{"id":"https://openalex.org/W2167881054","doi":"https://doi.org/10.1016/s0950-5849(03)00097-1","title":"Modelling access policies using roles in requirements engineering","display_name":"Modelling access policies using roles in requirements engineering","publication_year":2003,"publication_date":"2003-07-22","ids":{"openalex":"https://openalex.org/W2167881054","doi":"https://doi.org/10.1016/s0950-5849(03)00097-1","mag":"2167881054"},"language":"en","primary_location":{"id":"doi:10.1016/s0950-5849(03)00097-1","is_oa":false,"landing_page_url":"https://doi.org/10.1016/s0950-5849(03)00097-1","pdf_url":null,"source":{"id":"https://openalex.org/S205010575","display_name":"Information and Software Technology","issn_l":"0950-5849","issn":["0950-5849","1873-6025"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310320990","host_organization_name":"Elsevier BV","host_organization_lineage":["https://openalex.org/P4310320990"],"host_organization_lineage_names":["Elsevier BV"],"type":"journal"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Information and Software Technology","raw_type":"journal-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5025573867","display_name":"Robert Crook","orcid":null},"institutions":[{"id":"https://openalex.org/I204136569","display_name":"The Open University","ror":"https://ror.org/05mzfcs16","country_code":"GB","type":"education","lineage":["https://openalex.org/I204136569"]}],"countries":["GB"],"is_corresponding":true,"raw_author_name":"Robert Crook","raw_affiliation_strings":["Security Requirements Group, Department of Computing, The Open University, Walton Hall, Milton Keynes MK7 6AA, UK"],"affiliations":[{"raw_affiliation_string":"Security Requirements Group, Department of Computing, The Open University, Walton Hall, Milton Keynes MK7 6AA, UK","institution_ids":["https://openalex.org/I204136569"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5103902563","display_name":"Darrel Ince","orcid":null},"institutions":[{"id":"https://openalex.org/I204136569","display_name":"The Open University","ror":"https://ror.org/05mzfcs16","country_code":"GB","type":"education","lineage":["https://openalex.org/I204136569"]}],"countries":["GB"],"is_corresponding":false,"raw_author_name":"Darrel Ince","raw_affiliation_strings":["Security Requirements Group, Department of Computing, The Open University, Walton Hall, Milton Keynes MK7 6AA, UK"],"affiliations":[{"raw_affiliation_string":"Security Requirements Group, Department of Computing, The Open University, Walton Hall, Milton Keynes MK7 6AA, UK","institution_ids":["https://openalex.org/I204136569"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5060861082","display_name":"Bashar Nuseibeh","orcid":"https://orcid.org/0000-0002-3476-053X"},"institutions":[{"id":"https://openalex.org/I204136569","display_name":"The Open University","ror":"https://ror.org/05mzfcs16","country_code":"GB","type":"education","lineage":["https://openalex.org/I204136569"]}],"countries":["GB"],"is_corresponding":false,"raw_author_name":"Bashar Nuseibeh","raw_affiliation_strings":["Security Requirements Group, Department of Computing, The Open University, Walton Hall, Milton Keynes MK7 6AA, UK"],"affiliations":[{"raw_affiliation_string":"Security Requirements Group, Department of Computing, The Open University, Walton Hall, Milton Keynes MK7 6AA, UK","institution_ids":["https://openalex.org/I204136569"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":3,"corresponding_author_ids":["https://openalex.org/A5025573867"],"corresponding_institution_ids":["https://openalex.org/I204136569"],"apc_list":{"value":3350,"currency":"USD","value_usd":3350},"apc_paid":null,"fwci":14.9765,"has_fulltext":false,"cited_by_count":54,"citation_normalized_percentile":{"value":0.98526257,"is_in_top_1_percent":false,"is_in_top_10_percent":true},"cited_by_percentile_year":{"min":89,"max":97},"biblio":{"volume":"45","issue":"14","first_page":"979","last_page":"991"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10927","display_name":"Access Control and Trust","score":0.9998999834060669,"subfield":{"id":"https://openalex.org/subfields/3312","display_name":"Sociology and Political Science"},"field":{"id":"https://openalex.org/fields/33","display_name":"Social Sciences"},"domain":{"id":"https://openalex.org/domains/2","display_name":"Social Sciences"}},"topics":[{"id":"https://openalex.org/T10927","display_name":"Access Control and Trust","score":0.9998999834060669,"subfield":{"id":"https://openalex.org/subfields/3312","display_name":"Sociology and Political Science"},"field":{"id":"https://openalex.org/fields/33","display_name":"Social Sciences"},"domain":{"id":"https://openalex.org/domains/2","display_name":"Social Sciences"}},{"id":"https://openalex.org/T10734","display_name":"Information and Cyber Security","score":0.9977999925613403,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11424","display_name":"Security and Verification in Computing","score":0.9945999979972839,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/security-engineering","display_name":"Security engineering","score":0.6651625037193298},{"id":"https://openalex.org/keywords/requirements-engineering","display_name":"Requirements engineering","score":0.6343632936477661},{"id":"https://openalex.org/keywords/key","display_name":"Key (lock)","score":0.5480672121047974},{"id":"https://openalex.org/keywords/security-policy","display_name":"Security policy","score":0.5030249953269958},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.4841369092464447},{"id":"https://openalex.org/keywords/risk-analysis","display_name":"Risk analysis (engineering)","score":0.46651163697242737},{"id":"https://openalex.org/keywords/requirements-analysis","display_name":"Requirements analysis","score":0.45658960938453674},{"id":"https://openalex.org/keywords/process-management","display_name":"Process management","score":0.3606451749801636},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.3492739200592041},{"id":"https://openalex.org/keywords/engineering","display_name":"Engineering","score":0.29441899061203003},{"id":"https://openalex.org/keywords/business","display_name":"Business","score":0.24716684222221375},{"id":"https://openalex.org/keywords/network-security-policy","display_name":"Network security policy","score":0.24229910969734192},{"id":"https://openalex.org/keywords/information-security","display_name":"Information security","score":0.23947665095329285},{"id":"https://openalex.org/keywords/security-service","display_name":"Security service","score":0.23604491353034973},{"id":"https://openalex.org/keywords/software","display_name":"Software","score":0.08268740773200989}],"concepts":[{"id":"https://openalex.org/C13159133","wikidata":"https://www.wikidata.org/wiki/Q365674","display_name":"Security engineering","level":5,"score":0.6651625037193298},{"id":"https://openalex.org/C6604083","wikidata":"https://www.wikidata.org/wiki/Q376937","display_name":"Requirements engineering","level":3,"score":0.6343632936477661},{"id":"https://openalex.org/C26517878","wikidata":"https://www.wikidata.org/wiki/Q228039","display_name":"Key (lock)","level":2,"score":0.5480672121047974},{"id":"https://openalex.org/C154908896","wikidata":"https://www.wikidata.org/wiki/Q2167404","display_name":"Security policy","level":2,"score":0.5030249953269958},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.4841369092464447},{"id":"https://openalex.org/C112930515","wikidata":"https://www.wikidata.org/wiki/Q4389547","display_name":"Risk analysis (engineering)","level":1,"score":0.46651163697242737},{"id":"https://openalex.org/C59488412","wikidata":"https://www.wikidata.org/wiki/Q187147","display_name":"Requirements analysis","level":3,"score":0.45658960938453674},{"id":"https://openalex.org/C195094911","wikidata":"https://www.wikidata.org/wiki/Q14167904","display_name":"Process management","level":1,"score":0.3606451749801636},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.3492739200592041},{"id":"https://openalex.org/C127413603","wikidata":"https://www.wikidata.org/wiki/Q11023","display_name":"Engineering","level":0,"score":0.29441899061203003},{"id":"https://openalex.org/C144133560","wikidata":"https://www.wikidata.org/wiki/Q4830453","display_name":"Business","level":0,"score":0.24716684222221375},{"id":"https://openalex.org/C117110713","wikidata":"https://www.wikidata.org/wiki/Q3394676","display_name":"Network security policy","level":4,"score":0.24229910969734192},{"id":"https://openalex.org/C527648132","wikidata":"https://www.wikidata.org/wiki/Q189900","display_name":"Information security","level":2,"score":0.23947665095329285},{"id":"https://openalex.org/C29983905","wikidata":"https://www.wikidata.org/wiki/Q7445066","display_name":"Security service","level":3,"score":0.23604491353034973},{"id":"https://openalex.org/C2777904410","wikidata":"https://www.wikidata.org/wiki/Q7397","display_name":"Software","level":2,"score":0.08268740773200989},{"id":"https://openalex.org/C199360897","wikidata":"https://www.wikidata.org/wiki/Q9143","display_name":"Programming language","level":1,"score":0.0}],"mesh":[],"locations_count":3,"locations":[{"id":"doi:10.1016/s0950-5849(03)00097-1","is_oa":false,"landing_page_url":"https://doi.org/10.1016/s0950-5849(03)00097-1","pdf_url":null,"source":{"id":"https://openalex.org/S205010575","display_name":"Information and Software Technology","issn_l":"0950-5849","issn":["0950-5849","1873-6025"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310320990","host_organization_name":"Elsevier BV","host_organization_lineage":["https://openalex.org/P4310320990"],"host_organization_lineage_names":["Elsevier BV"],"type":"journal"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Information and Software Technology","raw_type":"journal-article"},{"id":"pmh:oai:CiteSeerX.psu:10.1.1.13.5312","is_oa":false,"landing_page_url":"http://citeseerx.ist.psu.edu/viewdoc/summary?doi=10.1.1.13.5312","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"http://mcs.open.ac.uk/ban25/papers/ist.03.pdf","raw_type":"text"},{"id":"pmh:oai:oro.open.ac.uk:3619","is_oa":false,"landing_page_url":"https://oro.open.ac.uk/3619/","pdf_url":null,"source":{"id":"https://openalex.org/S4306401187","display_name":"Open Research Online (The Open University)","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I204136569","host_organization_name":"The Open University","host_organization_lineage":["https://openalex.org/I204136569"],"host_organization_lineage_names":[],"type":"repository"},"license":null,"license_id":null,"version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"","raw_type":"Journal Item"}],"best_oa_location":null,"sustainable_development_goals":[{"score":0.6600000262260437,"id":"https://metadata.un.org/sdg/16","display_name":"Peace, Justice and strong institutions"}],"awards":[],"funders":[],"has_content":{"pdf":false,"grobid_xml":false},"content_urls":null,"referenced_works_count":30,"referenced_works":["https://openalex.org/W69731397","https://openalex.org/W1519988981","https://openalex.org/W1543439672","https://openalex.org/W1552489700","https://openalex.org/W1589207699","https://openalex.org/W1898015721","https://openalex.org/W1998109675","https://openalex.org/W1998208223","https://openalex.org/W2012849092","https://openalex.org/W2015432046","https://openalex.org/W2017739343","https://openalex.org/W2060690494","https://openalex.org/W2063838657","https://openalex.org/W2076004681","https://openalex.org/W2102412856","https://openalex.org/W2112214363","https://openalex.org/W2132142278","https://openalex.org/W2132822754","https://openalex.org/W2144794336","https://openalex.org/W2152505375","https://openalex.org/W2162862019","https://openalex.org/W2164396200","https://openalex.org/W2166602595","https://openalex.org/W2171760457","https://openalex.org/W2984218511","https://openalex.org/W4253045874","https://openalex.org/W4285719527","https://openalex.org/W6632723739","https://openalex.org/W6639697464","https://openalex.org/W6682897138"],"related_works":["https://openalex.org/W4300926240","https://openalex.org/W1190389589","https://openalex.org/W2796574428","https://openalex.org/W2145375167","https://openalex.org/W1975458693","https://openalex.org/W2054515615","https://openalex.org/W1662441884","https://openalex.org/W2183689037","https://openalex.org/W2167881054","https://openalex.org/W2404725160"],"abstract_inverted_index":null,"counts_by_year":[{"year":2021,"cited_by_count":1},{"year":2018,"cited_by_count":1},{"year":2016,"cited_by_count":1},{"year":2015,"cited_by_count":3},{"year":2014,"cited_by_count":2},{"year":2012,"cited_by_count":3}],"updated_date":"2026-04-04T16:13:02.066488","created_date":"2025-10-10T00:00:00"}