{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2022,12,29]],"date-time":"2022-12-29T18:54:05Z","timestamp":1672340045352},"reference-count":58,"publisher":"Elsevier BV","issue":"6","license":[{"start":{"date-parts":[[1988,12,1]],"date-time":"1988-12-01T00:00:00Z","timestamp":596937600000},"content-version":"tdm","delay-in-days":0,"URL":"https:\/\/www.elsevier.com\/tdm\/userlicense\/1.0\/"}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":["Computers &amp; Security"],"published-print":{"date-parts":[[1988,12]]},"DOI":"10.1016\/0167-4048(88)90009-0","type":"journal-article","created":{"date-parts":[[2002,10,11]],"date-time":"2002-10-11T09:56:18Z","timestamp":1034330178000},"page":"575-597","source":"Crossref","is-referenced-by-count":25,"title":["The personal model of data:"],"prefix":"10.1016","volume":"7","author":[{"given":"Joachim","family":"Biskup","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Hans Hermann","family":"Br\u00fcggeman","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"78","reference":[{"issue":"3","key":"10.1016\/0167-4048(88)90009-0_BIB1","doi-asserted-by":"crossref","first-page":"239","DOI":"10.1145\/357369.357372","article-title":"Cryptographic solution to a problem of access control in a hierarchy","volume":"1","author":"Akl","year":"1983","journal-title":"ACM Trans. Comput. Syst."},{"key":"10.1016\/0167-4048(88)90009-0_BIB2","series-title":"Proc. IEEE Symp. on Security and Privacy","first-page":"196","article-title":"Checking classification constraints for consistency and completeness","author":"Akl","year":"1987"},{"key":"10.1016\/0167-4048(88)90009-0_BIB3","series-title":"Proc. IEEE Symp. on Security and Privacy","first-page":"141","article-title":"Security kernels: a solution or a problem?","author":"Ames","year":"1981"},{"key":"10.1016\/0167-4048(88)90009-0_BIB4","series-title":"Design of a privacy oriented information system\u2014final report of the Projekgruppe DORIS","author":"Biskup","year":"1986"},{"key":"10.1016\/0167-4048(88)90009-0_BIB5","series-title":"Proc. Workshop on Database Security","article-title":"Analysis of the privacy model for the information system DORIS","author":"Biskup","year":"1988"},{"key":"10.1016\/0167-4048(88)90009-0_BIB6","series-title":"Proc. IEEE Symp. on Security and Privacy","first-page":"34","article-title":"The secure relational database management system kernel\u2014three years after","author":"Bonyun","year":"1980"},{"issue":"1","key":"10.1016\/0167-4048(88)90009-0_BIB7","article-title":"Gesetz zum Schutz vor Mi\u03b2brauch personenbezogener Daten bei der Datenverarbeitung (Bundesdatenschutzgesetz-BDSG)","volume":"27","author":"Bundestag","year":"1977","journal-title":"Bundesgesetzblatt I"},{"key":"10.1016\/0167-4048(88)90009-0_BIB8","first-page":"241a","volume":"35","year":"1983","journal-title":"Bundesanzeiger"},{"key":"10.1016\/0167-4048(88)90009-0_BIB9","series-title":"Proc. Nat. Computer Conf.","first-page":"19","article-title":"Views, authorization, and locking in a relational data base system","author":"Chamberlin","year":"1975"},{"key":"10.1016\/0167-4048(88)90009-0_BIB10","series-title":"Proc. IEEE Symp. on Security and Privacy","first-page":"4","article-title":"Using views in multilevel secure database management system","author":"Claybrook","year":"1983"},{"key":"10.1016\/0167-4048(88)90009-0_BIB11","series-title":"Proc. IEEE Symp. on Security and Privacy","first-page":"184","article-title":"A comparison of commercial and military computer security policies","author":"Clark","year":"1987"},{"key":"10.1016\/0167-4048(88)90009-0_BIB12","series-title":"Proc. ACM SIGMOD '84 Int. Conf. on Management of Data","first-page":"316","article-title":"Making SMALLTALK a Database System","author":"Copeland","year":"1984"},{"key":"10.1016\/0167-4048(88)90009-0_BIB13","series-title":"Proc. ACM SIGMOD '86 Int. Conf. on Management of Data","first-page":"356","article-title":"A. DBMS prototype to support extended NF2 relations: an integrated view on flat tables and hierarchies","author":"Dadam","year":"1986"},{"key":"10.1016\/0167-4048(88)90009-0_BIB14","series-title":"Proc. IEEE Symp. on Security and Privacy","first-page":"137","article-title":"A system architecture to support a verifiably secure multilevel security system","author":"Davida","year":"1980"},{"issue":"2","key":"10.1016\/0167-4048(88)90009-0_BIB15","doi-asserted-by":"crossref","first-page":"312","DOI":"10.1145\/319566.319580","article-title":"A database encryption system with subkeys","volume":"6","author":"Davida","year":"1981","journal-title":"ACM Trans. Database Syst."},{"key":"10.1016\/0167-4048(88)90009-0_BIB16","series-title":"Proc. IEEE Symp. on Security and Privacy","first-page":"111","article-title":"Cryptographic relational algebra","author":"Davida","year":"1982"},{"key":"10.1016\/0167-4048(88)90009-0_BIB17","series-title":"Cryptography and Data Security","author":"Denning","year":"1982"},{"key":"10.1016\/0167-4048(88)90009-0_BIB18","series-title":"Proc. IEEE Symp. on Security and Privacy","first-page":"52","article-title":"Cryptographic checksums for multilevel database security","author":"Denning","year":"1984"},{"key":"10.1016\/0167-4048(88)90009-0_BIB19","series-title":"Proc. IEEE Symp. on Security and Privacy","first-page":"156","article-title":"View for multilevel database security","author":"Denning","year":"1986"},{"key":"10.1016\/0167-4048(88)90009-0_BIB20","first-page":"220","article-title":"A multilevel relational data model","author":"Denning","year":"1987","journal-title":"Proc. IEEE Symp. on Security and Privacy"},{"key":"10.1016\/0167-4048(88)90009-0_BIB21","series-title":"Proc. IEEE Symp. on Security and Privacy","first-page":"46","article-title":"Protection in the OSKAR operating system\u2014goals, concepts, consequences","author":"Dittrich","year":"1982"},{"key":"10.1016\/0167-4048(88)90009-0_BIB22","article-title":"A Universal Concept for Flexible Protection in and with Computer Systems","volume":"75","author":"Dittrich","year":"1983"},{"key":"10.1016\/0167-4048(88)90009-0_BIB23","series-title":"Trusted Computer Systems Evaluation Criteria","author":"Department of Defense Computer Security Center","year":"1983"},{"key":"10.1016\/0167-4048(88)90009-0_BIB24","first-page":"507","article-title":"A kernel design for a secure data base management system","author":"Down","year":"1977","journal-title":"Proc. 3rd Int. Conf. on Very Large Data Bases"},{"key":"10.1016\/0167-4048(88)90009-0_BIB25","series-title":"Master's Thesis","article-title":"Procedures in the privacy oriented information system DORIS","author":"Figgen","year":"1987"},{"issue":"4","key":"10.1016\/0167-4048(88)90009-0_BIB26","doi-asserted-by":"crossref","first-page":"274","DOI":"10.1145\/358468.358493","article-title":"Cryptographic sealing for information secrecy and authentication","volume":"25","author":"Gifford","year":"1982","journal-title":"Commun. ACM"},{"key":"10.1016\/0167-4048(88)90009-0_BIB27","series-title":"Smalltalk 80: The Language and its Implementation","author":"Goldberg","year":"1983"},{"issue":"5","key":"10.1016\/0167-4048(88)90009-0_BIB28","doi-asserted-by":"crossref","first-page":"411","DOI":"10.1109\/TSE.1980.230489","article-title":"The design of a cryptography based secure file system","volume":"SE-6","author":"Gudes","year":"1980","journal-title":"IEEE Trans. Software Eng."},{"key":"10.1016\/0167-4048(88)90009-0_BIB29","series-title":"Proc. IEEE Symp. on Security and Privacy","first-page":"21","article-title":"A preliminary naval surveillance dbms security model","author":"Graubart","year":"1982"},{"key":"10.1016\/0167-4048(88)90009-0_BIB30","series-title":"Proc. IEEE Symp. on Security and Privacy","first-page":"62","article-title":"The integrity-lock approach to secure database management","author":"Graubart","year":"1984"},{"key":"10.1016\/0167-4048(88)90009-0_BIB31","series-title":"Master's Thesis","article-title":"Design and analysis of the protection model for the privacy oriented information system DORIS","author":"Graf","year":"1986"},{"issue":"3","key":"10.1016\/0167-4048(88)90009-0_BIB32","doi-asserted-by":"crossref","first-page":"242","DOI":"10.1145\/320473.320482","article-title":"An authorization mechanism for a relational database system","volume":"1","author":"Griffiths","year":"1976","journal-title":"ACM Trans. Database Syst"},{"key":"10.1016\/0167-4048(88)90009-0_BIB33","series-title":"Master's Thesis","article-title":"Cryptographic methods in information systems","author":"Hoffmann","year":"1986"},{"issue":"4","key":"10.1016\/0167-4048(88)90009-0_BIB34","doi-asserted-by":"crossref","first-page":"277","DOI":"10.1109\/TSE.1976.233833","article-title":"A language extension for controlling access to shared data","volume":"SE-2","author":"Jones","year":"1976","journal-title":"IEEE Trans. Software Eng."},{"issue":"5","key":"10.1016\/0167-4048(88)90009-0_BIB35","doi-asserted-by":"crossref","first-page":"358","DOI":"10.1145\/359488.359493","article-title":"A language extension for expressing constraints on data access","volume":"21","author":"Jones","year":"1978","journal-title":"Commun. ACM"},{"key":"10.1016\/0167-4048(88)90009-0_BIB36","doi-asserted-by":"crossref","first-page":"19","DOI":"10.1109\/MS.1986.232429","article-title":"Extending the scope of relational languages","author":"Korth","year":"1986","journal-title":"IEEE Software"},{"issue":"3","key":"10.1016\/0167-4048(88)90009-0_BIB37","doi-asserted-by":"crossref","first-page":"198","DOI":"10.1145\/989.991","article-title":"A security model for military message systems","volume":"2","author":"Landwehr","year":"1984","journal-title":"ACM Trans. Comput. Syst."},{"key":"10.1016\/0167-4048(88)90009-0_BIB38","series-title":"Capability-Based Computer Systems","author":"Levy","year":"1984"},{"key":"10.1016\/0167-4048(88)90009-0_BIB39","series-title":"Proc. IEEE Computer and Software Applications Conf.","first-page":"342","article-title":"A framework for data base protection and its application to the INGRES and System R data base management systems","author":"McLeod","year":"1977"},{"key":"10.1016\/0167-4048(88)90009-0_BIB40","series-title":"Proc. IEEE Symp. on Security and Privacy","first-page":"188","article-title":"A formal statement of the MMS security model","author":"McLean","year":"1984"},{"key":"10.1016\/0167-4048(88)90009-0_BIB41","series-title":"Proc. IEEE Symp. on Security and Privacy","first-page":"212","article-title":"The integrity lock architecture and its application to message systems: reducing report channels","author":"Meadows","year":"1987"},{"issue":"2","key":"10.1016\/0167-4048(88)90009-0_BIB42","doi-asserted-by":"crossref","first-page":"157","DOI":"10.1007\/BF00975884","article-title":"An operation-control scheme for authorization in computer systems","volume":"7","author":"Minsky","year":"1978","journal-title":"Int. J. Comput. Inf. Sci."},{"key":"10.1016\/0167-4048(88)90009-0_BIB43","series-title":"Datenbanken und Datenschutz","first-page":"63","article-title":"Die Gef\u00e4hrdung der Privatsph\u00e4re durch Datenbanken","author":"M\u00fcller","year":"1974"},{"key":"10.1016\/0167-4048(88)90009-0_BIB44","series-title":"Proc. IEEE Symp. on Security and Privacy","first-page":"79","article-title":"Modified architecture for the sub-keys model","author":"Omar","year":"1983"},{"key":"10.1016\/0167-4048(88)90009-0_BIB45","unstructured":"Congress, 93rd-2nd Session, Privacy Act of 1974, Public Law 93\u2013579."},{"key":"10.1016\/0167-4048(88)90009-0_BIB46","series-title":"Proc. IEEE Symp. on Security and Privacy","first-page":"59","article-title":"A module definition facility for access control in distributed data base systems","author":"van de Riet","year":"1980"},{"issue":"2","key":"10.1016\/0167-4048(88)90009-0_BIB47","doi-asserted-by":"crossref","first-page":"95","DOI":"10.1016\/0306-4379(83)90034-0","article-title":"Privacy and security in information systems using programming language features","volume":"8","author":"van de Riet","year":"1983","journal-title":"Inf. Syst."},{"key":"10.1016\/0167-4048(88)90009-0_BIB48","series-title":"Foundation of Secure Computation","first-page":"169","article-title":"On data banks and privacy homomorphisms","author":"Rivest","year":"1978"},{"issue":"3","key":"10.1016\/0167-4048(88)90009-0_BIB49","doi-asserted-by":"crossref","first-page":"172","DOI":"10.1109\/TC.1981.1675753","article-title":"Formal models of capability-based protection systems","volume":"C-30","author":"Snyder","year":"1981","journal-title":"IEEE Trans. Comput."},{"key":"10.1016\/0167-4048(88)90009-0_BIB50","series-title":"Proc. 12th Int. Conf. on Very Large Data Bases","first-page":"347","article-title":"Framework for the security component of an ADA DBMS","author":"Spooner","year":"1986"},{"key":"10.1016\/0167-4048(88)90009-0_BIB51","series-title":"Proc. ACM Nat. Conf.","first-page":"180","article-title":"Access control in a relational data base management system by query modification","author":"Stonebraker","year":"1974"},{"key":"10.1016\/0167-4048(88)90009-0_BIB52","series-title":"Proc. ACM SIGMOD '75 Int. Conf. on Management of Data","first-page":"65","article-title":"Implementation of integrity constraints and views by query modification","author":"Stonebraker","year":"1975"},{"key":"10.1016\/0167-4048(88)90009-0_BIB53","series-title":"Proc. ACM Ann. Conf.","first-page":"80","article-title":"The INGRES protection system","author":"Stonebraker","year":"1976"},{"key":"10.1016\/0167-4048(88)90009-0_BIB54","series-title":"Proc. ACM SIGMOD'86 Int. Conf. on Management of Data","first-page":"340","article-title":"The design of POSTGRES","author":"Stonebraker","year":"1986"},{"key":"10.1016\/0167-4048(88)90009-0_BIB55","first-page":"623","article-title":"An object-oriented approach to knowledge systems","author":"Tokoro","year":"1984","journal-title":"Proc. Int. Conf. on Fifth Generation Computer Systems"},{"key":"10.1016\/0167-4048(88)90009-0_BIB56","series-title":"Principles of Database Systems","author":"Ullman","year":"1982"},{"key":"10.1016\/0167-4048(88)90009-0_BIB57","unstructured":"G. Wiederhold, A.M. Keller, S. Navathe, D. Spooner, M. Berkowitz, B. Brykczynski and J. Salasin, Modularization of an ADA database system, Technical Rep., IDA, pp. 1\u201329."},{"key":"10.1016\/0167-4048(88)90009-0_BIB58","series-title":"HYDRA\/C.mmp: An Experimental Computer System","author":"Wulf","year":"1981"}],"container-title":["Computers &amp; Security"],"original-title":[],"language":"en","link":[{"URL":"https:\/\/api.elsevier.com\/content\/article\/PII:0167404888900090?httpAccept=text\/xml","content-type":"text\/xml","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/api.elsevier.com\/content\/article\/PII:0167404888900090?httpAccept=text\/plain","content-type":"text\/plain","content-version":"vor","intended-application":"text-mining"}],"deposited":{"date-parts":[[2019,4,10]],"date-time":"2019-04-10T23:52:47Z","timestamp":1554940367000},"score":1,"resource":{"primary":{"URL":"https:\/\/linkinghub.elsevier.com\/retrieve\/pii\/0167404888900090"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[1988,12]]},"references-count":58,"journal-issue":{"issue":"6","published-print":{"date-parts":[[1988,12]]}},"alternative-id":["0167404888900090"],"URL":"https:\/\/doi.org\/10.1016\/0167-4048(88)90009-0","relation":{},"ISSN":["0167-4048"],"issn-type":[{"value":"0167-4048","type":"print"}],"subject":[],"published":{"date-parts":[[1988,12]]}}}