{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,6,1]],"date-time":"2026-06-01T12:23:25Z","timestamp":1780316605681,"version":"3.54.1"},"reference-count":34,"publisher":"Springer Science and Business Media LLC","issue":"1","license":[{"start":{"date-parts":[[2013,6,2]],"date-time":"2013-06-02T00:00:00Z","timestamp":1370131200000},"content-version":"tdm","delay-in-days":0,"URL":"http:\/\/www.springer.com\/tdm"}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":["J Comb Optim"],"published-print":{"date-parts":[[2015,7]]},"DOI":"10.1007\/s10878-013-9633-9","type":"journal-article","created":{"date-parts":[[2013,6,1]],"date-time":"2013-06-01T07:11:36Z","timestamp":1370070696000},"page":"63-86","source":"Crossref","is-referenced-by-count":23,"title":["Handling least privilege problem and role mining in RBAC"],"prefix":"10.1007","volume":"30","author":[{"given":"Hejiao","family":"Huang","sequence":"first","affiliation":[],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"Feng","family":"Shang","sequence":"additional","affiliation":[],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"Jinling","family":"Liu","sequence":"additional","affiliation":[],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"Hongwei","family":"Du","sequence":"additional","affiliation":[],"role":[{"vocabulary":"crossref","role":"author"}]}],"member":"297","published-online":{"date-parts":[[2013,6,2]]},"reference":[{"key":"9633_CR1","doi-asserted-by":"crossref","unstructured":"Awischus R (1997) Role based access control with the security administration manager (sam). In: Proceedings of the second ACM workshop on role-based access control, ACM, New York, pp 61\u201368","DOI":"10.1145\/266741.266758"},{"key":"9633_CR2","doi-asserted-by":"crossref","unstructured":"Barka E, Sandhu R (2004) Role-based delegation model\/hierarchical roles (rbdm1). In: 20th annual computer security applications conference, IEEE Computer Society, Los Alamitos, pp 396\u2013404","DOI":"10.1109\/CSAC.2004.31"},{"key":"9633_CR3","doi-asserted-by":"crossref","unstructured":"Chen L, Crampton J (2007) Inter-domain role mapping and least privilege. In: SACMAT \u201907: Proceedings of the 12th ACM symposium on access control models and technologies, ACM Press, New York, pp 157\u2013162","DOI":"10.1145\/1266840.1266866"},{"key":"9633_CR4","unstructured":"Cimato S (2010) A simple role mining algorithm. In: Proceedings of the 2010 ACM symposium on applied computing, Sierre, Switzerland, march 22\u201326, 2010. Association for Computer, Machinery"},{"key":"9633_CR5","doi-asserted-by":"crossref","unstructured":"Colantonio A, Di Pietro R, Ocello A, Verde N (2009) Mining stable roles in rbac. Emerging challenges for security, privacy and trust, Springer, Berlin, pp 259\u2013269","DOI":"10.1007\/978-3-642-01244-0_23"},{"key":"9633_CR6","doi-asserted-by":"crossref","unstructured":"Coyne E (1996) Role engineering. In: Proceedings of the first ACM workshop on role-based access control, ACM, New York, p 4","DOI":"10.1145\/270152.270159"},{"key":"9633_CR7","unstructured":"Dana Z, Ramamohanarao K, Ebringer T (2007) Role engineering using graph optimization. In: Proceedings of the 12th ACM symposium on access control models and technologies. Sophia Antipolis, France:[sn], pp 139\u2013144"},{"key":"9633_CR8","doi-asserted-by":"crossref","DOI":"10.1007\/978-1-4614-1701-9","volume-title":"Design and analysis of approximation algorithms","author":"D Du","year":"2012","unstructured":"Du D, Ko K, Hu X (2012) Design and analysis of approximation algorithms. Springer, Berlin"},{"key":"9633_CR9","doi-asserted-by":"crossref","unstructured":"Ene A, Horne W, Milosavljevic N, Rao P, Schreiber R, Tarjan R (2008) Fast exact and heuristic methods for role minimization problems. In: Proceedings of the 13th ACM symposium on access control models and technologies, ACM, New York, pp 1\u201310","DOI":"10.1145\/1377836.1377838"},{"key":"9633_CR10","doi-asserted-by":"crossref","unstructured":"Fernandez E, Hawkins J (1997) Determining role rights from use cases. In: Proceedings of the second ACM workshop on role-based access control, ACM, New York, pp 121\u2013125","DOI":"10.1145\/266741.266767"},{"issue":"3","key":"9633_CR11","doi-asserted-by":"crossref","first-page":"224","DOI":"10.1145\/501978.501980","volume":"4","author":"D Ferraiolo","year":"2001","unstructured":"Ferraiolo D, Sandhu R, Gavrila S, Kuhn D, Chandramouli R (2001) Proposed nist standard for role-based access control. ACM Trans Inf Syst Securit (TISSEC) 4(3):224\u2013274","journal-title":"ACM Trans Inf Syst Securit (TISSEC)"},{"issue":"3","key":"9633_CR12","doi-asserted-by":"crossref","first-page":"224","DOI":"10.1145\/501978.501980","volume":"4","author":"D Ferraiolo","year":"2001","unstructured":"Ferraiolo D, Sandhu R, Gavrila S, Kuhn R (2001) Proposed nist standard for role-based access control. ACM Trans Inf Syst Secur 4(3):224\u2013274","journal-title":"ACM Trans Inf Syst Secur"},{"issue":"7","key":"9633_CR13","doi-asserted-by":"crossref","first-page":"1447","DOI":"10.1016\/j.dam.2008.10.010","volume":"157","author":"A G\u00e9ly","year":"2009","unstructured":"G\u00e9ly A, Nourine L, Sadi B (2009) Enumeration aspects of maximal cliques and bicliques. Discret Appl Math 157(7):1447\u20131459","journal-title":"Discret Appl Math"},{"issue":"6","key":"9633_CR14","doi-asserted-by":"crossref","first-page":"852","DOI":"10.1109\/TDSC.2010.43","volume":"8","author":"H Huang","year":"2011","unstructured":"Huang H, Kirchner H (2011) Formal specification and verification of modular security policy based on colored petri nets. IEEE Trans Depend Secur Comput 8(6):852\u2013865","journal-title":"IEEE Trans Depend Secur Comput"},{"key":"9633_CR15","doi-asserted-by":"crossref","unstructured":"Kuhlmann M, Shohat D, Schimpf G (2003) Role mining-revealing business roles for security administration using data mining technology. In: Proceedings of the eighth ACM symposium on access control models and technologies, ACM, New York, pp 179\u2013186","DOI":"10.1145\/775412.775435"},{"key":"9633_CR16","unstructured":"Lai C (2007) Quantitative enforcement of the principle of least privilege in rbac and an efficient fault tolerant cryptosystem. Ph.D. thesis, University of Regina"},{"key":"9633_CR17","doi-asserted-by":"crossref","unstructured":"Lu H, Vaidya J, Atluri V (2008) Optimal boolean matrix decomposition: application to role engineering. In: 24th international conference on data, engineering","DOI":"10.1109\/ICDE.2008.4497438"},{"key":"9633_CR18","doi-asserted-by":"crossref","unstructured":"Molloy I, Chen H, Li T, Wang Q, Li N, Bertino E, Calo S, Lobo J (2008) Mining roles with semantic meanings. In: Proceedings of the 13th ACM symposium on access control models and technologies, ACM, New York, pp. 21\u201330","DOI":"10.1145\/1377836.1377840"},{"key":"9633_CR19","doi-asserted-by":"crossref","unstructured":"Molloy I, Li N, Li T, Mao Z, Wang Q, Lobo J (2009) Evaluating role mining algorithms. In: Proceedings of the 14th ACM symposium on access control models and technologies, ACM , New York, pp 95\u2013104","DOI":"10.1145\/1542207.1542224"},{"key":"9633_CR20","volume-title":"Interger and combinatorial optimization","author":"G Nemhauser","year":"1999","unstructured":"Nemhauser G, Wolsy L (1999) Interger and combinatorial optimization. Wiley, New York"},{"key":"9633_CR21","unstructured":"Schreiber R (2012) http:\/\/www.hpl.hp.com\/personal\/Robert_Schreiber\/ . Accessed 3 Jan 2012"},{"key":"9633_CR22","doi-asserted-by":"crossref","unstructured":"Schlegelmilch J, Steffens U (2005) Role mining with orca. In: Proceedings of the tenth ACM symposium on access control models and technologies, ACM, New York, pp 168\u2013176","DOI":"10.1145\/1063979.1064008"},{"key":"9633_CR23","doi-asserted-by":"crossref","unstructured":"Shin D, Ahn G, Cho S, Jin S (2003) On modeling system-centric information for role engineering. In: Proceedings of the eighth ACM symposium on access control models and technologies, ACM, New York, pp 169\u2013178","DOI":"10.1145\/775412.775434"},{"issue":"6","key":"9633_CR24","doi-asserted-by":"crossref","first-page":"883","DOI":"10.1109\/TDSC.2010.55","volume":"8","author":"Y Sun","year":"2011","unstructured":"Sun Y, Wang Q, Li N (2011) On the complexity of authorizaiton in rbac under qualification and security costraints. IEEE Trans Depend Secur Comput 8(6):883\u2013897","journal-title":"IEEE Trans Depend Secur Comput"},{"key":"9633_CR25","unstructured":"Tassey G, Gallaher M, O\u2019connor A, Kropp B (2002) The economic impact of role-based access control. Economic Analysis"},{"key":"9633_CR26","doi-asserted-by":"crossref","unstructured":"Vaidya J, Atluri V, Guo Q (2007) The role mining problem: finding a minimal descriptive set of roles. In: Proceedings of the 12th ACM symposium on access control models and technologies, ACM, New York, pp 175\u2013184","DOI":"10.1145\/1266840.1266870"},{"key":"9633_CR27","doi-asserted-by":"crossref","unstructured":"Vaidya J, Atluri V, Guo Q, Adam N (2008) Migrating to optimal rbac with minimal perturbation. In: Proceedings of the 13th ACM symposium on access control models and technologies, ACM , New York, pp 11\u201320","DOI":"10.1145\/1377836.1377839"},{"issue":"2","key":"9633_CR28","doi-asserted-by":"crossref","first-page":"211","DOI":"10.3233\/JCS-2009-0341","volume":"17","author":"J Vaidya","year":"2009","unstructured":"Vaidya J, Atluri V, Guo Q, Lu H (2009) Edge-rmp: minimizing administrative assignments for role-based access control. J Comput Secur 17(2):211\u2013235","journal-title":"J Comput Secur"},{"key":"9633_CR29","doi-asserted-by":"crossref","unstructured":"Vaidya J, Atluri V, Warner J (2006) Roleminer: mining roles using subset enumeration. In: CCS 2006: In: Proceedings of the 13th ACM conference on computer and communications security, Association for Computing Machinery, New York, pp 144\u2013153","DOI":"10.1145\/1180405.1180424"},{"key":"9633_CR30","unstructured":"Vanamali S (2008) Role engineering: the cornerstone of role based access control. Tech rep, CA"},{"key":"9633_CR31","doi-asserted-by":"crossref","unstructured":"Wainer J, Kumar A (2005) A fine-grained, controllable, user-to-user delegation method in rbac. In: Proceedings of the 10th ACM symposium on access control models and technologies, ACM, New York, pp 59\u201366","DOI":"10.1145\/1063979.1063991"},{"issue":"2","key":"9633_CR32","doi-asserted-by":"crossref","first-page":"463","DOI":"10.1007\/s10589-009-9269-y","volume":"45","author":"P Wan","year":"2010","unstructured":"Wan P, Du D, Pardalos P, Wu W (2010) Greedy approximations for minimum submodular cover with submodular cost. Comput Optim Appl 45(2):463\u2013474","journal-title":"Comput Optim Appl"},{"key":"9633_CR33","unstructured":"Xue K, Tang S, Ge L (2007) Least-privilege-based access control model for job execution in grid. In: ISDPE. IEEE Computer Society, Los Alamitos, pp 301\u2013303"},{"key":"9633_CR34","doi-asserted-by":"crossref","unstructured":"Zhang D, Ramamohanarao K, Ebringer T, Yann T (2008) Permission set mining: Discovering practical and useful roles. In: 2008 annual computer security applications conference, IEEE Computer Society, Los Alamitos, pp 247\u2013256","DOI":"10.1109\/ACSAC.2008.21"}],"container-title":["Journal of Combinatorial Optimization"],"original-title":[],"language":"en","link":[{"URL":"http:\/\/link.springer.com\/content\/pdf\/10.1007\/s10878-013-9633-9.pdf","content-type":"application\/pdf","content-version":"vor","intended-application":"text-mining"},{"URL":"http:\/\/link.springer.com\/article\/10.1007\/s10878-013-9633-9\/fulltext.html","content-type":"text\/html","content-version":"vor","intended-application":"text-mining"},{"URL":"http:\/\/link.springer.com\/content\/pdf\/10.1007\/s10878-013-9633-9","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2019,7,14]],"date-time":"2019-07-14T10:00:53Z","timestamp":1563098453000},"score":1,"resource":{"primary":{"URL":"http:\/\/link.springer.com\/10.1007\/s10878-013-9633-9"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2013,6,2]]},"references-count":34,"journal-issue":{"issue":"1","published-print":{"date-parts":[[2015,7]]}},"alternative-id":["9633"],"URL":"https:\/\/doi.org\/10.1007\/s10878-013-9633-9","relation":{},"ISSN":["1382-6905","1573-2886"],"issn-type":[{"value":"1382-6905","type":"print"},{"value":"1573-2886","type":"electronic"}],"subject":[],"published":{"date-parts":[[2013,6,2]]}}}