{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,11,18]],"date-time":"2025-11-18T12:12:31Z","timestamp":1763467951970,"version":"3.41.0"},"publisher-location":"New York, NY, USA","reference-count":22,"publisher":"ACM","license":[{"start":{"date-parts":[[2008,9,22]],"date-time":"2008-09-22T00:00:00Z","timestamp":1222041600000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.acm.org\/publications\/policies\/copyright_policy#Background"}],"content-domain":{"domain":["dl.acm.org"],"crossmark-restriction":true},"short-container-title":[],"published-print":{"date-parts":[[2008,9,22]]},"DOI":"10.1145\/1595676.1595678","type":"proceedings-article","created":{"date-parts":[[2009,8,24]],"date-time":"2009-08-24T14:08:35Z","timestamp":1251122915000},"page":"1-12","update-policy":"https:\/\/doi.org\/10.1145\/crossmark-policy","source":"Crossref","is-referenced-by-count":30,"title":["We have met the enemy and he is us"],"prefix":"10.1145","author":[{"given":"Matt","family":"Bishop","sequence":"first","affiliation":[{"name":"University of California, Davis, Davis, CA"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Sophie","family":"Engle","sequence":"additional","affiliation":[{"name":"University of California, Davis, Davis, CA"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Sean","family":"Peisert","sequence":"additional","affiliation":[{"name":"University of California, Davis, Davis, CA"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Sean","family":"Whalen","sequence":"additional","affiliation":[{"name":"University of California, Davis, Davis, CA"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Carrie","family":"Gates","sequence":"additional","affiliation":[{"name":"CA Labs, Islandia, NY"}],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"320","published-online":{"date-parts":[[2008,9,22]]},"reference":[{"key":"e_1_3_2_1_1_1","doi-asserted-by":"publisher","DOI":"10.1145\/1146269.1146288"},{"key":"e_1_3_2_1_2_1","volume-title":"Office of the California Secretary of State","author":"Bishop Matt","year":"2008","unstructured":"Matt Bishop . Overview of red team reports. Technical report , Office of the California Secretary of State , Sacramento, CA , July 2008 . Matt Bishop. Overview of red team reports. Technical report, Office of the California Secretary of State, Sacramento, CA, July 2008."},{"key":"e_1_3_2_1_3_1","volume-title":"Understanding the Insider Threat: Proceedings of a","author":"Brackney R.","year":"2004","unstructured":"R. Brackney and R. Anderson . Understanding the Insider Threat: Proceedings of a March 2004 Workshop. Technical report, RAND Corporation, Santa Monica, CA , March 2004. R. Brackney and R. Anderson. Understanding the Insider Threat: Proceedings of a March 2004 Workshop. Technical report, RAND Corporation, Santa Monica, CA, March 2004."},{"key":"e_1_3_2_1_4_1","volume-title":"Dept. of Computer Science","author":"Carlson Adam","year":"2006","unstructured":"Adam Carlson . The Unifying Policy Hierarchy Model. Master's thesis , Dept. of Computer Science , University of California at Davis , June 2006 . Adam Carlson. The Unifying Policy Hierarchy Model. Master's thesis, Dept. of Computer Science, University of California at Davis, June 2006."},{"key":"e_1_3_2_1_5_1","doi-asserted-by":"publisher","DOI":"10.1109\/DSN.2005.94"},{"key":"e_1_3_2_1_6_1","doi-asserted-by":"publisher","DOI":"10.1145\/363095.363143"},{"key":"e_1_3_2_1_7_1","first-page":"554","volume-title":"Proceedings of the Fifteenth National Computer Security Conference","author":"Ferraiolo D.F.","year":"1992","unstructured":"D.F. Ferraiolo and D.R. Kuhn . Role Based Access Control . In Proceedings of the Fifteenth National Computer Security Conference , pages 554 -- 563 , October 1992 . D.F. Ferraiolo and D.R. Kuhn. Role Based Access Control. In Proceedings of the Fifteenth National Computer Security Conference, pages 554--563, October 1992."},{"key":"e_1_3_2_1_8_1","doi-asserted-by":"publisher","DOI":"10.1287\/mnsc.48.6.749.193"},{"key":"e_1_3_2_1_9_1","doi-asserted-by":"publisher","DOI":"10.1145\/1103780.1103795"},{"key":"e_1_3_2_1_10_1","doi-asserted-by":"publisher","DOI":"10.1145\/1185448.1185638"},{"key":"e_1_3_2_1_11_1","volume-title":"The Best of Pogo","author":"Kelly Walt","year":"1982","unstructured":"Walt Kelly . Zeroing In On Those Polluters: We Have Met the Enemy and He Is Us . The Best of Pogo , 1982 . Walt Kelly. Zeroing In On Those Polluters: We Have Met the Enemy and He Is Us. The Best of Pogo, 1982."},{"key":"e_1_3_2_1_12_1","volume-title":"Guidance Software","author":"Patzakis J.","year":"2003","unstructured":"J. Patzakis . New Incident Response Best Practices: Patch and Proceed is No Longer Acceptable Incident Response. Technical report , Guidance Software , Pasadena, CA , September 2003 . J. Patzakis. New Incident Response Best Practices: Patch and Proceed is No Longer Acceptable Incident Response. Technical report, Guidance Software, Pasadena, CA, September 2003."},{"key":"e_1_3_2_1_13_1","doi-asserted-by":"publisher","DOI":"10.1109\/TDSC.2007.1003"},{"key":"e_1_3_2_1_15_1","volume-title":"Insider Threat Study: Illicit Cyber Activity in the Banking and Finance Sector","author":"Randazzo M.R.","year":"2004","unstructured":"M.R. Randazzo , M. Keeney , E. Kowalski , D. Cappelli , and A. Moore . Insider Threat Study: Illicit Cyber Activity in the Banking and Finance Sector . US Secret Service and CERT Coordination Center , 2004 . M.R. Randazzo, M. Keeney, E. Kowalski, D. Cappelli, and A. Moore. Insider Threat Study: Illicit Cyber Activity in the Banking and Finance Sector. US Secret Service and CERT Coordination Center, 2004."},{"key":"e_1_3_2_1_16_1","volume-title":"2007 Computer Crime and Security Survey","author":"Richardson Robert","year":"2007","unstructured":"Robert Richardson . 2007 Computer Crime and Security Survey . Computer Security Institute , 2007 . Robert Richardson. 2007 Computer Crime and Security Survey. Computer Security Institute, 2007."},{"key":"e_1_3_2_1_17_1","doi-asserted-by":"publisher","DOI":"10.1109\/2.485845"},{"key":"e_1_3_2_1_18_1","doi-asserted-by":"publisher","DOI":"10.1145\/353323.353382"},{"issue":"12","key":"e_1_3_2_1_19_1","first-page":"21","article-title":"Modeling Security Threats","volume":"24","author":"Schneier Bruce","year":"1999","unstructured":"Bruce Schneier . Attack Trees : Modeling Security Threats . Dr. Dobb's Journal , 24 ( 12 ): 21 -- 29 , December 1999 . Bruce Schneier. Attack Trees: Modeling Security Threats. Dr. Dobb's Journal, 24(12):21--29, December 1999.","journal-title":"Dr. Dobb's Journal"},{"key":"e_1_3_2_1_20_1","doi-asserted-by":"publisher","DOI":"10.1016\/S0167-4048(02)01009-X"},{"key":"e_1_3_2_1_21_1","volume-title":"Computerworld","author":"Songini Marc","year":"2006","unstructured":"Marc Songini . E-voting security under fire in San Diego lawsuit . Computerworld , August 4, 2006 . Marc Songini. E-voting security under fire in San Diego lawsuit. Computerworld, August 4, 2006."},{"key":"e_1_3_2_1_22_1","doi-asserted-by":"publisher","DOI":"10.1145\/1042031.1042035"},{"key":"e_1_3_2_1_23_1","doi-asserted-by":"publisher","DOI":"10.1145\/1210263.1210267"}],"event":{"name":"NSPW '08: 2008 New Security Paradigms Workshop","sponsor":["ACM Association for Computing Machinery"],"location":"Lake Tahoe California USA","acronym":"NSPW '08"},"container-title":["Proceedings of the 2008 New Security Paradigms Workshop"],"original-title":[],"link":[{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/1595676.1595678","content-type":"unspecified","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/dl.acm.org\/doi\/pdf\/10.1145\/1595676.1595678","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,6,18]],"date-time":"2025-06-18T12:18:03Z","timestamp":1750249083000},"score":1,"resource":{"primary":{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/1595676.1595678"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2008,9,22]]},"references-count":22,"alternative-id":["10.1145\/1595676.1595678","10.1145\/1595676"],"URL":"https:\/\/doi.org\/10.1145\/1595676.1595678","relation":{},"subject":[],"published":{"date-parts":[[2008,9,22]]},"assertion":[{"value":"2008-09-22","order":2,"name":"published","label":"Published","group":{"name":"publication_history","label":"Publication History"}}]}}