{"id":"https://openalex.org/W1989299447","doi":"https://doi.org/10.1145/2462410.2462422","title":"Evolving role definitions through permission invocation patterns","display_name":"Evolving role definitions through permission invocation patterns","publication_year":2013,"publication_date":"2013-06-05","ids":{"openalex":"https://openalex.org/W1989299447","doi":"https://doi.org/10.1145/2462410.2462422","mag":"1989299447"},"language":"en","primary_location":{"id":"doi:10.1145/2462410.2462422","is_oa":false,"landing_page_url":"https://doi.org/10.1145/2462410.2462422","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 18th ACM symposium on Access control models and technologies","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5024516353","display_name":"Zhang Wen","orcid":"https://orcid.org/0000-0001-9672-3219"},"institutions":[{"id":"https://openalex.org/I200719446","display_name":"Vanderbilt University","ror":"https://ror.org/02vm5rt34","country_code":"US","type":"education","lineage":["https://openalex.org/I200719446"]}],"countries":["US"],"is_corresponding":true,"raw_author_name":"Wen Zhang","raw_affiliation_strings":["Vanderbilt University, Nashville, TN, USA"],"affiliations":[{"raw_affiliation_string":"Vanderbilt University, Nashville, TN, USA","institution_ids":["https://openalex.org/I200719446"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5100714052","display_name":"You Chen","orcid":"https://orcid.org/0000-0001-8232-8840"},"institutions":[{"id":"https://openalex.org/I200719446","display_name":"Vanderbilt University","ror":"https://ror.org/02vm5rt34","country_code":"US","type":"education","lineage":["https://openalex.org/I200719446"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"You Chen","raw_affiliation_strings":["Vanderbilt University, Nashville, TN, USA"],"affiliations":[{"raw_affiliation_string":"Vanderbilt University, Nashville, TN, USA","institution_ids":["https://openalex.org/I200719446"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5031954035","display_name":"Carl A. Gunter","orcid":"https://orcid.org/0009-0006-6943-0684"},"institutions":[{"id":"https://openalex.org/I2801919071","display_name":"University of Illinois System","ror":"https://ror.org/05e94g991","country_code":"US","type":"education","lineage":["https://openalex.org/I2801919071"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Carl Gunter","raw_affiliation_strings":["University of Illinois, Urbana, IL, USA","University of Illinois Urbana, IL, USA"],"affiliations":[{"raw_affiliation_string":"University of Illinois, Urbana, IL, USA","institution_ids":["https://openalex.org/I2801919071"]},{"raw_affiliation_string":"University of Illinois Urbana, IL, USA","institution_ids":["https://openalex.org/I2801919071"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5050508920","display_name":"David Liebovitz","orcid":"https://orcid.org/0000-0002-2518-5940"},"institutions":[{"id":"https://openalex.org/I111979921","display_name":"Northwestern University","ror":"https://ror.org/000e0be47","country_code":"US","type":"education","lineage":["https://openalex.org/I111979921"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"David Liebovitz","raw_affiliation_strings":["Northwestern University, Chicago, IL, USA","Northwestern University, Chicago IL, USA"],"affiliations":[{"raw_affiliation_string":"Northwestern University, Chicago, IL, USA","institution_ids":["https://openalex.org/I111979921"]},{"raw_affiliation_string":"Northwestern University, Chicago IL, USA","institution_ids":["https://openalex.org/I111979921"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5090647314","display_name":"Bradley Malin","orcid":"https://orcid.org/0000-0003-3040-5175"},"institutions":[{"id":"https://openalex.org/I200719446","display_name":"Vanderbilt University","ror":"https://ror.org/02vm5rt34","country_code":"US","type":"education","lineage":["https://openalex.org/I200719446"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Bradley Malin","raw_affiliation_strings":["Vanderbilt University, Nashville, TN, USA"],"affiliations":[{"raw_affiliation_string":"Vanderbilt University, Nashville, TN, USA","institution_ids":["https://openalex.org/I200719446"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":5,"corresponding_author_ids":["https://openalex.org/A5024516353"],"corresponding_institution_ids":["https://openalex.org/I200719446"],"apc_list":null,"apc_paid":null,"fwci":10.1605,"has_fulltext":false,"cited_by_count":21,"citation_normalized_percentile":{"value":0.97561659,"is_in_top_1_percent":false,"is_in_top_10_percent":true},"cited_by_percentile_year":{"min":89,"max":99},"biblio":{"volume":null,"issue":null,"first_page":"37","last_page":"48"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10927","display_name":"Access Control and Trust","score":0.9994999766349792,"subfield":{"id":"https://openalex.org/subfields/3312","display_name":"Sociology and Political Science"},"field":{"id":"https://openalex.org/fields/33","display_name":"Social Sciences"},"domain":{"id":"https://openalex.org/domains/2","display_name":"Social Sciences"}},"topics":[{"id":"https://openalex.org/T10927","display_name":"Access Control and Trust","score":0.9994999766349792,"subfield":{"id":"https://openalex.org/subfields/3312","display_name":"Sociology and Political Science"},"field":{"id":"https://openalex.org/fields/33","display_name":"Social Sciences"},"domain":{"id":"https://openalex.org/domains/2","display_name":"Social Sciences"}},{"id":"https://openalex.org/T11598","display_name":"Internet Traffic Analysis and Secure E-voting","score":0.9939000010490417,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10237","display_name":"Cryptography and Data Security","score":0.9929999709129333,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/permission","display_name":"Permission","score":0.9046513438224792},{"id":"https://openalex.org/keywords/role-based-access-control","display_name":"Role-based access control","score":0.8498572111129761},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.825118899345398},{"id":"https://openalex.org/keywords/data-mining","display_name":"Data mining","score":0.5530725121498108},{"id":"https://openalex.org/keywords/system-administrator","display_name":"System administrator","score":0.5478092432022095},{"id":"https://openalex.org/keywords/outlier","display_name":"Outlier","score":0.5296266674995422},{"id":"https://openalex.org/keywords/set","display_name":"Set (abstract data type)","score":0.48641324043273926},{"id":"https://openalex.org/keywords/access-control","display_name":"Access control","score":0.4243469834327698},{"id":"https://openalex.org/keywords/theoretical-computer-science","display_name":"Theoretical computer science","score":0.3566433787345886},{"id":"https://openalex.org/keywords/artificial-intelligence","display_name":"Artificial intelligence","score":0.2251940667629242},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.20830628275871277},{"id":"https://openalex.org/keywords/programming-language","display_name":"Programming language","score":0.09826666116714478}],"concepts":[{"id":"https://openalex.org/C2779089604","wikidata":"https://www.wikidata.org/wiki/Q7169333","display_name":"Permission","level":2,"score":0.9046513438224792},{"id":"https://openalex.org/C45567728","wikidata":"https://www.wikidata.org/wiki/Q1702839","display_name":"Role-based access control","level":3,"score":0.8498572111129761},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.825118899345398},{"id":"https://openalex.org/C124101348","wikidata":"https://www.wikidata.org/wiki/Q172491","display_name":"Data mining","level":1,"score":0.5530725121498108},{"id":"https://openalex.org/C2780814629","wikidata":"https://www.wikidata.org/wiki/Q327353","display_name":"System administrator","level":2,"score":0.5478092432022095},{"id":"https://openalex.org/C79337645","wikidata":"https://www.wikidata.org/wiki/Q779824","display_name":"Outlier","level":2,"score":0.5296266674995422},{"id":"https://openalex.org/C177264268","wikidata":"https://www.wikidata.org/wiki/Q1514741","display_name":"Set (abstract data type)","level":2,"score":0.48641324043273926},{"id":"https://openalex.org/C527821871","wikidata":"https://www.wikidata.org/wiki/Q228502","display_name":"Access control","level":2,"score":0.4243469834327698},{"id":"https://openalex.org/C80444323","wikidata":"https://www.wikidata.org/wiki/Q2878974","display_name":"Theoretical computer science","level":1,"score":0.3566433787345886},{"id":"https://openalex.org/C154945302","wikidata":"https://www.wikidata.org/wiki/Q11660","display_name":"Artificial intelligence","level":1,"score":0.2251940667629242},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.20830628275871277},{"id":"https://openalex.org/C199360897","wikidata":"https://www.wikidata.org/wiki/Q9143","display_name":"Programming language","level":1,"score":0.09826666116714478},{"id":"https://openalex.org/C17744445","wikidata":"https://www.wikidata.org/wiki/Q36442","display_name":"Political science","level":0,"score":0.0},{"id":"https://openalex.org/C199539241","wikidata":"https://www.wikidata.org/wiki/Q7748","display_name":"Law","level":1,"score":0.0}],"mesh":[],"locations_count":2,"locations":[{"id":"doi:10.1145/2462410.2462422","is_oa":false,"landing_page_url":"https://doi.org/10.1145/2462410.2462422","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 18th ACM symposium on Access control models and technologies","raw_type":"proceedings-article"},{"id":"pmh:oai:CiteSeerX.psu:10.1.1.296.2230","is_oa":false,"landing_page_url":"http://citeseerx.ist.psu.edu/viewdoc/summary?doi=10.1.1.296.2230","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"http://seclab.illinois.edu/wp-content/uploads/2013/04/ZhangCGLM12.pdf","raw_type":"text"}],"best_oa_location":null,"sustainable_development_goals":[],"awards":[],"funders":[{"id":"https://openalex.org/F4320306076","display_name":"National Science Foundation","ror":"https://ror.org/021nxhr62"},{"id":"https://openalex.org/F4320306085","display_name":"U.S. Department of Health and Human Services","ror":"https://ror.org/033jnv181"},{"id":"https://openalex.org/F4320332161","display_name":"National Institutes of Health","ror":"https://ror.org/01cwqze88"},{"id":"https://openalex.org/F4320332334","display_name":"Office of the National Coordinator for Health Information Technology","ror":"https://ror.org/02fm3sv87"}],"has_content":{"grobid_xml":false,"pdf":false},"content_urls":null,"referenced_works_count":28,"referenced_works":["https://openalex.org/W1520397516","https://openalex.org/W1554085250","https://openalex.org/W1566480186","https://openalex.org/W1975960070","https://openalex.org/W1982001619","https://openalex.org/W1992175386","https://openalex.org/W2011039300","https://openalex.org/W2054075152","https://openalex.org/W2055444504","https://openalex.org/W2078074581","https://openalex.org/W2109943925","https://openalex.org/W2121191395","https://openalex.org/W2123120907","https://openalex.org/W2131904035","https://openalex.org/W2132870739","https://openalex.org/W2133523155","https://openalex.org/W2140965492","https://openalex.org/W2145793726","https://openalex.org/W2153635508","https://openalex.org/W2157054705","https://openalex.org/W2158504322","https://openalex.org/W2160022097","https://openalex.org/W2161358272","https://openalex.org/W2162495634","https://openalex.org/W2166602595","https://openalex.org/W2168683140","https://openalex.org/W2295392890","https://openalex.org/W2476096155"],"related_works":["https://openalex.org/W2373984226","https://openalex.org/W2349137515","https://openalex.org/W2130613250","https://openalex.org/W2361337511","https://openalex.org/W1513229083","https://openalex.org/W2358774039","https://openalex.org/W2374393728","https://openalex.org/W2124367090","https://openalex.org/W2340240862","https://openalex.org/W2366674818"],"abstract_inverted_index":{"In":[0,53],"role-based":[1],"access":[2],"control":[3],"(RBAC),":[4],"roles":[5,31,83,170],"are":[6],"traditionally":[7],"defined":[8],"as":[9,121,123],"sets":[10],"of":[11,51,65,102,175,204,232,253],"permissions.":[12],"Roles":[13],"specified":[14],"by":[15,107],"administrators":[16],"may":[17],"be":[18],"inaccurate,":[19],"however,":[20],"such":[21],"that":[22,88],"data":[23],"mining":[24,159],"methods":[25,37],"have":[26],"been":[27],"proposed":[28],"to":[29,60,80,171,196,234,255],"learn":[30],"from":[32,40,128],"actual":[33],"permission":[34,98,263],"utilization.":[35,69,99,264],"These":[36],"minimize":[38],"variation":[39],"an":[41,85,90,108,116,129,163],"information":[42],"theoretic":[43],"perspective,":[44],"but":[45,199],"they":[46],"neglect":[47],"the":[48,153,168,173,184,197,217,222,235,240,256],"expert":[49],"knowledge":[50],"administrators.":[52],"this":[54,72],"paper,":[55],"we":[56,74,114,220],"propose":[57],"a":[58,62,76,124,138,202,230,251],"strategy":[59],"enable":[61],"controlled":[63,106],"evolution":[64,104],"RBAC":[66,86,205,224,237,258],"based":[67],"on":[68,167],"To":[70,111],"accomplish":[71],"goal,":[73],"extend":[75],"subset":[77],"enumeration":[78],"framework":[79],"search":[81],"candidate":[82],"for":[84,201],"model":[87,225,238,259],"addresses":[89],"objective":[91],"function":[92],"which":[93,207],"balances":[94],"administrator":[95,212,245],"beliefs":[96],"and":[97,148,178,186,211,229,247,250],"The":[100,189],"rate":[101],"role":[103,158],"is":[105,194,242],"administrator-specified":[109],"parameter.":[110],"assess":[112],"effectiveness,":[113],"perform":[115],"empirical":[117],"analysis":[118],"using":[119,161],"simulations,":[120],"well":[122],"real":[125],"world":[126],"dataset":[127],"electronic":[130],"medical":[131,141],"record":[132],"system":[133,241],"(EMR)":[134],"in":[135,216],"use":[136],"at":[137],"large":[139],"academic":[140],"center":[142],"(over":[143],"8000":[144],"users,":[145],"140":[146,149],"roles,":[147],"permissions).":[150],"We":[151],"compare":[152],"results":[154,190],"with":[155],"several":[156],"state-of-the-art":[157],"algorithms":[160],"1)":[162],"outlier":[164],"detection":[165],"method":[166,193],"new":[169,187],"evaluate":[172],"homogeneity":[174],"their":[176],"behavior":[177,210],"2)a":[179],"set-based":[180],"similarity":[181],"measure":[182],"between":[183],"original":[185,236,257],"roles.":[188],"illustrate":[191],"our":[192],"comparable":[195],"state-of-the-art,":[198],"allows":[200],"range":[203],"models":[206],"tradeoff":[208],"user":[209],"expectations.":[213],"For":[214],"instance,":[215],"EMR":[218],"dataset,":[219],"find":[221],"resulting":[223],"contains":[226],"22%":[227],"outliers":[228,249],"distance":[231,252],"0.02":[233],"when":[239,260],"biased":[243,261],"toward":[244,262],"belief,":[246],"13%":[248],"0.26":[254]},"counts_by_year":[{"year":2023,"cited_by_count":1},{"year":2019,"cited_by_count":1},{"year":2018,"cited_by_count":6},{"year":2017,"cited_by_count":3},{"year":2016,"cited_by_count":1},{"year":2015,"cited_by_count":5},{"year":2014,"cited_by_count":3},{"year":2013,"cited_by_count":1}],"updated_date":"2026-04-05T17:49:38.594831","created_date":"2025-10-10T00:00:00"}