{"id":"https://openalex.org/W2098262367","doi":"https://doi.org/10.1145/2188286.2188346","title":"Refactoring access control policies for performance improvement","display_name":"Refactoring access control policies for performance improvement","publication_year":2012,"publication_date":"2012-04-22","ids":{"openalex":"https://openalex.org/W2098262367","doi":"https://doi.org/10.1145/2188286.2188346","mag":"2098262367"},"language":"en","primary_location":{"id":"doi:10.1145/2188286.2188346","is_oa":false,"landing_page_url":"https://doi.org/10.1145/2188286.2188346","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 3rd ACM/SPEC International Conference on Performance Engineering","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":true,"oa_status":"green","oa_url":"http://orbilu.uni.lu/handle/10993/26433","any_repository_has_fulltext":true},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5083301721","display_name":"Donia El Kateb","orcid":null},"institutions":[{"id":"https://openalex.org/I186903577","display_name":"University of Luxembourg","ror":"https://ror.org/036x5ad56","country_code":"LU","type":"education","lineage":["https://openalex.org/I186903577"]}],"countries":["LU"],"is_corresponding":true,"raw_author_name":"Donia El Kateb","raw_affiliation_strings":["University of Luxembourg, Luxembourg, Luxembourg"],"affiliations":[{"raw_affiliation_string":"University of Luxembourg, Luxembourg, Luxembourg","institution_ids":["https://openalex.org/I186903577"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5003229719","display_name":"Tejeddine Mouelhi","orcid":null},"institutions":[{"id":"https://openalex.org/I186903577","display_name":"University of Luxembourg","ror":"https://ror.org/036x5ad56","country_code":"LU","type":"education","lineage":["https://openalex.org/I186903577"]}],"countries":["LU"],"is_corresponding":false,"raw_author_name":"Tejeddine Mouelhi","raw_affiliation_strings":["University of Luxembourg, Luxembourg, Luxembourg"],"affiliations":[{"raw_affiliation_string":"University of Luxembourg, Luxembourg, Luxembourg","institution_ids":["https://openalex.org/I186903577"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5040574362","display_name":"Yves Le Traon","orcid":"https://orcid.org/0000-0002-1045-4861"},"institutions":[{"id":"https://openalex.org/I186903577","display_name":"University of Luxembourg","ror":"https://ror.org/036x5ad56","country_code":"LU","type":"education","lineage":["https://openalex.org/I186903577"]}],"countries":["LU"],"is_corresponding":false,"raw_author_name":"Yves Le Traon","raw_affiliation_strings":["University of Luxembourg, Luxembourg, Luxembourg"],"affiliations":[{"raw_affiliation_string":"University of Luxembourg, Luxembourg, Luxembourg","institution_ids":["https://openalex.org/I186903577"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5002872988","display_name":"JeeHyun Hwang","orcid":"https://orcid.org/0000-0002-0608-6138"},"institutions":[{"id":"https://openalex.org/I137902535","display_name":"North Carolina State University","ror":"https://ror.org/04tj63d06","country_code":"US","type":"education","lineage":["https://openalex.org/I137902535"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"JeeHyun Hwang","raw_affiliation_strings":["Department of Computer Science North Carolina State University, North Carolina State , USA"],"affiliations":[{"raw_affiliation_string":"Department of Computer Science North Carolina State University, North Carolina State , USA","institution_ids":["https://openalex.org/I137902535"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5048118068","display_name":"Tao Xie","orcid":"https://orcid.org/0000-0002-6731-216X"},"institutions":[{"id":"https://openalex.org/I137902535","display_name":"North Carolina State University","ror":"https://ror.org/04tj63d06","country_code":"US","type":"education","lineage":["https://openalex.org/I137902535"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Tao Xie","raw_affiliation_strings":["Department of Computer Science North Carolina State University, North Carolina State , USA"],"affiliations":[{"raw_affiliation_string":"Department of Computer Science North Carolina State University, North Carolina State , USA","institution_ids":["https://openalex.org/I137902535"]}]}],"institutions":[],"countries_distinct_count":2,"institutions_distinct_count":5,"corresponding_author_ids":["https://openalex.org/A5083301721"],"corresponding_institution_ids":["https://openalex.org/I186903577"],"apc_list":null,"apc_paid":null,"fwci":8.3031,"has_fulltext":false,"cited_by_count":15,"citation_normalized_percentile":{"value":0.97110474,"is_in_top_1_percent":false,"is_in_top_10_percent":true},"cited_by_percentile_year":{"min":89,"max":98},"biblio":{"volume":null,"issue":null,"first_page":"323","last_page":"334"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10927","display_name":"Access Control and Trust","score":0.9998000264167786,"subfield":{"id":"https://openalex.org/subfields/3312","display_name":"Sociology and Political Science"},"field":{"id":"https://openalex.org/fields/33","display_name":"Social Sciences"},"domain":{"id":"https://openalex.org/domains/2","display_name":"Social Sciences"}},"topics":[{"id":"https://openalex.org/T10927","display_name":"Access Control and Trust","score":0.9998000264167786,"subfield":{"id":"https://openalex.org/subfields/3312","display_name":"Sociology and Political Science"},"field":{"id":"https://openalex.org/fields/33","display_name":"Social Sciences"},"domain":{"id":"https://openalex.org/domains/2","display_name":"Social Sciences"}},{"id":"https://openalex.org/T11424","display_name":"Security and Verification in Computing","score":0.9957000017166138,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11598","display_name":"Internet Traffic Analysis and Secure E-voting","score":0.9896000027656555,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/access-control","display_name":"Access control","score":0.8393243551254272},{"id":"https://openalex.org/keywords/code-refactoring","display_name":"Code refactoring","score":0.7801609039306641},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.7487552762031555},{"id":"https://openalex.org/keywords/bottleneck","display_name":"Bottleneck","score":0.6579289436340332},{"id":"https://openalex.org/keywords/enforcement","display_name":"Enforcement","score":0.5277885794639587},{"id":"https://openalex.org/keywords/set","display_name":"Set (abstract data type)","score":0.5190263986587524},{"id":"https://openalex.org/keywords/control","display_name":"Control (management)","score":0.4841955006122589},{"id":"https://openalex.org/keywords/authorization","display_name":"Authorization","score":0.4670001268386841},{"id":"https://openalex.org/keywords/computer-access-control","display_name":"Computer access control","score":0.45974236726760864},{"id":"https://openalex.org/keywords/business-logic","display_name":"Business logic","score":0.4477531611919403},{"id":"https://openalex.org/keywords/role-based-access-control","display_name":"Role-based access control","score":0.41782882809638977},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.35265102982521057},{"id":"https://openalex.org/keywords/operating-system","display_name":"Operating system","score":0.16878589987754822},{"id":"https://openalex.org/keywords/software","display_name":"Software","score":0.15188169479370117},{"id":"https://openalex.org/keywords/database","display_name":"Database","score":0.12556689977645874},{"id":"https://openalex.org/keywords/programming-language","display_name":"Programming language","score":0.11256331205368042},{"id":"https://openalex.org/keywords/embedded-system","display_name":"Embedded system","score":0.10492604970932007},{"id":"https://openalex.org/keywords/artificial-intelligence","display_name":"Artificial intelligence","score":0.09633785486221313}],"concepts":[{"id":"https://openalex.org/C527821871","wikidata":"https://www.wikidata.org/wiki/Q228502","display_name":"Access control","level":2,"score":0.8393243551254272},{"id":"https://openalex.org/C152752567","wikidata":"https://www.wikidata.org/wiki/Q116877","display_name":"Code refactoring","level":3,"score":0.7801609039306641},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.7487552762031555},{"id":"https://openalex.org/C2780513914","wikidata":"https://www.wikidata.org/wiki/Q18210350","display_name":"Bottleneck","level":2,"score":0.6579289436340332},{"id":"https://openalex.org/C2779777834","wikidata":"https://www.wikidata.org/wiki/Q4202277","display_name":"Enforcement","level":2,"score":0.5277885794639587},{"id":"https://openalex.org/C177264268","wikidata":"https://www.wikidata.org/wiki/Q1514741","display_name":"Set (abstract data type)","level":2,"score":0.5190263986587524},{"id":"https://openalex.org/C2775924081","wikidata":"https://www.wikidata.org/wiki/Q55608371","display_name":"Control (management)","level":2,"score":0.4841955006122589},{"id":"https://openalex.org/C108759981","wikidata":"https://www.wikidata.org/wiki/Q788590","display_name":"Authorization","level":2,"score":0.4670001268386841},{"id":"https://openalex.org/C44415380","wikidata":"https://www.wikidata.org/wiki/Q17008721","display_name":"Computer access control","level":3,"score":0.45974236726760864},{"id":"https://openalex.org/C146222976","wikidata":"https://www.wikidata.org/wiki/Q1204997","display_name":"Business logic","level":2,"score":0.4477531611919403},{"id":"https://openalex.org/C45567728","wikidata":"https://www.wikidata.org/wiki/Q1702839","display_name":"Role-based access control","level":3,"score":0.41782882809638977},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.35265102982521057},{"id":"https://openalex.org/C111919701","wikidata":"https://www.wikidata.org/wiki/Q9135","display_name":"Operating system","level":1,"score":0.16878589987754822},{"id":"https://openalex.org/C2777904410","wikidata":"https://www.wikidata.org/wiki/Q7397","display_name":"Software","level":2,"score":0.15188169479370117},{"id":"https://openalex.org/C77088390","wikidata":"https://www.wikidata.org/wiki/Q8513","display_name":"Database","level":1,"score":0.12556689977645874},{"id":"https://openalex.org/C199360897","wikidata":"https://www.wikidata.org/wiki/Q9143","display_name":"Programming language","level":1,"score":0.11256331205368042},{"id":"https://openalex.org/C149635348","wikidata":"https://www.wikidata.org/wiki/Q193040","display_name":"Embedded system","level":1,"score":0.10492604970932007},{"id":"https://openalex.org/C154945302","wikidata":"https://www.wikidata.org/wiki/Q11660","display_name":"Artificial intelligence","level":1,"score":0.09633785486221313},{"id":"https://openalex.org/C199539241","wikidata":"https://www.wikidata.org/wiki/Q7748","display_name":"Law","level":1,"score":0.0},{"id":"https://openalex.org/C17744445","wikidata":"https://www.wikidata.org/wiki/Q36442","display_name":"Political science","level":0,"score":0.0}],"mesh":[],"locations_count":3,"locations":[{"id":"doi:10.1145/2188286.2188346","is_oa":false,"landing_page_url":"https://doi.org/10.1145/2188286.2188346","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 3rd ACM/SPEC International Conference on Performance Engineering","raw_type":"proceedings-article"},{"id":"pmh:oai:orbilu.uni.lu:10993/15695","is_oa":false,"landing_page_url":"https://orbilu.uni.lu/handle/10993/15695","pdf_url":null,"source":{"id":"https://openalex.org/S4306401815","display_name":"Open Repository and Bibliography (University of Luxembourg)","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I186903577","host_organization_name":"University of Luxembourg","host_organization_lineage":["https://openalex.org/I186903577"],"host_organization_lineage_names":[],"type":"repository"},"license":null,"license_id":null,"version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"Proceedings of the 3rd ACM/SPEC International Conference on Performance Engineering, 323--334 (2012-04); Third Joint WOSP/SIPEW International Conference on Performance Engineering, ICPE'12, Boston, MA, USA - April 22 - 25, 2012, Boston, United States - Massachusetts [US-MA], du 24 Avril 2012 au 28 Avril 2012","raw_type":"peer reviewed"},{"id":"pmh:oai:orbilu.uni.lu:10993/26433","is_oa":true,"landing_page_url":"http://orbilu.uni.lu/handle/10993/26433","pdf_url":null,"source":{"id":"https://openalex.org/S4306401815","display_name":"Open Repository and Bibliography (University of Luxembourg)","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I186903577","host_organization_name":"University of Luxembourg","host_organization_lineage":["https://openalex.org/I186903577"],"host_organization_lineage_names":[],"type":"repository"},"license":"cc-by-nc-sa","license_id":"https://openalex.org/licenses/cc-by-nc-sa","version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"Proceedings of the 3rd ACM/SPEC International Conference on Performance Engineering  (ICPE 2012), 100-110 (2012); the 3rd ACM/SPEC International Conference on Performance Engineering  (ICPE 2012), Boston, United States - Massachusetts [US-MA], 21-25 April 2012","raw_type":"peer reviewed"}],"best_oa_location":{"id":"pmh:oai:orbilu.uni.lu:10993/26433","is_oa":true,"landing_page_url":"http://orbilu.uni.lu/handle/10993/26433","pdf_url":null,"source":{"id":"https://openalex.org/S4306401815","display_name":"Open Repository and Bibliography (University of Luxembourg)","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I186903577","host_organization_name":"University of Luxembourg","host_organization_lineage":["https://openalex.org/I186903577"],"host_organization_lineage_names":[],"type":"repository"},"license":"cc-by-nc-sa","license_id":"https://openalex.org/licenses/cc-by-nc-sa","version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"Proceedings of the 3rd ACM/SPEC International Conference on Performance Engineering  (ICPE 2012), 100-110 (2012); the 3rd ACM/SPEC International Conference on Performance Engineering  (ICPE 2012), Boston, United States - Massachusetts [US-MA], 21-25 April 2012","raw_type":"peer reviewed"},"sustainable_development_goals":[{"score":0.5199999809265137,"display_name":"Peace, Justice and strong institutions","id":"https://metadata.un.org/sdg/16"}],"awards":[],"funders":[{"id":"https://openalex.org/F4320306076","display_name":"National Science Foundation","ror":"https://ror.org/021nxhr62"}],"has_content":{"pdf":false,"grobid_xml":false},"content_urls":null,"referenced_works_count":15,"referenced_works":["https://openalex.org/W1556003781","https://openalex.org/W1563423869","https://openalex.org/W1713323079","https://openalex.org/W1971593892","https://openalex.org/W1991895580","https://openalex.org/W2002638946","https://openalex.org/W2093535134","https://openalex.org/W2139983434","https://openalex.org/W2144899667","https://openalex.org/W2146488404","https://openalex.org/W2151315194","https://openalex.org/W2154765153","https://openalex.org/W2160207938","https://openalex.org/W2519486160","https://openalex.org/W6808419535"],"related_works":["https://openalex.org/W1990260561","https://openalex.org/W2379813727","https://openalex.org/W2357728851","https://openalex.org/W2355345331","https://openalex.org/W2378367493","https://openalex.org/W177923951","https://openalex.org/W2555738791","https://openalex.org/W2017675414","https://openalex.org/W1593822213","https://openalex.org/W2367441718"],"abstract_inverted_index":{"In":[0],"order":[1],"to":[2,11,72,109,147,205],"facilitate":[3,148],"managing":[4],"authorization,":[5],"access":[6,18,27,60,66,87,111,169],"control":[7,19,61,88,112,170],"architectures":[8],"are":[9],"designed":[10],"separate":[12],"the":[13,56,73,76,181,190],"business":[14,191],"logic":[15,192],"from":[16,34],"an":[17,59,84,86,155],"policy.":[20,151],"To":[21,103],"determine":[22],"whether":[23],"a":[24,30,35,38,48,50,92,100,119,123,132,150,198],"user":[25],"can":[26],"which":[28,97,166],"resources,":[29],"request":[31,57,208],"is":[32],"formulated":[33],"component,":[36],"called":[37],"Policy":[39,51],"Enforcement":[40],"Point":[41,53],"(PEP)":[42],"located":[43],"in":[44,83,185,197],"application":[45],"code.":[46],"Given":[47],"request,":[49],"Decision":[52],"(PDP)":[54],"evaluates":[55],"against":[58],"policy":[62,89,120],"and":[63,193,200],"returns":[64],"its":[65,127,194],"decision":[67],"(i.e.,":[68],"permit":[69],"or":[70],"deny)":[71],"PEP.":[74],"With":[75],"growth":[77],"of":[78,91,95,135,160,165,187],"sensitive":[79],"information":[80],"for":[81,114,211],"protection":[82],"application,":[85],"consists":[90],"larger":[93],"number":[94,134],"rules,":[96],"often":[98],"cause":[99],"performance":[101,115],"bottleneck.":[102],"address":[104],"this":[105],"issue,":[106],"we":[107],"propose":[108],"refactor":[110],"policies":[113,130],"improvement":[116],"by":[117,122,138],"splitting":[118,145,149,213],"(handled":[121,137],"single":[124],"PDP)":[125],"into":[126],"corresponding":[128,195],"multiple":[129,139],"with":[131,168],"smaller":[133],"rules":[136,196],"PDPs).":[140],"We":[141,152],"define":[142],"seven":[143],"attribute-set-based":[144],"criteria":[146],"have":[153],"conducted":[154],"evaluation":[156,173,209],"on":[157],"three":[158],"subjects":[159],"real-life":[161],"Java":[162],"systems,":[163],"each":[164],"interacts":[167],"policies.":[171],"Our":[172],"results":[174],"show":[175],"that":[176],"(1)":[177],"our":[178,202],"approach":[179,203],"preserves":[180],"initial":[182],"architectural":[183],"model":[184],"terms":[186],"interaction":[188],"between":[189],"policy,":[199],"(2)":[201],"enables":[204],"substantially":[206],"reduce":[207],"time":[210],"most":[212],"criteria.":[214]},"counts_by_year":[{"year":2021,"cited_by_count":2},{"year":2020,"cited_by_count":2},{"year":2017,"cited_by_count":1},{"year":2016,"cited_by_count":1},{"year":2015,"cited_by_count":4},{"year":2014,"cited_by_count":4},{"year":2012,"cited_by_count":1}],"updated_date":"2025-11-06T03:46:38.306776","created_date":"2016-06-24T00:00:00"}