{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,6,19]],"date-time":"2025-06-19T04:30:05Z","timestamp":1750307405079,"version":"3.41.0"},"publisher-location":"New York, NY, USA","reference-count":28,"publisher":"ACM","license":[{"start":{"date-parts":[[2010,6,11]],"date-time":"2010-06-11T00:00:00Z","timestamp":1276214400000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.acm.org\/publications\/policies\/copyright_policy#Background"}],"content-domain":{"domain":["dl.acm.org"],"crossmark-restriction":true},"short-container-title":[],"published-print":{"date-parts":[[2010,6,11]]},"DOI":"10.1145\/1809842.1809870","type":"proceedings-article","created":{"date-parts":[[2010,6,11]],"date-time":"2010-06-11T18:52:58Z","timestamp":1276282378000},"page":"163-172","update-policy":"https:\/\/doi.org\/10.1145\/crossmark-policy","source":"Crossref","is-referenced-by-count":15,"title":["An architecture for enforcing end-to-end access control over web applications"],"prefix":"10.1145","author":[{"given":"Boniface","family":"Hicks","sequence":"first","affiliation":[{"name":"Saint Vincent College, Latrobe, PA, USA"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Sandra","family":"Rueda","sequence":"additional","affiliation":[{"name":"The Pennsylvania State University, University Park, PA, USA"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Dave","family":"King","sequence":"additional","affiliation":[{"name":"The Pennsylvania State University, University Park, PA, USA"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Thomas","family":"Moyer","sequence":"additional","affiliation":[{"name":"The Pennsylvania State University, University Park, PA, USA"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Joshua","family":"Schiffman","sequence":"additional","affiliation":[{"name":"The Pennsylvania State University, University Park, PA, USA"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Yogesh","family":"Sreenivasan","sequence":"additional","affiliation":[{"name":"The Pennsylvania State University, University Park, PA, USA"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Patrick","family":"McDaniel","sequence":"additional","affiliation":[{"name":"The Pennsylvania State University, University Park, PA, USA"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Trent","family":"Jaeger","sequence":"additional","affiliation":[{"name":"The Pennsylvania State University, University Park, PA, USA"}],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"320","published-online":{"date-parts":[[2010,6,11]]},"reference":[{"key":"e_1_3_2_1_2_1","doi-asserted-by":"publisher","DOI":"10.1145\/945445.945462"},{"key":"e_1_3_2_1_3_1","doi-asserted-by":"publisher","DOI":"10.1145\/1455770.1455782"},{"key":"e_1_3_2_1_5_1","doi-asserted-by":"publisher","DOI":"10.1145\/1315245.1315248"},{"key":"e_1_3_2_1_6_1","doi-asserted-by":"publisher","DOI":"10.1109\/SP.2006.4"},{"key":"e_1_3_2_1_7_1","doi-asserted-by":"publisher","DOI":"10.1109\/CSAC.2005.13"},{"key":"e_1_3_2_1_8_1","doi-asserted-by":"publisher","DOI":"10.1109\/SP.2008.19"},{"key":"e_1_3_2_1_9_1","doi-asserted-by":"publisher","DOI":"10.1145\/360303.360333"},{"key":"e_1_3_2_1_10_1","doi-asserted-by":"publisher","DOI":"10.1109\/ACSAC.2007.35"},{"key":"e_1_3_2_1_11_1","volume-title":"Proceedings of the USENIX Annual Technical Conference","author":"Hicks B.","year":"2007","unstructured":"B. Hicks , S. Rueda , T. Jaeger , and P. McDaniel . From trusted to secure: Building and executing applications that enforce system security . In Proceedings of the USENIX Annual Technical Conference , 2007 . B. Hicks, S. Rueda, T. Jaeger, and P. McDaniel. From trusted to secure: Building and executing applications that enforce system security. In Proceedings of the USENIX Annual Technical Conference, 2007."},{"key":"e_1_3_2_1_12_1","volume-title":"HotOS.","author":"Howell J.","year":"2007","unstructured":"J. Howell , C. Jackson , H. Wang , and X. Fan . Mashupos: Operating system abstractions for client mashups . In HotOS. , 2007 . J. Howell, C. Jackson, H. Wang, and X. Fan. Mashupos: Operating system abstractions for client mashups. In HotOS., 2007."},{"volume-title":"AINA '04","author":"Ismail O.","key":"e_1_3_2_1_13_1","unstructured":"O. Ismail , M. Etoh , Y. Kadobayashi , and S. Yamaguchi . A proposal and implementation of automatic detection\/collection system for cross-site scripting vulnerability . In AINA '04 . IEEE. O. Ismail, M. Etoh, Y. Kadobayashi, and S. Yamaguchi. A proposal and implementation of automatic detection\/collection system for cross-site scripting vulnerability. In AINA '04. IEEE."},{"key":"e_1_3_2_1_14_1","doi-asserted-by":"publisher","DOI":"10.1145\/1135777.1135884"},{"key":"e_1_3_2_1_15_1","doi-asserted-by":"publisher","DOI":"10.1145\/1242572.1242655"},{"key":"e_1_3_2_1_16_1","volume-title":"SecureComm","author":"Jaeger T.","year":"2006","unstructured":"T. Jaeger , D. King , K. Butler , S. Hallyn , J. Latten , and X. Zhang . Leveraging IPsec for mandatory access control across systems . In SecureComm , 2006 . T. Jaeger, D. King, K. Butler, S. Hallyn, J. Latten, and X. Zhang. Leveraging IPsec for mandatory access control across systems. In SecureComm, 2006."},{"key":"e_1_3_2_1_17_1","doi-asserted-by":"publisher","DOI":"10.1145\/1242572.1242654"},{"key":"e_1_3_2_1_18_1","volume-title":"Protection. In 5th Princeton Conference on Information Sciences and Systems","author":"Lampson B. W.","year":"1971","unstructured":"B. W. Lampson . Protection. In 5th Princeton Conference on Information Sciences and Systems , 1971 . B. W. Lampson. Protection. In 5th Princeton Conference on Information Sciences and Systems, 1971."},{"key":"e_1_3_2_1_19_1","volume-title":"NetTop: Commercial Technology in High Assurance Applications","author":"Meushaw R.","year":"2000","unstructured":"R. Meushaw and D. Simard . NetTop: Commercial Technology in High Assurance Applications , 2000 . R. Meushaw and D. Simard. NetTop: Commercial Technology in High Assurance Applications, 2000."},{"key":"e_1_3_2_1_20_1","unstructured":"MyBB Group. MyBB. http:\/\/www.mybboard.net\/.  MyBB Group. MyBB. http:\/\/www.mybboard.net\/."},{"key":"e_1_3_2_1_21_1","first-page":"2003","author":"Myers A. C.","year":"2001","unstructured":"A. C. Myers , L. Zheng , S. Zdancewic , S. Chong , and N. Nystrom . Jif: Java information flow. http:\/\/www.cs.cornell.edu\/jif , July 2001 - 2003 . A. C. Myers, L. Zheng, S. Zdancewic, S. Chong, and N. Nystrom. Jif: Java information flow. http:\/\/www.cs.cornell.edu\/jif, July 2001-2003.","journal-title":"Jif: Java information flow. http:\/\/www.cs.cornell.edu\/jif"},{"volume-title":"http:\/\/netlabel.sourceforge.net\/","year":"2007","key":"e_1_3_2_1_22_1","unstructured":"Netlabel - explicit labeled networking for linux. http:\/\/netlabel.sourceforge.net\/ , 2007 . Netlabel - explicit labeled networking for linux. http:\/\/netlabel.sourceforge.net\/, 2007."},{"key":"e_1_3_2_1_23_1","unstructured":"Security-enhanced Linux. http:\/\/www.nsa.gov\/selinux.  Security-enhanced Linux. http:\/\/www.nsa.gov\/selinux."},{"key":"e_1_3_2_1_24_1","doi-asserted-by":"publisher","DOI":"10.1145\/1455770.1455783"},{"key":"e_1_3_2_1_25_1","unstructured":"OWASP Foundation. Open web application security project. http:\/\/www.owasp.org\/index.php\/Top_10_2007.  OWASP Foundation. Open web application security project. http:\/\/www.owasp.org\/index.php\/Top_10_2007."},{"key":"e_1_3_2_1_26_1","unstructured":"T. L. Project. Lobo: Java Web Browser. http:\/\/lobobrowser.org\/.  T. L. Project. Lobo: Java Web Browser. http:\/\/lobobrowser.org\/."},{"volume-title":"Browsershield: vulnerability-driven filtering of dynamic html","author":"Reis C.","key":"e_1_3_2_1_27_1","unstructured":"C. Reis , J. Dunagan , H. J. Wang , O. Dubrovsky , and S. Esmeir . Browsershield: vulnerability-driven filtering of dynamic html . In OSDI. USENIX Association . C. Reis, J. Dunagan, H. J. Wang, O. Dubrovsky, and S. Esmeir. Browsershield: vulnerability-driven filtering of dynamic html. In OSDI. USENIX Association."},{"key":"e_1_3_2_1_28_1","doi-asserted-by":"publisher","DOI":"10.1145\/1190216.1190252"},{"key":"e_1_3_2_1_29_1","doi-asserted-by":"publisher","DOI":"10.1109\/ACSAC.2008.25"},{"volume-title":"NSDI '08","author":"Zeldovich N.","key":"e_1_3_2_1_30_1","unstructured":"N. Zeldovich , S. Boyd-Wickizer , and D. Mazieres . Securing distributed systems with information flow control . In NSDI '08 . N. Zeldovich, S. Boyd-Wickizer, and D. Mazieres. Securing distributed systems with information flow control. In NSDI '08."}],"event":{"name":"SACMAT'10: 15th ACM Symposium on Access Control Models and Technologies","sponsor":["SIGSAC ACM Special Interest Group on Security, Audit, and Control"],"location":"Pittsburgh Pennsylvania USA","acronym":"SACMAT'10"},"container-title":["Proceedings of the 15th ACM symposium on Access control models and technologies"],"original-title":[],"link":[{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/1809842.1809870","content-type":"unspecified","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/dl.acm.org\/doi\/pdf\/10.1145\/1809842.1809870","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,6,18]],"date-time":"2025-06-18T11:39:26Z","timestamp":1750246766000},"score":1,"resource":{"primary":{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/1809842.1809870"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2010,6,11]]},"references-count":28,"alternative-id":["10.1145\/1809842.1809870","10.1145\/1809842"],"URL":"https:\/\/doi.org\/10.1145\/1809842.1809870","relation":{},"subject":[],"published":{"date-parts":[[2010,6,11]]},"assertion":[{"value":"2010-06-11","order":2,"name":"published","label":"Published","group":{"name":"publication_history","label":"Publication History"}}]}}