{"id":"https://openalex.org/W2804434644","doi":"https://doi.org/10.1145/3198458.3198463","title":"Too Long, did not Enforce","display_name":"Too Long, did not Enforce","publication_year":2018,"publication_date":"2018-05-22","ids":{"openalex":"https://openalex.org/W2804434644","doi":"https://doi.org/10.1145/3198458.3198463","mag":"2804434644"},"language":"en","primary_location":{"id":"doi:10.1145/3198458.3198463","is_oa":false,"landing_page_url":"https://doi.org/10.1145/3198458.3198463","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 4th ACM Workshop on Cyber-Physical System Security","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":true,"oa_status":"green","oa_url":"https://zenodo.org/record/3498156","any_repository_has_fulltext":true},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5101546784","display_name":"Fabio Martinelli","orcid":"https://orcid.org/0000-0002-6721-9395"},"institutions":[{"id":"https://openalex.org/I4210107558","display_name":"Consorzio Pisa Ricerche","ror":"https://ror.org/01t0n3b84","country_code":"IT","type":"facility","lineage":["https://openalex.org/I4210107558"]}],"countries":["IT"],"is_corresponding":true,"raw_author_name":"Fabio Martinelli","raw_affiliation_strings":["Consiglio Nazionale delle Ricerche, Pisa, Italy"],"affiliations":[{"raw_affiliation_string":"Consiglio Nazionale delle Ricerche, Pisa, Italy","institution_ids":["https://openalex.org/I4210107558"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5015130876","display_name":"Christina Michailidou","orcid":"https://orcid.org/0000-0002-4222-469X"},"institutions":[{"id":"https://openalex.org/I4210107558","display_name":"Consorzio Pisa Ricerche","ror":"https://ror.org/01t0n3b84","country_code":"IT","type":"facility","lineage":["https://openalex.org/I4210107558"]}],"countries":["IT"],"is_corresponding":false,"raw_author_name":"Christina Michailidou","raw_affiliation_strings":["Consiglio Nazionale delle Ricerche, Pisa, Italy"],"affiliations":[{"raw_affiliation_string":"Consiglio Nazionale delle Ricerche, Pisa, Italy","institution_ids":["https://openalex.org/I4210107558"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5084737695","display_name":"Paolo Mori","orcid":"https://orcid.org/0000-0002-6618-0388"},"institutions":[{"id":"https://openalex.org/I4210107558","display_name":"Consorzio Pisa Ricerche","ror":"https://ror.org/01t0n3b84","country_code":"IT","type":"facility","lineage":["https://openalex.org/I4210107558"]}],"countries":["IT"],"is_corresponding":false,"raw_author_name":"Paolo Mori","raw_affiliation_strings":["Consiglio Nazionale delle Ricerche, Pisa, Italy"],"affiliations":[{"raw_affiliation_string":"Consiglio Nazionale delle Ricerche, Pisa, Italy","institution_ids":["https://openalex.org/I4210107558"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5043827499","display_name":"Andrea Saracino","orcid":"https://orcid.org/0000-0001-8149-9322"},"institutions":[{"id":"https://openalex.org/I4210107558","display_name":"Consorzio Pisa Ricerche","ror":"https://ror.org/01t0n3b84","country_code":"IT","type":"facility","lineage":["https://openalex.org/I4210107558"]}],"countries":["IT"],"is_corresponding":false,"raw_author_name":"Andrea Saracino","raw_affiliation_strings":["Consiglio Nazionale delle Ricerche, Pisa, Italy"],"affiliations":[{"raw_affiliation_string":"Consiglio Nazionale delle Ricerche, Pisa, Italy","institution_ids":["https://openalex.org/I4210107558"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":4,"corresponding_author_ids":["https://openalex.org/A5101546784"],"corresponding_institution_ids":["https://openalex.org/I4210107558"],"apc_list":null,"apc_paid":null,"fwci":3.4215,"has_fulltext":false,"cited_by_count":11,"citation_normalized_percentile":{"value":0.93197304,"is_in_top_1_percent":false,"is_in_top_10_percent":true},"cited_by_percentile_year":{"min":89,"max":97},"biblio":{"volume":null,"issue":null,"first_page":"27","last_page":"37"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10927","display_name":"Access Control and Trust","score":0.9998999834060669,"subfield":{"id":"https://openalex.org/subfields/3312","display_name":"Sociology and Political Science"},"field":{"id":"https://openalex.org/fields/33","display_name":"Social Sciences"},"domain":{"id":"https://openalex.org/domains/2","display_name":"Social Sciences"}},"topics":[{"id":"https://openalex.org/T10927","display_name":"Access Control and Trust","score":0.9998999834060669,"subfield":{"id":"https://openalex.org/subfields/3312","display_name":"Sociology and Political Science"},"field":{"id":"https://openalex.org/fields/33","display_name":"Social Sciences"},"domain":{"id":"https://openalex.org/domains/2","display_name":"Social Sciences"}},{"id":"https://openalex.org/T10764","display_name":"Privacy-Preserving Technologies in Data","score":0.9955999851226807,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11045","display_name":"Privacy, Security, and Data Protection","score":0.9912999868392944,"subfield":{"id":"https://openalex.org/subfields/3312","display_name":"Sociology and Political Science"},"field":{"id":"https://openalex.org/fields/33","display_name":"Social Sciences"},"domain":{"id":"https://openalex.org/domains/2","display_name":"Social Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.72769695520401},{"id":"https://openalex.org/keywords/granularity","display_name":"Granularity","score":0.6336551308631897},{"id":"https://openalex.org/keywords/access-control","display_name":"Access control","score":0.5913683772087097},{"id":"https://openalex.org/keywords/enforcement","display_name":"Enforcement","score":0.5700293779373169},{"id":"https://openalex.org/keywords/exploit","display_name":"Exploit","score":0.5402026772499084},{"id":"https://openalex.org/keywords/task","display_name":"Task (project management)","score":0.5321618318557739},{"id":"https://openalex.org/keywords/set","display_name":"Set (abstract data type)","score":0.5033990740776062},{"id":"https://openalex.org/keywords/analytic-hierarchy-process","display_name":"Analytic hierarchy process","score":0.4882505238056183},{"id":"https://openalex.org/keywords/risk-analysis","display_name":"Risk analysis (engineering)","score":0.4689599573612213},{"id":"https://openalex.org/keywords/process","display_name":"Process (computing)","score":0.4669443368911743},{"id":"https://openalex.org/keywords/control","display_name":"Control (management)","score":0.4424261748790741},{"id":"https://openalex.org/keywords/the-internet","display_name":"The Internet","score":0.43761155009269714},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.4015539884567261},{"id":"https://openalex.org/keywords/operations-research","display_name":"Operations research","score":0.16909024119377136},{"id":"https://openalex.org/keywords/business","display_name":"Business","score":0.11137422919273376},{"id":"https://openalex.org/keywords/engineering","display_name":"Engineering","score":0.10172277688980103},{"id":"https://openalex.org/keywords/artificial-intelligence","display_name":"Artificial intelligence","score":0.09260058403015137}],"concepts":[{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.72769695520401},{"id":"https://openalex.org/C177774035","wikidata":"https://www.wikidata.org/wiki/Q1246948","display_name":"Granularity","level":2,"score":0.6336551308631897},{"id":"https://openalex.org/C527821871","wikidata":"https://www.wikidata.org/wiki/Q228502","display_name":"Access control","level":2,"score":0.5913683772087097},{"id":"https://openalex.org/C2779777834","wikidata":"https://www.wikidata.org/wiki/Q4202277","display_name":"Enforcement","level":2,"score":0.5700293779373169},{"id":"https://openalex.org/C165696696","wikidata":"https://www.wikidata.org/wiki/Q11287","display_name":"Exploit","level":2,"score":0.5402026772499084},{"id":"https://openalex.org/C2780451532","wikidata":"https://www.wikidata.org/wiki/Q759676","display_name":"Task (project management)","level":2,"score":0.5321618318557739},{"id":"https://openalex.org/C177264268","wikidata":"https://www.wikidata.org/wiki/Q1514741","display_name":"Set (abstract data type)","level":2,"score":0.5033990740776062},{"id":"https://openalex.org/C87345402","wikidata":"https://www.wikidata.org/wiki/Q485202","display_name":"Analytic hierarchy process","level":2,"score":0.4882505238056183},{"id":"https://openalex.org/C112930515","wikidata":"https://www.wikidata.org/wiki/Q4389547","display_name":"Risk analysis (engineering)","level":1,"score":0.4689599573612213},{"id":"https://openalex.org/C98045186","wikidata":"https://www.wikidata.org/wiki/Q205663","display_name":"Process (computing)","level":2,"score":0.4669443368911743},{"id":"https://openalex.org/C2775924081","wikidata":"https://www.wikidata.org/wiki/Q55608371","display_name":"Control (management)","level":2,"score":0.4424261748790741},{"id":"https://openalex.org/C110875604","wikidata":"https://www.wikidata.org/wiki/Q75","display_name":"The Internet","level":2,"score":0.43761155009269714},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.4015539884567261},{"id":"https://openalex.org/C42475967","wikidata":"https://www.wikidata.org/wiki/Q194292","display_name":"Operations research","level":1,"score":0.16909024119377136},{"id":"https://openalex.org/C144133560","wikidata":"https://www.wikidata.org/wiki/Q4830453","display_name":"Business","level":0,"score":0.11137422919273376},{"id":"https://openalex.org/C127413603","wikidata":"https://www.wikidata.org/wiki/Q11023","display_name":"Engineering","level":0,"score":0.10172277688980103},{"id":"https://openalex.org/C154945302","wikidata":"https://www.wikidata.org/wiki/Q11660","display_name":"Artificial intelligence","level":1,"score":0.09260058403015137},{"id":"https://openalex.org/C111919701","wikidata":"https://www.wikidata.org/wiki/Q9135","display_name":"Operating system","level":1,"score":0.0},{"id":"https://openalex.org/C201995342","wikidata":"https://www.wikidata.org/wiki/Q682496","display_name":"Systems engineering","level":1,"score":0.0},{"id":"https://openalex.org/C199539241","wikidata":"https://www.wikidata.org/wiki/Q7748","display_name":"Law","level":1,"score":0.0},{"id":"https://openalex.org/C17744445","wikidata":"https://www.wikidata.org/wiki/Q36442","display_name":"Political science","level":0,"score":0.0},{"id":"https://openalex.org/C199360897","wikidata":"https://www.wikidata.org/wiki/Q9143","display_name":"Programming language","level":1,"score":0.0},{"id":"https://openalex.org/C136764020","wikidata":"https://www.wikidata.org/wiki/Q466","display_name":"World Wide Web","level":1,"score":0.0}],"mesh":[],"locations_count":2,"locations":[{"id":"doi:10.1145/3198458.3198463","is_oa":false,"landing_page_url":"https://doi.org/10.1145/3198458.3198463","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 4th ACM Workshop on Cyber-Physical System Security","raw_type":"proceedings-article"},{"id":"pmh:oai:zenodo.org:3498156","is_oa":true,"landing_page_url":"https://zenodo.org/record/3498156","pdf_url":null,"source":{"id":"https://openalex.org/S4306400562","display_name":"Zenodo (CERN European Organization for Nuclear Research)","issn_l":null,"issn":null,"is_oa":true,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I67311998","host_organization_name":"European Organization for Nuclear Research","host_organization_lineage":["https://openalex.org/I67311998"],"host_organization_lineage_names":[],"type":"repository"},"license":"other-oa","license_id":"https://openalex.org/licenses/other-oa","version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"","raw_type":"info:eu-repo/semantics/conferencePaper"}],"best_oa_location":{"id":"pmh:oai:zenodo.org:3498156","is_oa":true,"landing_page_url":"https://zenodo.org/record/3498156","pdf_url":null,"source":{"id":"https://openalex.org/S4306400562","display_name":"Zenodo (CERN European Organization for Nuclear Research)","issn_l":null,"issn":null,"is_oa":true,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I67311998","host_organization_name":"European Organization for Nuclear Research","host_organization_lineage":["https://openalex.org/I67311998"],"host_organization_lineage_names":[],"type":"repository"},"license":"other-oa","license_id":"https://openalex.org/licenses/other-oa","version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"","raw_type":"info:eu-repo/semantics/conferencePaper"},"sustainable_development_goals":[{"id":"https://metadata.un.org/sdg/16","score":0.5799999833106995,"display_name":"Peace, Justice and strong institutions"}],"awards":[{"id":"https://openalex.org/G3831331168","display_name":null,"funder_award_id":"675320","funder_id":"https://openalex.org/F4320338350","funder_display_name":"H2020 Security"}],"funders":[{"id":"https://openalex.org/F4320338350","display_name":"H2020 Security","ror":null}],"has_content":{"grobid_xml":false,"pdf":false},"content_urls":null,"referenced_works_count":25,"referenced_works":["https://openalex.org/W1539721902","https://openalex.org/W1549083521","https://openalex.org/W1575313125","https://openalex.org/W1669748495","https://openalex.org/W1986789244","https://openalex.org/W2009995732","https://openalex.org/W2013611975","https://openalex.org/W2017960359","https://openalex.org/W2035663242","https://openalex.org/W2037013499","https://openalex.org/W2046078150","https://openalex.org/W2058347046","https://openalex.org/W2060208845","https://openalex.org/W2068189899","https://openalex.org/W2108287273","https://openalex.org/W2145028214","https://openalex.org/W2166602595","https://openalex.org/W2186354314","https://openalex.org/W2248690219","https://openalex.org/W2343183650","https://openalex.org/W2418580550","https://openalex.org/W2749040653","https://openalex.org/W2755914559","https://openalex.org/W3147640773","https://openalex.org/W4244558719"],"related_works":["https://openalex.org/W17155033","https://openalex.org/W3207760230","https://openalex.org/W1496222301","https://openalex.org/W1590307681","https://openalex.org/W4312814274","https://openalex.org/W4285370786","https://openalex.org/W2296488620","https://openalex.org/W2358353312","https://openalex.org/W2353836703","https://openalex.org/W41015297"],"abstract_inverted_index":{"Distributed":[0],"environments":[1,48],"such":[2],"as":[3,140],"Internet":[4],"of":[5,11,33,62,71,104,143,149,169],"Things,":[6],"have":[7],"an":[8],"increasing":[9],"need":[10],"introducing":[12],"access":[13,29],"and":[14,26,53,98,159,174],"usage":[15,85,144],"control":[16,86,145],"mechanisms,":[17],"to":[18,22,30,45,58,96,117,123,128,137],"manage":[19],"the":[20,28,31,59,69,108,112,119,153,163,167,175],"rights":[21],"perform":[23],"specific":[24,44,130],"operations":[25],"regulate":[27],"plethora":[32],"information":[34],"daily":[35],"generated":[36],"by":[37],"these":[38,46],"devices.":[39],"Defining":[40],"policies":[41,100,173],"which":[42],"are":[43],"distributed":[47],"could":[49],"be":[50,66,138],"a":[51,82,91,129,133],"challenging":[52],"tedious":[54],"task,":[55],"mainly":[56],"due":[57],"large":[60],"set":[61],"attributes":[63,125],"that":[64,151],"should":[65],"considered,":[67],"hence":[68],"upcoming":[70],"unforeseen":[72],"conflicts":[73],"or":[74],"unconsidered":[75],"conditions.":[76],"In":[77,106],"this":[78],"paper":[79],"we":[80],"propose":[81],"qualitative":[83],"risk-based":[84],"model,":[87,165],"aimed":[88],"at":[89,101],"enabling":[90],"framework":[92,110],"where":[93],"is":[94],"possible":[95],"define":[97],"enforce":[99],"different":[102,124],"levels":[103],"granularity.":[105],"particular,":[107],"proposed":[109,164],"exploits":[111],"Analytic":[113],"Hierarchy":[114],"Process":[115],"(AHP)":[116],"coalesce":[118],"risk":[120,135],"value":[121],"assigned":[122],"in":[126,132,156,160],"relation":[127],"operation,":[131],"single":[134],"value,":[136],"used":[139],"unique":[141],"attribute":[142],"policies.":[146,178],"Two":[147],"sets":[148],"experiments":[150],"show":[152],"benefits":[154],"both":[155],"policy":[157],"definition":[158],"performance,":[161],"validate":[162],"demonstrating":[166],"equivalence":[168],"enforcement":[170],"among":[171],"standard":[172],"derived":[176],"single-attributed":[177]},"counts_by_year":[{"year":2023,"cited_by_count":1},{"year":2022,"cited_by_count":4},{"year":2021,"cited_by_count":2},{"year":2020,"cited_by_count":2},{"year":2019,"cited_by_count":1},{"year":2018,"cited_by_count":1}],"updated_date":"2025-11-06T03:46:38.306776","created_date":"2025-10-10T00:00:00"}