{"id":"https://openalex.org/W4404823305","doi":"https://doi.org/10.1145/3706057","title":"SoK: Access Control Policy Generation from High-level Natural Language Requirements","display_name":"SoK: Access Control Policy Generation from High-level Natural Language Requirements","publication_year":2024,"publication_date":"2024-11-28","ids":{"openalex":"https://openalex.org/W4404823305","doi":"https://doi.org/10.1145/3706057"},"language":"en","primary_location":{"id":"doi:10.1145/3706057","is_oa":true,"landing_page_url":"https://doi.org/10.1145/3706057","pdf_url":"https://dl.acm.org/doi/pdf/10.1145/3706057","source":{"id":"https://openalex.org/S157921468","display_name":"ACM Computing Surveys","issn_l":"0360-0300","issn":["0360-0300","1557-7341"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310319798","host_organization_name":"Association for Computing Machinery","host_organization_lineage":["https://openalex.org/P4310319798"],"host_organization_lineage_names":["Association for Computing Machinery"],"type":"journal"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"ACM Computing Surveys","raw_type":"journal-article"},"type":"review","indexed_in":["crossref"],"open_access":{"is_oa":true,"oa_status":"bronze","oa_url":"https://dl.acm.org/doi/pdf/10.1145/3706057","any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5093023316","display_name":"Sakuna Harinda Jayasundara","orcid":null},"institutions":[{"id":"https://openalex.org/I154130895","display_name":"University of Auckland","ror":"https://ror.org/03b94tp07","country_code":"NZ","type":"education","lineage":["https://openalex.org/I154130895"]}],"countries":["NZ"],"is_corresponding":true,"raw_author_name":"Sakuna Harinda Jayasundara","raw_affiliation_strings":["School of Computer Science, University of Auckland, Auckland, New Zealand"],"affiliations":[{"raw_affiliation_string":"School of Computer Science, University of Auckland, Auckland, New Zealand","institution_ids":["https://openalex.org/I154130895"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5081069489","display_name":"Nalin Asanka Gamagedara Arachchilage","orcid":"https://orcid.org/0000-0002-0059-0376"},"institutions":[{"id":"https://openalex.org/I154130895","display_name":"University of Auckland","ror":"https://ror.org/03b94tp07","country_code":"NZ","type":"education","lineage":["https://openalex.org/I154130895"]},{"id":"https://openalex.org/I39854758","display_name":"Auckland University of Technology","ror":"https://ror.org/01zvqw119","country_code":"NZ","type":"education","lineage":["https://openalex.org/I39854758"]},{"id":"https://openalex.org/I82951845","display_name":"RMIT University","ror":"https://ror.org/04ttjf776","country_code":"AU","type":"education","lineage":["https://openalex.org/I82951845"]}],"countries":["AU","NZ"],"is_corresponding":false,"raw_author_name":"Nalin Asanka Gamagedara Arachchilage","raw_affiliation_strings":["School of Computer Science, University of Auckland, Auckland, New Zealand and School of Computing Technologies, RMIT University, Melbourne, Australia","School of Computer Science, University of Auckland, Auckland New Zealand","School of Computing Technologies, RMIT University, Melbourne Australia"],"affiliations":[{"raw_affiliation_string":"School of Computer Science, University of Auckland, Auckland, New Zealand and School of Computing Technologies, RMIT University, Melbourne, Australia","institution_ids":["https://openalex.org/I39854758","https://openalex.org/I154130895"]},{"raw_affiliation_string":"School of Computer Science, University of Auckland, Auckland New Zealand","institution_ids":["https://openalex.org/I154130895"]},{"raw_affiliation_string":"School of Computing Technologies, RMIT University, Melbourne Australia","institution_ids":["https://openalex.org/I82951845"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5072751099","display_name":"Giovanni Russello","orcid":"https://orcid.org/0000-0001-6987-0803"},"institutions":[{"id":"https://openalex.org/I154130895","display_name":"University of Auckland","ror":"https://ror.org/03b94tp07","country_code":"NZ","type":"education","lineage":["https://openalex.org/I154130895"]}],"countries":["NZ"],"is_corresponding":false,"raw_author_name":"Giovanni Russello","raw_affiliation_strings":["School of Computer Science, University of Auckland, Auckland, New Zealand","School of Computer Science, University of Auckland, Auckland New Zealand"],"affiliations":[{"raw_affiliation_string":"School of Computer Science, University of Auckland, Auckland, New Zealand","institution_ids":["https://openalex.org/I154130895"]},{"raw_affiliation_string":"School of Computer Science, University of Auckland, Auckland New Zealand","institution_ids":["https://openalex.org/I154130895"]}]}],"institutions":[],"countries_distinct_count":2,"institutions_distinct_count":3,"corresponding_author_ids":["https://openalex.org/A5093023316"],"corresponding_institution_ids":["https://openalex.org/I154130895"],"apc_list":null,"apc_paid":null,"fwci":9.0964,"has_fulltext":false,"cited_by_count":8,"citation_normalized_percentile":{"value":0.97742528,"is_in_top_1_percent":false,"is_in_top_10_percent":true},"cited_by_percentile_year":{"min":98,"max":99},"biblio":{"volume":"57","issue":"4","first_page":"1","last_page":"37"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10927","display_name":"Access Control and Trust","score":0.9987000226974487,"subfield":{"id":"https://openalex.org/subfields/3312","display_name":"Sociology and Political Science"},"field":{"id":"https://openalex.org/fields/33","display_name":"Social Sciences"},"domain":{"id":"https://openalex.org/domains/2","display_name":"Social Sciences"}},"topics":[{"id":"https://openalex.org/T10927","display_name":"Access Control and Trust","score":0.9987000226974487,"subfield":{"id":"https://openalex.org/subfields/3312","display_name":"Sociology and Political Science"},"field":{"id":"https://openalex.org/fields/33","display_name":"Social Sciences"},"domain":{"id":"https://openalex.org/domains/2","display_name":"Social Sciences"}},{"id":"https://openalex.org/T10028","display_name":"Topic Modeling","score":0.9855999946594238,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T13629","display_name":"Text Readability and Simplification","score":0.9758999943733215,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.8995406627655029},{"id":"https://openalex.org/keywords/access-control","display_name":"Access control","score":0.5525727272033691},{"id":"https://openalex.org/keywords/natural-language-generation","display_name":"Natural language generation","score":0.5234189033508301},{"id":"https://openalex.org/keywords/control","display_name":"Control (management)","score":0.4471380114555359},{"id":"https://openalex.org/keywords/natural-language","display_name":"Natural language","score":0.3908922076225281},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.2157701849937439},{"id":"https://openalex.org/keywords/natural-language-processing","display_name":"Natural language processing","score":0.19522058963775635},{"id":"https://openalex.org/keywords/artificial-intelligence","display_name":"Artificial intelligence","score":0.19291460514068604}],"concepts":[{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.8995406627655029},{"id":"https://openalex.org/C527821871","wikidata":"https://www.wikidata.org/wiki/Q228502","display_name":"Access control","level":2,"score":0.5525727272033691},{"id":"https://openalex.org/C2776187449","wikidata":"https://www.wikidata.org/wiki/Q1513879","display_name":"Natural language generation","level":3,"score":0.5234189033508301},{"id":"https://openalex.org/C2775924081","wikidata":"https://www.wikidata.org/wiki/Q55608371","display_name":"Control (management)","level":2,"score":0.4471380114555359},{"id":"https://openalex.org/C195324797","wikidata":"https://www.wikidata.org/wiki/Q33742","display_name":"Natural language","level":2,"score":0.3908922076225281},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.2157701849937439},{"id":"https://openalex.org/C204321447","wikidata":"https://www.wikidata.org/wiki/Q30642","display_name":"Natural language processing","level":1,"score":0.19522058963775635},{"id":"https://openalex.org/C154945302","wikidata":"https://www.wikidata.org/wiki/Q11660","display_name":"Artificial intelligence","level":1,"score":0.19291460514068604}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1145/3706057","is_oa":true,"landing_page_url":"https://doi.org/10.1145/3706057","pdf_url":"https://dl.acm.org/doi/pdf/10.1145/3706057","source":{"id":"https://openalex.org/S157921468","display_name":"ACM Computing Surveys","issn_l":"0360-0300","issn":["0360-0300","1557-7341"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310319798","host_organization_name":"Association for Computing Machinery","host_organization_lineage":["https://openalex.org/P4310319798"],"host_organization_lineage_names":["Association for Computing Machinery"],"type":"journal"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"ACM Computing Surveys","raw_type":"journal-article"}],"best_oa_location":{"id":"doi:10.1145/3706057","is_oa":true,"landing_page_url":"https://doi.org/10.1145/3706057","pdf_url":"https://dl.acm.org/doi/pdf/10.1145/3706057","source":{"id":"https://openalex.org/S157921468","display_name":"ACM Computing Surveys","issn_l":"0360-0300","issn":["0360-0300","1557-7341"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310319798","host_organization_name":"Association for Computing Machinery","host_organization_lineage":["https://openalex.org/P4310319798"],"host_organization_lineage_names":["Association for Computing Machinery"],"type":"journal"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"ACM Computing Surveys","raw_type":"journal-article"},"sustainable_development_goals":[{"id":"https://metadata.un.org/sdg/16","display_name":"Peace, Justice and strong institutions","score":0.47999998927116394}],"awards":[],"funders":[],"has_content":{"grobid_xml":false,"pdf":true},"content_urls":{"pdf":"https://content.openalex.org/works/W4404823305.pdf"},"referenced_works_count":86,"referenced_works":["https://openalex.org/W1444168786","https://openalex.org/W1502957213","https://openalex.org/W1530148683","https://openalex.org/W1588485088","https://openalex.org/W1958080585","https://openalex.org/W1967042038","https://openalex.org/W1969939902","https://openalex.org/W1975675278","https://openalex.org/W1984671620","https://openalex.org/W1995649094","https://openalex.org/W2001318500","https://openalex.org/W2002900608","https://openalex.org/W2005264752","https://openalex.org/W2021859872","https://openalex.org/W2027052495","https://openalex.org/W2028722148","https://openalex.org/W2045020574","https://openalex.org/W2045812729","https://openalex.org/W2045896718","https://openalex.org/W2056448619","https://openalex.org/W2070881494","https://openalex.org/W2089513810","https://openalex.org/W2092047229","https://openalex.org/W2098854124","https://openalex.org/W2099789718","https://openalex.org/W2121513440","https://openalex.org/W2124264388","https://openalex.org/W2142381775","https://openalex.org/W2150656895","https://openalex.org/W2150977824","https://openalex.org/W2156515921","https://openalex.org/W2160724118","https://openalex.org/W2161589280","https://openalex.org/W2173983982","https://openalex.org/W2221180081","https://openalex.org/W2251495238","https://openalex.org/W2395579298","https://openalex.org/W2505467124","https://openalex.org/W2529391596","https://openalex.org/W2536413803","https://openalex.org/W2598848726","https://openalex.org/W2611573015","https://openalex.org/W2617906815","https://openalex.org/W2782208146","https://openalex.org/W2793372807","https://openalex.org/W2794168831","https://openalex.org/W2806152525","https://openalex.org/W2894314083","https://openalex.org/W2896457183","https://openalex.org/W2897509371","https://openalex.org/W2913436378","https://openalex.org/W2914854069","https://openalex.org/W2936215830","https://openalex.org/W2951365233","https://openalex.org/W2996826314","https://openalex.org/W3021091026","https://openalex.org/W3028407954","https://openalex.org/W3035970863","https://openalex.org/W3088470625","https://openalex.org/W3094828954","https://openalex.org/W3144543375","https://openalex.org/W3156333129","https://openalex.org/W3162717564","https://openalex.org/W3168867926","https://openalex.org/W3204452949","https://openalex.org/W3205843373","https://openalex.org/W4205337489","https://openalex.org/W4211218509","https://openalex.org/W4212926655","https://openalex.org/W4226278401","https://openalex.org/W4229452781","https://openalex.org/W4232488826","https://openalex.org/W4246939875","https://openalex.org/W4284671652","https://openalex.org/W4292518714","https://openalex.org/W4379340699","https://openalex.org/W4385328060","https://openalex.org/W4391836235","https://openalex.org/W6681438374","https://openalex.org/W6683738474","https://openalex.org/W6684456340","https://openalex.org/W6739901393","https://openalex.org/W6755689716","https://openalex.org/W6792008726","https://openalex.org/W6862020115","https://openalex.org/W7033595853"],"related_works":["https://openalex.org/W2955859849","https://openalex.org/W2152921782","https://openalex.org/W382594479","https://openalex.org/W2470045054","https://openalex.org/W2575772232","https://openalex.org/W2151245229","https://openalex.org/W2140902089","https://openalex.org/W1510553545","https://openalex.org/W3020827637","https://openalex.org/W199086061"],"abstract_inverted_index":{"Administrator-centered":[0],"access":[1,35,130,142],"control":[2,36,131,143],"failures":[3],"can":[4],"cause":[5],"data":[6],"breaches,":[7],"putting":[8],"organizations":[9],"at":[10],"risk":[11],"of":[12,93,146,153,157,163],"financial":[13],"loss":[14],"and":[15,23,33,79,106,121,155,170,184],"reputation":[16],"damage.":[17],"Existing":[18],"graphical":[19,43,98],"policy":[20,25,44,60,99,112],"configuration":[21,45,100],"tools":[22,46,101],"automated":[24,59,111],"generation":[26,61,113],"frameworks":[27,62,114],"attempt":[28],"to":[29,49,65,72,75,104,127,177],"help":[30],"administrators":[31],"configure":[32],"generate":[34,129],"policies":[37,108,132],"by":[38],"avoiding":[39],"such":[40,149,159],"failures.":[41],"However,":[42],"are":[47,63,102,115],"prone":[48,64],"human":[50],"errors,":[51],"making":[52,68],"them":[53,69],"unusable.":[54],"On":[55],"the":[56,94,141,151,161,188,192],"other":[57],"hand,":[58],"erroneous":[66],"predictions,":[67],"unreliable.":[70],"Therefore,":[71],"find":[73],"ways":[74],"improve":[76],"their":[77,138,168],"usability":[78,169],"reliability,":[80,171],"we":[81],"conducted":[82],"a":[83],"Systematic":[84],"Literature":[85],"Review":[86],"analyzing":[87],"49":[88],"publications.":[89],"The":[90],"thematic":[91],"analysis":[92],"publications":[95],"revealed":[96],"that":[97],"developed":[103,116],"write":[105],"visualize":[107],"manually.":[109],"Moreover,":[110],"using":[117],"machine":[118],"learning":[119],"(ML)":[120],"natural":[122],"language":[123],"processing":[124],"(NLP)":[125],"techniques":[126],"automatically":[128],"from":[133],"high-level":[134],"requirement":[135],"specifications.":[136],"Despite":[137],"utility":[139],"in":[140,187],"domain,":[144,190],"limitations":[145,156,180],"these":[147,179],"tools,":[148],"as":[150,160],"lack":[152,162],"flexibility,":[154],"frameworks,":[158],"domain":[164],"adaptation,":[165],"negatively":[166],"affect":[167],"respectively.":[172],"Our":[173],"study":[174],"offers":[175],"recommendations":[176],"address":[178],"through":[181],"real-world":[182],"applications":[183],"recent":[185],"advancements":[186],"NLP":[189],"paving":[191],"way":[193],"for":[194],"future":[195],"research.":[196]},"counts_by_year":[{"year":2026,"cited_by_count":2},{"year":2025,"cited_by_count":6}],"updated_date":"2026-03-27T14:29:43.386196","created_date":"2025-10-10T00:00:00"}