{"id":"https://openalex.org/W4400427532","doi":"https://doi.org/10.1007/s10207-024-00877-1","title":"Using the ACE framework to enforce access and usage control with notifications of revoked access rights","display_name":"Using the ACE framework to enforce access and usage control with notifications of revoked access rights","publication_year":2024,"publication_date":"2024-07-08","ids":{"openalex":"https://openalex.org/W4400427532","doi":"https://doi.org/10.1007/s10207-024-00877-1"},"language":"en","primary_location":{"id":"doi:10.1007/s10207-024-00877-1","is_oa":true,"landing_page_url":"https://doi.org/10.1007/s10207-024-00877-1","pdf_url":"https://link.springer.com/content/pdf/10.1007/s10207-024-00877-1.pdf","source":{"id":"https://openalex.org/S164062316","display_name":"International Journal of Information Security","issn_l":"1615-5262","issn":["1615-5262","1615-5270"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310319900","host_organization_name":"Springer Science+Business Media","host_organization_lineage":["https://openalex.org/P4310319900","https://openalex.org/P4310319965"],"host_organization_lineage_names":["Springer Science+Business Media","Springer Nature"],"type":"journal"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"International Journal of Information Security","raw_type":"journal-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":true,"oa_status":"hybrid","oa_url":"https://link.springer.com/content/pdf/10.1007/s10207-024-00877-1.pdf","any_repository_has_fulltext":true},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5013554047","display_name":"Marco Rasori","orcid":null},"institutions":[{"id":"https://openalex.org/I4210130157","display_name":"Institute of Informatics and Telematics","ror":"https://ror.org/02gdcn153","country_code":"IT","type":"facility","lineage":["https://openalex.org/I4210130157","https://openalex.org/I4210155236"]},{"id":"https://openalex.org/I4210155236","display_name":"National Research Council","ror":"https://ror.org/04zaypm56","country_code":"IT","type":"nonprofit","lineage":["https://openalex.org/I4210155236"]}],"countries":["IT"],"is_corresponding":true,"raw_author_name":"Marco Rasori","raw_affiliation_strings":["Institute of Informatics and Telematics, National Research Council, Via Giuseppe Moruzzi 1, Pisa, Italy"],"affiliations":[{"raw_affiliation_string":"Institute of Informatics and Telematics, National Research Council, Via Giuseppe Moruzzi 1, Pisa, Italy","institution_ids":["https://openalex.org/I4210130157","https://openalex.org/I4210155236"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5043827499","display_name":"Andrea Saracino","orcid":"https://orcid.org/0000-0001-8149-9322"},"institutions":[{"id":"https://openalex.org/I162290304","display_name":"Scuola Superiore Sant'Anna","ror":"https://ror.org/025602r80","country_code":"IT","type":"education","lineage":["https://openalex.org/I162290304"]},{"id":"https://openalex.org/I4210130157","display_name":"Institute of Informatics and Telematics","ror":"https://ror.org/02gdcn153","country_code":"IT","type":"facility","lineage":["https://openalex.org/I4210130157","https://openalex.org/I4210155236"]},{"id":"https://openalex.org/I4210155236","display_name":"National Research Council","ror":"https://ror.org/04zaypm56","country_code":"IT","type":"nonprofit","lineage":["https://openalex.org/I4210155236"]}],"countries":["IT"],"is_corresponding":false,"raw_author_name":"Andrea Saracino","raw_affiliation_strings":["Department of Excellence in Robotics, AI, Scuola Superiore Sant\u2019Anna, Via Giuseppe Moruzzi 1, Pisa, Italy","Institute of Informatics and Telematics, National Research Council, Via Giuseppe Moruzzi 1, Pisa, Italy"],"affiliations":[{"raw_affiliation_string":"Department of Excellence in Robotics, AI, Scuola Superiore Sant\u2019Anna, Via Giuseppe Moruzzi 1, Pisa, Italy","institution_ids":["https://openalex.org/I162290304"]},{"raw_affiliation_string":"Institute of Informatics and Telematics, National Research Council, Via Giuseppe Moruzzi 1, Pisa, Italy","institution_ids":["https://openalex.org/I4210130157","https://openalex.org/I4210155236"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5084737695","display_name":"Paolo Mori","orcid":"https://orcid.org/0000-0002-6618-0388"},"institutions":[{"id":"https://openalex.org/I4210130157","display_name":"Institute of Informatics and Telematics","ror":"https://ror.org/02gdcn153","country_code":"IT","type":"facility","lineage":["https://openalex.org/I4210130157","https://openalex.org/I4210155236"]},{"id":"https://openalex.org/I4210155236","display_name":"National Research Council","ror":"https://ror.org/04zaypm56","country_code":"IT","type":"nonprofit","lineage":["https://openalex.org/I4210155236"]}],"countries":["IT"],"is_corresponding":false,"raw_author_name":"Paolo Mori","raw_affiliation_strings":["Institute of Informatics and Telematics, National Research Council, Via Giuseppe Moruzzi 1, Pisa, Italy"],"affiliations":[{"raw_affiliation_string":"Institute of Informatics and Telematics, National Research Council, Via Giuseppe Moruzzi 1, Pisa, Italy","institution_ids":["https://openalex.org/I4210130157","https://openalex.org/I4210155236"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5002761474","display_name":"Marco Tiloca","orcid":"https://orcid.org/0000-0001-8842-9810"},"institutions":[{"id":"https://openalex.org/I2800664555","display_name":"RISE Research Institutes of Sweden","ror":"https://ror.org/03nnxqz81","country_code":"SE","type":"other","lineage":["https://openalex.org/I2800664555"]}],"countries":["SE"],"is_corresponding":false,"raw_author_name":"Marco Tiloca","raw_affiliation_strings":["RISE Cybersecurity, RISE Research Institutes of Sweden AB, Isafjordsgatan 22, Kista, Sweden"],"affiliations":[{"raw_affiliation_string":"RISE Cybersecurity, RISE Research Institutes of Sweden AB, Isafjordsgatan 22, Kista, Sweden","institution_ids":["https://openalex.org/I2800664555"]}]}],"institutions":[],"countries_distinct_count":2,"institutions_distinct_count":4,"corresponding_author_ids":["https://openalex.org/A5013554047"],"corresponding_institution_ids":["https://openalex.org/I4210130157","https://openalex.org/I4210155236"],"apc_list":{"value":2590,"currency":"EUR","value_usd":3190},"apc_paid":{"value":2590,"currency":"EUR","value_usd":3190},"fwci":2.2137,"has_fulltext":true,"cited_by_count":2,"citation_normalized_percentile":{"value":0.89066924,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":{"min":95,"max":96},"biblio":{"volume":"23","issue":"5","first_page":"3109","last_page":"3133"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10927","display_name":"Access Control and Trust","score":0.9994000196456909,"subfield":{"id":"https://openalex.org/subfields/3312","display_name":"Sociology and Political Science"},"field":{"id":"https://openalex.org/fields/33","display_name":"Social Sciences"},"domain":{"id":"https://openalex.org/domains/2","display_name":"Social Sciences"}},"topics":[{"id":"https://openalex.org/T10927","display_name":"Access Control and Trust","score":0.9994000196456909,"subfield":{"id":"https://openalex.org/subfields/3312","display_name":"Sociology and Political Science"},"field":{"id":"https://openalex.org/fields/33","display_name":"Social Sciences"},"domain":{"id":"https://openalex.org/domains/2","display_name":"Social Sciences"}},{"id":"https://openalex.org/T13471","display_name":"Cognitive Functions and Memory","score":0.9848999977111816,"subfield":{"id":"https://openalex.org/subfields/3205","display_name":"Experimental and Cognitive Psychology"},"field":{"id":"https://openalex.org/fields/32","display_name":"Psychology"},"domain":{"id":"https://openalex.org/domains/2","display_name":"Social Sciences"}},{"id":"https://openalex.org/T10237","display_name":"Cryptography and Data Security","score":0.9814000129699707,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/access-control","display_name":"Access control","score":0.7181452512741089},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.6471512317657471},{"id":"https://openalex.org/keywords/cryptography","display_name":"Cryptography","score":0.5574135780334473},{"id":"https://openalex.org/keywords/internet-privacy","display_name":"Internet privacy","score":0.4875888228416443},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.4535376727581024}],"concepts":[{"id":"https://openalex.org/C527821871","wikidata":"https://www.wikidata.org/wiki/Q228502","display_name":"Access control","level":2,"score":0.7181452512741089},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.6471512317657471},{"id":"https://openalex.org/C178489894","wikidata":"https://www.wikidata.org/wiki/Q8789","display_name":"Cryptography","level":2,"score":0.5574135780334473},{"id":"https://openalex.org/C108827166","wikidata":"https://www.wikidata.org/wiki/Q175975","display_name":"Internet privacy","level":1,"score":0.4875888228416443},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.4535376727581024}],"mesh":[],"locations_count":3,"locations":[{"id":"doi:10.1007/s10207-024-00877-1","is_oa":true,"landing_page_url":"https://doi.org/10.1007/s10207-024-00877-1","pdf_url":"https://link.springer.com/content/pdf/10.1007/s10207-024-00877-1.pdf","source":{"id":"https://openalex.org/S164062316","display_name":"International Journal of Information Security","issn_l":"1615-5262","issn":["1615-5262","1615-5270"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310319900","host_organization_name":"Springer Science+Business Media","host_organization_lineage":["https://openalex.org/P4310319900","https://openalex.org/P4310319965"],"host_organization_lineage_names":["Springer Science+Business Media","Springer Nature"],"type":"journal"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"International Journal of Information Security","raw_type":"journal-article"},{"id":"pmh:oai:DiVA.org:ri-74636","is_oa":true,"landing_page_url":"https://ri.diva-portal.org/smash/get/diva2:1887175/FULLTEXT01","pdf_url":null,"source":{"id":"https://openalex.org/S4306401559","display_name":"KTH Publication Database DiVA (KTH Royal Institute of Technology)","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":null,"host_organization_name":null,"host_organization_lineage":[],"host_organization_lineage_names":[],"type":"repository"},"license":"other-oa","license_id":"https://openalex.org/licenses/other-oa","version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":null,"raw_type":"text"},{"id":"pmh:oai:www.iris.sssup.it:11382/572008","is_oa":true,"landing_page_url":"https://hdl.handle.net/11382/572008","pdf_url":null,"source":{"id":"https://openalex.org/S4377196376","display_name":"CINECA IRIS Institutional Research Information System (Sant'Anna School of Advanced Studies)","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I162290304","host_organization_name":"Scuola Superiore Sant'Anna","host_organization_lineage":["https://openalex.org/I162290304"],"host_organization_lineage_names":[],"type":"repository"},"license":"other-oa","license_id":"https://openalex.org/licenses/other-oa","version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"","raw_type":"info:eu-repo/semantics/article"}],"best_oa_location":{"id":"doi:10.1007/s10207-024-00877-1","is_oa":true,"landing_page_url":"https://doi.org/10.1007/s10207-024-00877-1","pdf_url":"https://link.springer.com/content/pdf/10.1007/s10207-024-00877-1.pdf","source":{"id":"https://openalex.org/S164062316","display_name":"International Journal of Information Security","issn_l":"1615-5262","issn":["1615-5262","1615-5270"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310319900","host_organization_name":"Springer Science+Business Media","host_organization_lineage":["https://openalex.org/P4310319900","https://openalex.org/P4310319965"],"host_organization_lineage_names":["Springer Science+Business Media","Springer Nature"],"type":"journal"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"International Journal of Information Security","raw_type":"journal-article"},"sustainable_development_goals":[],"awards":[{"id":"https://openalex.org/G4320622773","display_name":null,"funder_award_id":"952652","funder_id":"https://openalex.org/F4320332999","funder_display_name":"Horizon 2020 Framework Programme"}],"funders":[{"id":"https://openalex.org/F4320321030","display_name":"VINNOVA","ror":"https://ror.org/01kd5m353"},{"id":"https://openalex.org/F4320322651","display_name":"Consiglio Nazionale delle Ricerche","ror":"https://ror.org/04zaypm56"},{"id":"https://openalex.org/F4320332999","display_name":"Horizon 2020 Framework Programme","ror":"https://ror.org/00k4n6c32"},{"id":"https://openalex.org/F4320338388","display_name":"Eurostars","ror":null}],"has_content":{"pdf":true,"grobid_xml":true},"content_urls":{"pdf":"https://content.openalex.org/works/W4400427532.pdf","grobid_xml":"https://content.openalex.org/works/W4400427532.grobid-xml"},"referenced_works_count":36,"referenced_works":["https://openalex.org/W1022403279","https://openalex.org/W1824139442","https://openalex.org/W2068189899","https://openalex.org/W2081444525","https://openalex.org/W2085517129","https://openalex.org/W2112995928","https://openalex.org/W2166602595","https://openalex.org/W2234639732","https://openalex.org/W2254160488","https://openalex.org/W2263365646","https://openalex.org/W2285158837","https://openalex.org/W2311411768","https://openalex.org/W2341513648","https://openalex.org/W2343183650","https://openalex.org/W2493084839","https://openalex.org/W2512955429","https://openalex.org/W2553727764","https://openalex.org/W2569531417","https://openalex.org/W2596424272","https://openalex.org/W2606611365","https://openalex.org/W2624245492","https://openalex.org/W2780393002","https://openalex.org/W2795042312","https://openalex.org/W2923195000","https://openalex.org/W2927374721","https://openalex.org/W2955671858","https://openalex.org/W2963972431","https://openalex.org/W3002823324","https://openalex.org/W3109508055","https://openalex.org/W3119090804","https://openalex.org/W4236546623","https://openalex.org/W4238355153","https://openalex.org/W4293843058","https://openalex.org/W4293843102","https://openalex.org/W4300782170","https://openalex.org/W4402547714"],"related_works":["https://openalex.org/W4391375266","https://openalex.org/W2748952813","https://openalex.org/W2390279801","https://openalex.org/W2358668433","https://openalex.org/W4396701345","https://openalex.org/W2376932109","https://openalex.org/W2001405890","https://openalex.org/W4396696052","https://openalex.org/W2060145807","https://openalex.org/W4248806346"],"abstract_inverted_index":{"Abstract":[0],"The":[1],"standard":[2,15],"ACE":[3,30,132],"framework":[4,123],"provides":[5],"authentication":[6],"and":[7,37,62,81,135,147,154,170,213],"authorization":[8],"mechanisms":[9],"similar":[10],"to":[11,55,58,145,167,195,216],"those":[12],"of":[13,142,192,201],"the":[14,78,83,109,120,131,160,190,199,208],"OAuth":[16,33],"2.0":[17],"framework,":[18],"but":[19,102],"it":[20,90],"is":[21,69,98],"intended":[22],"for":[23,130,163],"use":[24],"in":[25,140,180],"Internet-of-Things":[26],"environments.":[27],"In":[28,44,115],"particular,":[29],"relies":[31],"on":[32,159],"2.0,":[34],"CoAP,":[35,164],"CBOR,":[36],"COSE":[38],"as":[39,124,205,207],"its":[40,138],"core":[41],"building":[42],"blocks.":[43],"ACE,":[45],"a":[46,73,87,95,156,181],"non-constrained":[47],"entity":[48],"called":[49],"Authorization":[50,110,133],"Server":[51,111],"issues":[52],"Access":[53,67,79,92,149,175,203,220],"Tokens":[54,93,221],"Clients":[56,169,212],"according":[57],"some":[59],"access":[60,86,127,194],"control":[61,128],"policy":[63],"evaluation":[64],"mechanism.":[65],"An":[66],"Token":[68,80],"then":[70],"consumed":[71],"by":[72,108,211],"Resource":[74,171,214],"Server,":[75,134],"which":[76,97,165],"verifies":[77],"lets":[82],"Client":[84],"accordingly":[85],"protected":[88,196],"resource":[89],"hosts.":[91],"have":[94],"validity":[96],"limited":[99],"over":[100],"time,":[101],"they":[103,113],"can":[104],"also":[105],"be":[106],"revoked":[107,174],"before":[112],"expire.":[114],"this":[116,187],"work,":[117],"we":[118,136,152,184],"propose":[119],"Usage":[121],"Control":[122],"an":[125,202],"underlying":[126],"means":[129],"assess":[137],"performance":[139],"terms":[141],"time":[143,209],"required":[144],"issue":[146],"revoke":[148],"Tokens.":[150,176],"Moreover,":[151],"implement":[153],"evaluate":[155],"method":[157,188],"relying":[158],"Observe":[161],"extension":[162],"allows":[166],"notify":[168],"Servers":[172,215],"about":[173,218],"Through":[177],"results":[178],"obtained":[179],"real":[182],"testbed,":[183],"show":[185],"how":[186],"reduces":[189],"duration":[191],"illegitimate":[193],"resources":[197],"following":[198],"revocation":[200],"Token,":[204],"well":[206],"spent":[210],"learn":[217],"their":[219],"being":[222],"revoked.":[223]},"counts_by_year":[{"year":2025,"cited_by_count":2}],"updated_date":"2026-04-10T15:06:20.359241","created_date":"2025-10-10T00:00:00"}