{"id":"https://openalex.org/W1986440342","doi":"https://doi.org/10.1145/1314436.1314446","title":"Weaving rewrite-based access control policies","display_name":"Weaving rewrite-based access control policies","publication_year":2007,"publication_date":"2007-11-02","ids":{"openalex":"https://openalex.org/W1986440342","doi":"https://doi.org/10.1145/1314436.1314446","mag":"1986440342"},"language":"en","primary_location":{"id":"doi:10.1145/1314436.1314446","is_oa":false,"landing_page_url":"https://doi.org/10.1145/1314436.1314446","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 2007 ACM workshop on Formal methods in security engineering","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5006951951","display_name":"Anderson Santana de Oliveira","orcid":"https://orcid.org/0000-0003-0364-6328"},"institutions":[{"id":"https://openalex.org/I1326498283","display_name":"Institut national de recherche en sciences et technologies du num\u00e9rique","ror":"https://ror.org/02kvxyf05","country_code":"FR","type":"government","lineage":["https://openalex.org/I1326498283"]},{"id":"https://openalex.org/I4210121838","display_name":"Laboratoire Lorrain de Recherche en Informatique et ses Applications","ror":"https://ror.org/02vnf0c38","country_code":"FR","type":"facility","lineage":["https://openalex.org/I1294671590","https://openalex.org/I1294671590","https://openalex.org/I1326498283","https://openalex.org/I277688954","https://openalex.org/I4210107720","https://openalex.org/I4210121838","https://openalex.org/I4210159245","https://openalex.org/I90183372"]},{"id":"https://openalex.org/I4210127166","display_name":"Centre Inria de l'Universit\u00e9 de Lorraine","ror":"https://ror.org/03fcjvn64","country_code":"FR","type":"facility","lineage":["https://openalex.org/I1326498283","https://openalex.org/I4210127166"]}],"countries":["FR"],"is_corresponding":true,"raw_author_name":"Anderson Santana de Oliveira","raw_affiliation_strings":["INRIA and LORIA, Nancy, France","INRIA & LORIA, Nancy, France#TAB#"],"affiliations":[{"raw_affiliation_string":"INRIA and LORIA, Nancy, France","institution_ids":["https://openalex.org/I4210127166","https://openalex.org/I1326498283","https://openalex.org/I4210121838"]},{"raw_affiliation_string":"INRIA & LORIA, Nancy, France#TAB#","institution_ids":["https://openalex.org/I1326498283","https://openalex.org/I4210121838"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5000365647","display_name":"Eric Ke Wang","orcid":"https://orcid.org/0000-0001-9480-0305"},"institutions":[{"id":"https://openalex.org/I889458895","display_name":"University of Hong Kong","ror":"https://ror.org/02zhqgq86","country_code":"HK","type":"education","lineage":["https://openalex.org/I889458895"]}],"countries":["HK"],"is_corresponding":false,"raw_author_name":"Eric Ke Wang","raw_affiliation_strings":["The University of Hong Kong &amp; INRIA and LORIA, Hong Kong"],"affiliations":[{"raw_affiliation_string":"The University of Hong Kong &amp; INRIA and LORIA, Hong Kong","institution_ids":["https://openalex.org/I889458895"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5055776480","display_name":"Claude Kirchner","orcid":"https://orcid.org/0009-0001-6778-1791"},"institutions":[{"id":"https://openalex.org/I1326498283","display_name":"Institut national de recherche en sciences et technologies du num\u00e9rique","ror":"https://ror.org/02kvxyf05","country_code":"FR","type":"government","lineage":["https://openalex.org/I1326498283"]},{"id":"https://openalex.org/I4210121838","display_name":"Laboratoire Lorrain de Recherche en Informatique et ses Applications","ror":"https://ror.org/02vnf0c38","country_code":"FR","type":"facility","lineage":["https://openalex.org/I1294671590","https://openalex.org/I1294671590","https://openalex.org/I1326498283","https://openalex.org/I277688954","https://openalex.org/I4210107720","https://openalex.org/I4210121838","https://openalex.org/I4210159245","https://openalex.org/I90183372"]},{"id":"https://openalex.org/I4210127166","display_name":"Centre Inria de l'Universit\u00e9 de Lorraine","ror":"https://ror.org/03fcjvn64","country_code":"FR","type":"facility","lineage":["https://openalex.org/I1326498283","https://openalex.org/I4210127166"]}],"countries":["FR"],"is_corresponding":false,"raw_author_name":"Claude Kirchner","raw_affiliation_strings":["INRIA and LORIA, Nancy, France","INRIA & LORIA, Nancy, France#TAB#"],"affiliations":[{"raw_affiliation_string":"INRIA and LORIA, Nancy, France","institution_ids":["https://openalex.org/I4210127166","https://openalex.org/I1326498283","https://openalex.org/I4210121838"]},{"raw_affiliation_string":"INRIA & LORIA, Nancy, France#TAB#","institution_ids":["https://openalex.org/I1326498283","https://openalex.org/I4210121838"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5055776480","display_name":"Claude Kirchner","orcid":"https://orcid.org/0009-0001-6778-1791"},"institutions":[{"id":"https://openalex.org/I1326498283","display_name":"Institut national de recherche en sciences et technologies du num\u00e9rique","ror":"https://ror.org/02kvxyf05","country_code":"FR","type":"government","lineage":["https://openalex.org/I1326498283"]},{"id":"https://openalex.org/I4210121838","display_name":"Laboratoire Lorrain de Recherche en Informatique et ses Applications","ror":"https://ror.org/02vnf0c38","country_code":"FR","type":"facility","lineage":["https://openalex.org/I1294671590","https://openalex.org/I1294671590","https://openalex.org/I1326498283","https://openalex.org/I277688954","https://openalex.org/I4210107720","https://openalex.org/I4210121838","https://openalex.org/I4210159245","https://openalex.org/I90183372"]},{"id":"https://openalex.org/I4210127166","display_name":"Centre Inria de l'Universit\u00e9 de Lorraine","ror":"https://ror.org/03fcjvn64","country_code":"FR","type":"facility","lineage":["https://openalex.org/I1326498283","https://openalex.org/I4210127166"]}],"countries":["FR"],"is_corresponding":false,"raw_author_name":"Helene Kirchner","raw_affiliation_strings":["INRIA and LORIA, Nancy, France","INRIA & LORIA, Nancy, France#TAB#"],"affiliations":[{"raw_affiliation_string":"INRIA and LORIA, Nancy, France","institution_ids":["https://openalex.org/I4210127166","https://openalex.org/I1326498283","https://openalex.org/I4210121838"]},{"raw_affiliation_string":"INRIA & LORIA, Nancy, France#TAB#","institution_ids":["https://openalex.org/I1326498283","https://openalex.org/I4210121838"]}]}],"institutions":[],"countries_distinct_count":2,"institutions_distinct_count":4,"corresponding_author_ids":["https://openalex.org/A5006951951"],"corresponding_institution_ids":["https://openalex.org/I1326498283","https://openalex.org/I4210121838","https://openalex.org/I4210127166"],"apc_list":null,"apc_paid":null,"fwci":4.353,"has_fulltext":false,"cited_by_count":27,"citation_normalized_percentile":{"value":0.94096679,"is_in_top_1_percent":false,"is_in_top_10_percent":true},"cited_by_percentile_year":{"min":90,"max":99},"biblio":{"volume":null,"issue":null,"first_page":"71","last_page":"80"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T11424","display_name":"Security and Verification in Computing","score":0.9993000030517578,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T11424","display_name":"Security and Verification in Computing","score":0.9993000030517578,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10639","display_name":"Advanced Software Engineering Methodologies","score":0.9987000226974487,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10927","display_name":"Access Control and Trust","score":0.9983000159263611,"subfield":{"id":"https://openalex.org/subfields/3312","display_name":"Sociology and Political Science"},"field":{"id":"https://openalex.org/fields/33","display_name":"Social Sciences"},"domain":{"id":"https://openalex.org/domains/2","display_name":"Social Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.7941592931747437},{"id":"https://openalex.org/keywords/rewriting","display_name":"Rewriting","score":0.7424317598342896},{"id":"https://openalex.org/keywords/agile-software-development","display_name":"Agile software development","score":0.7196236252784729},{"id":"https://openalex.org/keywords/modular-design","display_name":"Modular design","score":0.6757955551147461},{"id":"https://openalex.org/keywords/access-control","display_name":"Access control","score":0.6703546047210693},{"id":"https://openalex.org/keywords/weaving","display_name":"Weaving","score":0.6270829439163208},{"id":"https://openalex.org/keywords/security-policy","display_name":"Security policy","score":0.5525929927825928},{"id":"https://openalex.org/keywords/reuse","display_name":"Reuse","score":0.5450400114059448},{"id":"https://openalex.org/keywords/software-engineering","display_name":"Software engineering","score":0.541831910610199},{"id":"https://openalex.org/keywords/process","display_name":"Process (computing)","score":0.4505876898765564},{"id":"https://openalex.org/keywords/control","display_name":"Control (management)","score":0.4336966276168823},{"id":"https://openalex.org/keywords/programming-language","display_name":"Programming language","score":0.3357095718383789},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.22308367490768433},{"id":"https://openalex.org/keywords/engineering","display_name":"Engineering","score":0.1353832483291626}],"concepts":[{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.7941592931747437},{"id":"https://openalex.org/C154690210","wikidata":"https://www.wikidata.org/wiki/Q1668499","display_name":"Rewriting","level":2,"score":0.7424317598342896},{"id":"https://openalex.org/C14185376","wikidata":"https://www.wikidata.org/wiki/Q30232","display_name":"Agile software development","level":2,"score":0.7196236252784729},{"id":"https://openalex.org/C101468663","wikidata":"https://www.wikidata.org/wiki/Q1620158","display_name":"Modular design","level":2,"score":0.6757955551147461},{"id":"https://openalex.org/C527821871","wikidata":"https://www.wikidata.org/wiki/Q228502","display_name":"Access control","level":2,"score":0.6703546047210693},{"id":"https://openalex.org/C54525549","wikidata":"https://www.wikidata.org/wiki/Q2553445","display_name":"Weaving","level":2,"score":0.6270829439163208},{"id":"https://openalex.org/C154908896","wikidata":"https://www.wikidata.org/wiki/Q2167404","display_name":"Security policy","level":2,"score":0.5525929927825928},{"id":"https://openalex.org/C206588197","wikidata":"https://www.wikidata.org/wiki/Q846574","display_name":"Reuse","level":2,"score":0.5450400114059448},{"id":"https://openalex.org/C115903868","wikidata":"https://www.wikidata.org/wiki/Q80993","display_name":"Software engineering","level":1,"score":0.541831910610199},{"id":"https://openalex.org/C98045186","wikidata":"https://www.wikidata.org/wiki/Q205663","display_name":"Process (computing)","level":2,"score":0.4505876898765564},{"id":"https://openalex.org/C2775924081","wikidata":"https://www.wikidata.org/wiki/Q55608371","display_name":"Control (management)","level":2,"score":0.4336966276168823},{"id":"https://openalex.org/C199360897","wikidata":"https://www.wikidata.org/wiki/Q9143","display_name":"Programming language","level":1,"score":0.3357095718383789},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.22308367490768433},{"id":"https://openalex.org/C127413603","wikidata":"https://www.wikidata.org/wiki/Q11023","display_name":"Engineering","level":0,"score":0.1353832483291626},{"id":"https://openalex.org/C78519656","wikidata":"https://www.wikidata.org/wiki/Q101333","display_name":"Mechanical engineering","level":1,"score":0.0},{"id":"https://openalex.org/C548081761","wikidata":"https://www.wikidata.org/wiki/Q180388","display_name":"Waste management","level":1,"score":0.0},{"id":"https://openalex.org/C154945302","wikidata":"https://www.wikidata.org/wiki/Q11660","display_name":"Artificial intelligence","level":1,"score":0.0}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1145/1314436.1314446","is_oa":false,"landing_page_url":"https://doi.org/10.1145/1314436.1314446","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 2007 ACM workshop on Formal methods in security engineering","raw_type":"proceedings-article"}],"best_oa_location":null,"sustainable_development_goals":[],"awards":[],"funders":[],"has_content":{"pdf":false,"grobid_xml":false},"content_urls":null,"referenced_works_count":34,"referenced_works":["https://openalex.org/W5986519","https://openalex.org/W44952850","https://openalex.org/W239711291","https://openalex.org/W1521232193","https://openalex.org/W1522227573","https://openalex.org/W1540115833","https://openalex.org/W1567531241","https://openalex.org/W1574561446","https://openalex.org/W1582565816","https://openalex.org/W1599739130","https://openalex.org/W1610570299","https://openalex.org/W1844068232","https://openalex.org/W1976476949","https://openalex.org/W2006611045","https://openalex.org/W2012419258","https://openalex.org/W2024180633","https://openalex.org/W2029414465","https://openalex.org/W2036910349","https://openalex.org/W2137689716","https://openalex.org/W2141059677","https://openalex.org/W2141704790","https://openalex.org/W2143238865","https://openalex.org/W2145500633","https://openalex.org/W2160207938","https://openalex.org/W2166602595","https://openalex.org/W2171837288","https://openalex.org/W2295265000","https://openalex.org/W2913261834","https://openalex.org/W4211218509","https://openalex.org/W4238565333","https://openalex.org/W4240166417","https://openalex.org/W4254691308","https://openalex.org/W4285719527","https://openalex.org/W4353004773"],"related_works":["https://openalex.org/W2393973626","https://openalex.org/W2107355607","https://openalex.org/W2105261429","https://openalex.org/W2012419258","https://openalex.org/W318167434","https://openalex.org/W1482564230","https://openalex.org/W4285408982","https://openalex.org/W2127259385","https://openalex.org/W2004929657","https://openalex.org/W4238719493"],"abstract_inverted_index":{"Access":[0],"control":[1,42,76],"is":[2,25,162],"a":[3,18,34,38,57,118,130,138],"central":[4],"issue":[5],"among":[6],"the":[7,15,22,31,109,114,123,158,166],"overall":[8],"security":[9],"goals":[10],"of":[11,17,33,160],"information":[12],"systems.":[13],"Despite":[14],"existence":[16],"vast":[19],"literature":[20],"on":[21,45,49,66,168],"subject,":[23],"it":[24],"still":[26],"very":[27],"hard":[28],"to":[29,37,60,86,94,97,133,150],"assure":[30],"compliance":[32],"large":[35],"system":[36],"given":[39],"dynamic":[40,135],"access":[41,75],"policy.":[43,125],"Based":[44],"our":[46],"previous":[47],"work":[48],"formal":[50,100],"islands,":[51],"we":[52],"provide":[53],"in":[54,137],"this":[55,128],"paper":[56],"systematic":[58,131],"methodology":[59],"weave":[61],"dynamic,":[62],"formally":[63],"specified":[64,124,147],"policies":[65,77,136,144],"existing":[67,110],"applications":[68],"using":[69,80],"aspect-oriented":[70],"programming.":[71],"To":[72],"that":[73,113],"end,":[74],"are":[78,105,145],"formalized":[79],"term":[81],"rewriting":[82],"systems,":[83],"allowing":[84],"us":[85],"have":[87],"an":[88],"agile,":[89],"modular,":[90],"and":[91,96,140,148],"precise":[92],"way":[93],"specify":[95],"ensure":[98],"their":[99],"properties.":[101],"These":[102],"high-level":[103],"descriptions":[104],"then":[106],"weaved":[107,153],"into":[108,154],"code,":[111],"such":[112],"resulting":[115],"program":[116],"implements":[117],"safe":[119],"reference":[120],"monitor":[121],"for":[122],"For":[126],"developers,":[127],"provides":[129],"process":[132],"enforce":[134],"modular":[139],"flexible":[141],"way.":[142],"Since":[143],"independently":[146],"checked":[149],"be":[151],"later":[152],"various":[155],"different":[156],"applications,":[157],"level":[159],"reuse":[161],"improved.":[163],"We":[164],"implemented":[165],"approach":[167],"test":[169],"cases":[170],"with":[171],"quite":[172],"encouraging":[173],"results.":[174]},"counts_by_year":[{"year":2016,"cited_by_count":1},{"year":2014,"cited_by_count":3},{"year":2013,"cited_by_count":3},{"year":2012,"cited_by_count":6}],"updated_date":"2026-04-23T09:07:50.710637","created_date":"2025-10-10T00:00:00"}