{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,6,19]],"date-time":"2025-06-19T04:30:18Z","timestamp":1750307418777,"version":"3.41.0"},"publisher-location":"New York, NY, USA","reference-count":10,"publisher":"ACM","license":[{"start":{"date-parts":[[2010,4,21]],"date-time":"2010-04-21T00:00:00Z","timestamp":1271808000000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.acm.org\/publications\/policies\/copyright_policy#Background"}],"funder":[{"DOI":"10.13039\/100000181","name":"Air Force Office of Scientific Research","doi-asserted-by":"publisher","award":["FA-9550-09-1-0409"],"award-info":[{"award-number":["FA-9550-09-1-0409"]}],"id":[{"id":"10.13039\/100000181","id-type":"DOI","asserted-by":"publisher"}]}],"content-domain":{"domain":["dl.acm.org"],"crossmark-restriction":true},"short-container-title":[],"published-print":{"date-parts":[[2010,4,21]]},"DOI":"10.1145\/1852666.1852736","type":"proceedings-article","created":{"date-parts":[[2010,8,31]],"date-time":"2010-08-31T13:06:04Z","timestamp":1283259964000},"page":"1-4","update-policy":"https:\/\/doi.org\/10.1145\/crossmark-policy","source":"Crossref","is-referenced-by-count":0,"title":["Reasoning about policy noncompliance"],"prefix":"10.1145","author":[{"given":"R.","family":"Baird","sequence":"first","affiliation":[{"name":"University of Tulsa, Tulsa, OK"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"R.","family":"Gamble","sequence":"additional","affiliation":[{"name":"University of Tulsa, Tulsa, OK"}],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"320","published-online":{"date-parts":[[2010,4,21]]},"reference":[{"key":"e_1_3_2_2_1_1","unstructured":"INFOSEC Research Council. (2005 November). Hard Problem List. Available: http:\/\/www.infosec-research.org\/docs_public\/20051130-IRC-HPL-FINAL.pdf  INFOSEC Research Council. (2005 November). Hard Problem List. Available: http:\/\/www.infosec-research.org\/docs_public\/20051130-IRC-HPL-FINAL.pdf"},{"key":"e_1_3_2_2_2_1","doi-asserted-by":"publisher","DOI":"10.1145\/1558607.1558626"},{"key":"e_1_3_2_2_3_1","unstructured":"National Institute of Standards and Technology. (2009 August). NIST Special Publication 800--53 Recommended Security Controls for Federal Information Systems and Organizations Revision 3 http:\/\/csrc.nist.gov\/publications\/  National Institute of Standards and Technology. (2009 August). NIST Special Publication 800--53 Recommended Security Controls for Federal Information Systems and Organizations Revision 3 http:\/\/csrc.nist.gov\/publications\/"},{"key":"e_1_3_2_2_4_1","unstructured":"U.S. Department of Defense. (2003 Feb. 6). Instruction DODI 8500.2 Information Assurance (IA) Implementation. http:\/\/www.dtic.mil\/whs\/directives\/corres\/pdf\/850002p.pdf  U.S. Department of Defense. (2003 Feb. 6). Instruction DODI 8500.2 Information Assurance (IA) Implementation. http:\/\/www.dtic.mil\/whs\/directives\/corres\/pdf\/850002p.pdf"},{"key":"e_1_3_2_2_5_1","doi-asserted-by":"publisher","DOI":"10.1109\/EDOCW.2006.21"},{"key":"e_1_3_2_2_6_1","doi-asserted-by":"publisher","DOI":"10.1109\/EUROMICRO.2007.12"},{"key":"e_1_3_2_2_7_1","doi-asserted-by":"publisher","DOI":"10.1109\/SCC.2009.57"},{"key":"e_1_3_2_2_8_1","volume-title":"Requirements Engineering Conf.","author":"Gandhi R. A.","year":"2007","unstructured":"R. A. Gandhi and S. W. Lee , \" Discovering and Understanding Multi-dimensional Correlations among Certification Requirements with application to Risk Assessment,\" Int . Requirements Engineering Conf. , 2007 . R. A. Gandhi and S. W. Lee, \"Discovering and Understanding Multi-dimensional Correlations among Certification Requirements with application to Risk Assessment,\" Int. Requirements Engineering Conf., 2007."},{"key":"e_1_3_2_2_9_1","doi-asserted-by":"publisher","DOI":"10.1109\/ICCBSS.2007.42"},{"key":"e_1_3_2_2_10_1","unstructured":"S. Christey and C. Harris. (2009 October). Introduction to Vulnerability Theory. Available: http:\/\/cwe.mitre.org\/  S. Christey and C. Harris. (2009 October). Introduction to Vulnerability Theory. Available: http:\/\/cwe.mitre.org\/"}],"event":{"name":"CSIIRW '10: Annual Cyber Security and Information Intelligence Research Workshop","acronym":"CSIIRW '10","location":"Oak Ridge Tennessee USA"},"container-title":["Proceedings of the Sixth Annual Workshop on Cyber Security and Information Intelligence Research"],"original-title":[],"link":[{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/1852666.1852736","content-type":"unspecified","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/dl.acm.org\/doi\/pdf\/10.1145\/1852666.1852736","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,6,18]],"date-time":"2025-06-18T11:39:41Z","timestamp":1750246781000},"score":1,"resource":{"primary":{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/1852666.1852736"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2010,4,21]]},"references-count":10,"alternative-id":["10.1145\/1852666.1852736","10.1145\/1852666"],"URL":"https:\/\/doi.org\/10.1145\/1852666.1852736","relation":{},"subject":[],"published":{"date-parts":[[2010,4,21]]},"assertion":[{"value":"2010-04-21","order":2,"name":"published","label":"Published","group":{"name":"publication_history","label":"Publication History"}}]}}