Publications

Ordered by Timeline

2008

R. W. Reeder, L. Bauer, L.F. Cranor, M.K. Reiter, K. Bacon, K. How, and H. Strong. Expandable Grids for Visualizing and Authoring Computer Security Policies. ACM SIGCHI Conference on Human Factors in Computing Systems (CHI '08). 2008. [PDF]

Cranor, L. F., Egelman, S., Sheng, S., McDonald, A. M., and Chowdhury, A. P3P Deployment on Websites. To be published in Electronic Commerce Research and Applications, 2008. (Currently available as author's pre-print version)

2007

Reeder, R. W., Karat, C.-M., Karat, J., and Brodie, C.  Usability Challenges in Security and Privacy Policy-Authoring Interfaces.  In INTERACT 2007:  Proceedings of the 11th IFIP TC 13 International Conference.  Published in Springer Lecture Notes in Computer Science Vol. 4663, Part II,  pp. 141-155.[BIBTEX]

Wang, Q., Yu, T., Li, N., Lobo, J., Bertino, E., Irwin, K., Byun, J.: On the Correctness Criteria of Fine-Grained Access Control in Relational Databases. In VLDB 2007: Proceedings of 33rd International Conference on Very Large Data Bases. Vienna, Austria, 2007. [BIBTEX]

Ni, Q., Lin, D., Bertino, E., Lobo, J.: Conditional Privacy aware Role Based Access Control. In ESORICS '07: Proceedings of the 12th European Symposium On Research In Computer Security, LNCS 4734, pp. 72 - 89, Dresden, Germany, September 24 - 26, 2007. [PDF] [BIBTEX]

Ni, Q., Trombetta, A., Bertino, E., Lobo, J.: Privacy aware Role Based Access Control. In SACMAT '07: Proceedings of the 12th ACM symposium on Access control models and technologies, ACM Press, Sophia Antipolis, France, June 20 - 22, 2007. [PDF] [BIBTEX]

Lin, D., Rao, P., Bertino, E., Lobo, J.: An Approach to Evaluate Policy Similarity. In SACMAT '07: Proceedings of the 12th ACM symposium on Access control models and technologies, ACM Press, Sophia Antipolis, France, June 20 - 22, 2007. [PDF] [BIBTEX]

Rao, P., Lin, D., Bertino, E.: XACML Function Annotations. In POLICY '07: Proceedings of the Eighth IEEE International Workshop on Policies for Distributed Systems and Networks, IEEE Computer Society, Bologna, Italy, June 13 - 15, 2007. [PDF] [BIBTEX]

Tsai, J., Egelman, S., Cranor, L. and Acquisti A. The Effect of Online Privacy Information on Purchasing Behavior: An Experimental Study. Paper presented at the Workshop on the Economics of Information Security, June 7-8, 2007, Pittsburgh, PA. [PDF]

2006

Egelman, S., Cranor, L., and Chowdhury, A. An Analysis of P3P-Enabled Web Sites among Top-20 Search Results. Proceedings of the Eighth International Conference on Electronic Commerce August 14-16, 2006, Fredericton, New Brunswick, Canada. [PDF]

Ordered by Projects

Privacy aware Role Based Access Control

Ni, Q., Lin, D., Bertino, E., Lobo, J.: Conditional Privacy aware Role Based Access Control. In ESORICS '07: Proceedings of the 12th European Symposium On Research In Computer Security, LNCS 4734, pp. 72 - 89, Dresden, Germany, September 24 - 26, 2007. [PDF] [BIBTEX]

Ni, Q., Trombetta, A., Bertino, E., Lobo, J.: Privacy aware Role Based Access Control. In SACMAT '07: Proceedings of the 12th ACM symposium on Access control models and technologies, ACM Press, Sophia Antipolis, France, June 20 - 22, 2007. [PDF] [BIBTEX]

EXAM - Environment for XACML Policy Analysis and Management

Lin, D., Rao, P., Bertino, E., Lobo, J.: An Approach to Evaluate Policy Similarity. In SACMAT '07: Proceedings of the 12th ACM symposium on Access control models and technologies, ACM Press, Sophia Antipolis, France, June 20 - 22, 2007. [PDF] [BIBTEX]

Rao, P., Lin, D., Bertino, E.: XACML Function Annotations. In POLICY '07: Proceedings of the Eighth IEEE International Workshop on Policies for Distributed Systems and Networks, IEEE Computer Society, Bologna, Italy, June 13 - 15, 2007. [PDF] [BIBTEX]

Privacy Policy Analysis

Cranor, L. F., Egelman, S., Sheng, S., McDonald, A. M., and Chowdhury, A. P3P Deployment on Websites. To be published in Electronic Commerce Research and Applications, 2008. (Currently available as author's pre-print version)

Egelman, S., Cranor, L., and Chowdhury, A. An Analysis of P3P-Enabled Web Sites among Top-20 Search Results. Proceedings of the Eighth International Conference on Electronic Commerce August 14-16, 2006, Fredericton, New Brunswick, Canada. [PDF]

Tsai, J., Egelman, S., Cranor, L. and Acquisti A. The Effect of Online Privacy Information on Purchasing Behavior: An Experimental Study. Paper presented at the Workshop on the Economics of Information Security, June 7-8, 2007, Pittsburgh, PA. [PDF]

Fine-Grained Access Control in Relational Databases

Wang, Q., Yu, T., Li, N., Lobo, J., Bertino, E., Irwin, K., Byun, J.: On the Correctness Criteria of Fine-Grained Access Control in Relational Databases. In VLDB 2007: Proceedings of 33rd International Conference on Very Large Data Bases. Vienna, Austria, 2007. [BIBTEX]