com\/2012\/03\/study-estimates-59-accreditation-cost.html","key":"10_CR11"},{"unstructured":"Lang, U and R. Schreiner. \u201cModel Driven Security (MDS) management and en-forcement to support SOA-style agility\u201d. Proceedings of the Information Security Solutions Europe (ISSE) conference, Warsaw, Poland, 26 September 2007","key":"10_CR12"},{"doi-asserted-by":"crossref","unstructured":"Lang, U. and R. Schreiner. \u201cModel Driven Security Accreditation (MDSA) for Agile, Interconnected IT Landscapes\u201d, Proceedings of WISG 2009 Conference, November 2009","key":"10_CR13","DOI":"10.1145\/1655168.1655173"},{"issue":"3\u20134","key":"10_CR14","doi-asserted-by":"publisher","first-page":"131","DOI":"10.1016\/j.istr.2011.08.001","volume":"16","author":"U Lang","year":"2011","unstructured":"Lang, U. and Schreiner, R. Analysis of recommended cloud security controls to validate Open- PMF \u201cpolicy as a service\u201d. Information Security Technical Report, Volume 16, Issues 3\u20134, August\u2013 November 2011, Pages 131\u2013141","journal-title":"policy as a service\u201d. Information Security Technical Report"},{"unstructured":"Lang, U. and Schreiner R. Security Policy Automation for Smart Grids: Manageable Security & Compliance at Large Scale, ISSE Conference Proceedings 2011","key":"10_CR15"},{"unstructured":"NIST. A Survey of Access Control Models. Working Draft, 26 August 2009. http:\/\/csrc.nist.gov\/news_events\/privilege-management-workshop\/PvM-Model-Survey-Aug26-2009.pdf","key":"10_CR16"},{"unstructured":"OASIS, Extensible Access Control Markup Language (XACML), OASIS Standard, 2.0, March 2005, xml.coverpages.org\/xacml.html","key":"10_CR17"},{"unstructured":"ObjectSecurity. OpenPMF website. openpmf.com, 2000-2011","key":"10_CR18"},{"unstructured":"ObjectSecurity. \u201cObjectSecurity and Promia implement XML security features for next-generation US military security technology\u201d, Press Release. objectsecu-rity.com\/doc\/20100430-objectsecurity- promia-navy-soa3.pdf, April 2010","key":"10_CR19"},{"unstructured":"ObjectSecurity\/Promia. \u201cSOA IA Demonstrator: Information Assurance (IA) for Serviec Oriented Architecture (SOA)\u201d, demo video tutorial, 2011, http:\/\/www.youtube.com\/watch?v=\n                AH\n                -0B4Zr_KlI","key":"10_CR20"},{"doi-asserted-by":"crossref","unstructured":"[RiSL06] Ritter, T, R. Schreiner, U. Lang. \u201cIntegrating Security Policies via Container Portable Interceptors\u201d,IEEE distributed systems online, (vol. 7, no. 7), art. no. 0607-o7001, 1541-4922, July 2006","key":"10_CR21","DOI":"10.1109\/MDSO.2006.44"},{"doi-asserted-by":"crossref","unstructured":"Saltzer, Jerome H. (1974). \u201cProtection and the control of information sharing in multics\u201d. Communications of the ACM 17 (7): 389. doi:10.1145\/361011.361067. ISSN 00010782. (computer scientists Peter Denning and Roger Needham also contributed to the definition of least privilege).","key":"10_CR22","DOI":"10.1145\/361011.361067"},{"unstructured":"Langford, J. SANS Institute InfoSec Reading Room. Implementing Least Privilege at your Enterprise. 2003 (http:\/\/www.sans.org\/reading_room\/whitepapers\/bestprac\/implementing-privilege-enterprise_1188)","key":"10_CR23"},{"unstructured":"Wikipedia. Least Privilege. 2012. http:\/\/en.wikipedia.org\/wiki\/Principle_of_least_privilege)","key":"10_CR24"}],"container-title":["ISSE 2012 Securing Electronic Business Processes"],"original-title":[],"language":"en","link":[{"URL":"https:\/\/link.springer.com\/content\/pdf\/10.1007\/978-3-658-00333-3_10","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2023,2,17]],"date-time":"2023-02-17T12:11:57Z","timestamp":1676635917000},"score":1,"resource":{"primary":{"URL":"https:\/\/link.springer.com\/10.1007\/978-3-658-00333-3_10"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2012]]},"ISBN":["9783658003326","9783658003333"],"references-count":24,"URL":"https:\/\/doi.org\/10.1007\/978-3-658-00333-3_10","relation":{},"subject":[],"published":{"date-parts":[[2012]]},"assertion":[{"value":"11 December 2012","order":1,"name":"first_online","label":"First Online","group":{"name":"ChapterHistory","label":"Chapter History"}}]}}