{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,5,1]],"date-time":"2026-05-01T10:40:16Z","timestamp":1777632016993,"version":"3.51.4"},"reference-count":39,"publisher":"Springer Science and Business Media LLC","issue":"6","license":[{"start":{"date-parts":[[2022,11,8]],"date-time":"2022-11-08T00:00:00Z","timestamp":1667865600000},"content-version":"tdm","delay-in-days":0,"URL":"https:\/\/www.springernature.com\/gp\/researchers\/text-and-data-mining"},{"start":{"date-parts":[[2022,11,8]],"date-time":"2022-11-08T00:00:00Z","timestamp":1667865600000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.springernature.com\/gp\/researchers\/text-and-data-mining"}],"content-domain":{"domain":["link.springer.com"],"crossmark-restriction":false},"short-container-title":["Cluster Comput"],"published-print":{"date-parts":[[2023,12]]},"DOI":"10.1007\/s10586-022-03778-x","type":"journal-article","created":{"date-parts":[[2022,11,8]],"date-time":"2022-11-08T09:03:21Z","timestamp":1667898201000},"page":"3957-3972","update-policy":"https:\/\/doi.org\/10.1007\/springer_crossmark_policy","source":"Crossref","is-referenced-by-count":1,"title":["XACSim: a new tool for measuring similarity of XACML security policies"],"prefix":"10.1007","volume":"26","author":[{"given":"Zahra","family":"Katebi","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0002-0703-5949","authenticated-orcid":false,"given":"Mohammad","family":"Nassiri","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Mohsen","family":"Rezvani","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"297","published-online":{"date-parts":[[2022,11,8]]},"reference":[{"key":"3778_CR1","unstructured":"Parducci, B., Lockhart, H., Rissanen, E.: Extensible access control markup language (XACML) version 3.0, pp. 1\u2013154. OASIS Standard (2013)"},{"key":"3778_CR2","unstructured":"Edirisinghe, M.M.: An efficient and scalable access reviw evaluation model for XACML: a subject-object graph based approach. Master\u2019s thesis, University of Moratuwa, Sri Lanka (2017)"},{"key":"3778_CR3","doi-asserted-by":"crossref","unstructured":"Griffin, L., Butler, B., de Leastar, E., Jennings, B., Botvich, D.: On the performance of access control policy evaluation. In: 2012 IEEE International Symposium on Policies for Distributed Systems and Networks, pp. 25\u201332. IEEE (2012)","DOI":"10.1109\/POLICY.2012.15"},{"key":"3778_CR4","doi-asserted-by":"publisher","first-page":"3454","DOI":"10.1109\/ACCESS.2016.2585185","volume":"4","author":"Li Duan","year":"2016","unstructured":"Duan, L., Zhang, Y., Chen, S., Zhao, S., Wang, S., Liu, D., Cheng, B., Chen, J., Liu, R.P.: Automated policy combination for secure data sharing in cross organizational collaborations. IEEE Access 4, 3454\u20133468 (2016)","journal-title":"IEEE Access"},{"key":"3778_CR5","doi-asserted-by":"crossref","unstructured":"Vaidya, J., Shafiq, B., Atluri, V., Lorenzi, D.: A framework for policy similarity evaluation and migration based on change detection. In: International Conference on Network and System Security, pp. 191\u2013205. Springer, Cham (2015)","DOI":"10.1007\/978-3-319-25645-0_13"},{"key":"3778_CR6","doi-asserted-by":"crossref","unstructured":"Li, Y., Cuppens-Boulahia, N., Crom, J.-M., Cuppens, F., Frey, V., Ji, X.: Similarity measure for security policies in service provider selection. In: International Conference on Information Systems Security, pp. 227\u2013242. Springer, Cham (2015)","DOI":"10.1007\/978-3-319-26961-0_14"},{"key":"3778_CR7","unstructured":"Erradi, M.: ABAC rule reduction via similarity computation. In: Networked Systems: 5th International Conference, NETYS 2017, Marrakech, Morocco, 17\u201319 May 2017, Proceedings, vol. 10299, p.\u00a086. Springer, Cham (2017)"},{"key":"3778_CR8","unstructured":"Yu, L., Liu, H.: Feature selection for high-dimensional data: a fast correlation-based filter solution. In Proceedings of the 20th International Conference on Machine Learning (ICML-03), pp. 856\u2013863 (2003)"},{"issue":"6","key":"3778_CR9","doi-asserted-by":"publisher","first-page":"341","DOI":"10.1109\/TDSC.2013.18","volume":"10","author":"Hu Hongxin","year":"2013","unstructured":"Hongxin, H., Ahn, G.-J., Kulkarni, K.: Discovery and resolution of anomalies in web access control policies. IEEE Trans. Depend. Secure Comput. 10(6), 341\u2013354 (2013)","journal-title":"IEEE transactions on dependable and secure computing"},{"key":"3778_CR10","doi-asserted-by":"crossref","unstructured":"Liu, T., Wang, Y.: Beyond scale: an efficient framework for evaluating web access control policies in the era of big data. In: International Workshop on Security, pp. 316\u2013334. Springer, Heidelberg (2015)","DOI":"10.1007\/978-3-319-22425-1_19"},{"key":"3778_CR11","doi-asserted-by":"publisher","first-page":"355","DOI":"10.1016\/j.infsof.2014.07.003","volume":"58","author":"Antonia Bertolino","year":"2015","unstructured":"Bertolino, A., Daoudagh, S., El Kateb, D., Henard, C., Le Traon, Y., Lonetti, F., Marchetti, E., Mouelhi, T., Papadakis, M.: Similarity testing for access control. Inf. Softw. Technol. 58, 355\u2013372 (2015)","journal-title":"Information and Software Technology"},{"issue":"4","key":"3778_CR12","doi-asserted-by":"publisher","first-page":"505","DOI":"10.1016\/j.jksuci.2015.08.005","volume":"29","author":"Shalini Bhartiya","year":"2017","unstructured":"Bhartiya, S., Mehrotra, D., Girdhar, A.: Proposing hierarchy-similarity based access control framework: a multilevel electronic health record data sharing approach for interoperable environment. J. King Saud Univ. Comput. Inf. Sci. 29(4), 505\u2013519 (2017)","journal-title":"Journal of King Saud University-Computer and Information Sciences"},{"key":"3778_CR13","doi-asserted-by":"crossref","unstructured":"Xu, D., Shrestha, R., Shen, N.: Automated strong mutation testing of XACML policies. In: Proceedings of the 25th ACM Symposium on Access Control Models and Technologies, pp. 105\u2013116 (2020)","DOI":"10.1145\/3381991.3395599"},{"key":"3778_CR14","doi-asserted-by":"crossref","unstructured":"Chen, E., Dubrovenski, V., Xu, D.: Mutation analysis of NGAC policies. In: Proceedings of the 26th ACM Symposium on Access Control Models and Technologies, pp. 71\u201382 (2021)","DOI":"10.1145\/3450569.3463563"},{"issue":"9","key":"3778_CR15","doi-asserted-by":"publisher","first-page":"1946","DOI":"10.1109\/TKDE.2012.174","volume":"25","author":"Dan Lin","year":"2012","unstructured":"Lin, D., Rao, P., Ferrini, R., Bertino, E., Lobo, J.: A similarity measure for comparing XACML policies. IEEE Trans. Knowl. Data Eng. 25(9), 1946\u20131959 (2012)","journal-title":"IEEE Transactions on Knowledge and Data Engineering"},{"issue":"4","key":"3778_CR16","doi-asserted-by":"publisher","first-page":"253","DOI":"10.1007\/s10207-010-0106-1","volume":"9","author":"Dan Lin","year":"2010","unstructured":"Lin, D., Rao, P., Bertino, E., Li, N., Lobo, J.: EXAM: a comprehensive environment for the analysis of access control policies. Int. J. Inf. Security 9(4), 253\u2013273 (2010)","journal-title":"International Journal of Information Security"},{"issue":"1","key":"3778_CR17","doi-asserted-by":"publisher","first-page":"4","DOI":"10.1145\/1330295.1330299","volume":"11","author":"Pietro Mazzoleni","year":"2008","unstructured":"Mazzoleni, P., Crispo, B., Sivasubramanian, S., Bertino, E.: XACML policy integration algorithms. ACM Trans. Inf. Syst. Security (TISSEC) 11(1), 4 (2008)","journal-title":"ACM Transactions on Information and System Security (TISSEC)"},{"key":"3778_CR18","doi-asserted-by":"crossref","unstructured":"Ienco, D., Pensa, R.G., Meo, R.: Context-based distance learning for categorical data clustering. In: International Symposium on Intelligent Data Analysis, pp. 83\u201394. Springer, Cham (2009)","DOI":"10.1007\/978-3-642-03915-7_8"},{"issue":"4","key":"3778_CR19","doi-asserted-by":"publisher","first-page":"300","DOI":"10.1109\/TSC.2010.28","volume":"4","author":"Said Marouf","year":"2010","unstructured":"Marouf, S., Shehab, M., Squicciarini, A., Sundareswaran, S.: Adaptive reordering and clustering-based framework for efficient XACML policy evaluation. IEEE Trans. Serv. Comput. 4(4), 300\u2013313 (2010)","journal-title":"IEEE Transactions on Services Computing"},{"key":"3778_CR20","doi-asserted-by":"crossref","unstructured":"Pei, X., Yu, H., Fan, G.: Achieving efficient access control via XACML policy in cloud computing. In: SEKE, pp. 110\u2013115 (2015)","DOI":"10.18293\/SEKE2015-037"},{"key":"3778_CR21","doi-asserted-by":"crossref","unstructured":"Liu, A.X., Chen, F., Hwang, J., Xie, T.: Xengine: a fast and scalable XACML policy evaluation engine. In: ACM SIGMETRICS Performance Evaluation Review, vol.\u00a036, pp. 265\u2013276. ACM, New York (2008)","DOI":"10.1145\/1384529.1375488"},{"key":"3778_CR22","doi-asserted-by":"crossref","unstructured":"Ngo, C., Makkes, M.X., Demchenko, Y., de Laat, C.: Multi-data-types interval decision diagrams for XACML evaluation engine. In: 2013 Eleventh Annual Conference on Privacy, Security and Trust, pp. 257\u2013266. IEEE (2013)","DOI":"10.1109\/PST.2013.6596061"},{"issue":"9","key":"3778_CR23","doi-asserted-by":"publisher","first-page":"2575","DOI":"10.1109\/TKDE.2015.2415473","volume":"27","author":"Nariman Ammar","year":"2015","unstructured":"Ammar, N., Malik, Z., Bertino, E., Rezgui, A.: XACML policy evaluation with dynamic context handling. IEEE Trans. Knowl. Data Eng. 27(9), 2575\u20132588 (2015)","journal-title":"IEEE Transactions on Knowledge and Data Engineering"},{"key":"3778_CR24","doi-asserted-by":"crossref","unstructured":"Rezaeibagha, F., Mu, Y.: Access control policy combination from similarity analysis for secure privacy-preserved EHR systems. In: 2017 IEEE Trustcom\/BigDataSE\/ICESS, pp. 386\u2013393. IEEE (2017)","DOI":"10.1109\/Trustcom\/BigDataSE\/ICESS.2017.262"},{"issue":"4","key":"3778_CR25","doi-asserted-by":"publisher","first-page":"465","DOI":"10.1007\/s10207-018-0421-5","volume":"18","author":"Mohsen Rezvani","year":"2019","unstructured":"Rezvani, M., Rajaratnam, D., Ignjatovic, A., Pagnucco, M., Jha, S.: Analyzing XACML policies using answer set programming. Int. J. Inf. Security 18(4), 465\u2013479 (2019)","journal-title":"International Journal of Information Security"},{"issue":"4","key":"3778_CR26","doi-asserted-by":"publisher","first-page":"1555","DOI":"10.1007\/s11280-018-0588-8","volume":"22","author":"Fan Deng","year":"2019","unstructured":"Deng, F., Jie, L., Wang, S.-Y., Pan, J., Zhang, L.-Y.: A distributed pdp model based on spectral clustering for improving evaluation performance. World Wide Web 22(4), 1555\u20131576 (2019)","journal-title":"World Wide Web"},{"key":"3778_CR27","doi-asserted-by":"crossref","unstructured":"El\u00a0Hadj, M.A., Ayache, M., Benkaouz, Y., Khoumsi, A., Erradi, M.: Clustering-based approach for anomaly detection in xacml policies. In: SECRYPT, pp. 548\u2013553 (2017)","DOI":"10.5220\/0006471205480553"},{"key":"3778_CR28","doi-asserted-by":"publisher","first-page":"45","DOI":"10.1016\/j.jnca.2016.12.001","volume":"80","author":"Fan Deng","year":"2017","unstructured":"Deng, F., Zhang, L.-Y.: Elimination of policy conflict to improve the pdp evaluation performance. J. Netw. Comput. Appl. 80, 45\u201357 (2017)","journal-title":"Journal of Network and Computer Applications"},{"key":"3778_CR29","doi-asserted-by":"crossref","unstructured":"Batra, G., Atluri, V., Vaidya, J., Sural, S.: Policy reconciliation and migration in attribute based access control. In: International Conference on Information Systems Security, pp. 99\u2013120. Springer, Cham (2019)","DOI":"10.1007\/978-3-030-36945-3_6"},{"key":"3778_CR30","doi-asserted-by":"crossref","unstructured":"Lin, L., Hu, J., Mao, X., Zhang, J.: Saphena: an approach for analyzing similarity of heterogeneous policies in cloud environment. In: 2016 IEEE 3rd International Conference on Cyber Security and Cloud Computing (CSCloud), pp. 36\u201341. IEEE (2016)","DOI":"10.1109\/CSCloud.2016.13"},{"key":"3778_CR31","doi-asserted-by":"crossref","unstructured":"Helil, N., Rahman, K.: Attribute based access control constraint based on subject similarity. In: 2014 IEEE Workshop on Advanced Research and Technology in Industry Applications (WARTIA), pp. 226\u2013229. IEEE (2014)","DOI":"10.1109\/WARTIA.2014.6976238"},{"key":"3778_CR32","doi-asserted-by":"crossref","unstructured":"Vijayalakshmi, K., Jayalakshmi, V.: A similarity value measure of abac security rules. In: 2021 5th International Conference on Trends in Electronics and Informatics (ICOEI), pp 565\u2013571. IEEE, (2021)","DOI":"10.1109\/ICOEI51242.2021.9452979"},{"key":"3778_CR33","doi-asserted-by":"crossref","unstructured":"Vijayalakshmi, K., Jayalakshmi, V.: Resolving rule redundancy error in abac policies using individual domain and subset detection method. In: 2021 6th International Conference on Communication and Electronics Systems (ICCES), pp. 89\u201396. IEEE (2021)","DOI":"10.1109\/ICCES51350.2021.9489154"},{"key":"3778_CR34","doi-asserted-by":"crossref","unstructured":"El\u00a0Hadj, M.A., Khoumsi, A., Benkaouz, Y., Erradi, M.: Formal approach to detect and resolve anomalies while clustering abac policies. EAI Endorsed Trans. Security Saf. 5(16), e3 (2018)","DOI":"10.4108\/eai.13-7-2018.156003"},{"key":"3778_CR35","doi-asserted-by":"crossref","unstructured":"Sch\u00fctze, H., Manning, C.D., Raghavan, P.: Introduction to Information Retrieval, vol.\u00a039. Cambridge University Press, Cambridge (2008)","DOI":"10.1017\/CBO9780511809071"},{"key":"3778_CR36","unstructured":"Han, J., Pei, J., Kamber, M.: Data Mining: Concepts and Techniques. Elsevier, Amsterdam (2011)"},{"key":"3778_CR37","unstructured":"Deepak, P., Deshpande, P.M.: Operators for Similarity Search: Semantics, Techniques and Usage Scenarios. Springer, Cham (2015)"},{"issue":"21","key":"3778_CR38","doi-asserted-by":"publisher","first-page":"16081","DOI":"10.1007\/s00500-020-04925-5","volume":"24","author":"Shayan Ahmadi","year":"2020","unstructured":"Ahmadi, S., Nassiri, M., Rezvani, M.: XACBench: a XACML policy benchmark. Soft Comput. 24(21), 16081\u201316096 (2020)","journal-title":"Soft Computing"},{"key":"3778_CR39","doi-asserted-by":"publisher","first-page":"1","DOI":"10.1016\/j.cose.2014.11.003","volume":"49","author":"Canh Ngo","year":"2015","unstructured":"Ngo, C., Demchenko, Y., de Laat, C.: Decision diagrams for XACML policy evaluation and management. Comput. Security 49, 1\u201316 (2015)","journal-title":"Computers & Security"}],"container-title":["Cluster Computing"],"original-title":[],"language":"en","link":[{"URL":"https:\/\/link.springer.com\/content\/pdf\/10.1007\/s10586-022-03778-x.pdf","content-type":"application\/pdf","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/link.springer.com\/article\/10.1007\/s10586-022-03778-x\/fulltext.html","content-type":"text\/html","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/link.springer.com\/content\/pdf\/10.1007\/s10586-022-03778-x.pdf","content-type":"application\/pdf","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2024,10,7]],"date-time":"2024-10-07T17:38:31Z","timestamp":1728322711000},"score":1,"resource":{"primary":{"URL":"https:\/\/link.springer.com\/10.1007\/s10586-022-03778-x"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2022,11,8]]},"references-count":39,"journal-issue":{"issue":"6","published-print":{"date-parts":[[2023,12]]}},"alternative-id":["3778"],"URL":"https:\/\/doi.org\/10.1007\/s10586-022-03778-x","relation":{},"ISSN":["1386-7857","1573-7543"],"issn-type":[{"value":"1386-7857","type":"print"},{"value":"1573-7543","type":"electronic"}],"subject":[],"published":{"date-parts":[[2022,11,8]]},"assertion":[{"value":"14 January 2022","order":1,"name":"received","label":"Received","group":{"name":"ArticleHistory","label":"Article History"}},{"value":"18 September 2022","order":2,"name":"revised","label":"Revised","group":{"name":"ArticleHistory","label":"Article History"}},{"value":"3 October 2022","order":3,"name":"accepted","label":"Accepted","group":{"name":"ArticleHistory","label":"Article History"}},{"value":"8 November 2022","order":4,"name":"first_online","label":"First Online","group":{"name":"ArticleHistory","label":"Article History"}},{"order":1,"name":"Ethics","group":{"name":"EthicsHeading","label":"Declarations"}},{"value":"Author A, <i>Zahra Katebi<\/i>, declares that she has no conflict of interest. Author B, <i>Mohammad Nassiri<\/i>, declares that he has no conflict of interest. Author C, <i>Mohsen Rezvani<\/i>, declares that he has no conflict of interest.","order":2,"name":"Ethics","group":{"name":"EthicsHeading","label":"Conflict of interest"}},{"value":"This article does not contain any studies with human participants or animals performed by any of the authors.","order":3,"name":"Ethics","group":{"name":"EthicsHeading","label":"Ethical approval"}}]}}