{"id":"https://openalex.org/W2077714295","doi":"https://doi.org/10.1145/1542207.1542217","title":"Dynamic mandatory access control for multiple stakeholders","display_name":"Dynamic mandatory access control for multiple stakeholders","publication_year":2009,"publication_date":"2009-06-03","ids":{"openalex":"https://openalex.org/W2077714295","doi":"https://doi.org/10.1145/1542207.1542217","mag":"2077714295"},"language":"en","primary_location":{"id":"doi:10.1145/1542207.1542217","is_oa":false,"landing_page_url":"https://doi.org/10.1145/1542207.1542217","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 14th ACM symposium on Access control models and technologies","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5077588690","display_name":"Vikhyath Rao","orcid":null},"institutions":[{"id":"https://openalex.org/I130769515","display_name":"Pennsylvania State University","ror":"https://ror.org/04p491231","country_code":"US","type":"education","lineage":["https://openalex.org/I130769515"]}],"countries":["US"],"is_corresponding":true,"raw_author_name":"Vikhyath Rao","raw_affiliation_strings":["Pennsylvania State University, University Park, PA, USA"],"affiliations":[{"raw_affiliation_string":"Pennsylvania State University, University Park, PA, USA","institution_ids":["https://openalex.org/I130769515"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5055045569","display_name":"Trent Jaeger","orcid":"https://orcid.org/0000-0002-4964-1170"},"institutions":[{"id":"https://openalex.org/I130769515","display_name":"Pennsylvania State University","ror":"https://ror.org/04p491231","country_code":"US","type":"education","lineage":["https://openalex.org/I130769515"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Trent Jaeger","raw_affiliation_strings":["Pennsylvania State University, University Park, PA, USA"],"affiliations":[{"raw_affiliation_string":"Pennsylvania State University, University Park, PA, USA","institution_ids":["https://openalex.org/I130769515"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":2,"corresponding_author_ids":["https://openalex.org/A5077588690"],"corresponding_institution_ids":["https://openalex.org/I130769515"],"apc_list":null,"apc_paid":null,"fwci":5.1378,"has_fulltext":false,"cited_by_count":13,"citation_normalized_percentile":{"value":0.95183158,"is_in_top_1_percent":false,"is_in_top_10_percent":true},"cited_by_percentile_year":{"min":90,"max":98},"biblio":{"volume":null,"issue":null,"first_page":"53","last_page":"62"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10927","display_name":"Access Control and Trust","score":0.9998999834060669,"subfield":{"id":"https://openalex.org/subfields/3312","display_name":"Sociology and Political Science"},"field":{"id":"https://openalex.org/fields/33","display_name":"Social Sciences"},"domain":{"id":"https://openalex.org/domains/2","display_name":"Social Sciences"}},"topics":[{"id":"https://openalex.org/T10927","display_name":"Access Control and Trust","score":0.9998999834060669,"subfield":{"id":"https://openalex.org/subfields/3312","display_name":"Sociology and Political Science"},"field":{"id":"https://openalex.org/fields/33","display_name":"Social Sciences"},"domain":{"id":"https://openalex.org/domains/2","display_name":"Social Sciences"}},{"id":"https://openalex.org/T11598","display_name":"Internet Traffic Analysis and Secure E-voting","score":0.9969000220298767,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11424","display_name":"Security and Verification in Computing","score":0.9940999746322632,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.7321418523788452},{"id":"https://openalex.org/keywords/sandbox","display_name":"Sandbox (software development)","score":0.7140675783157349},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.5664708614349365},{"id":"https://openalex.org/keywords/mandatory-access-control","display_name":"Mandatory access control","score":0.5547670125961304},{"id":"https://openalex.org/keywords/access-control","display_name":"Access control","score":0.5435376763343811},{"id":"https://openalex.org/keywords/process","display_name":"Process (computing)","score":0.42568519711494446},{"id":"https://openalex.org/keywords/system-administrator","display_name":"System administrator","score":0.41147688031196594},{"id":"https://openalex.org/keywords/role-based-access-control","display_name":"Role-based access control","score":0.3486967086791992},{"id":"https://openalex.org/keywords/operating-system","display_name":"Operating system","score":0.22815397381782532}],"concepts":[{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.7321418523788452},{"id":"https://openalex.org/C167981075","wikidata":"https://www.wikidata.org/wiki/Q2667186","display_name":"Sandbox (software development)","level":2,"score":0.7140675783157349},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.5664708614349365},{"id":"https://openalex.org/C2777407602","wikidata":"https://www.wikidata.org/wiki/Q1888932","display_name":"Mandatory access control","level":4,"score":0.5547670125961304},{"id":"https://openalex.org/C527821871","wikidata":"https://www.wikidata.org/wiki/Q228502","display_name":"Access control","level":2,"score":0.5435376763343811},{"id":"https://openalex.org/C98045186","wikidata":"https://www.wikidata.org/wiki/Q205663","display_name":"Process (computing)","level":2,"score":0.42568519711494446},{"id":"https://openalex.org/C2780814629","wikidata":"https://www.wikidata.org/wiki/Q327353","display_name":"System administrator","level":2,"score":0.41147688031196594},{"id":"https://openalex.org/C45567728","wikidata":"https://www.wikidata.org/wiki/Q1702839","display_name":"Role-based access control","level":3,"score":0.3486967086791992},{"id":"https://openalex.org/C111919701","wikidata":"https://www.wikidata.org/wiki/Q9135","display_name":"Operating system","level":1,"score":0.22815397381782532}],"mesh":[],"locations_count":2,"locations":[{"id":"doi:10.1145/1542207.1542217","is_oa":false,"landing_page_url":"https://doi.org/10.1145/1542207.1542217","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 14th ACM symposium on Access control models and technologies","raw_type":"proceedings-article"},{"id":"pmh:oai:CiteSeerX.psu:10.1.1.421.8579","is_oa":false,"landing_page_url":"http://citeseerx.ist.psu.edu/viewdoc/summary?doi=10.1.1.421.8579","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"http://www.cse.psu.edu/~tjaeger/papers/sacmat066-rao.pdf","raw_type":"text"}],"best_oa_location":null,"sustainable_development_goals":[{"score":0.7200000286102295,"id":"https://metadata.un.org/sdg/16","display_name":"Peace, Justice and strong institutions"}],"awards":[],"funders":[],"has_content":{"pdf":false,"grobid_xml":false},"content_urls":null,"referenced_works_count":13,"referenced_works":["https://openalex.org/W110237207","https://openalex.org/W1576272305","https://openalex.org/W1591851566","https://openalex.org/W1991895580","https://openalex.org/W2032131630","https://openalex.org/W2057345152","https://openalex.org/W2068189899","https://openalex.org/W2103317919","https://openalex.org/W2127365896","https://openalex.org/W2162171351","https://openalex.org/W2626643089","https://openalex.org/W2914982603","https://openalex.org/W4232668235"],"related_works":["https://openalex.org/W2148952798","https://openalex.org/W2340240862","https://openalex.org/W3138978413","https://openalex.org/W4386618948","https://openalex.org/W2378809132","https://openalex.org/W14205470","https://openalex.org/W1015545679","https://openalex.org/W2355647610","https://openalex.org/W2358979824","https://openalex.org/W1993439489"],"abstract_inverted_index":{"In":[0,23,144],"this":[1],"paper,":[2],"we":[3,147],"present":[4],"a":[5,56,82,149,175,192,218,224,234],"mandatory":[6],"access":[7,36,62,124,185,205],"control":[8,63],"system":[9,29,58,83,110],"that":[10,98,108,127,167,196],"uses":[11],"input":[12],"from":[13],"multiple":[14,40],"stakeholders":[15,241],"to":[16,76,85,104,125,136,153,161,182,187,202,243],"compose":[17],"policies":[18,201],"based":[19],"on":[20,39],"runtime":[21,176],"information.":[22],"the":[24,44,47,50,70,109,159,165,180,188,213],"emerging":[25],"open":[26],"cell":[27],"phone":[28],"environment,":[30],"many":[31],"devices":[32],"run":[33],"software":[34],"whose":[35],"permissions":[37,88,126,133,248],"depends":[38],"stakeholders,":[41],"such":[42,112,120,139,156,204],"as":[43,66,140],"device":[45],"owner,":[46,52],"service":[48],"provider,":[49],"application":[51],"etc.,":[53],"rather":[54],"than":[55],"single":[57],"administrator.":[59],"However,":[60,119],"current":[61],"administration":[64],"remains":[65],"either":[67],"discretionary,":[68],"allowing":[69,115,141],"running":[71],"and":[72,173,198,216,246],"perhaps":[73],"compromised":[74],"process":[75,181],"administer":[77],"permissions,":[78],"or":[79],"mandatory,":[80],"requiring":[81,107],"administrator":[84],"know":[86],"all":[87,90],"for":[89,179],"possible":[91],"legal":[92],"runs.":[93],"A":[94],"key":[95],"problem":[96],"is":[97,229],"users":[99],"may":[100,122,134],"download":[101],"arbitrary":[102],"programs":[103,113,121],"their":[105],"devices,":[106],"contain":[111,155],"while":[114],"some":[116],"reasonable":[117],"functionality.":[118],"need":[123,242],"in":[128],"combination":[129],"with":[130],"other":[131],"conflicting":[132],"lead":[135],"an":[137],"attack,":[138],"voice-over-IP":[142],"calls.":[143],"our":[145],"approach,":[146],"use":[148],"\"soft\"":[150],"sand-boxing":[151],"mechanism":[152],"first":[154],"processes,":[157],"request":[158],"stakeholder":[160,200],"authorize":[162],"operations":[163],"outside":[164],"sandbox":[166],"are":[168,249],"not":[169],"prohibited":[170],"by":[171,211],"policy,":[172],"maintain":[174],"execution":[177],"role":[178],"identify":[183],"its":[184],"state":[186],"stakeholders.":[189],"We":[190,232],"define":[191],"proxy":[193,220,226],"policy":[194,221,227],"server":[195,228],"caches":[197],"combines":[199],"make":[203],"decisions.":[206],"Our":[207],"framework":[208],"was":[209],"implemented":[210],"modifying":[212],"SELinux":[214],"module":[215],"using":[217],"remote":[219],"server,":[222],"although":[223],"local":[225],"also":[230],"possible.":[231],"incur":[233],"0.288":[235],"ts":[236],"performance":[237],"overhead":[238],"only":[239],"when":[240],"be":[244],"consulted,":[245],"new":[247],"cached.":[250]},"counts_by_year":[{"year":2016,"cited_by_count":1},{"year":2014,"cited_by_count":5},{"year":2013,"cited_by_count":2}],"updated_date":"2026-04-04T16:13:02.066488","created_date":"2025-10-10T00:00:00"}