{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,4,4]],"date-time":"2025-04-04T00:40:42Z","timestamp":1743727242390,"version":"3.28.0"},"reference-count":52,"publisher":"IEEE Comput. Soc","content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":[],"DOI":"10.1109\/secpri.1999.766718","type":"proceedings-article","created":{"date-parts":[[2003,1,20]],"date-time":"2003-01-20T10:55:24Z","timestamp":1043060124000},"page":"57-71","source":"Crossref","is-referenced-by-count":47,"title":["A user-centered, modular authorization service built on an RBAC foundation"],"prefix":"10.1109","author":[{"given":"M.E.","family":"Zurko","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"R.","family":"Simon","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"T.","family":"Sanfilippo","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"263","reference":[{"journal-title":"Understanding DCE","year":"1992","author":"rosenberry","key":"ref39"},{"journal-title":"SDSI&#x2014 A Simple Distributed Security Infrastructure","year":"0","author":"rivest","key":"ref38"},{"key":"ref33","doi-asserted-by":"publisher","DOI":"10.1109\/RISP.1990.63851"},{"key":"ref32","doi-asserted-by":"publisher","DOI":"10.1145\/108844.108867"},{"key":"ref31","article-title":"Privacy-Enhanced Electronic Mail: From Architecture to Implementation","author":"linn","year":"1991","journal-title":"Proc IFIP TC11 Seventh International Conference on Information Security"},{"key":"ref30","doi-asserted-by":"crossref","first-page":"18","DOI":"10.1145\/775265.775268","article-title":"Protection","volume":"8","author":"lampson","year":"1974","journal-title":"Operating Systems Review"},{"journal-title":"Authorization Server White Paper","year":"0","key":"ref37"},{"journal-title":"Tcl and the Tk Tookkit","year":"1994","author":"ousterhout","key":"ref36"},{"journal-title":"The Design of Everyday Things","year":"1988","author":"norman","key":"ref35"},{"journal-title":"Usability Engineering","year":"1993","author":"nielsen","key":"ref34"},{"key":"ref28","doi-asserted-by":"crossref","DOI":"10.7551\/mitpress\/2003.001.0001","author":"jones","year":"1997","journal-title":"Comput Complexity"},{"key":"ref27","doi-asserted-by":"publisher","DOI":"10.1109\/SECPRI.1997.601312"},{"journal-title":"Database Systems Concepts","year":"1991","author":"korth","key":"ref29"},{"journal-title":"Adage Software Design Document","year":"0","key":"ref2"},{"journal-title":"Adage System Overview","year":"0","key":"ref1"},{"key":"ref20","first-page":"241","article-title":"Role-Based Access Control (RBAC): Features and Motivations","author":"ferraiolo","year":"1995","journal-title":"Proceedings of the 1995 Computer Security Applications Conference"},{"journal-title":"Practical UNIX and Internet Security","year":"1996","author":"garfinkel","key":"ref22"},{"journal-title":"PGP Pretty Good Privacy","year":"1995","author":"garfinkel","key":"ref21"},{"key":"ref24","doi-asserted-by":"publisher","DOI":"10.1109\/SECPRI.1998.674833"},{"key":"ref23","article-title":"A New Model for Role-Based Access Control","author":"giuri","year":"1995","journal-title":"Annual Computer Security Applications Conference"},{"journal-title":"Information Assurance Program","year":"0","key":"ref26"},{"key":"ref25","doi-asserted-by":"publisher","DOI":"10.1145\/304851.304870"},{"journal-title":"Adage Usability Test Plan","year":"0","author":"zurko","key":"ref50"},{"journal-title":"Adage Usability Testing Results Contextual Interviews","year":"0","author":"zurko","key":"ref51"},{"journal-title":"Adage Usability Testing Results Formal Testing Affinity Mapping and Questionnaire","year":"0","author":"zurko","key":"ref52"},{"journal-title":"Contextual Design Defining Customer-Centered Systems","year":"1998","author":"beyer","key":"ref10"},{"journal-title":"Integrity Considerations for Secure Computer Systems","year":"1977","author":"biba","key":"ref11"},{"key":"ref40","doi-asserted-by":"publisher","DOI":"10.1109\/PROC.1975.9939"},{"key":"ref12","doi-asserted-by":"publisher","DOI":"10.1109\/SECPRI.1996.502679"},{"key":"ref13","doi-asserted-by":"publisher","DOI":"10.1109\/SECPRI.1989.36295"},{"journal-title":"SnareWorks A Transparent Security Framework For TCP\/IP and Legacy Applications","year":"1996","author":"chinitz","key":"ref14"},{"key":"ref15","doi-asserted-by":"publisher","DOI":"10.1145\/205350.205356"},{"journal-title":"CORBAServices Common Object Services Specification","year":"0","key":"ref16"},{"key":"ref17","doi-asserted-by":"publisher","DOI":"10.1145\/202511.202528"},{"journal-title":"SPKI Requirements","year":"0","author":"ellison","key":"ref18"},{"key":"ref19","article-title":"Access Controls for Federated Database Environments","author":"e\ufffdmayr","year":"1995","journal-title":"Proc Joint IFIP TC 6 and TC 11 Working Conf on Communications and Multimedia Security"},{"key":"ref4","article-title":"A Logic for State Transformations in Authorization Policies","author":"bai","year":"1997","journal-title":"Proc 10th IEEE Computer Security Foundations Workshop"},{"key":"ref3","doi-asserted-by":"publisher","DOI":"10.1109\/RISP.1990.63844"},{"key":"ref6","doi-asserted-by":"publisher","DOI":"10.1109\/SECPRI.1996.502673"},{"key":"ref5","doi-asserted-by":"crossref","DOI":"10.21236\/ADA023588","author":"bell","year":"1976","journal-title":"Secure Computer Systems Unified Exposition and Multics Interpretation"},{"journal-title":"A Constraint Language for Adage","year":"0","author":"bevier","key":"ref8"},{"journal-title":"Principles of Authorization in Adage","year":"0","author":"bevier","key":"ref7"},{"key":"ref49","doi-asserted-by":"publisher","DOI":"10.1145\/304851.304859"},{"journal-title":"Modeling Adage Properties of Authorization in Maribila","year":"0","author":"bevier","key":"ref9"},{"journal-title":"Software Technology Review Statistical-Based Intrusion Detection","year":"0","key":"ref46"},{"key":"ref45","doi-asserted-by":"publisher","DOI":"10.1145\/332159.332161"},{"key":"ref48","doi-asserted-by":"publisher","DOI":"10.1109\/CSAC.1998.738571"},{"key":"ref47","doi-asserted-by":"publisher","DOI":"10.1109\/CSFW.1994.315946"},{"key":"ref42","doi-asserted-by":"publisher","DOI":"10.1109\/2.485845"},{"key":"ref41","first-page":"221","article-title":"A Lattice Interpretation of the Chinese Wall Policy","author":"sandhu","year":"1992","journal-title":"NIST NCSC National Computer Security Conference"},{"key":"ref44","doi-asserted-by":"publisher","DOI":"10.1109\/CSFW.1997.596811"},{"journal-title":"P Home Page","year":"0","author":"sanfilippo","key":"ref43"}],"event":{"name":"1999 IEEE Symposium on Security and Privacy","acronym":"SECPRI-99","location":"Oakland, CA, USA"},"container-title":["Proceedings of the 1999 IEEE Symposium on Security and Privacy (Cat. No.99CB36344)"],"original-title":[],"link":[{"URL":"https:\/\/summer-heart-0930.chufeiyun1688.workers.dev:443\/http\/xplorestaging.ieee.org\/ielx5\/6220\/16605\/00766718.pdf?arnumber=766718","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2020,3,12]],"date-time":"2020-03-12T01:34:55Z","timestamp":1583976895000},"score":1,"resource":{"primary":{"URL":"https:\/\/summer-heart-0930.chufeiyun1688.workers.dev:443\/http\/ieeexplore.ieee.org\/document\/766718\/"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[null]]},"references-count":52,"URL":"https:\/\/summer-heart-0930.chufeiyun1688.workers.dev:443\/https\/doi.org\/10.1109\/secpri.1999.766718","relation":{},"subject":[]}}