{"id":"https://openalex.org/W2134332222","doi":"https://doi.org/10.1145/1284680.1284682","title":"Formal foundations for hybrid hierarchies in GTRBAC","display_name":"Formal foundations for hybrid hierarchies in GTRBAC","publication_year":2008,"publication_date":"2008-01-01","ids":{"openalex":"https://openalex.org/W2134332222","doi":"https://doi.org/10.1145/1284680.1284682","mag":"2134332222"},"language":"en","primary_location":{"id":"doi:10.1145/1284680.1284682","is_oa":false,"landing_page_url":"https://doi.org/10.1145/1284680.1284682","pdf_url":null,"source":{"id":"https://openalex.org/S2642811","display_name":"ACM Transactions on Information and System Security","issn_l":"1094-9224","issn":["1094-9224","1557-7406"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310319798","host_organization_name":"Association for Computing Machinery","host_organization_lineage":["https://openalex.org/P4310319798"],"host_organization_lineage_names":["Association for Computing Machinery"],"type":"journal"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"ACM Transactions on Information and System Security","raw_type":"journal-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5042767930","display_name":"James Joshi","orcid":"https://orcid.org/0000-0003-4519-9802"},"institutions":[{"id":"https://openalex.org/I170201317","display_name":"University of Pittsburgh","ror":"https://ror.org/01an3r305","country_code":"US","type":"education","lineage":["https://openalex.org/I170201317"]}],"countries":["US"],"is_corresponding":true,"raw_author_name":"James B. D. Joshi","raw_affiliation_strings":["University of Pittsburgh, Pennsylvania","University of Pittsburgh , Pennsylvania"],"affiliations":[{"raw_affiliation_string":"University of Pittsburgh, Pennsylvania","institution_ids":["https://openalex.org/I170201317"]},{"raw_affiliation_string":"University of Pittsburgh , Pennsylvania","institution_ids":["https://openalex.org/I170201317"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5061694501","display_name":"Elisa Bertino","orcid":"https://orcid.org/0000-0002-4029-7051"},"institutions":[{"id":"https://openalex.org/I219193219","display_name":"Purdue University West Lafayette","ror":"https://ror.org/02dqehb95","country_code":"US","type":"education","lineage":["https://openalex.org/I219193219"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Elisa Bertino","raw_affiliation_strings":["Purdue University, West Lafayette, Indiana"],"affiliations":[{"raw_affiliation_string":"Purdue University, West Lafayette, Indiana","institution_ids":["https://openalex.org/I219193219"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5022057487","display_name":"Arif Ghafoor","orcid":"https://orcid.org/0000-0002-3707-8173"},"institutions":[{"id":"https://openalex.org/I219193219","display_name":"Purdue University West Lafayette","ror":"https://ror.org/02dqehb95","country_code":"US","type":"education","lineage":["https://openalex.org/I219193219"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Arif Ghafoor","raw_affiliation_strings":["Purdue University, West Lafayette, Indiana"],"affiliations":[{"raw_affiliation_string":"Purdue University, West Lafayette, Indiana","institution_ids":["https://openalex.org/I219193219"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5100333788","display_name":"Yue Zhang","orcid":"https://orcid.org/0000-0003-2128-8472"},"institutions":[{"id":"https://openalex.org/I170201317","display_name":"University of Pittsburgh","ror":"https://ror.org/01an3r305","country_code":"US","type":"education","lineage":["https://openalex.org/I170201317"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Yue Zhang","raw_affiliation_strings":["University of Pittsburgh, Pennsylvania","University of Pittsburgh , Pennsylvania"],"affiliations":[{"raw_affiliation_string":"University of Pittsburgh, Pennsylvania","institution_ids":["https://openalex.org/I170201317"]},{"raw_affiliation_string":"University of Pittsburgh , Pennsylvania","institution_ids":["https://openalex.org/I170201317"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":4,"corresponding_author_ids":["https://openalex.org/A5042767930"],"corresponding_institution_ids":["https://openalex.org/I170201317"],"apc_list":null,"apc_paid":null,"fwci":22.8436,"has_fulltext":false,"cited_by_count":48,"citation_normalized_percentile":{"value":0.99243097,"is_in_top_1_percent":true,"is_in_top_10_percent":true},"cited_by_percentile_year":{"min":89,"max":99},"biblio":{"volume":"10","issue":"4","first_page":"1","last_page":"39"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10927","display_name":"Access Control and Trust","score":1.0,"subfield":{"id":"https://openalex.org/subfields/3312","display_name":"Sociology and Political Science"},"field":{"id":"https://openalex.org/fields/33","display_name":"Social Sciences"},"domain":{"id":"https://openalex.org/domains/2","display_name":"Social Sciences"}},"topics":[{"id":"https://openalex.org/T10927","display_name":"Access Control and Trust","score":1.0,"subfield":{"id":"https://openalex.org/subfields/3312","display_name":"Sociology and Political Science"},"field":{"id":"https://openalex.org/fields/33","display_name":"Social Sciences"},"domain":{"id":"https://openalex.org/domains/2","display_name":"Social Sciences"}},{"id":"https://openalex.org/T11424","display_name":"Security and Verification in Computing","score":0.9914000034332275,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10237","display_name":"Cryptography and Data Security","score":0.9908999800682068,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/hierarchy","display_name":"Hierarchy","score":0.8533324599266052},{"id":"https://openalex.org/keywords/permission","display_name":"Permission","score":0.8074941635131836},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.799109697341919},{"id":"https://openalex.org/keywords/set","display_name":"Set (abstract data type)","score":0.6328728199005127},{"id":"https://openalex.org/keywords/theoretical-computer-science","display_name":"Theoretical computer science","score":0.5707302093505859},{"id":"https://openalex.org/keywords/role-based-access-control","display_name":"Role-based access control","score":0.5693923234939575},{"id":"https://openalex.org/keywords/semantics","display_name":"Semantics (computer science)","score":0.5680646300315857},{"id":"https://openalex.org/keywords/context","display_name":"Context (archaeology)","score":0.516987681388855},{"id":"https://openalex.org/keywords/access-control","display_name":"Access control","score":0.4920920729637146},{"id":"https://openalex.org/keywords/programming-language","display_name":"Programming language","score":0.31696897745132446},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.24344655871391296}],"concepts":[{"id":"https://openalex.org/C31170391","wikidata":"https://www.wikidata.org/wiki/Q188619","display_name":"Hierarchy","level":2,"score":0.8533324599266052},{"id":"https://openalex.org/C2779089604","wikidata":"https://www.wikidata.org/wiki/Q7169333","display_name":"Permission","level":2,"score":0.8074941635131836},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.799109697341919},{"id":"https://openalex.org/C177264268","wikidata":"https://www.wikidata.org/wiki/Q1514741","display_name":"Set (abstract data type)","level":2,"score":0.6328728199005127},{"id":"https://openalex.org/C80444323","wikidata":"https://www.wikidata.org/wiki/Q2878974","display_name":"Theoretical computer science","level":1,"score":0.5707302093505859},{"id":"https://openalex.org/C45567728","wikidata":"https://www.wikidata.org/wiki/Q1702839","display_name":"Role-based access control","level":3,"score":0.5693923234939575},{"id":"https://openalex.org/C184337299","wikidata":"https://www.wikidata.org/wiki/Q1437428","display_name":"Semantics (computer science)","level":2,"score":0.5680646300315857},{"id":"https://openalex.org/C2779343474","wikidata":"https://www.wikidata.org/wiki/Q3109175","display_name":"Context (archaeology)","level":2,"score":0.516987681388855},{"id":"https://openalex.org/C527821871","wikidata":"https://www.wikidata.org/wiki/Q228502","display_name":"Access control","level":2,"score":0.4920920729637146},{"id":"https://openalex.org/C199360897","wikidata":"https://www.wikidata.org/wiki/Q9143","display_name":"Programming language","level":1,"score":0.31696897745132446},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.24344655871391296},{"id":"https://openalex.org/C162324750","wikidata":"https://www.wikidata.org/wiki/Q8134","display_name":"Economics","level":0,"score":0.0},{"id":"https://openalex.org/C199539241","wikidata":"https://www.wikidata.org/wiki/Q7748","display_name":"Law","level":1,"score":0.0},{"id":"https://openalex.org/C151730666","wikidata":"https://www.wikidata.org/wiki/Q7205","display_name":"Paleontology","level":1,"score":0.0},{"id":"https://openalex.org/C17744445","wikidata":"https://www.wikidata.org/wiki/Q36442","display_name":"Political science","level":0,"score":0.0},{"id":"https://openalex.org/C34447519","wikidata":"https://www.wikidata.org/wiki/Q179522","display_name":"Market economy","level":1,"score":0.0},{"id":"https://openalex.org/C86803240","wikidata":"https://www.wikidata.org/wiki/Q420","display_name":"Biology","level":0,"score":0.0}],"mesh":[],"locations_count":5,"locations":[{"id":"doi:10.1145/1284680.1284682","is_oa":false,"landing_page_url":"https://doi.org/10.1145/1284680.1284682","pdf_url":null,"source":{"id":"https://openalex.org/S2642811","display_name":"ACM Transactions on Information and System Security","issn_l":"1094-9224","issn":["1094-9224","1557-7406"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310319798","host_organization_name":"Association for Computing Machinery","host_organization_lineage":["https://openalex.org/P4310319798"],"host_organization_lineage_names":["Association for Computing Machinery"],"type":"journal"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"ACM Transactions on Information and System Security","raw_type":"journal-article"},{"id":"pmh:oai:d-scholarship.pitt.edu:16137","is_oa":false,"landing_page_url":"http://d-scholarship.pitt.edu/16137/1/licence.txt","pdf_url":null,"source":{"id":"https://openalex.org/S4306402372","display_name":"D-Scholarship@Pitt (University of Pittsburgh)","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I170201317","host_organization_name":"University of Pittsburgh","host_organization_lineage":["https://openalex.org/I170201317"],"host_organization_lineage_names":[],"type":"repository"},"license":null,"license_id":null,"version":"acceptedVersion","is_accepted":true,"is_published":false,"raw_source_name":"","raw_type":"Article"},{"id":"pmh:oai:docs.lib.purdue.edu:ccpubs-1187","is_oa":false,"landing_page_url":"https://docs.lib.purdue.edu/ccpubs/197","pdf_url":null,"source":{"id":"https://openalex.org/S4377196310","display_name":"Purdue e-Pubs (Purdue University System)","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I2801333002","host_organization_name":"Purdue University System","host_organization_lineage":["https://openalex.org/I2801333002"],"host_organization_lineage_names":[],"type":"repository"},"license":null,"license_id":null,"version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"Cyber Center Publications","raw_type":"text"},{"id":"pmh:oai:CiteSeerX.psu:10.1.1.159.2889","is_oa":false,"landing_page_url":"http://citeseerx.ist.psu.edu/viewdoc/summary?doi=10.1.1.159.2889","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"http://www.cerias.purdue.edu/ssl/techreports-ssl/2006-25.pdf","raw_type":"text"},{"id":"pmh:oai:CiteSeerX.psu:10.1.1.84.7008","is_oa":false,"landing_page_url":"http://citeseerx.ist.psu.edu/viewdoc/summary?doi=10.1.1.84.7008","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"http://www.sis.pitt.edu/~jjoshi/HybridHierarchy_TISSEC07.pdf","raw_type":"text"}],"best_oa_location":null,"sustainable_development_goals":[],"awards":[{"id":"https://openalex.org/G7848452112","display_name":null,"funder_award_id":"IIS 0545912","funder_id":"https://openalex.org/F4320337389","funder_display_name":"Division of Information and Intelligent Systems"}],"funders":[{"id":"https://openalex.org/F4320337389","display_name":"Division of Information and Intelligent Systems","ror":"https://ror.org/053a2cp42"}],"has_content":{"grobid_xml":false,"pdf":false},"content_urls":null,"referenced_works_count":25,"referenced_works":["https://openalex.org/W20460440","https://openalex.org/W1494813167","https://openalex.org/W1559018605","https://openalex.org/W1653629541","https://openalex.org/W1968189045","https://openalex.org/W1986989788","https://openalex.org/W1992761401","https://openalex.org/W1997862012","https://openalex.org/W2033685455","https://openalex.org/W2038121473","https://openalex.org/W2038953226","https://openalex.org/W2046567877","https://openalex.org/W2058451842","https://openalex.org/W2076004681","https://openalex.org/W2092064278","https://openalex.org/W2102412856","https://openalex.org/W2110491615","https://openalex.org/W2123837566","https://openalex.org/W2125942055","https://openalex.org/W2128361829","https://openalex.org/W2134893444","https://openalex.org/W2141696417","https://openalex.org/W2148952798","https://openalex.org/W2166602595","https://openalex.org/W2906176243"],"related_works":["https://openalex.org/W2373984226","https://openalex.org/W2349137515","https://openalex.org/W2130613250","https://openalex.org/W2361337511","https://openalex.org/W1513229083","https://openalex.org/W2358774039","https://openalex.org/W2353815999","https://openalex.org/W4390864104","https://openalex.org/W2364540050","https://openalex.org/W2124367090"],"abstract_inverted_index":{"A":[0],"role":[1,40,82,98,105,212],"hierarchy":[2,83,207],"defines":[3],"permission":[4,228],"acquisition":[5,229],"and":[6,18,67,192,198,215,217,230,249],"role-activation":[7,231],"semantics":[8,232],"through":[9],"role--role":[10],"relationships.":[11],"It":[12],"can":[13,139,171,182],"be":[14,121,140,155,172,183,234],"utilized":[15],"for":[16,142,244],"efficiently":[17],"effectively":[19],"structuring":[20],"functional":[21],"roles":[22,129],"of":[23,32,38,45,57,61,74,89,128,161,167,189,206,222],"an":[24,111,158,204],"organization":[25],"having":[26],"related":[27],"access-control":[28],"needs.":[29],"The":[30,236],"focus":[31],"this":[33],"paper":[34],"is":[35,107,196],"the":[36,43,46,72,86,100,177,226],"analysis":[37,205],"hybrid":[39,144,149],"hierarchies":[41],"in":[42,99,130],"context":[44],"generalized":[47],"temporal":[48,62],"role-based":[49],"access":[50,87],"control":[51],"(GTRBAC)":[52],"model":[53],"that":[54,84,170,181,194],"allows":[55],"specification":[56],"a":[58,81,90,97,104,118,125,131,143,148,165,186,242],"comprehensive":[59],"set":[60,77,106,166,188],"constraints":[63],"on":[64],"role,":[65],"user-role,":[66],"role-permission":[68],"assignments.":[69],"We":[70,134,163,201],"introduce":[71],"notion":[73],"uniquely":[75],"activable":[76],"(UAS)":[78],"associated":[79],"with":[80,209],"indicates":[85],"capabilities":[88],"user":[91,119],"resulting":[92],"from":[93,185],"his":[94],"membership":[95],"to":[96,123,174,211,233],"hierarchy.":[101,145],"Identifying":[102],"such":[103],"essential,":[108],"while":[109],"making":[110],"authorization":[112],"decision":[113],"about":[114],"whether":[115],"or":[116],"not":[117],"should":[120],"allowed":[122],"activate":[124],"particular":[126],"combination":[127],"single":[132],"session.":[133],"formally":[135],"show":[136,193,218],"how":[137,219],"UAS":[138],"determined":[141],"Furthermore,":[146],"within":[147],"hierarchy,":[150],"various":[151,220],"hierarchical":[152,190],"relations":[153,180,191],"may":[154],"derived":[156,179],"between":[157],"arbitrary":[159],"pair":[160],"roles.":[162],"present":[164,203],"inference":[168],"rules":[169],"used":[173],"generate":[175],"all":[176],"possible":[178],"inferred":[184],"specified":[187],"it":[195],"sound":[197],"complete":[199],".":[200],"also":[202],"transformations":[208,224],"respect":[210],"addition,":[213],"deletion,":[214],"partitioning,":[216],"cases":[221],"these":[223],"allow":[225],"original":[227],"managed.":[235],"formal":[237],"results":[238],"presented":[239],"here":[240],"provide":[241],"basis":[243],"developing":[245],"efficient":[246],"security":[247],"administration":[248],"management":[250],"tools.":[251]},"counts_by_year":[{"year":2024,"cited_by_count":1},{"year":2019,"cited_by_count":1},{"year":2018,"cited_by_count":1},{"year":2016,"cited_by_count":1},{"year":2015,"cited_by_count":4},{"year":2014,"cited_by_count":7},{"year":2013,"cited_by_count":1},{"year":2012,"cited_by_count":3}],"updated_date":"2026-04-04T16:13:02.066488","created_date":"2025-10-10T00:00:00"}