{"id":"https://openalex.org/W4362496414","doi":"https://doi.org/10.1109/tifs.2023.3264152","title":"SysFlow: Toward a Programmable Zero Trust Framework for System Security","display_name":"SysFlow: Toward a Programmable Zero Trust Framework for System Security","publication_year":2023,"publication_date":"2023-01-01","ids":{"openalex":"https://openalex.org/W4362496414","doi":"https://doi.org/10.1109/tifs.2023.3264152"},"language":"en","primary_location":{"id":"doi:10.1109/tifs.2023.3264152","is_oa":false,"landing_page_url":"https://doi.org/10.1109/tifs.2023.3264152","pdf_url":null,"source":{"id":"https://openalex.org/S61310614","display_name":"IEEE Transactions on Information Forensics and Security","issn_l":"1556-6013","issn":["1556-6013","1556-6021"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310319808","host_organization_name":"Institute of Electrical and Electronics Engineers","host_organization_lineage":["https://openalex.org/P4310319808"],"host_organization_lineage_names":["Institute of Electrical and Electronics Engineers"],"type":"journal"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"IEEE Transactions on Information Forensics and Security","raw_type":"journal-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5064874483","display_name":"Sungmin Hong","orcid":"https://orcid.org/0000-0002-0024-1117"},"institutions":[{"id":"https://openalex.org/I91045830","display_name":"Texas A&M University","ror":"https://ror.org/01f5ytq51","country_code":"US","type":"education","lineage":["https://openalex.org/I91045830"]}],"countries":["US"],"is_corresponding":true,"raw_author_name":"Sungmin Hong","raw_affiliation_strings":["Department of Computer Science and Engineering, SUCCESS Laboratory, Texas A&#x0026;M University, College Station, TX, USA"],"affiliations":[{"raw_affiliation_string":"Department of Computer Science and Engineering, SUCCESS Laboratory, Texas A&#x0026;M University, College Station, TX, USA","institution_ids":["https://openalex.org/I91045830"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5101775926","display_name":"Lei Xu","orcid":"https://orcid.org/0000-0001-8694-6152"},"institutions":[{"id":"https://openalex.org/I91045830","display_name":"Texas A&M University","ror":"https://ror.org/01f5ytq51","country_code":"US","type":"education","lineage":["https://openalex.org/I91045830"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Lei Xu","raw_affiliation_strings":["Department of Computer Science and Engineering, SUCCESS Laboratory, Texas A&#x0026;M University, College Station, TX, USA"],"affiliations":[{"raw_affiliation_string":"Department of Computer Science and Engineering, SUCCESS Laboratory, Texas A&#x0026;M University, College Station, TX, USA","institution_ids":["https://openalex.org/I91045830"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5062346297","display_name":"Jianwei Huang","orcid":"https://orcid.org/0000-0001-6631-1096"},"institutions":[{"id":"https://openalex.org/I91045830","display_name":"Texas A&M University","ror":"https://ror.org/01f5ytq51","country_code":"US","type":"education","lineage":["https://openalex.org/I91045830"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Jianwei Huang","raw_affiliation_strings":["Department of Computer Science and Engineering, SUCCESS Laboratory, Texas A&#x0026;M University, College Station, TX, USA"],"affiliations":[{"raw_affiliation_string":"Department of Computer Science and Engineering, SUCCESS Laboratory, Texas A&#x0026;M University, College Station, TX, USA","institution_ids":["https://openalex.org/I91045830"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5102003431","display_name":"Hongda Li","orcid":"https://orcid.org/0000-0001-5589-4759"},"institutions":[{"id":"https://openalex.org/I63190737","display_name":"University at Buffalo, State University of New York","ror":"https://ror.org/01y64my43","country_code":"US","type":"education","lineage":["https://openalex.org/I63190737"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Hongda Li","raw_affiliation_strings":["Department of Computer Science and Engineering, University at Buffalo, Buffalo, NY, USA"],"affiliations":[{"raw_affiliation_string":"Department of Computer Science and Engineering, University at Buffalo, Buffalo, NY, USA","institution_ids":["https://openalex.org/I63190737"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5056657952","display_name":"Hongxin Hu","orcid":"https://orcid.org/0000-0001-8710-247X"},"institutions":[{"id":"https://openalex.org/I63190737","display_name":"University at Buffalo, State University of New York","ror":"https://ror.org/01y64my43","country_code":"US","type":"education","lineage":["https://openalex.org/I63190737"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Hongxin Hu","raw_affiliation_strings":["Department of Computer Science and Engineering, University at Buffalo, Buffalo, NY, USA"],"affiliations":[{"raw_affiliation_string":"Department of Computer Science and Engineering, University at Buffalo, Buffalo, NY, USA","institution_ids":["https://openalex.org/I63190737"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5058852421","display_name":"Guofei Gu","orcid":"https://orcid.org/0000-0003-0630-741X"},"institutions":[{"id":"https://openalex.org/I91045830","display_name":"Texas A&M University","ror":"https://ror.org/01f5ytq51","country_code":"US","type":"education","lineage":["https://openalex.org/I91045830"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Guofei Gu","raw_affiliation_strings":["Department of Computer Science and Engineering, SUCCESS Laboratory, Texas A&#x0026;M University, College Station, TX, USA"],"affiliations":[{"raw_affiliation_string":"Department of Computer Science and Engineering, SUCCESS Laboratory, Texas A&#x0026;M University, College Station, TX, USA","institution_ids":["https://openalex.org/I91045830"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":6,"corresponding_author_ids":["https://openalex.org/A5064874483"],"corresponding_institution_ids":["https://openalex.org/I91045830"],"apc_list":null,"apc_paid":null,"fwci":7.6532,"has_fulltext":false,"cited_by_count":44,"citation_normalized_percentile":{"value":0.97956703,"is_in_top_1_percent":false,"is_in_top_10_percent":true},"cited_by_percentile_year":{"min":96,"max":100},"biblio":{"volume":"18","issue":null,"first_page":"2794","last_page":"2809"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T11424","display_name":"Security and Verification in Computing","score":0.9998000264167786,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T11424","display_name":"Security and Verification in Computing","score":0.9998000264167786,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":0.9984999895095825,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10927","display_name":"Access Control and Trust","score":0.9972000122070312,"subfield":{"id":"https://openalex.org/subfields/3312","display_name":"Sociology and Political Science"},"field":{"id":"https://openalex.org/fields/33","display_name":"Social Sciences"},"domain":{"id":"https://openalex.org/domains/2","display_name":"Social Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.7602050304412842},{"id":"https://openalex.org/keywords/abstraction","display_name":"Abstraction","score":0.4934791326522827},{"id":"https://openalex.org/keywords/security-policy","display_name":"Security policy","score":0.47008466720581055},{"id":"https://openalex.org/keywords/zero","display_name":"Zero (linguistics)","score":0.4519899785518646},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.4505215883255005},{"id":"https://openalex.org/keywords/computer-security-model","display_name":"Computer security model","score":0.41651827096939087},{"id":"https://openalex.org/keywords/artificial-intelligence","display_name":"Artificial intelligence","score":0.33248817920684814}],"concepts":[{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.7602050304412842},{"id":"https://openalex.org/C124304363","wikidata":"https://www.wikidata.org/wiki/Q673661","display_name":"Abstraction","level":2,"score":0.4934791326522827},{"id":"https://openalex.org/C154908896","wikidata":"https://www.wikidata.org/wiki/Q2167404","display_name":"Security policy","level":2,"score":0.47008466720581055},{"id":"https://openalex.org/C2780813799","wikidata":"https://www.wikidata.org/wiki/Q3274237","display_name":"Zero (linguistics)","level":2,"score":0.4519899785518646},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.4505215883255005},{"id":"https://openalex.org/C121822524","wikidata":"https://www.wikidata.org/wiki/Q5157582","display_name":"Computer security model","level":2,"score":0.41651827096939087},{"id":"https://openalex.org/C154945302","wikidata":"https://www.wikidata.org/wiki/Q11660","display_name":"Artificial intelligence","level":1,"score":0.33248817920684814},{"id":"https://openalex.org/C41895202","wikidata":"https://www.wikidata.org/wiki/Q8162","display_name":"Linguistics","level":1,"score":0.0},{"id":"https://openalex.org/C138885662","wikidata":"https://www.wikidata.org/wiki/Q5891","display_name":"Philosophy","level":0,"score":0.0},{"id":"https://openalex.org/C111472728","wikidata":"https://www.wikidata.org/wiki/Q9471","display_name":"Epistemology","level":1,"score":0.0}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1109/tifs.2023.3264152","is_oa":false,"landing_page_url":"https://doi.org/10.1109/tifs.2023.3264152","pdf_url":null,"source":{"id":"https://openalex.org/S61310614","display_name":"IEEE Transactions on Information Forensics and Security","issn_l":"1556-6013","issn":["1556-6013","1556-6021"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310319808","host_organization_name":"Institute of Electrical and Electronics Engineers","host_organization_lineage":["https://openalex.org/P4310319808"],"host_organization_lineage_names":["Institute of Electrical and Electronics Engineers"],"type":"journal"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"IEEE Transactions on Information Forensics and Security","raw_type":"journal-article"}],"best_oa_location":null,"sustainable_development_goals":[{"id":"https://metadata.un.org/sdg/9","display_name":"Industry, innovation and infrastructure","score":0.5899999737739563}],"awards":[{"id":"https://openalex.org/G108542326","display_name":null,"funder_award_id":"2226339","funder_id":"https://openalex.org/F4320306076","funder_display_name":"National Science Foundation"},{"id":"https://openalex.org/G135320703","display_name":null,"funder_award_id":"1700544","funder_id":"https://openalex.org/F4320306076","funder_display_name":"National Science Foundation"},{"id":"https://openalex.org/G3884774703","display_name":null,"funder_award_id":"2148374","funder_id":"https://openalex.org/F4320306076","funder_display_name":"National Science Foundation"},{"id":"https://openalex.org/G4475599449","display_name":null,"funder_award_id":"N00014-20-1-2734","funder_id":"https://openalex.org/F4320337345","funder_display_name":"Office of Naval Research"},{"id":"https://openalex.org/G7981170623","display_name":null,"funder_award_id":"2129164","funder_id":"https://openalex.org/F4320306076","funder_display_name":"National Science Foundation"}],"funders":[{"id":"https://openalex.org/F4320306076","display_name":"National Science Foundation","ror":"https://ror.org/021nxhr62"},{"id":"https://openalex.org/F4320337345","display_name":"Office of Naval Research","ror":"https://ror.org/00rk2pe57"}],"has_content":{"pdf":false,"grobid_xml":false},"content_urls":null,"referenced_works_count":41,"referenced_works":["https://openalex.org/W1444906800","https://openalex.org/W1549716092","https://openalex.org/W1990089904","https://openalex.org/W2022106793","https://openalex.org/W2029224396","https://openalex.org/W2040234252","https://openalex.org/W2086234010","https://openalex.org/W2099501333","https://openalex.org/W2115232057","https://openalex.org/W2122695394","https://openalex.org/W2152449272","https://openalex.org/W2156523427","https://openalex.org/W2162283517","https://openalex.org/W2167911131","https://openalex.org/W2199318523","https://openalex.org/W2467908049","https://openalex.org/W2532844970","https://openalex.org/W2609361788","https://openalex.org/W2751114427","https://openalex.org/W2766852928","https://openalex.org/W2807826660","https://openalex.org/W2887200831","https://openalex.org/W2889245788","https://openalex.org/W2889771064","https://openalex.org/W2890262614","https://openalex.org/W2954388734","https://openalex.org/W2962703433","https://openalex.org/W2976189582","https://openalex.org/W4200226889","https://openalex.org/W4238764625","https://openalex.org/W6628457668","https://openalex.org/W6660157426","https://openalex.org/W6671957770","https://openalex.org/W6684410126","https://openalex.org/W6687742033","https://openalex.org/W6712237015","https://openalex.org/W6719815635","https://openalex.org/W6736515192","https://openalex.org/W6743841043","https://openalex.org/W6754333932","https://openalex.org/W6754481008"],"related_works":["https://openalex.org/W2188814192","https://openalex.org/W2114705216","https://openalex.org/W3094039898","https://openalex.org/W2151761340","https://openalex.org/W1555133226","https://openalex.org/W2173238669","https://openalex.org/W1519114293","https://openalex.org/W2130339907","https://openalex.org/W2188404590","https://openalex.org/W2049966995"],"abstract_inverted_index":{"Zero":[0,44,94],"Trust,":[1],"as":[2,174],"an":[3,78],"emerging":[4],"trend":[5],"of":[6,38,68,152,202],"cybersecurity":[7],"paradigms":[8],"in":[9,209],"modern":[10],"infrastructure":[11],"(e.g.,":[12],"enterprise,":[13],"cloud,":[14],"edge,":[15],"IoT,":[16],"and":[17,25,33,54,62,92,120,126,130,189,200],"5G),":[18],"is":[19],"moving":[20],"security":[21,53,60,84,96,163,207],"defenses":[22],"from":[23],"static":[24],"perimeter-based":[26],"control":[27,97,127],"systems":[28],"to":[29,88,110],"focus":[30],"on":[31,50,58],"users":[32],"resources":[34],"with":[35,212],"no":[36],"assumption":[37],"implicit":[39],"trust.":[40],"However,":[41],"the":[42,51,66,69,74,117,198,206],"current":[43],"Trust":[45,95],"Architecture":[46],"(ZTA)":[47],"mainly":[48],"focuses":[49],"network":[52],"lacks":[55],"in-depth":[56],"considerations":[57],"system-level":[59,123],"policies":[61,164],"abstractions,":[63],"which":[64,184,204],"leaves":[65],"realization":[67],"principle":[70],"incomplete.":[71],"To":[72],"bridge":[73],"gap,":[75],"we":[76],"propose":[77],"innovative":[79],"<italic":[80,105,112,140],"xmlns:mml=\"http://www.w3.org/1998/Math/MathML\"":[81,106,113,141],"xmlns:xlink=\"http://www.w3.org/1999/xlink\">programmable</i>":[82,142],"system":[83,99,153,157,166,181],"framework":[85],"called":[86],"SYSFLOW":[87,101,170],"enable":[89],"unified,":[90],"dynamic,":[91],"fine-grained":[93,191],"for":[98,155],"resources.":[100],"introduces":[102],"a":[103,122,138,149,213],"novel":[104],"xmlns:xlink=\"http://www.w3.org/1999/xlink\">system":[107,114],"flow</i>":[108],"abstraction":[109],"model":[111],"activities</i>":[115],"across":[116],"entire":[118],"infrastructure,":[119],"provides":[121],"data":[124,171],"plane":[125,128],"separation":[129],"abstraction.":[131],"The":[132,169],"new":[133],"logically":[134],"centralized":[135],"controller":[136],"accommodates":[137],"unified":[139],"Policy":[143,175],"Decision":[144],"Point":[145,177],"(PDP)":[146],"that":[147],"acquires":[148],"holistic":[150],"view":[151],"behaviors":[154],"controlling":[156],"resource":[158],"accesses":[159],"by":[160],"translated":[161,180],"programmable":[162],"into":[165],"flow":[167,182],"rules.":[168],"plane,":[172],"acting":[173],"Enforcement":[176],"(PEP),":[178],"enforces":[179],"rules,":[183],"can":[185],"be":[186],"updated":[187],"dynamically":[188],"facilitate":[190],"responsive":[192],"actions.":[193],"Our":[194],"extensive":[195],"evaluations":[196],"demonstrate":[197],"effectiveness":[199],"scalability":[201],"SYSFLOW,":[203],"addresses":[205],"issues":[208],"various":[210],"scenarios":[211],"minor":[214],"performance":[215],"overhead.":[216]},"counts_by_year":[{"year":2026,"cited_by_count":6},{"year":2025,"cited_by_count":24},{"year":2024,"cited_by_count":11},{"year":2023,"cited_by_count":3}],"updated_date":"2026-03-30T08:08:38.191290","created_date":"2025-10-10T00:00:00"}