{"id":"https://openalex.org/W7131632833","doi":"https://doi.org/10.1007/s10207-025-01130-z","title":"Graph-based formal modeling and implementation of access control policies with automated conflict and redundancy detection","display_name":"Graph-based formal modeling and implementation of access control policies with automated conflict and redundancy detection","publication_year":2026,"publication_date":"2026-02-26","ids":{"openalex":"https://openalex.org/W7131632833","doi":"https://doi.org/10.1007/s10207-025-01130-z"},"language":"en","primary_location":{"id":"doi:10.1007/s10207-025-01130-z","is_oa":true,"landing_page_url":"https://doi.org/10.1007/s10207-025-01130-z","pdf_url":"https://link.springer.com/content/pdf/10.1007/s10207-025-01130-z.pdf","source":{"id":"https://openalex.org/S164062316","display_name":"International Journal of Information Security","issn_l":"1615-5262","issn":["1615-5262","1615-5270"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310319900","host_organization_name":"Springer Science+Business Media","host_organization_lineage":["https://openalex.org/P4310319900","https://openalex.org/P4310319965"],"host_organization_lineage_names":["Springer Science+Business Media","Springer Nature"],"type":"journal"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"International Journal of Information Security","raw_type":"journal-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":true,"oa_status":"hybrid","oa_url":"https://link.springer.com/content/pdf/10.1007/s10207-025-01130-z.pdf","any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5114745298","display_name":"Azan Hamad Alkhorem","orcid":"https://orcid.org/0000-0001-8422-7947"},"institutions":[{"id":"https://openalex.org/I155093810","display_name":"University of Idaho","ror":"https://ror.org/03hbp5t65","country_code":"US","type":"education","lineage":["https://openalex.org/I155093810"]},{"id":"https://openalex.org/I195631090","display_name":"Majmaah University","ror":"https://ror.org/01mcrnj60","country_code":"SA","type":"education","lineage":["https://openalex.org/I195631090"]}],"countries":["SA","US"],"is_corresponding":false,"raw_author_name":"Azan Hamad Alkhorem","raw_affiliation_strings":["Computer Science, University of Idaho, Moscow, 83844, ID, USA","Department of Computer Engineering, College of Computer Science and Information Technology, Majmaah University, Majmaah, 11952, Saudi Arabia"],"affiliations":[{"raw_affiliation_string":"Computer Science, University of Idaho, Moscow, 83844, ID, USA","institution_ids":["https://openalex.org/I155093810"]},{"raw_affiliation_string":"Department of Computer Engineering, College of Computer Science and Information Technology, Majmaah University, Majmaah, 11952, Saudi Arabia","institution_ids":["https://openalex.org/I195631090"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5090147952","display_name":"Daniel Conte de Leon","orcid":"https://orcid.org/0000-0002-9857-3370"},"institutions":[{"id":"https://openalex.org/I155093810","display_name":"University of Idaho","ror":"https://ror.org/03hbp5t65","country_code":"US","type":"education","lineage":["https://openalex.org/I155093810"]}],"countries":["US"],"is_corresponding":true,"raw_author_name":"Daniel Conte de Leon","raw_affiliation_strings":["Computer Science, University of Idaho, Moscow, 83844, ID, USA"],"affiliations":[{"raw_affiliation_string":"Computer Science, University of Idaho, Moscow, 83844, ID, USA","institution_ids":["https://openalex.org/I155093810"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5005333091","display_name":"Ananth Abhishek Jillepalli","orcid":null},"institutions":[{"id":"https://openalex.org/I72951846","display_name":"Washington State University","ror":"https://ror.org/05dk0ce17","country_code":"US","type":"education","lineage":["https://openalex.org/I72951846"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Ananth A. Jillepalli","raw_affiliation_strings":["College of Electrical Engineering and Computer Science, Washington State University, Pullman, 99164, WA, USA"],"affiliations":[{"raw_affiliation_string":"College of Electrical Engineering and Computer Science, Washington State University, Pullman, 99164, WA, USA","institution_ids":["https://openalex.org/I72951846"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5086914097","display_name":"Jia Song","orcid":"https://orcid.org/0009-0009-6954-6822"},"institutions":[{"id":"https://openalex.org/I155093810","display_name":"University of Idaho","ror":"https://ror.org/03hbp5t65","country_code":"US","type":"education","lineage":["https://openalex.org/I155093810"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Jia Song","raw_affiliation_strings":["Computer Science, University of Idaho, Moscow, 83844, ID, USA"],"affiliations":[{"raw_affiliation_string":"Computer Science, University of Idaho, Moscow, 83844, ID, USA","institution_ids":["https://openalex.org/I155093810"]}]}],"institutions":[],"countries_distinct_count":2,"institutions_distinct_count":4,"corresponding_author_ids":["https://openalex.org/A5090147952"],"corresponding_institution_ids":["https://openalex.org/I155093810"],"apc_list":{"value":2590,"currency":"EUR","value_usd":3190},"apc_paid":{"value":2590,"currency":"EUR","value_usd":3190},"fwci":0.0,"has_fulltext":true,"cited_by_count":0,"citation_normalized_percentile":{"value":0.68603323,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":null,"biblio":{"volume":"25","issue":"2","first_page":null,"last_page":null},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10927","display_name":"Access Control and Trust","score":0.9473000168800354,"subfield":{"id":"https://openalex.org/subfields/3312","display_name":"Sociology and Political Science"},"field":{"id":"https://openalex.org/fields/33","display_name":"Social Sciences"},"domain":{"id":"https://openalex.org/domains/2","display_name":"Social Sciences"}},"topics":[{"id":"https://openalex.org/T10927","display_name":"Access Control and Trust","score":0.9473000168800354,"subfield":{"id":"https://openalex.org/subfields/3312","display_name":"Sociology and Political Science"},"field":{"id":"https://openalex.org/fields/33","display_name":"Social Sciences"},"domain":{"id":"https://openalex.org/domains/2","display_name":"Social Sciences"}},{"id":"https://openalex.org/T10734","display_name":"Information and Cyber Security","score":0.01640000008046627,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T12203","display_name":"Mobile Agent-Based Network Management","score":0.003100000089034438,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/access-control","display_name":"Access control","score":0.8126000165939331},{"id":"https://openalex.org/keywords/delegation","display_name":"Delegation","score":0.5616999864578247},{"id":"https://openalex.org/keywords/security-policy","display_name":"Security policy","score":0.5357000231742859},{"id":"https://openalex.org/keywords/redundancy","display_name":"Redundancy (engineering)","score":0.5019999742507935},{"id":"https://openalex.org/keywords/scripting-language","display_name":"Scripting language","score":0.5012999773025513},{"id":"https://openalex.org/keywords/role-based-access-control","display_name":"Role-based access control","score":0.4781999886035919},{"id":"https://openalex.org/keywords/cryptography","display_name":"Cryptography","score":0.4555000066757202},{"id":"https://openalex.org/keywords/permission","display_name":"Permission","score":0.4350999891757965},{"id":"https://openalex.org/keywords/conflict-resolution","display_name":"Conflict resolution","score":0.420199990272522},{"id":"https://openalex.org/keywords/context","display_name":"Context (archaeology)","score":0.4153999984264374}],"concepts":[{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.8223999738693237},{"id":"https://openalex.org/C527821871","wikidata":"https://www.wikidata.org/wiki/Q228502","display_name":"Access control","level":2,"score":0.8126000165939331},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.6588000059127808},{"id":"https://openalex.org/C86532276","wikidata":"https://www.wikidata.org/wiki/Q1184065","display_name":"Delegation","level":2,"score":0.5616999864578247},{"id":"https://openalex.org/C154908896","wikidata":"https://www.wikidata.org/wiki/Q2167404","display_name":"Security policy","level":2,"score":0.5357000231742859},{"id":"https://openalex.org/C152124472","wikidata":"https://www.wikidata.org/wiki/Q1204361","display_name":"Redundancy (engineering)","level":2,"score":0.5019999742507935},{"id":"https://openalex.org/C61423126","wikidata":"https://www.wikidata.org/wiki/Q187432","display_name":"Scripting language","level":2,"score":0.5012999773025513},{"id":"https://openalex.org/C45567728","wikidata":"https://www.wikidata.org/wiki/Q1702839","display_name":"Role-based access control","level":3,"score":0.4781999886035919},{"id":"https://openalex.org/C178489894","wikidata":"https://www.wikidata.org/wiki/Q8789","display_name":"Cryptography","level":2,"score":0.4555000066757202},{"id":"https://openalex.org/C2779089604","wikidata":"https://www.wikidata.org/wiki/Q7169333","display_name":"Permission","level":2,"score":0.4350999891757965},{"id":"https://openalex.org/C21711469","wikidata":"https://www.wikidata.org/wiki/Q1194317","display_name":"Conflict resolution","level":2,"score":0.420199990272522},{"id":"https://openalex.org/C2779343474","wikidata":"https://www.wikidata.org/wiki/Q3109175","display_name":"Context (archaeology)","level":2,"score":0.4153999984264374},{"id":"https://openalex.org/C148730421","wikidata":"https://www.wikidata.org/wiki/Q141090","display_name":"Encryption","level":2,"score":0.3822000026702881},{"id":"https://openalex.org/C519991488","wikidata":"https://www.wikidata.org/wiki/Q28865","display_name":"Python (programming language)","level":2,"score":0.3546999990940094},{"id":"https://openalex.org/C44415380","wikidata":"https://www.wikidata.org/wiki/Q17008721","display_name":"Computer access control","level":3,"score":0.3440000116825104},{"id":"https://openalex.org/C2775937380","wikidata":"https://www.wikidata.org/wiki/Q1232589","display_name":"Replica","level":2,"score":0.33570000529289246},{"id":"https://openalex.org/C2779886121","wikidata":"https://www.wikidata.org/wiki/Q288682","display_name":"XACML","level":3,"score":0.32499998807907104},{"id":"https://openalex.org/C121822524","wikidata":"https://www.wikidata.org/wiki/Q5157582","display_name":"Computer security model","level":2,"score":0.3230000138282776},{"id":"https://openalex.org/C108759981","wikidata":"https://www.wikidata.org/wiki/Q788590","display_name":"Authorization","level":2,"score":0.31869998574256897},{"id":"https://openalex.org/C75606506","wikidata":"https://www.wikidata.org/wiki/Q1049183","display_name":"Formal methods","level":2,"score":0.3174999952316284},{"id":"https://openalex.org/C115901376","wikidata":"https://www.wikidata.org/wiki/Q184199","display_name":"Automation","level":2,"score":0.31459999084472656},{"id":"https://openalex.org/C71745522","wikidata":"https://www.wikidata.org/wiki/Q2476929","display_name":"Confidentiality","level":2,"score":0.3127000033855438},{"id":"https://openalex.org/C187191949","wikidata":"https://www.wikidata.org/wiki/Q1138496","display_name":"Profiling (computer programming)","level":2,"score":0.3118000030517578},{"id":"https://openalex.org/C527648132","wikidata":"https://www.wikidata.org/wiki/Q189900","display_name":"Information security","level":2,"score":0.2818000018596649},{"id":"https://openalex.org/C38369872","wikidata":"https://www.wikidata.org/wiki/Q7445009","display_name":"Security analysis","level":2,"score":0.27970001101493835},{"id":"https://openalex.org/C100587491","wikidata":"https://www.wikidata.org/wiki/Q1474665","display_name":"Separation of duties","level":4,"score":0.27880001068115234},{"id":"https://openalex.org/C2776654903","wikidata":"https://www.wikidata.org/wiki/Q2601463","display_name":"SAFER","level":2,"score":0.26499998569488525},{"id":"https://openalex.org/C2777407602","wikidata":"https://www.wikidata.org/wiki/Q1888932","display_name":"Mandatory access control","level":4,"score":0.2648000121116638},{"id":"https://openalex.org/C116253237","wikidata":"https://www.wikidata.org/wiki/Q1437424","display_name":"Formal specification","level":2,"score":0.25999999046325684},{"id":"https://openalex.org/C2776214188","wikidata":"https://www.wikidata.org/wiki/Q408386","display_name":"Inference","level":2,"score":0.2565000057220459},{"id":"https://openalex.org/C86844869","wikidata":"https://www.wikidata.org/wiki/Q2798820","display_name":"Hacker","level":2,"score":0.2522999942302704},{"id":"https://openalex.org/C183322885","wikidata":"https://www.wikidata.org/wiki/Q17007702","display_name":"Context model","level":3,"score":0.2500999867916107}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1007/s10207-025-01130-z","is_oa":true,"landing_page_url":"https://doi.org/10.1007/s10207-025-01130-z","pdf_url":"https://link.springer.com/content/pdf/10.1007/s10207-025-01130-z.pdf","source":{"id":"https://openalex.org/S164062316","display_name":"International Journal of Information Security","issn_l":"1615-5262","issn":["1615-5262","1615-5270"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310319900","host_organization_name":"Springer Science+Business Media","host_organization_lineage":["https://openalex.org/P4310319900","https://openalex.org/P4310319965"],"host_organization_lineage_names":["Springer Science+Business Media","Springer Nature"],"type":"journal"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"International Journal of Information Security","raw_type":"journal-article"}],"best_oa_location":{"id":"doi:10.1007/s10207-025-01130-z","is_oa":true,"landing_page_url":"https://doi.org/10.1007/s10207-025-01130-z","pdf_url":"https://link.springer.com/content/pdf/10.1007/s10207-025-01130-z.pdf","source":{"id":"https://openalex.org/S164062316","display_name":"International Journal of Information Security","issn_l":"1615-5262","issn":["1615-5262","1615-5270"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310319900","host_organization_name":"Springer Science+Business Media","host_organization_lineage":["https://openalex.org/P4310319900","https://openalex.org/P4310319965"],"host_organization_lineage_names":["Springer Science+Business Media","Springer Nature"],"type":"journal"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"International Journal of Information Security","raw_type":"journal-article"},"sustainable_development_goals":[{"id":"https://metadata.un.org/sdg/16","score":0.7902244329452515,"display_name":"Peace, Justice and strong institutions"}],"awards":[],"funders":[],"has_content":{"pdf":true,"grobid_xml":true},"content_urls":{"pdf":"https://content.openalex.org/works/W7131632833.pdf","grobid_xml":"https://content.openalex.org/works/W7131632833.grobid-xml"},"referenced_works_count":44,"referenced_works":["https://openalex.org/W1455721078","https://openalex.org/W1503481282","https://openalex.org/W1567109864","https://openalex.org/W1573773559","https://openalex.org/W1593595778","https://openalex.org/W1598652546","https://openalex.org/W1965410329","https://openalex.org/W1996683534","https://openalex.org/W1997167772","https://openalex.org/W2002220214","https://openalex.org/W2012419258","https://openalex.org/W2030089284","https://openalex.org/W2042567627","https://openalex.org/W2048540553","https://openalex.org/W2051014795","https://openalex.org/W2058552729","https://openalex.org/W2090254558","https://openalex.org/W2114917462","https://openalex.org/W2119807378","https://openalex.org/W2164104503","https://openalex.org/W2169178655","https://openalex.org/W2264699053","https://openalex.org/W2500831913","https://openalex.org/W2566006170","https://openalex.org/W2588846275","https://openalex.org/W2617830947","https://openalex.org/W2741433474","https://openalex.org/W2805336398","https://openalex.org/W2889553682","https://openalex.org/W2953207480","https://openalex.org/W2976189582","https://openalex.org/W3013030332","https://openalex.org/W4238163301","https://openalex.org/W4399338791","https://openalex.org/W4399993451","https://openalex.org/W4399994962","https://openalex.org/W4403024510","https://openalex.org/W4403223445","https://openalex.org/W4403447586","https://openalex.org/W4404823305","https://openalex.org/W4405414736","https://openalex.org/W4408070753","https://openalex.org/W4410692795","https://openalex.org/W4411015536"],"related_works":[],"abstract_inverted_index":{"Abstract":[0],"Zero":[1],"Trust":[2],"is":[3],"an":[4,12,154,167],"approach":[5],"allowing":[6],"for":[7],"increased":[8],"security":[9,24],"by":[10],"providing":[11],"object":[13,158],"or":[14,54,64,67,114,152,162],"a":[15,133,160,174],"subject":[16],"with":[17,28,91,97,118,199],"the":[18,29,86,121,126,136,142,147,157,178,186,189,206],"three":[19],"CIA":[20,30],"(Confidentiality,":[21],"Integrity,":[22],"Availability)":[23],"aspects.":[25],"To":[26],"comply":[27],"criteria,":[31],"access":[32,103,194],"control":[33,104,195],"models":[34],"need":[35,72],"to":[36,52,62,73,82,99,120,135,159,192],"support":[37],"functionalities":[38],"such":[39],"as:":[40],"a)":[41],"safer":[42],"permission":[43],"grant":[44],"and":[45,57,85,128,208],"authorization":[46],"processes,":[47],"b)":[48],"policy":[49,59,213],"decision":[50,60],"delivery":[51,61],"single":[53,63,161],"multiple":[55,65,163,170],"users,":[56],"c)":[58],"actions":[66],"objects.":[68],"In":[69],"addition,":[70],"we":[71],"consider":[74,112],"redundancy,":[75],"conflict":[76,116],"detection,":[77],"different":[78,92],"types":[79],"of":[80,88,108,146,177,188,201,205],"permissions":[81],"delegate,":[83],"delegation,":[84],"separation":[87],"duties":[89],"(SoD)":[90],"types.":[93],"Extensive":[94],"literature":[95],"exists":[96],"respect":[98],"delegation":[100,137],"operations":[101],"on":[102,156],"models,":[105],"but":[106],"most":[107],"them":[109],"do":[110],"not":[111],"redundancy":[113],"partial":[115],"detection":[117],"regard":[119],"standard":[122,148],"policies.":[123],"We":[124,140,165],"address":[125,141],"positive":[127,207],"negative":[129,209],"policies":[130,149],"resolution":[131,196],"as":[132],"precursor":[134],"request":[138],"resolution.":[139],"resolutions":[143],"in":[144,203],"context":[145,204],"that":[150],"allow":[151],"deny":[153],"action":[155],"subjects.":[164],"provide":[166],"analysis":[168,184],"via":[169],"case":[171],"studies":[172],"using":[173],"Python":[175],"implementation":[176],"HPol":[179,190],"(Hierarchical":[180],"Policy)":[181],"model.":[182],"Our":[183],"demonstrates":[185],"ability":[187],"model":[191],"handle":[193],"issues":[197],"discussed,":[198],"proof":[200],"results":[202],"(YES":[210],"&amp;":[211],"NO)":[212],"requests.":[214]},"counts_by_year":[],"updated_date":"2026-03-13T14:20:09.374765","created_date":"2026-02-27T00:00:00"}