{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,10,18]],"date-time":"2025-10-18T14:58:42Z","timestamp":1760799522635},"reference-count":28,"publisher":"Springer Science and Business Media LLC","issue":"3","license":[{"start":{"date-parts":[[2011,5,3]],"date-time":"2011-05-03T00:00:00Z","timestamp":1304380800000},"content-version":"tdm","delay-in-days":0,"URL":"http:\/\/www.springer.com\/tdm"}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":["Inf Syst Front"],"published-print":{"date-parts":[[2012,7]]},"DOI":"10.1007\/s10796-011-9305-1","type":"journal-article","created":{"date-parts":[[2011,5,2]],"date-time":"2011-05-02T09:46:27Z","timestamp":1304329587000},"page":"809-822","source":"Crossref","is-referenced-by-count":33,"title":["A role-involved purpose-based access control model"],"prefix":"10.1007","volume":"14","author":[{"given":"Md. Enamul","family":"Kabir","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Hua","family":"Wang","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Elisa","family":"Bertino","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"297","published-online":{"date-parts":[[2011,5,3]]},"reference":[{"key":"9305_CR1","doi-asserted-by":"crossref","unstructured":"Agrawal, R., Bird, P., Grandison, T., Kiernan, J., Logan, S., & Xu, Y. (2005). Extending relational database systems to automatically enforce privacy policies. In 21st international conference on data engineering, Tokyo (pp. 1013\u20131022).","DOI":"10.1109\/ICDE.2005.64"},{"key":"9305_CR2","doi-asserted-by":"crossref","unstructured":"Agrawal, R., Kiernan, J., Srikant, R., & Xu, Y. (2002). Hippocratic databases. In 28th international conference on very large databases, Hong Kong (pp. 143\u2013154).","DOI":"10.1016\/B978-155860869-6\/50021-4"},{"key":"9305_CR3","unstructured":"Al-Fedaghi, S. S. (2007). Beyond purpose-based privacy access control. In 18th Australian database conference, Ballarat (pp. 23\u201332)."},{"issue":"4","key":"9305_CR4","doi-asserted-by":"crossref","first-page":"501","DOI":"10.1145\/950191.950194","volume":"6","author":"S Barker","year":"2003","unstructured":"Barker, S., & Stuckey, P. N. (2003). Flexible access control policy specification with constraint logic programming. ACM Transaction on Information and System Security, 6(4), 501\u2013546.","journal-title":"ACM Transaction on Information and System Security"},{"issue":"7","key":"9305_CR5","doi-asserted-by":"crossref","first-page":"537","DOI":"10.1016\/0306-4379(95)00029-4","volume":"20","author":"E Bertino","year":"1995","unstructured":"Bertino, E., Jajodia, S., & Samarati, P. (1995). Data-base security: Research and practice. Information Systems, 20(7), 537\u2013556.","journal-title":"Information Systems"},{"key":"9305_CR6","doi-asserted-by":"crossref","unstructured":"Byun, J. W., Bertino, E., & Li, N. (2005). Purpose based access control of complex data for privacy protection. In 10th ACM symposium on access control model and technologies, Stockholm (pp. 102\u2013110).","DOI":"10.1145\/1063979.1063998"},{"issue":"4","key":"9305_CR7","doi-asserted-by":"crossref","first-page":"603","DOI":"10.1007\/s00778-006-0023-0","volume":"17","author":"JW Byun","year":"2008","unstructured":"Byun, J. W., Bertino, E., & Li, N. (2008). Purpose based access control for privacy protection in relational database systems. VLDB Journal, 17(4), 603\u2013619.","journal-title":"VLDB Journal"},{"key":"9305_CR8","doi-asserted-by":"crossref","first-page":"979","DOI":"10.1016\/S0950-5849(03)00097-1","volume":"45","author":"R Crook","year":"2003","unstructured":"Crook, R., Ince, D., & Nuseibeh, B. (2003). Modelling access policies using roles in requirements engineering. Information and Software Technology, 45, 979\u2013991.","journal-title":"Information and Software Technology"},{"key":"9305_CR9","doi-asserted-by":"crossref","unstructured":"Denning, D., Lunt, T., Schell, R., Shockley, W., & Heckman, M. (1988). The seaview security model. In 1988 IEEE symposium on research in security and privacy, Oakland (pp. 218\u2013233).","DOI":"10.1109\/SECPRI.1988.8114"},{"key":"9305_CR10","unstructured":"Farzad, F., Yu, E., & Hung, P. C. K. (2007). Role-based access control requirements model with purpose extension. In 10th workshop on requirements engineering, Toronto (pp. 207\u2013216)."},{"issue":"1","key":"9305_CR11","doi-asserted-by":"crossref","first-page":"34","DOI":"10.1145\/300830.300834","volume":"2","author":"DF Ferraiolo","year":"1999","unstructured":"Ferraiolo, D. F., Barkley, J. F., & Kuhn, D. R. (1999). A role-based access control model and reference implementation within a corporate intranet. ACM Transactions on Information and System Security, 2(1), 34\u201364.","journal-title":"ACM Transactions on Information and System Security"},{"key":"9305_CR12","unstructured":"Forrester Research (2001). Privacy concerns cost e-commerce $15 billion. Technical report."},{"key":"9305_CR13","unstructured":"Hung, P. C. K. (2005). Towards a privacy access control model for e-healthcare services. In Third annual conference on privacy, security and trust, New Brunswick."},{"key":"9305_CR14","unstructured":"IBM. The Enterprise Privacy Authorization Language (EPAL). Available at http:\/\/www.zurich.ibm.com\/security\/enterprise-privacy\/epal ."},{"key":"9305_CR15","unstructured":"Kabir, M. E., & Wang, H. (2009). Conditional purpose based access control model for privacy protection. In 20th Australisian database conference, Wellington (pp. 137\u2013144)."},{"key":"9305_CR16","unstructured":"LeFevre, K., Agrawal, R., Ercegovac, V., Ramakrishnan, R., Xu, Y., & DeWitt, D. (2004). Disclosure in hippocratic databases. In 30th international conference on very large databases, Toronto (pp. 108\u2013119)."},{"key":"9305_CR17","unstructured":"Marchiori, M. (2002). The platform for privacy preferences 1.0 (P3P1.0) specification. Technical report, W3C."},{"key":"9305_CR18","doi-asserted-by":"crossref","unstructured":"Massacci, F., Mylopoulos, J., & Zannone, N. (2005). Minimal disclosure in hierarchical hippocratic databases with delegation. In 10th Europran symposium on research in computer security, Milan (pp. 438\u2013454).","DOI":"10.1007\/11555827_25"},{"key":"9305_CR19","doi-asserted-by":"crossref","unstructured":"Ni, Q., Trombetta, A., Bertino, E., & Lobo, J. (2007). Privacy-aware role based access control. In 12th ACM symposium on access control models and technologies, Sophia Antipolis (pp. 41\u201350).","DOI":"10.1145\/1266840.1266848"},{"key":"9305_CR20","unstructured":"OASIS. Core and hierarchical role based access control (rbac) profile of xacml v2.0. Available at http:\/\/www.oasis-open.org\/ ."},{"key":"9305_CR21","doi-asserted-by":"crossref","unstructured":"Peng, H., Gu, J., & Ye, X. (2008). Dynamic purpose-based access control. In IEEE international symposium on parallel and distributed processing with applications, Sydney (pp. 695\u2013700).","DOI":"10.1109\/ISPA.2008.80"},{"key":"9305_CR22","doi-asserted-by":"crossref","unstructured":"Rizvi, S., Mendelzon, A. O., Sudarshan, S., & Roy, P. (2004). Extending query rewriting techniques for fine-grained access control. In ACM SIGMOD conference 2004, Paries (pp. 551\u2013562).","DOI":"10.1145\/1007568.1007631"},{"key":"9305_CR23","doi-asserted-by":"crossref","unstructured":"Powers, C. S., Ashley, P., & Schunter, M. (2002). Privacy promises, access control, and privacy management. In 3rd international symposium on electronic commerce, North Carolina (pp. 13\u201321).","DOI":"10.1109\/ISEC.2002.1166906"},{"issue":"1","key":"9305_CR24","doi-asserted-by":"crossref","first-page":"93","DOI":"10.1145\/290163.290171","volume":"1","author":"R Sandhu","year":"1998","unstructured":"Sandhu, R., & Chen, F. (1998). The multilevel relational data model. ACM Transaction on Information and System Security, 1(1), 93\u2013132.","journal-title":"ACM Transaction on Information and System Security"},{"issue":"2","key":"9305_CR25","doi-asserted-by":"crossref","first-page":"38","DOI":"10.1109\/2.485845","volume":"29","author":"RS Sandhu","year":"1996","unstructured":"Sandhu, R. S., Coyne, E. J., Feinstein, H. L., & Youman, C. E. (1996). Role-based access control models. IEEE Computer, 29(2), 38\u201347.","journal-title":"IEEE Computer"},{"key":"9305_CR26","unstructured":"Sandhu, R., & Jajodia, S. (1991). Toward a multilevel secure relational data model. In 1991 ACM transactional conference on management of data, Colorado (pp. 50\u201359)."},{"key":"9305_CR27","unstructured":"World Wide Web Consortium (W3C). Platform for Privacy Preferences (P3P). Available at http:\/\/www.w3.org\/P3P ."},{"key":"9305_CR28","doi-asserted-by":"crossref","unstructured":"Yang, N., Barringer, H., & Zhang, N. (2007). A purpose-based access control model. In 3rd international symposium on information assurance and security, Manchester (pp. 143\u2013148).","DOI":"10.1109\/IAS.2007.29"}],"container-title":["Information Systems Frontiers"],"original-title":[],"language":"en","link":[{"URL":"http:\/\/link.springer.com\/content\/pdf\/10.1007\/s10796-011-9305-1.pdf","content-type":"application\/pdf","content-version":"vor","intended-application":"text-mining"},{"URL":"http:\/\/link.springer.com\/article\/10.1007\/s10796-011-9305-1\/fulltext.html","content-type":"text\/html","content-version":"vor","intended-application":"text-mining"},{"URL":"http:\/\/link.springer.com\/content\/pdf\/10.1007\/s10796-011-9305-1","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2020,6,18]],"date-time":"2020-06-18T19:38:51Z","timestamp":1592509131000},"score":1,"resource":{"primary":{"URL":"http:\/\/link.springer.com\/10.1007\/s10796-011-9305-1"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2011,5,3]]},"references-count":28,"journal-issue":{"issue":"3","published-print":{"date-parts":[[2012,7]]}},"alternative-id":["9305"],"URL":"https:\/\/doi.org\/10.1007\/s10796-011-9305-1","relation":{},"ISSN":["1387-3326","1572-9419"],"issn-type":[{"value":"1387-3326","type":"print"},{"value":"1572-9419","type":"electronic"}],"subject":[],"published":{"date-parts":[[2011,5,3]]}}}