{"id":"https://openalex.org/W2908957302","doi":"https://doi.org/10.23919/fmcad.2018.8602994","title":"Semantic-based Automated Reasoning for AWS Access Policies using SMT","display_name":"Semantic-based Automated Reasoning for AWS Access Policies using SMT","publication_year":2018,"publication_date":"2018-10-01","ids":{"openalex":"https://openalex.org/W2908957302","doi":"https://doi.org/10.23919/fmcad.2018.8602994","mag":"2908957302"},"language":"en","primary_location":{"id":"doi:10.23919/fmcad.2018.8602994","is_oa":false,"landing_page_url":"https://doi.org/10.23919/fmcad.2018.8602994","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2018 Formal Methods in Computer Aided Design (FMCAD)","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":true,"oa_status":"green","oa_url":"https://discovery.ucl.ac.uk/10081411/1/Semantic-based%20Automated%20Reasoning%20for%20AWS%20Access%20Policies%20using%20SMT.pdf","any_repository_has_fulltext":true},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5044441669","display_name":"John Backes","orcid":null},"institutions":[{"id":"https://openalex.org/I1311688040","display_name":"Amazon (United States)","ror":"https://ror.org/04mv4n011","country_code":"US","type":"company","lineage":["https://openalex.org/I1311688040"]}],"countries":["US"],"is_corresponding":true,"raw_author_name":"John Backes","raw_affiliation_strings":["Amazon Web Services"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"Amazon Web Services","institution_ids":["https://openalex.org/I1311688040"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5041321243","display_name":"Pauline Bolignano","orcid":null},"institutions":[{"id":"https://openalex.org/I1311688040","display_name":"Amazon (United States)","ror":"https://ror.org/04mv4n011","country_code":"US","type":"company","lineage":["https://openalex.org/I1311688040"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Pauline Bolignano","raw_affiliation_strings":["Amazon Web Services"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"Amazon Web Services","institution_ids":["https://openalex.org/I1311688040"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5112528389","display_name":"Byron Cook","orcid":null},"institutions":[{"id":"https://openalex.org/I1311688040","display_name":"Amazon (United States)","ror":"https://ror.org/04mv4n011","country_code":"US","type":"company","lineage":["https://openalex.org/I1311688040"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Byron Cook","raw_affiliation_strings":["Amazon Web Services"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"Amazon Web Services","institution_ids":["https://openalex.org/I1311688040"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5001680206","display_name":"Catherine Dodge","orcid":null},"institutions":[{"id":"https://openalex.org/I1311688040","display_name":"Amazon (United States)","ror":"https://ror.org/04mv4n011","country_code":"US","type":"company","lineage":["https://openalex.org/I1311688040"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Catherine Dodge","raw_affiliation_strings":["Amazon Web Services"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"Amazon Web Services","institution_ids":["https://openalex.org/I1311688040"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5084336108","display_name":"Andrew Gacek","orcid":"https://orcid.org/0000-0003-0321-8155"},"institutions":[{"id":"https://openalex.org/I1311688040","display_name":"Amazon (United States)","ror":"https://ror.org/04mv4n011","country_code":"US","type":"company","lineage":["https://openalex.org/I1311688040"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Andrew Gacek","raw_affiliation_strings":["Amazon Web Services"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"Amazon Web Services","institution_ids":["https://openalex.org/I1311688040"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5060968998","display_name":"Kasper S\u00f8e Luckow","orcid":"https://orcid.org/0000-0001-8256-5934"},"institutions":[{"id":"https://openalex.org/I1311688040","display_name":"Amazon (United States)","ror":"https://ror.org/04mv4n011","country_code":"US","type":"company","lineage":["https://openalex.org/I1311688040"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Kasper Luckow","raw_affiliation_strings":["Amazon Web Services"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"Amazon Web Services","institution_ids":["https://openalex.org/I1311688040"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5047763549","display_name":"Neha Rungta","orcid":"https://orcid.org/0000-0001-5143-8940"},"institutions":[{"id":"https://openalex.org/I1311688040","display_name":"Amazon (United States)","ror":"https://ror.org/04mv4n011","country_code":"US","type":"company","lineage":["https://openalex.org/I1311688040"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Neha Rungta","raw_affiliation_strings":["Amazon Web Services"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"Amazon Web Services","institution_ids":["https://openalex.org/I1311688040"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5112571440","display_name":"Oksana Tkachuk","orcid":null},"institutions":[{"id":"https://openalex.org/I1311688040","display_name":"Amazon (United States)","ror":"https://ror.org/04mv4n011","country_code":"US","type":"company","lineage":["https://openalex.org/I1311688040"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Oksana Tkachuk","raw_affiliation_strings":["Amazon Web Services"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"Amazon Web Services","institution_ids":["https://openalex.org/I1311688040"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5090965738","display_name":"Carsten Varming","orcid":null},"institutions":[{"id":"https://openalex.org/I1311688040","display_name":"Amazon (United States)","ror":"https://ror.org/04mv4n011","country_code":"US","type":"company","lineage":["https://openalex.org/I1311688040"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Carsten Varming","raw_affiliation_strings":["Amazon Web Services"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"Amazon Web Services","institution_ids":["https://openalex.org/I1311688040"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":9,"corresponding_author_ids":["https://openalex.org/A5044441669"],"corresponding_institution_ids":["https://openalex.org/I1311688040"],"apc_list":null,"apc_paid":null,"fwci":15.0537,"has_fulltext":true,"cited_by_count":91,"citation_normalized_percentile":{"value":0.98753826,"is_in_top_1_percent":false,"is_in_top_10_percent":true},"cited_by_percentile_year":{"min":96,"max":100},"biblio":{"volume":null,"issue":null,"first_page":"1","last_page":"9"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10927","display_name":"Access Control and Trust","score":0.9998999834060669,"subfield":{"id":"https://openalex.org/subfields/3312","display_name":"Sociology and Political Science"},"field":{"id":"https://openalex.org/fields/33","display_name":"Social Sciences"},"domain":{"id":"https://openalex.org/domains/2","display_name":"Social Sciences"}},"topics":[{"id":"https://openalex.org/T10927","display_name":"Access Control and Trust","score":0.9998999834060669,"subfield":{"id":"https://openalex.org/subfields/3312","display_name":"Sociology and Political Science"},"field":{"id":"https://openalex.org/fields/33","display_name":"Social Sciences"},"domain":{"id":"https://openalex.org/domains/2","display_name":"Social Sciences"}},{"id":"https://openalex.org/T11424","display_name":"Security and Verification in Computing","score":0.9976999759674072,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11614","display_name":"Cloud Data Security Solutions","score":0.9957000017166138,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.8615298271179199},{"id":"https://openalex.org/keywords/semantics","display_name":"Semantics (computer science)","score":0.67363440990448},{"id":"https://openalex.org/keywords/cloud-computing","display_name":"Cloud computing","score":0.6588058471679688},{"id":"https://openalex.org/keywords/the-internet","display_name":"The Internet","score":0.5625438094139099},{"id":"https://openalex.org/keywords/access-control","display_name":"Access control","score":0.5005335807800293},{"id":"https://openalex.org/keywords/semantic-web","display_name":"Semantic Web","score":0.4773833155632019},{"id":"https://openalex.org/keywords/world-wide-web","display_name":"World Wide Web","score":0.36087191104888916},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.2812384366989136},{"id":"https://openalex.org/keywords/programming-language","display_name":"Programming language","score":0.26391685009002686},{"id":"https://openalex.org/keywords/operating-system","display_name":"Operating system","score":0.22778522968292236}],"concepts":[{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.8615298271179199},{"id":"https://openalex.org/C184337299","wikidata":"https://www.wikidata.org/wiki/Q1437428","display_name":"Semantics (computer science)","level":2,"score":0.67363440990448},{"id":"https://openalex.org/C79974875","wikidata":"https://www.wikidata.org/wiki/Q483639","display_name":"Cloud computing","level":2,"score":0.6588058471679688},{"id":"https://openalex.org/C110875604","wikidata":"https://www.wikidata.org/wiki/Q75","display_name":"The Internet","level":2,"score":0.5625438094139099},{"id":"https://openalex.org/C527821871","wikidata":"https://www.wikidata.org/wiki/Q228502","display_name":"Access control","level":2,"score":0.5005335807800293},{"id":"https://openalex.org/C2129575","wikidata":"https://www.wikidata.org/wiki/Q54837","display_name":"Semantic Web","level":2,"score":0.4773833155632019},{"id":"https://openalex.org/C136764020","wikidata":"https://www.wikidata.org/wiki/Q466","display_name":"World Wide Web","level":1,"score":0.36087191104888916},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.2812384366989136},{"id":"https://openalex.org/C199360897","wikidata":"https://www.wikidata.org/wiki/Q9143","display_name":"Programming language","level":1,"score":0.26391685009002686},{"id":"https://openalex.org/C111919701","wikidata":"https://www.wikidata.org/wiki/Q9135","display_name":"Operating system","level":1,"score":0.22778522968292236}],"mesh":[],"locations_count":2,"locations":[{"id":"doi:10.23919/fmcad.2018.8602994","is_oa":false,"landing_page_url":"https://doi.org/10.23919/fmcad.2018.8602994","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2018 Formal Methods in Computer Aided Design (FMCAD)","raw_type":"proceedings-article"},{"id":"pmh:oai:eprints.ucl.ac.uk.OAI2:10081411","is_oa":true,"landing_page_url":"https://discovery.ucl.ac.uk/id/eprint/10081411/","pdf_url":"https://discovery.ucl.ac.uk/10081411/1/Semantic-based%20Automated%20Reasoning%20for%20AWS%20Access%20Policies%20using%20SMT.pdf","source":{"id":"https://openalex.org/S4306400024","display_name":"UCL Discovery (University College London)","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I45129253","host_organization_name":"University College London","host_organization_lineage":["https://openalex.org/I45129253"],"host_organization_lineage_names":[],"type":"repository"},"license":null,"license_id":null,"version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"     In:  Proceedings of 2018 Formal Methods in Computer Aided Design (FMCAD).  (pp. pp. 206-214).  IEEE: Austin, TX, USA. (2019)     ","raw_type":"Proceedings paper"}],"best_oa_location":{"id":"pmh:oai:eprints.ucl.ac.uk.OAI2:10081411","is_oa":true,"landing_page_url":"https://discovery.ucl.ac.uk/id/eprint/10081411/","pdf_url":"https://discovery.ucl.ac.uk/10081411/1/Semantic-based%20Automated%20Reasoning%20for%20AWS%20Access%20Policies%20using%20SMT.pdf","source":{"id":"https://openalex.org/S4306400024","display_name":"UCL Discovery (University College London)","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I45129253","host_organization_name":"University College London","host_organization_lineage":["https://openalex.org/I45129253"],"host_organization_lineage_names":[],"type":"repository"},"license":null,"license_id":null,"version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"     In:  Proceedings of 2018 Formal Methods in Computer Aided Design (FMCAD).  (pp. pp. 206-214).  IEEE: Austin, TX, USA. (2019)     ","raw_type":"Proceedings paper"},"sustainable_development_goals":[],"awards":[{"id":"https://openalex.org/G1641431731","display_name":null,"funder_award_id":"EP/R006865/1","funder_id":"https://openalex.org/F4320334627","funder_display_name":"Engineering and Physical Sciences Research Council"}],"funders":[{"id":"https://openalex.org/F4320334627","display_name":"Engineering and Physical Sciences Research Council","ror":"https://ror.org/0439y7842"}],"has_content":{"pdf":true,"grobid_xml":true},"content_urls":{"pdf":"https://content.openalex.org/works/W2908957302.pdf","grobid_xml":"https://content.openalex.org/works/W2908957302.grobid-xml"},"referenced_works_count":23,"referenced_works":["https://openalex.org/W1023119160","https://openalex.org/W1480909796","https://openalex.org/W1490597684","https://openalex.org/W1599739130","https://openalex.org/W1602828133","https://openalex.org/W1682877232","https://openalex.org/W1749560176","https://openalex.org/W1856491113","https://openalex.org/W2020992910","https://openalex.org/W2057345152","https://openalex.org/W2064070192","https://openalex.org/W2076004681","https://openalex.org/W2122493035","https://openalex.org/W2124260419","https://openalex.org/W2146356111","https://openalex.org/W2468070113","https://openalex.org/W2767683523","https://openalex.org/W4231515497","https://openalex.org/W4246691913","https://openalex.org/W4247999361","https://openalex.org/W6629296320","https://openalex.org/W6635603721","https://openalex.org/W6719817393"],"related_works":["https://openalex.org/W4244478748","https://openalex.org/W4223488648","https://openalex.org/W2134969820","https://openalex.org/W2251605416","https://openalex.org/W1997222214","https://openalex.org/W2560439919","https://openalex.org/W4389340727","https://openalex.org/W3150465815","https://openalex.org/W2802581102","https://openalex.org/W4205786897"],"abstract_inverted_index":{"Cloud":[0],"computing":[1],"provides":[2,60],"on-demand":[3],"access":[4,19],"to":[5,65],"IT":[6],"resources":[7,14],"via":[8],"the":[9,28,48],"Internet.":[10],"Permissions":[11],"for":[12,42],"these":[13],"are":[15],"defined":[16],"by":[17],"expressive":[18],"control":[20],"policies.":[21,70],"This":[22],"paper":[23],"presents":[24],"a":[25,36,62,73],"formalization":[26],"of":[27,50,68,81],"Amazon":[29],"Web":[30],"Services":[31],"(AWS)":[32],"policy":[33,44],"language":[34],"and":[35,56,76],"corresponding":[37],"analysis":[38],"tool,":[39],"called":[40],"ZELKOVA,":[41],"verifying":[43],"properties.":[45,58],"ZELKOVA":[46,71],"encodes":[47],"semantics":[49],"policies":[51],"into":[52],"SMT,":[53],"compares":[54],"behaviors,":[55],"verifies":[57],"It":[59],"users":[61],"sound":[63],"mechanism":[64],"detect":[66],"misconfigurations":[67],"their":[69],"solves":[72],"PSPACE-complete":[74],"problem":[75],"is":[77],"invoked":[78],"many":[79],"millions":[80],"times":[82],"daily.":[83]},"counts_by_year":[{"year":2026,"cited_by_count":3},{"year":2025,"cited_by_count":14},{"year":2024,"cited_by_count":20},{"year":2023,"cited_by_count":15},{"year":2022,"cited_by_count":14},{"year":2021,"cited_by_count":12},{"year":2020,"cited_by_count":10},{"year":2019,"cited_by_count":3}],"updated_date":"2026-06-01T08:46:32.239190","created_date":"2025-10-10T00:00:00"}