Pierangela Samarati

The documents distributed by this server have been provided by the contributing authors as a means to ensure timely dissemination of scholarly and technical work on a noncommercial basis. Copyright and all rights therein are maintained by the authors or by other copyright holders, notwithstanding that they have offered their works here electronically. It is understood that all persons copying this information will adhere to the terms and constraints invoked by each author's copyright. These works may not be reposted without the explicit permission of the copyright holder.

Publications

Books and Edited Books
International Journals Articles
Papers in Proceedings of International Conference and Workshops
Chapters in Books
Papers in National Journals
Papers in Proceedings of National Conferences
Other publications

Books and Edited Books

P. Samarati, S. Foresti, J. Hu, and G. Livraga (eds.), Proc. of the 5th International Conference on Network and System Security, IEEE, Milan, Italy, September 6-8, 2011 [BibTex entry]
P. Samarati, M. Tunstall, J. Posegga, K. Markantonakis, and D. Sauveron, (eds.), Information Security Theory and Practices: Security and Privacy of Pervasive Systems and Smart Devices, Lecture Notes in Computer Science 6033, Springer, 2010 [BibTex entry]
C. Bettini, S. Jajodia, P. Samarati, and X. Sean Wang (eds.), Privacy in Location-Based Applications: Introduction, Research Issues and Applications, Lecture Notes of Computer Science 5599, Springer, 2009 [BibTex entry]
P. Samarati, M. Yung, F. Martinelli, and C.A. Ardagna (eds.), Proc. of the 12th Information Security Conference (ISC 2009), Springer, September 7-9, 2009 [BibTex entry]
S. Cimato, S. Jajodia, and P. Samarati (eds.), Proceedings of the IFIP TC11 23rd International Information Security Conference (SEC 2008), Springer, Milano, Italy, September 8 - 10, 2008 [BibTex entry]
J. Lopez, P. Samarati, and J.L. Ferrer (eds.), Proc. of the 4th European PKI Workshop: Theory and Practice, Palma de Mallorca, Spain, June 28-30, 2007 [BibTex entry]
S. Etalle, S. Foresti, and P. Samarati (eds.), Proc. of the Second International Workshop on Security and Trust Management (STM06), Hamburg, Germany, September 20-21, 2006 [BibTex entry]
C. Farkas, and P. Samarati (eds.), "Research Directions in Data and Applications Security XVIII," in Proc. of the 18th IFIP WG11.3 Working Conference on Data and Applications Security, Sitges, Spain, 2004 [BibTex entry]
P. Samarati, P. Ryan, D. Gollmann, and R. Molva (eds.), Computer Security - ESORICS 2004, Sophia Antipolis, France, September, 2004 [BibTex entry]
D. Gritzalis, S. De Capitani di Vimercati, P. Samarati, and S. Katsikas (eds.), Security and Privacy in the Age of Uncertainty, Kluwer, 2003 [BibTex entry]
P. Samarati, and P. Syverson (eds.), Proc. of the Second ACM Workshop on Privacy in the Electronic Society, Washington, USA, October 30, 2003 [BibTex entry]
S. De Capitani di Vimercati, and P. Samarati (eds.), Proc. of the First ACM Workshop on Privacy in the Electronic Society, Washington, USA, November 21, 2002 [BibTex entry]
P. Samarati (ed.), Proc. of the Eighth ACM Conference on Computer and Communications Security, Philadelphia, PA (USA), November 5-8, 2001 [BibTex entry]
V. Atluri, and P. Samarati (eds.), Security of Data and Transaction Processing, Kluwer, 2000 [BibTex entry]
S. Jajodia, and P. Samarati (eds.), Proc. of the Seventh ACM Conference on Computer and Communications Security, Athens, Greece, November 1-4, 2000 [BibTex entry]
P. Samarati, and R. Sandhu (eds.), Database Security X: Status and Prospects, Chapman and Hall, 1997 [BibTex entry]
S. Castano, M.G. Fugini, G. Martella, and P. Samarati, Database Security, Addison-Wesley, 1995 [BibTex entry]
S. Castano, G. Martella, and P. Samarati, La sicurezza delle Basi di Dati, Mondadori Informatica, 1992 [BibTex entry]

International Journals Articles

S. De Capitani di Vimercati, S. Foresti, S. Jajodia, S. Paraboschi, G. Psaila, and P. Samarati, "Integrating Trust Management and Access Control in Data-Intensive Web Applications," in ACM Transactions on the Web (TWEB), 2012 (to appear) [BibTex entry]
C.A. Ardagna, M. Cremonini, S. De Capitani di Vimercati, and P. Samarati, "An Obfuscation-based Approach for Protecting Location Privacy," in IEEE Transactions on Dependable and Secure Computing (TDSC), January-February, 2011 [BibTex entry]
C.A. Ardagna, S. De Capitani di Vimercati, S. Foresti, S. Paraboschi, and P. Samarati, "Minimising Disclosure of Client Information in Credential-Based Interactions," in International Journal of Information Privacy, Security and Integrity (IJIPSI), 2011 (to appear) [BibTex entry]
C. Ardagna, S. De Capitani di Vimercati, S. Paraboschi, E. Pedrini, P. Samarati, and M. Verdicchio, "Expressive and Deployable Access Control in Open Web Service Applications," in IEEE Transactions on Service Computing (TSC), April-June, 2011 [BibTex entry]
S. De Capitani di Vimercati, S. Foresti, S. Jajodia, S. Paraboschi, and P. Samarati, "Authorization Enforcement in Distributed Query Evaluation," in Journal of Computer Security (JCS), 2011 [BibTex entry]
V. Ciriani, S. De Capitani di Vimercati, S. Foresti, S. Jajodia, S. Paraboschi, and P. Samarati, "Selective Data Outsourcing for Enforcing Privacy," in Journal of Computer Security (JCS), 2011 [BibTex entry]
S. De Capitani di Vimercati, S. Foresti, G. Livraga, and P. Samarati, "Anonymization of Statistical Data," in IT - Information Technology, January, 2011 [BibTex entry]
C.A. Ardagna, J. Camenisch, M. Kohlweiss, R. Leenes, G. Neven, B. Priem, P. Samarati, D. Sommer, and M. Verdicchio, "Exploiting Cryptography for Privacy-Enhanced Access Control: A result of the PRIME Project," in Journal of Computer Security (JCS), IOS Press, January, 2010 [BibTex entry]
C.A. Ardagna, S. De Capitani di Vimercati, S. Foresti, T. Grandison, S. Jajodia, and P. Samarati, "Access Control for Smarter Healthcare Using Policy Spaces," in Computers & Security, November, 2010 [BibTex entry]
C. Blundo, S. Cimato, S. De Capitani di Vimercati, A. De Santis, S. Foresti, S. Paraboschi, and P. Samarati, "Managing Key Hierarchies for Access Control Enforcement: Heuristic Approaches," in Computers & Security, July, 2010 [BibTex entry]
V. Ciriani, S. De Capitani di Vimercati, S. Foresti, S. Jajodia, S. Paraboschi, and P. Samarati, "Combining Fragmentation and Encryption to Protect Privacy in Data Storage," in ACM Transactions on Information and System Security (TISSEC), July, 2010 [BibTex entry]
S. De Capitani di Vimercati, S. Foresti, S. Jajodia, S. Paraboschi, and P. Samarati, "Encryption Policies for Regulating Access to Outsourced Data," in ACM Transactions on Database Systems (TODS), April, 2010 [BibTex entry]
S. De Capitani di Vimercati, S. Foresti, S. Jajodia, S. Paraboschi, and P. Samarati, "Fragments and Loose Associations: Respecting Privacy in Data Publishing," in Proc. of the VLDB Endowment, September, 2010 [BibTex entry]
C.A. Ardagna, M. Cremonini, S. De Capitani di Vimercati, and P. Samarati, "A Privacy-Aware Access Control System," in Journal of Computer Security (JCS), September, 2008 [BibTex entry]
S. De Capitani di Vimercati, S. Foresti, S. Jajodia, and P. Samarati, "Access Control Policies and Languages," in International Journal of Computational Science and Engineering (IJCSE), 2007 [BibTex entry]
R. Aringhieri, E. Damiani, S. De Capitani di Vimercati, S. Paraboschi, and P. Samarati, "Fuzzy Techniques for Trust and Reputation Management in Anonymous Peer-to-Peer Systems," in Journal of the American Society for Information Science and Technology (JASIST), February, 2006 [BibTex entry]
S. De Capitani di Vimercati, and P. Samarati, "k-Anonymity for Protecting Privacy," in Information Security, October, 2006 [BibTex entry]
A. Ceselli, E. Damiani, S. De Capitani di Vimercati, S. Jajodia, S. Paraboschi, and P. Samarati, "Modeling and Assessing Inference Exposure in Encrypted Databases," in ACM Transactions on Information and System Security (TISSEC), February, 2005 [BibTex entry]
C.A. Ardagna, E. Damiani S. De Capitani di Vimercati, and P. Samarati, "XML-based Access Control Languages," in Information Security Technical Report, July-September, 2004 [BibTex entry]
E. Damiani, S. De Capitani di Vimercati, S. Paraboschi, and P. Samarati, "Managing and Sharing Servents' Reputations in P2P Systems," in IEEE Transactions on Knowledge and Data Engineering (TKDE), July/August, 2003 [BibTex entry]
E. Damiani, S. De Capitani di Vimercati, and P. Samarati, "Towards Multiple and Dependable Identities," in IEEE Internet Computing, November-December, 2003 [BibTex entry]
S. De Capitani di Vimercati, S. Paraboschi, and P. Samarati, "Access control: Principles and Solutions," in Software -- Practice and Experience, April, 2003 [BibTex entry]
P. Bonatti, S. De Capitani di Vimercati, and P. Samarati, "An Algebra for Composing Access Control Policies," in ACM Transactions on Information and System Security (TISSEC), February, 2002 [BibTex entry]
P. Bonatti, and P. Samarati, "A Uniform Framework for Regulating Service Access and Information Release on the Web," in Journal of Computer Security (JCS), 2002 [BibTex entry]
S. Dawson, S. De Capitani di Vimercati, P. Lincoln, and P. Samarati, "Maximizing Sharing of Protected Information," in Journal of Computer and System Sciences (JCSS), May, 2002 [BibTex entry]
E. Damiani, S. De Capitani di Vimercati, S. Paraboschi, and P. Samarati, "Securing SOAP E-Services," in International Journal of Information Security (IJIS), February, 2002 [BibTex entry]
E. Damiani, S. De Capitani di Vimercati, S. Paraboschi, and P. Samarati, "A Fine-Grained Access Control System for XML Documents," in ACM Transactions on Information and System Security (TISSEC), May, 2002 [BibTex entry]
E. Damiani, S. De Capitani di Vimercati, S. Paraboschi, and P. Samarati, "Controlling Access to XML Documents," in IEEE Internet Computing, November/December, 2001 [BibTex entry]
S. De Capitani di Vimercati, P. Lincoln, L. Ricciulli, and P. Samarati, "Global Infrastructure Protection System," in Journal of Computer Security (JCS), 2001 [BibTex entry]
S. Jajodia, P. Samarati, M.L. Sapino, and V.S. Subrahmanian, "Flexible Support for Multiple Access Control Policies," in ACM Transactions on Database Systems (TODS), June, 2001 [BibTex entry]
P. Samarati, "Protecting Respondents' Identities in Microdata Release," in IEEE Transactions on Knowledge and Data Engineering (TKDE), November/December, 2001 [BibTex entry]
P. Samarati, M.K. Reiter, and S. Jajodia, "An Authorization Model for a Public Key Management Service," in ACM Transactions on Information and System Security (TISSEC), November, 2001 [BibTex entry]
E. Bertino, E. Pagani, G.P. Rossi, and P. Samarati, "Protecting Information on the Web," in Communications of the ACM, November, 2000 [BibTex entry]
E. Damiani, S. De Capitani di Vimercati, S. Paraboschi, and P. Samarati, "Design and Implementation of an Access Control Processor for XML Documents," in Computer Networks, June, 2000 (and in Proc. of the 9th International World Wide Web Conference, Amsterdam, May 15-19, 2000) [BibTex entry]
S. Dawson, S. Qian, and P. Samarati, "Providing Security and Interoperation of Heterogeneous Systems," in Distributed and Parallel Databases, January, 2000 [BibTex entry]
E. Bertino, S. Jajodia, and P. Samarati, "A Flexible Authorization Mechanism for Relational Data Management Systems," in ACM Transactions on Information Systems (TIS), April, 1999 [BibTex entry]
E. Bertino, C. Bettini, E. Ferrari, and P. Samarati, "An Access Control Model Supporting Periodicity Constraints and Temporal Reasoning," in ACM Transactions on Database Systems (TODS), September, 1998 [BibTex entry]
E. Bertino, S. De Capitani di Vimercati, E. Ferrari, and P. Samarati, "Exception-Based Information Flow Control in Object-Oriented Systems," in ACM Transactions on Information and System Security (TISSEC), 1998 [BibTex entry]
E. Bertino, E. Ferrari, and P. Samarati, "Mandatory Security and Object-Oriented Systems: A Multilevel Entity Model and its Mapping onto a Single-Level Object Model," in TAPOS - Journal on Theory And Practice of Object Systems, 1998 [BibTex entry]
E. Bertino, C. Bettini, E. Ferrari, and P. Samarati, "Decentralized Administration for a Temporal Access Control Model," in Information Systems, 1997 [BibTex entry]
E. Bertino, P. Samarati, and S. Jajodia, "An Extended Authorization Model for Relational Databases," in IEEE Transactions on Knowledge and Data Engineering (TKDE), January-February, 1997 [BibTex entry]
S. De Capitani di Vimercati, and P. Samarati, "Authorization Specification and Enforcement in Federated Database Systems," in Journal of Computer Security (JCS), 1997 [BibTex entry]
P. Samarati, E. Bertino, A. Ciampichetti, and S. Jajodia, "Information Flow Control in Object-Oriented Systems," in IEEE Transactions on Knowledge and Data Engineering (TKDE), August, 1997 [BibTex entry]
E. Bertino, C. Bettini, E. Ferrari, and P. Samarati, "A Temporal Access Control Mechanism for Database Systems," in IEEE Transactions on Knowledge and Data Engineering (TKDE), February, 1996 (Special Issue on Secure Database Systems Technology) [BibTex entry]
P. Samarati, P. Ammann, and S. Jajodia, "Maintaining Replicated Authorizations in Distributed Database Systems," in Data & Knowledge Engineering (DKE), February, 1996 [BibTex entry]
P. Samarati, E. Bertino, and S. Jajodia, "An Authorization Model for Distributed Hypertext Systems," in IEEE Transactions on Knowledge and Data Engineering (TKDE), August, 1996 (Special Issue on Digital Libraries) [BibTex entry]
R. Sandhu, and P. Samarati, "Authentication, Access Control, and Audit," in ACM Computing Surveys, March, 1996 (short paper) [BibTex entry]
E. Bertino, S. Jajodia, and P. Samarati, "Database Security: Research and Practice," in Information Systems, November, 1995 [BibTex entry]
E. Bertino, F. Origgi, and P. Samarati, "An Extended Authorization Model for Object Databases," in Journal of Computer Security (JCS), 1995 [BibTex entry]
S. Ceri, M.A.W. Houtsma, A.M. Keller, and P. Samarati, "Independent Updates and Incremental Agreement in Replicated Databases," in Distributed and Parallel Databases, July, 1995 [BibTex entry]
F. Cacace, P. Samarati, and L. Tanca, "Set-Oriented Retrieval of Complex Objects in Inheritance Hierarchies," in Computing, 1995 [BibTex entry]
R. Sandhu, and P. Samarati, "Access Control: Principles and Practice," in IEEE Communications, September, 1994 [BibTex entry]

Papers in Proceedings of International Conference and Workshops

S. De Capitani di Vimercati, S. Foresti, S. Jajodia, S. Paraboschi, and P. Samarati, "Private Data Indexes for Selective Access to Outsourced Data," in Proc. of the 10th Workshop on Privacy in the Electronic Society (WPES 2011), Chicago, Illinois, USA, October 17, 2011 [BibTex entry]
S. De Capitani di Vimercati, S. Foresti, S. Paraboschi, G. Pelosi, and P. Samarati, "Supporting Concurrency in Private Data Outsourcing," in Proc. of the 16th European Symposium on Research in Computer Security (ESORICS 2011), Leuven, Belgium, September 12-14, 2011 [BibTex entry]
S. De Capitani di Vimercati, S. Foresti, S. Paraboschi, G. Pelosi, and P. Samarati, "Efficient and Private Access to Outsourced Data," in Proc. of the 31st International Conference on Distributed Computing Systems (ICDCS 2011), Minneapolis, Minnesota, USA, June 20-24, 2011 [BibTex entry]
V. Ciriani, S. De Capitani di Vimercati, S. Foresti, G. Livraga, and P. Samarati, "Enforcing Confidentiality and Data Visibility Constraints: An OBDD Approach," in Proc. of the 25th Annual IFIP WG 11.3 Conference on Data and Applications Security and Privacy (DBSec 2011), Richmond, VA, USA, July 11-13, 2011 [BibTex entry]
C.A. Ardagna, S. De Capitani di Vimercati, S. Foresti, G. Neven, S. Paraboschi, F.-S. Preiss, P. Samarati, and M. Verdicchio, "Fine-Grained Disclosure of Access Policies," in Proc. of the 12th International Conference on Information and Communications Security (ICICS 2010), Barcelona, Spain, December 15-17, 2010 [BibTex entry]
C.A. Ardagna, S. De Capitani di Vimercati, S. Foresti, S. Paraboschi, and P. Samarati, "Minimizing Disclosure of Private Information in Credential-Based Interactions: A Graph-Based Approach," in Proc. of the 2nd IEEE International Conference on Information Privacy, Security, Risk and Trust (PASSAT 2010), Minneapolis, Minnesota, USA, August 20-22, 2010 [BibTex entry]
C.A. Ardagna, S. De Capitani di Vimercati, S. Foresti, S. Paraboschi, and P. Samarati, "Supporting Privacy Preferences in Credential-Based Interactions," in Proc. of the Workshop on Privacy in the Electronic Society (WPES 2010), Chicago, Illinois, USA, October 4, 2010 [BibTex entry]
C.A. Ardagna, S. Jajodia, P. Samarati, and A. Stavrou, "Providing mobile users' anonymity in hybrid networks," in Proc. 15th European Symposium on Research in Computer Security (ESORICS 2010), Athens, Greece, September, 2010 [BibTex entry]
S. De Capitani di Vimercati, S. Foresti, S. Jajodia, S. Paraboschi, G. Pelosi, and P. Samarati, "Encryption-based Policy Enforcement for Cloud Storage," in Proc. of the 1st ICDCS Workshop on Security and Privacy in Cloud Computing (SPCC 2010), Genova, Italy, June 25, 2010 [BibTex entry]
C.A. Ardagna, S. De Capitani di Vimercati, G. Neven, S. Paraboschi, F.-S. Preiss, P. Samarati, and M. Verdicchio, "Enabling Privacy-Preserving Credential-Based Access Control with XACML and SAML," in Proc. of the 3rd IEEE International Symposium on Trust, Security and Privacy for Emerging Applications (TSP 2010), Bradford, UK, June-July, 2010 [BibTex entry]
C.A. Ardagna, S. De Capitani di Vimercati, S. Foresti, S. Paraboschi, and P. Samarati, "Supporting User Privacy Preferences on Information Release in Open Scenarios," in Proc. of the W3C Workshop on Privacy and Data Usage Control, Cambridge, Massachusetts, USA, October 4-5, 2010 [BibTex entry]
M. Bezzi, S. De Capitani di Vimercati, G. Livraga, and P. Samarati, "Protecting Privacy of Sensitive Value Distributions in Data Release," in Proc. of the 6th Workshop on Security and Trust Management (STM 2010), Athens, Greece, September 23-24, 2010 [BibTex entry]
P. Samarati, and S. De Capitani di Vimercati, "Data Protection in Outsourcing Scenarios: Issues and Directions," in Proc. of the 5th ACM Symposium on Information, Computer and Communications Security (ASIACCS 2010), Beijing, China, April, 2010 (invited paper) [BibTex entry]
C. A. Ardagna, S. De Capitani di Vimercati, S. Paraboschi, E. Pedrini, and P. Samarati, "An XACML-Based Privacy-Centered Access Control System," in Proc. of the 1st ACM Workshop on Information Security Governance (WISG 2009), Chicago, Illinois, USA, November 13, 2009 [BibTex entry]
V. Ciriani, S. De Capitani di Vimercati, S. Foresti, S. Jajodia, S. Paraboschi, and P. Samarati, "Enforcing Confidentiality Constraints on Sensitive Databases with Lightweight Trusted Clients," in Proc. of the 23rd Annual IFIP WG 11.3 Working Conference on Data and Applications Security (DBSec 2009), Montreal, Quebec, Canada, July 12-15, 2009 [BibTex entry]
V. Ciriani, S. De Capitani di Vimercati, S. Foresti, S. Jajodia, S. Paraboschi, and P. Samarati, "Keep a Few: Outsourcing Data while Maintaining Confidentiality," in Proc. of the 14th European Symposium On Research In Computer Security (ESORICS 2009), Saint Malo, France, September 21-25, 2009 [BibTex entry]
C. Blundo, S. Cimato, S. De Capitani di Vimercati, A. De Santis, S. Foresti, S. Paraboschi, and P. Samarati, "Efficient Key Management for Enforcing Access Control in Outsourced Scenarios," in Proc. of the 24th IFIP TC-11 International Information Security Conference (SEC 2009), Cyprus, Greece, May 18-20, 2009 [BibTex entry]
V. Ciriani, S. De Capitani di Vimercati, S. Foresti, S. Jajodia, S. Paraboschi, and P. Samarati, "Fragmentation Design for Efficient Query Execution over Sensitive Distributed Databases," in Proc. of the 29th International Conference on Distributed Computing Systems (ICDCS 2009), Montreal, Quebec, Canada, June 22-26, 2009 [BibTex entry]
C.A. Ardagna, S. De Capitani di Vimercati, E. Pedrini, S. Paraboschi, P. Samarati, and M. Verdicchio, "Extending XACML for Open Web-based Scenarios," in Proc. of the W3C Workshop on Access Control Application Scenarios, Luxembourg, November 17-18, 2009 [BibTex entry]
C.A. Ardagna, L. Bussard, S. De Capitani di Vimercati, G. Neven, E. Pedrini, S. Paraboschi, F. Preiss, P. Samarati, S. Trabelsi, and M. Verdicchio, "PrimeLife Policy Language," in Proc. of the W3C Workshop on Access Control Application Scenarios, Luxembourg, November 17-18, 2009 [BibTex entry]
C.A. Ardagna, A. Stavrou, S. Jajodia, P. Samarati, and R. Martin, "A Multi-Path Approach for k-Anonymity in Mobile Hybrid Networks," in Proc. of the International Workshop on Privacy in Location-Based Applications (PILBA 2008), Malaga, Spain, October 9, 2008 [BibTex entry]
S. De Capitani di Vimercati, S. Foresti, S. Jajodia, S. Paraboschi, G. Pelosi, and P. Samarati, "Preserving Confidentiality of Security Policies in Data Outsourcing," in Proc. of the Workshop on Privacy in the Electronic Society (WPES 2008), Alexandria, Virginia, USA, October 27, 2008 [BibTex entry]
S. De Capitani di Vimercati, S. Foresti, S. Jajodia, S. Paraboschi, and P. Samarati, "Assessing Query Privileges via Safe and Efficient Permission Composition," in Proc. of the 15th ACM Conference Conference on Computer and Communications Security (CCS 2008), Alexandria, Virginia, USA, October 27-31, 2008 [BibTex entry]
S. De Capitani di Vimercati, S. Foresti, S. Jajodia, S. Paraboschi, and P. Samarati, "Controlled Information Sharing in Collaborative Distributed Query Processing," in Proc. of the 28th International Conference on Distributed Computing Systems (ICDCS 2008), Beijing, China , June 17-20, 2008 [BibTex entry]
C.A. Ardagna, S. De Capitani di Vimercati, T. Grandison, S. Jajodia, and P. Samarati, "Regulating Exceptions in Healthcare using Policy Spaces," in Proc. of the 22nd Annual IFIP WG 11.3 Working Conference on Data and Applications Security, London, U.K., July 13-16, 2008 [BibTex entry]
C.A. Ardagna, M. Cremonini, E. Damiani, S. De Capitani di Vimercati, and P. Samarati, "Location Privacy Protection Through Obfuscation-based Techniques," in Proc. of the 21st Annual IFIP WG 11.3 Working Conference on Data and Applications Security, Redondo Beach, CA, USA, July 8-11, 2007 [BibTex entry]
C.A. Ardagna, M. Cremonini, E. Damiani, S. De Capitani di Vimercati, and P. Samarati, "Managing Privacy in LBAC Systems," in Proc. of the Second IEEE International Symposium on Pervasive Computing and Ad Hoc Communications (PCAC 2007), Niagara Falls, Canada, May, 2007 [BibTex entry]
C.A. Ardagna, M. Cremonini, E. Damiani, S. De Capitani di Vimercati, and P. Samarati, "A Middleware Architecture for Integrating Privacy Preferences and Location Accuracy," in Proc. of the 22nd IFIP TC-11 International Information Security Conference (SEC 2007), Sandton, South Africa, May 14-16, 2007 [BibTex entry]
S. De Capitani di Vimercati, S. Jajodia, S. Paraboschi, and P. Samarati, "Trust Management Services in Relational Databases," in Proc. of the ACM Symposium on Information, Computer and Communications Security (ASIACCS 2007), Singapore, March 20-22, 2007 [BibTex entry]
V. Ciriani, S. De Capitani di Vimercati, S. Foresti, S. Jajodia, S. Paraboschi, and P. Samarati, "Fragmentation and Encryption to Enforce Privacy in Data Storage," in Proc. of the 12th European Symposium On Research In Computer Security (ESORICS 2007), Dresden, Germany, September 24-26, 2007 [BibTex entry]
E. Damiani, S. De Capitani di Vimercati, S. Foresti, S. Jajodia, S. Paraboschi, and P. Samarati, "An experimental evaluation of multi-key strategies for data outsourcing," in Proc. of the 22nd IFIP TC-11 International Information Security Conference (SEC 2007), Sandton, South Africa, May 14-16, 2007 [BibTex entry]
S. De Capitani di Vimercati, S. Foresti, S. Jajodia, S. Paraboschi, and P. Samarati, "A Data Outsourcing Architecture Combining Cryptography and Access Control," in Proc. of the 1st Computer Security Architecture Workshop (CSAW 2007), Fairfax, Virginia, USA, November 2, 2007 [BibTex entry]
S. De Capitani di Vimercati, S. Foresti, S. Jajodia, S. Paraboschi, and P. Samarati, "Over-encryption: Management of Access Control Evolution on Outsourced Data," in Proc. of the 33rd International Conference on Very Large Data Bases (VLDB 2007), Vienna, Austria, September 23-28, 2007 [BibTex entry]
M. Anisetti, C.A. Ardagna, V. Bellandi, E. Damiani, S. De Capitani di Vimercati, and P. Samarati, "OpenAmbient: a Pervasive Access Control Architecture," in Proc. of ETRICS Workshop on Security in Autonomous Systems (SecAS), Friburg, Germany, June, 2006 [BibTex entry]
C.A. Ardagna, M. Cremonini, E. Damiani, S. De Capitani di Vimercati, and P. Samarati, "Location-based Metadata and Negotiation Protocols for LBAC in a One-to-Many Scenario," in Proc. of the Workshop On Security and Privacy in Mobile and Wireless Networking (SecPri MobiWi 2006), Coimbra, Portogal, May 19, 2006 [BibTex entry]
C.A. Ardagna, M. Cremonini, E. Damiani, S. De Capitani di Vimercati, and P. Samarati, "Supporting Location-Based Conditions in Access Control Policies," in Proc. of the ACM Symposium on InformAtion, Computer and Communications Security (ASIACCS'06), Taipei, Taiwan, March 21-24, 2006 [BibTex entry]
C.A. Ardagna, M. Cremonini, E. Damiani, S. De Capitani di Vimercati, and P. Samarati, "Negotiation Protocols for LBAC Systems," in Proc. of 1st International Conference on Information Security and Computer Forensics (ISCF 2006), Chennai, India, December 6-8, 2006 [BibTex entry]
C.A. Ardagna, E. Damiani, S. De Capitani di Vimercati, F. Frati, and P. Samarati,, "CAS++: an Open Source Single Sign-On Solution for Secure e-Services," in Proc. of the 21st IFIP TC-11 International Information Security Conference, Karlstad, Sweden, May 22-24, 2006 [BibTex entry]
C.A. Ardagna, S. De Capitani di Vimercati, and P. Samarati, "Enhancing User Privacy Through Data Handling Policies," in Proc. of the 20th Annual IFIP WG 11.3 Working Conference on Data and Applications Security, Sophia Antipolis, France, July 31-August 2, 2006 [BibTex entry]
E. Damiani, S. De Capitani di Vimercati, C. Fugazza, and P. Samarati, "Extending Context Descriptions in Semantics-Aware Access Control," in Proc. of the 2nd International Conference on Information Systems Security (ICISS 2006), Kolkata, India, December 17-21, 2006 [BibTex entry]
E. Damiani, S. De Capitani di Vimercati, C. Fugazza, and P. Samarati, "Modality Conflicts in Semantics-Aware Access Control," in Proc. of the International Conference on Web Engineering, Menlo Park, California, USA, July 12-14, 2006 [BibTex entry]
E. Damiani, S. De Capitani di Vimercati, S. Foresti, S. Jajodia, S. Paraboschi, and P. Samarati, "Selective Data Encryption in Outsourced Dynamic Environments," in Proc. of the 2nd International Workshop on Views On Designing Complex Architectures (VODCA 2006), Bertinoro, Italy, September 16-17, 2006 [BibTex entry]
C.A. Ardagna, E. Damiani, S. De Capitani di Vimercati, M. Cremonini, and P. Samarati, "Towards Identity Management for E-Services," in Proc. of the TED Conference on e-Government Electronic democracy: The challenge ahead (postersession), Bolzano, Italy, March , 2005 [BibTex entry]
C.A. Ardagna, E. Damiani, M. Cremonini, S. De Capitani di Vimercati, and P. Samarati, "The Architecture of a Privacy-aware Access Control Decision Component," in Proc. of the Construction and Analysis of Safe, Secure and Interoperable Smart devices (CASSIS 2005), Nice, France, March 8-11, 2005 [BibTex entry]
C.A. Ardagna, E. Damiani, S. De Capitani di Vimercati, C. Fugazza, and P. Samarati, "Offline Expansion of XACML Policies Based on P3P Metadata," in Proc. of the 5th International Conference on Web Engineering, Sydney, Australia, July 25-29, 2005 [BibTex entry]
R. Aringhieri, E. Damiani, S. De Capitani di Vimercati, and P. Samarati, "Assessing Efficiency of Trust Management in Peer-to-Peer Systems," in Proc. of the 1st International Workshop on Collaborative Peer-to-Peer Information Systems (COPS 2005), Linkoping University, Sweden, June 13-15, 2005 [BibTex entry]
C.A. Ardagna, E. Damiani, S. De Capitani di Vimercati, and P. Samarati, "Towards Privacy-Enhanced Authorization Policies and Languages," in Proc. of the 19th IFIP WG11.3 Working Conference on Data and Application Security, Nathan Hale Inn, University of Connecticut, Storrs, USA, August 7-10, 2005 [BibTex entry]
P. Ceravolo, E. Damiani, S. De Capitani di Vimercati, C. Fugazza, and P. Samarati, "Advanced Metadata for Privacy-Aware Representation of Credentials," in Proc. of the International Workshop on Privacy Data Management, Tokyo, Japan, April 8-9, 2005 [BibTex entry]
E. Damiani, S. De Capitani di Vimercati, and P. Samarati, "New Paradigms for Access Control in Open Environments," in Proc. of the 5th IEEE International Symposium on Signal Processing and Information, Athens, Greece, December 18-21, 2005 [BibTex entry]
E. Damiani, S. De Capitani di Vimercati, P. Samarati, and M. Viviani, "A WOWA-based Aggregation Technique on Trust Values Connected to Metadata," in Proc. of the1st International Workshop on Security and Trust Management (STM 2005), Milan, Italy, September 15, 2005 [BibTex entry]
S. De Capitani di Vimercati, S. Marrara, and P. Samarati, "An Access Control Model for Querying XML Data," in Proc. of the ACM Workshop on Secure Web Services (SWS 2005), Fairfax, VA, USA, November 11, 2005 [BibTex entry]
S. De Capitani di Vimercati, P. Samarati, and S. Jajodia, "Policies, Models, and Languages for Access Control," in Proc. of the Workshop on Databases in Networked Information Systems, Aizu-Wakamatsu, Japan, March 28-30, 2005 [BibTex entry]
E. Damiani, S. De Capitani di Vimercati, S. Foresti, S. Jajodia, S. Paraboschi, and P. Samarati, "Metadata Management in Outsourced Encrypted Databases," in Proc. of the 2nd VLDB Workshop on Secure Data Management (SDM 2005), Trondheim, Norway, September 2-3, 2005 [BibTex entry]
E. Damiani, S. De Capitani di Vimercati, S. Foresti, and S. Jajodia, P. Samarati, "Key Management for Multiuser Encrypted Databases," in Proc. of the International Workshop on Storage Security and Survivability, Fairfax, Virginia, USA, November 11, 2005 [BibTex entry]
E. Damiani, S. De Capitani di Vimercati, S. Foresti, P. Samarati, and M. Viviani, "Measuring Inference Exposure in Outsourced Encrypted Databases," in Proc. of the 1st Workshop on Quality of Protection (QoP 2005), Milan, Italy, September 15, 2005 (short paper) [BibTex entry]
C.A. Ardagna, E. Damiani, S. De Capitani di Vimercati, and P. Samarati, "A Web Service Architecture for Enforcing Access Control Policies," in Proc. of the First International Workshop on Views On Designing Complex Architectures (VODCA 2004), Bertinoro, Italy, September 11-12, 2004 [BibTex entry]
S. Chhabra, E. Damiani, S. De Capitani di Vimercati, S. Paraboschi, and P. Samarati, "A Protocol for Reputation Management in Super-Peer Networks," in Proc. of the 1st International Workshop on Peer2Peer Data Management, Security and Trust, Zaragoza, Spain, 30 August - 3 September, 2004 [BibTex entry]
E. Damiani, S. De Capitani di Vimercati, C. Fugazza, and P. Samarati, "Extending Policy Languages to the Semantic Web," in Proc. of the International Conference on Web Engineering, Munich, Germany, July 28-30, 2004 [BibTex entry]
E. Damiani, S. De Capitani di Vimercati, S. Paraboschi, and P. Samarati, "P2P-based Collaborative Spam Detection and Filtering," in Proc. of the fourth IEEE International Conference on Peer-to-Peer Computing, Zurich, Switzerland, August 25-27, 2004 [BibTex entry]
E. Damiani, S. De Capitani di Vimercati, S. Paraboschi, and P. Samarati, "An Open Digest-based Technique for Spam Detection," in Proc. of the 2004 International Workshop on Security in Parallel and Distributed Systems, San Francisco, CA, USA, September 15-17, 2004 [BibTex entry]
E. Damiani, S. De Capitani di Vimercati, S. Paraboschi, and P. Samarati, "Computing Range Queries on Obfuscated Data," in Proc. of the Information Processing and Management of Uncertainty in Knowledge-Based Systems, Perugia, Italy, July, 2004 [BibTex entry]
E. Damiani, S. De Capitani di Vimercati, S. Paraboschi, P. Samarati, A. Tironi, and L. Zaniboni, "Spam Attacks: P2P to the Rescue," in Poster Proceedings of the 13th World Wide Web Conference, New York City, USA, May, 2004 [BibTex entry]
E. Damiani, S. De Capitani di Vimercati, S. Paraboschi, M. Pesenti, P. Samarati, and S. Zara, "Fuzzy Logic Techniques for Reputation Management in Anonymous Peer-to-Peer Systems," in Proc. of the 3rd International Conference in Fuzzy Logic and Technology, Zittau, Germany, September , 2003 [BibTex entry]
P. Bonatti, S. De Capitani di Vimercati, and P. Samarati, "Towards Flexible Credential Negotiation Protocols," in Proc. of the Eleventh Cambridge International Workshop on Security Protocols, Cambridge, England, April, 2003 [BibTex entry]
M. Cremonini, E. Damiani, S. De Capitani di Vimercati, and P. Samarati, "An XML-based Approach to Combine Firewalls and Web Services Security Specifications," in Proc. of the ACM Workshop on XML Security, Washington, DC, USA, October, 2003 [BibTex entry]
M. Cremonini, E. Damiani, and P. Samarati, "Semantic-Aware Perimeter Protection," in Proc. of the 17th Annual IFIP WG 11.3 Working Conference on Database and Applications Security, Estes Park, CO, USA, August, 2003 [BibTex entry]
E. Damiani, S. De Capitani di Vimercati, S. Jajodia, S. Paraboschi, and P. Samarati, "Balancing Confidentiality and Efficiency in Untrusted Relational DBMSs," in Proc. of the 10th ACM Conference on Computer and Communications Security, Washington, DC, USA, October, 2003 [BibTex entry]
E. Damiani, S. De Capitani di Vimercati, M. Finetti, S. Jajodia, S. Paraboschi, and P. Samarati, "Implementation of a Storage Mechanism for Untrusted DBMSs," in Proc. of the Second International IEEE Security in Storage Workshop, Washington, DC, USA, October, 2003 [BibTex entry]
F. Cornelli, E. Damiani, S. De Capitani di Vimercati, S. Paraboschi, and P. Samarati, "Implementing a Reputation-Aware Gnutella Servent," in Proc. of the International Workshop on Peer-to-Peer Computing, Pisa, Italy, May, 2002 [BibTex entry]
F. Cornelli, E. Damiani, S. De Capitani di Vimercati, S. Paraboschi, and P . Samarati, "Choosing Reputable Servents in a P2P Network," in Proc. of the 11th International World Wide Web Conference, Honolulu, Hawaii, May, 2002 [BibTex entry]
E. Damiani, S. De Capitani di Vimercati, E. Fernandez-Medina, and P. Samarati, "An Access Control System for SVG Documents," in in Proc. of the Sixteenth Annual IFIP WG 11.3 Working Conference on Data and Application Security, King's College, University of Cambridge, UK, July, 2002 [BibTex entry]
E. Damiani, S. De Capitani di Vimercati, S. Paraboschi, P. Samarati, and F. Violante, "A Reputation-based Approach for Choosing Reliable Resources in Peer-to-Peer Networks," in Proc. of the 9th ACM Conference on Computer and Communications Security, Washington, DC, USA, November, 2002 [BibTex entry]
E. Damiani, S. De Capitani di Vimercati, and P. Samarati, "Towards Securing XML Web Services," in Proc. of the 2002 ACM Workshop on XML Security, Washington, DC, USA, November, 2002 [BibTex entry]
P. Bonatti, E. Damiani, S. De Capitani di Vimercati, and P. Samarati, "A Component-based Architecture for Secure Data Publication," in Proc. of the 17th Annual Computer Security Applications Conference, New Orleans, Louisiana, USA, December, 2001 [BibTex entry]
P. Bonatti, E. Damiani, S. De Capitani di Vimercati, and P. Samarati, "An Access Control Model for Data Archives," in Proc. of the 16th International Conference on Information Security, Paris, France, June, 2001 [BibTex entry]
E. Damiani, S. De Capitani di Vimercati, S. Paraboschi, and P. Samarati, "Fine Grained Access Control for SOAP E-Services," in Proc. of the 10th International World Wide Web Conference, Hong Kong, China, May, 2001 [BibTex entry]
P. Bonatti, S. De Capitani di Vimercati, and P. Samarati, "A Modular Approach to Composing Access Control Policies," in Proc. of the Seventh ACM Conference on Computer and Communications Security, Athens, Greece, 2000 [BibTex entry]
P. Bonatti, and P. Samarati, "Regulating Service Access and Information Release on the Web," in Proc. of the Seventh ACM Conference on Computer and Communications Security, Athens, Greece, 2000 [BibTex entry]
S. Dawson, S. De Capitani di Vimercati, P. Lincoln, and P. Samarati, "Classifying Information for External Release," in Proc. of the 15th International Conference on Information Security (IFIP SEC2000), Beijing, China, August, 2000 [BibTex entry]
E. Damiani, S. De Capitani di Vimercati, S. Paraboschi, and P. Samarati, "Securing XML Documents," in Proc. of the 2000 International Conference on Extending Database Technology (EDBT2000), Konstanz, Germany, March, 2000 [BibTex entry]
E. Damiani, S. De Capitani di Vimercati, S. Paraboschi, and P. Samarati, "XML Access Control Systems: A Component-Based Approach," in Proc. of the 14th Annual IFIP WG 11.3 Working Conference on Database Security, Schoorl, The Netherlands, August, 2000 [BibTex entry]
E. Damiani, S. De Capitani di Vimercati, S. Paraboschi, and P. Samarati, "Regulating Access to Semistructured Information on the Web," in Proc. of the 15th International Information Security Conference (IFIP SEC 2000), Beijing, China, August, 2000 [BibTex entry]
S. Dawson, P. Samarati, S. De Capitani di Vimercati, P. Lincoln, G. Wiederhold, M. Bilello, and J. Akella, "Secure Access Wrapper: Mediating Security Between Heterogeneous Databases," in Proc. of the Darpa Information Survivability Conference & Exposition, Hilton Head, South Carolina, USA, January, 2000 [BibTex entry]
S. Dawson, S. De Capitani di Vimercati, P. Lincoln, and P. Samarati, "Minimal Data Upgrading to Prevent Inference and Association Attacks," in Proc. of the 18th ACM SIGMOD-SIGACT-SIGART Symposium on Principles of Database Systems (PODS), Philadelphia, PA, USA, May 31-June 3, 1999 [BibTex entry]
S. Dawson, S. De Capitani di Vimercati, and P. Samarati, "Specification and Enforcement of Classification and Inference Constraints," in Proc. of the 20th IEEE Symposium on Security and Privacy, Oakland, CA, USA, May, 1999 [BibTex entry]
S. De Capitani di Vimercati, P. Lincoln, L. Ricciulli, and P. Samarati, "PGRIP: PNNI Global Routing Infrastructure Protection," in The Internet Society 1999 Network and Distributed System Security Symposium (NDSS'99), San Diego, CA, USA, February, 1999 [BibTex entry]
L. Ricciulli, S. De Capitani di Vimercati, P. Lincoln, and P. Samarati, "PNNI Global Routing Infrastructure Protection," in Information Survivability Workshop 1998 (ISW'98), Orlando, Florida, USA, October, 1998 (Position paper) [BibTex entry]
S. Dawson, S. Qian, and P. Samarati, "Secure Interoperation of Heterogeneous Systems: A Mediator-Based Approach," in Proc. of the 14th IFIP TC-11 International Conference on Information Security, Vienna-Budapest, August, 1998 [BibTex entry]
S. Dawson, P. Samarati, and G. Wiederhold, "Ensuring Survivability in Information Sharing," in Information Survivability Workshop 1998 (ISW'98), Orlando, Florida, October, 1998 (Position paper) [BibTex entry]
E. Ferrari, P. Samarati, E. Bertino, and S. Jajodia, "Providing Flexibility in Information Flow Control for Object-Oriented Systems," in Proc. of the 1997 IEEE Symposium on Security and Privacy, Oakland, CA, May, 1997 [BibTex entry]
S. Jajodia, P. Samarati, and V.S. Subramanian, "A Logical Language for Expressing Authorizations," in Proc. of the 1997 IEEE Symposium on Security and Privacy, Oakland, CA, May, 1997 [BibTex entry]
S. Jajodia, P. Samarati, V.S. Subramanian, and E. Bertino, "A Unified Framework for Enforcing Multiple Access Control Policies," in Proc. of the 1997 ACM International SIGMOD Conference on Management of Data, Tucson, AZ, May, 1997 [BibTex entry]
S. De Capitani di Vimercati, and P. Samarati, "An Authorization Model for Federated Systems," in Proc. of the 4th European Symposium on Research in Computer Security, ESORICS'96, Rome, Italy, September, 1996 [BibTex entry]
S. De Capitani di Vimercati, and P. Samarati, "Access Control in Federated Systems," in Proc. of the ACM SIGSAC New Security Paradigms Workshop, Lake Arrowhead, CA, USA, September, 1996 [BibTex entry]
E. Bertino, C. Bettini, E. Ferrari, and P. Samarati, "A Decentralized Temporal Authorization Model," in Information Systems Security - Facing the Information Society of the 21st Century, S.K. Katsikas, and D. Gritzalis (eds.), Chapman & Hall, 1996 [BibTex entry]
E. Bertino, C. Bettini, E. Ferrari, and P. Samarati, "Supporting Periodic Authorizations and Temporal Reasoning in Database Access Control," in Proc. of the 22nd International Conference on Very Large Databases (VLBD), Bombay, India, September, 1996 [BibTex entry]
E. Bertino, S. Jajodia, and P. Samarati, "A Non-Timestamped Authorization Model for Relational Databases," in Proc. of the 3rd ACM Conference on Computer and Communications Security, New Delhi, India, March, 1996 [BibTex entry]
E. Bertino, S. Jajodia, and P. Samarati, "Supporting Multiple Access Control Policies in Database Systems," in Proc. of the 1996 IEEE Symposium on Security and Privacy, Oakland, CA, May, 1996 [BibTex entry]
E. Ferrari, E. Bertino, C. Bettini, A. Motta, and P. Samarati, "On Using Materialization Strategies for a Temporal Authorization Model," in Proc. of the Int. Workshop on Materialized Views: Techniques and Applications (in co-operation with ACM-SIGMOD), Montreal, Canada, June, 1996 [BibTex entry]
E. Bertino, and P. Samarati, "Research Issues in Authorization Models for Hypertext Systems," in Proc. of the 1995 ACM SIGSAC New Security Paradigms Workshop, La Jolla, CA, August, 1995 [BibTex entry]
E. Bertino, C. Bettini, and P. Samarati, "A Temporal Authorization Model," in Proc. of the 2nd ACM Conference on Computer and Communications Security, Fairfax, VA, Novemver, 1994 [BibTex entry]
E. Bertino, C. Bettini, and P. Samarati, "A Discretionary Access Control Model with Temporal Authorizations," in Proc. of the 1994 ACM SIGSAC New Security Paradigms Workshop, Little Compton, RI, August, 1994 [BibTex entry]
E. Bertino, S. Jajodia, and P. Samarati, "Enforcing Mandatory Access Controls in Object Bases," in Security for Object-Oriented Systems, B. Thuraisingham, R. Sandhu, and T.Y. Lin (eds.), Springer Verlag London Ltd., 1994 [BibTex entry]
E. Bertino, F. Origgi, and P. Samarati, "A New Authorization Model for Object-Oriented Databases," in Database Security VIII - Status and Prospects, J. Biskup, M. Morgesten, and C.E. Landwehr (eds.), North-Holland, 1994 [BibTex entry]
E. Bertino, and P. Samarati, "Research Issues in Discretionary Authorizations for Object Bases," in Security for Object-Oriented Systems, B. Thuraisingham, R. Sandhu, and T.Y. Lin (eds.), Springer Verlag London Ltd., 1994 [BibTex entry]
P. Samarati, P. Ammann, and S. Jajodia, "Propagation of Authorizations in Distributed Databases," in Proc. of the 2nd ACM Conference on Computer and Communications Security, Fairfax, VA, November, 1994 [BibTex entry]
S. Castano, G. Martella, and P. Samarati, "A New Approach to Security System Development," in Proc. of the 1994 ACM SIGSAC New Security Paradigms Workshop, Little Compton, RI, August, 1994 [BibTex entry]
E. Bertino, P. Samarati, and S. Jajodia, "Authorizations in Relational Database Management Systems," in Proc. of the First ACM Conference on Computer and Communications Security, Fairfax, VA, November, 1993 [BibTex entry]
E. Bertino, P. Samarati, and S. Jajodia, "High Assurance Discretionary Access Control for Object Bases," in Proc. of the First ACM Conference on Computer and Communications Security, Fairfax, VA, November, 1993 [BibTex entry]
S. Castano, P. Samarati, and C. Villa, "Verifying System Security Using Petri Nets," in Proc. of the IEEE 27th Int. Carnahan Conf. on Security Technology, Ottawa, Canada, October, 1993 [BibTex entry]
S. Ceri, M.A.W. Houtsma, A.M. Keller, and P. Samarati, "Achieving Incremental Consistency among Autonomous Replicated Databases," in Proc. of the IFIP Working Conference on Semantics of Interoperable Database Systems (DS-5), Lorne, Australia, November, 1992 [BibTex entry]
S. Ceri, M.A.W. Houtsma, A.M. Keller, and P. Samarati, "The Case for Independent Updates," in Proc. of the 2nd Workshop on the Management of Replicated Data II, Monterey, California, November, 1992 [BibTex entry]
S. Castano, and P. Samarati, "Modeling Users' Behavior and Threats in Security Systems," in Proc. of the Int. Conf. on Safety, Security, and Reliability of Computers (Safecomp '92), Zurich, September, 1992 [BibTex entry]
S. Castano, and P. Samarati, "An Object-Oriented Security Model for Office Environments," in Proc. of the IEEE 26th Int. Carnahan Conf. on Security Technology, Atlanta, October, 1992 [BibTex entry]
V. De Antonellis, B. Pernici, and P. Samarati, "Object-Orientation in the Analysis of Work Organization and Agent Cooperation," in Dynamic Modeling of Information Systems, II, H.G. Sol, R.L. Crosslin (ed.), North-Holland, 1992 [BibTex entry]
M.G. Fugini, G. Martella, and P. Samarati, "Complementing Access Controls for Comprehensive Security," in Proc. International Conference on Information Systems and Management of Data (CISMOD), Bangalore, July, 1992 [BibTex entry]
F. Carrettoni, S. Castano, G. Martella, and P. Samarati, "RETISS: A Real TIme Security System for Threat Detection Using Fuzzy Logic," in Proc. of the IEEE 25th Int. Carnahan Conf. on Security Technology, Taiwan, October, 1991 [BibTex entry]
V. De Antonellis, B. Pernici, and P. Samarati, "Designing Information Systems for Cooperating Agents," in Human Aspects in Computing: Design and Use of Interactive Systems and Information Management, H.J. Bullinger (ed.), Elsevier Science Publ., 1991 [BibTex entry]
V. De Antonellis, B. Pernici, and P. Samarati, "F-ORM METHOD: A F-ORM Methodology for Reusing Specifications," in The Object-Oriented Approach in Information Systems, F. Van Assche, B. Moulin, and C. Roland (eds.), North-Holland, 1991 [BibTex entry]

Chapters in Books

S. De Capitani di Vimercati, S. Foresti, and P. Samarati, "Protecting Data in Outsourcing Scenarios," in Handbook on Securing Cyber-Physical Critical Infrastructure, S.K Das, K. Kant, and N. Zhang (eds.), Morgan Kaufmann, 2012 [BibTex entry]
C.A. Ardagna, S. De Capitani di Vimercati, G. Neven, S. Paraboschi, E. Pedrini, F.-S. Preiss, P. Samarati, and M. Verdicchio, "Advances in Access Control Policies," in Privacy and Identity Management for Life, J. Camenisch, S. Fischer-Huebner, and K. Rannenberg (eds.), Springer, 2011 [BibTex entry]
C.A. Ardagna, S. De Capitani di Vimercati, E. Pedrini, and P. Samarati, "Privacy-Aware Access Control System: Evaluation and Decision," in Digital Privacy: PRIME - Privacy and Identity Management for Europe, J. Camenisch, R. Leenes, and D. Sommer (eds.), Springer, 2011 [BibTex entry]
C.A. Ardagna, S. De Capitani di Vimercati, and P. Samarati, "Personal Privacy in Mobile Networks," in Mobile Technologies for Conflict Management: Online Dispute Resolution, Governance, Participation, M. Poblet (ed.), Springer Science+Business Media B.V., 2011 (to appear) [BibTex entry]
C.A. Ardagna, S. De Capitani di Vimercati, and P. Samarati, "Privacy Models and Languages: Access Control and Data Handling Policies," in Digital Privacy: PRIME - Privacy and Identity Management for Europe, J. Camenisch, R. Leenes, and D. Sommer (eds.), Springer, 2011 [BibTex entry]
M. Bezzi, S. De Capitani di Vimercati, S. Foresti, G. Livraga, S. Paraboschi, and P. Samarati, "Data Privacy," in Privacy and Identity Management for Life, J. Camenisch, S. Fischer-Hubner, and K. Rannenberg (eds.), Springer, 2011 [BibTex entry]
S. De Capitani di Vimercati, S. Foresti, S. Paraboschi, G. Pelosi, and P. Samarati, "Selective Exchange of Confidential Data in the Outsourcing Scenario," in Privacy and Identity Management for Life, J. Camenisch, S. Fischer-Hubner, and K. Rannenberg (eds.), Springer, 2011 [BibTex entry]
S. De Capitani di Vimercati, S. Foresti, and P. Samarati, "Protecting Information Privacy in the Electronic Society," in e-Business and Telecommunications International Conference (ICETE 2009), J. Filipe, and M.S. Obaidat (eds.), Springer, 2011 [BibTex entry]
S. De Capitani di Vimercati, S. Foresti, G. Livraga, and P. Samarati, "Protecting Privacy in Data Release," in Foundations of Security Analysis and Design VI, A. Aldini, and R. Gorrieri (eds.), Springer, 2011 [BibTex entry]
V. Ciriani, S. De Capitani di Vimercati, S. Foresti, and P. Samarati, "Theory of Privacy and Anonymity," in Algorithms and Theory of Computation Handbook (2nd edition), M. Atallah, and M. Blanton (eds.), CRC Press, 2009 [BibTex entry]
C.A. Ardagna, M. Cremonini, S. De Capitani di Vimercati, and P. Samarati, "Access Control in Location-Based Services," in Privacy in Location Based Applications, C. Bettini, S. Jajodia, P. Samarati, and S. Wang (eds.), Springer, 2009 [BibTex entry]
C.A. Ardagna, S. Jajodia, P. Samarati, and A. Stavrou, "Privacy Preservation over Untrusted Mobile Networks," in Privacy in Location Based Applications, C. Bettini, S. Jajodia, P. Samarati, and S. Wang (eds.), Springer, 2009 [BibTex entry]
C. A. Ardagna, M. Cremonini, E. Damiani, S. De Capitani di Vimercati, and P. Samarati, "Privacy in the Electronic Society: Emerging Problems and Solutions," in Statistical Science and Interdisciplinary Research - Vol. 3: Algorithms, Architectures and Information Systems Security, B.B. Bhattacharya, S. Sur-Kolay, S.C. Nandy, and A. Bagchi (eds.), World Scientific Press, November, 2008 [BibTex entry]
C. A. Ardagna, M. Cremonini, S. De Capitani di Vimercati, and P. Samarati, "Location Privacy in Pervasive Computing," in Security and Privacy in Mobile and Wireless Networking, S. Gritzalis, T. Karygiannis, and C. Skianis (eds.), Troubador Publishing, 2008 [BibTex entry]
C.A. Ardagna, M. Cremonini, S. De Capitani di Vimercati, and P. Samarati, "Managing Privacy in Location-based Access Control Systems," in Mobile Intelligence: Mobile Computing and Computational Intelligence, L.T. Yang, A.B. Waluyo, J. Ma, L. Tan, and B. Srinivasan (eds.), John Wiley & Sons, Inc., 2008 [BibTex entry]
V. Ciriani, S. De Capitani di Vimercati, S. Foresti, and P. Samarati, "k-Anonymous Data Mining: A Survey," in Privacy-Preserving Data Mining: Models and Algorithms, C.C. Aggarwal, and P.S. Yu (eds.), Springer-Verlag, 2008 [BibTex entry]
S. De Capitani di Vimercati, S. Foresti, S. Paraboschi, and P. Samarati, "Access Control," in The Handbook of Computer Networks, H. Bidgoli (ed.), Wiley, 2008 [BibTex entry]
S. De Capitani di Vimercati, S. Foresti, S. Paraboschi, and P. Samarati, "Access Control Models for XML," in Handbook of Database Security: Applications and Trends, M. Gertz, and S. Jajodia (eds.), Springer-Verlag, 2008 [BibTex entry]
S. De Capitani di Vimercati, S. Foresti, and P. Samarati, "Recent Advances in Access Control," in Handbook of Database Security: Applications and Trends, M. Gertz, and S. Jajodia (eds.), Springer-Verlag, 2008 [BibTex entry]
C.A. Ardagna, M. Cremonini, E. Damiani, S. De Capitani di Vimercati, and P. Samarati, "Privacy-enhanced location services information," in Digital Privacy: Theory, Technologies and Practices, Acquisti, De Capitani di Vimercati, Gritzalis, and Lambrinoudakis (eds.), Auerbach Publications (Taylor and Francis Group), 2007 [BibTex entry]
C.A. Ardagna, M. Cremonini, S. De Capitani di Vimercati, and P. Samarati, "Privacy-enhanced Location-based Access Control," in The Handbook of Database Security: Applications and Trends, M. Gertz, and S. Jajodia (eds.), Springer-Verlag, 2007 [BibTex entry]
C.A. Ardagna, E. Damiani, S. De Capitani di Vimercati, and P. Samarati, "XML Security," in Security, Privacy and Trust in Modern Data Management, M. Petkovic, and W. Jonker (eds.), Springer-Verlag, 2007 [BibTex entry]
C.A. Ardagna, E. Damiani, S. De Capitani di Vimercati, S. Foresti, and P. Samarati, "Trust Management," in Security, Privacy and Trust in Modern Data Management, M. Petkovic, and W. Jonker (eds.), Springer-Verlag, 2007 [BibTex entry]
V. Ciriani, S. De Capitani di Vimercati, S. Foresti, and P. Samarati, "k-Anonymity," in Secure Data Management in Decentralized Systems, T. Yu, and S. Jajodia (eds.), Springer-Verlag, 2007 [BibTex entry]
V. Ciriani, S. De Capitani di Vimercati, S. Foresti, and P. Samarati, "Microdata Protection," in Secure Data Management in Decentralized Systems, T. Yu, and S. Jajodia (eds.), Springer-Verlag, 2007 [BibTex entry]
S. De Capitani di Vimercati, S. Foresti, S. Paraboschi, and P. Samarati, "Privacy of Outsourced Data," in Digital Privacy: Theory, Technologies and Practices, A. Acquisti, S. Gritzalis, C. Lambrinoudakis, and S. De Capitani di Vimercati (eds.), Auerbach Publications (Taylor and Francis Group), 2007 [BibTex entry]
S. De Capitani di Vimercati, S. Foresti, S. Jajodia, and P. Samarati, "Access Control Policies and Languages in Open Environments," in Secure Data Management in Decentralized Systems, T. Yu, and S. Jajodia (eds.), Springer-Verlag, 2007 [BibTex entry]
S. De Capitani di Vimercati, S. Foresti, and P. Samarati, "Authorization and Access Control," in Security, Privacy and Trust in Modern Data Management, M. Petkovic, and W. Jonker (eds.), Springer-Verlag, 2007 [BibTex entry]
S. De Capitani di Vimercati, S. Paraboschi, and P. Samarati, "Access control: Principles and Solutions," in Handbook of Information Security, H. Bidgoli (ed.), Wiley, 2006 [BibTex entry]
M. Cremonini, and P. Samarati, "Contingency Planning Management," in Handbook of Information Security, H. Bidgoli (ed.), Wiley, 2006 [BibTex entry]
S. De Capitani di Vimercati, and P. Samarati, "New Directions in Access Control," in Cyberspace Security and Defense: Research Issues, Kluwer Academic Publisher, 2005 [BibTex entry]
P. Bonatti, and P. Samarati, "Logics for Authorizations and Security," in Logics for Emerging Applications of Databases, J. Chomicki, R. van der Meyden, and G. Saake (eds.), Springer-Verlag, 2003 [BibTex entry]
M. Cremonini, and P. Samarati, "Disaster Recovery Planning," in The Internet Encyclopedia, H. Bidgoli (ed.), John Wiley & Sons Inc., 2003 [BibTex entry]
S. De Capitani di Vimercati, P. Samarati, and S. Jajodia, "Hardware and Software Data Security," in EOLSS The Encyclopedia of Life Support Systems, D. Kaeli, and Z. Navabi (eds.), EOLSS Publishers, 2001 [BibTex entry]
S. De Capitani di Vimercati, P. Samarati, and S. Jajodia, "Database Security," in Wiley Encyclopedia of Software Engineering, J. Marciniak (ed.), John Wiley & Sons, 2001 [BibTex entry]
P. Samarati, and S. De Capitani di Vimercati, " Access Control: Policies, Models, and Mechanisms," in Foundations of Security Analysis and Design, R. Focardi, and R. Gorrieri (eds.), Springer-Verlag, 2001 [BibTex entry]
P. Samarati, and S. Jajodia, "Data Security," in Wiley Encyclopedia of Electrical and Electronics Engineering, J.G. Webster (ed.), John Wiley & Sons, February, 1999 [BibTex entry]
R. Sandhu, and P. Samarati, "Authentication, Access Control and Intrusion Detection," in CRC Handbook of Computer Science and Engineering, A. Tucker (ed.), CRC Press Inc., 1997 [BibTex entry]
S. Castano, G. Martella, and P. Samarati, "Virus, Pirateria, Sabotaggio: l'Emergenza delle Difficoltà," in Le Scienze della Comunicazione, RCS Libri & Grandi Opere, 1996/1997 [BibTex entry]
E. Bertino, S. Jajodia, and P. Samarati, "Access Controls in Object-Oriented Database Systems: Some Approaches and Issues," in Advanced Database Concepts and Research Issues, N. Adam, and B. Bhargava (eds.), Springer-Verlag, 1993 [BibTex entry]

Papers in National Journals

S. Castano, G. Martella, and P. Samarati, "Analysis, Comparison and Design of Role-Based Security Specifications," in Data & Knowledge Engineering (DKE), December, 1996 [BibTex entry]
G. Martella, and P. Samarati, "La Sicurezza dell'Informazione Aziendale," in Rivista di Informatica, 1989 [BibTex entry]

Papers in Proceedings of National Conferences

P. Samarati, "Multilevel Relational Databases: Issues and Solutions," in Atti del Congresso Annuale AICA, Palermo, September, 1994 [BibTex entry]
S. Castano, P. Samarati, and C. Villa, "Un Modello di Sicurezza per Ambienti Ipertestuali," in Atti del Congresso Annuale AICA, Lecce, September, 1993 [BibTex entry]
S. Castano, and P. Samarati, "Un Modello per la Rilevazione delle Minacce in un Sistema di Elaborazione," in Atti del Congresso Annuale AICA, Torino, October, 1992 [BibTex entry]
S. Castano, G. Martella, and P. Samarati, "Un Modello per la Protezione di Basi di Conoscenza," in Atti del Congresso Annuale AICA, Siena, September, 1991 [BibTex entry]
M. Bianchini, G. Martella, and P. Samarati, "Un Sistema di Sicurezza Object-Oriented per la Protezione dei Documenti nei Sistemi Informativi per l'Ufficio," in Atti del Congresso Annuale AICA, Bari, September, 1990 [BibTex entry]

Other Publications

S. De Capitani di Vimercati, and P. Samarati, "Administrative Policies," in Encyclopedia on Cryptography and Security, H.C.A. van Tilborg, and S. Jajodia (eds.), Springer, 2011 [BibTex entry]
S. De Capitani di Vimercati, and P. Samarati, "Clark and Wilson," in Encyclopedia on Cryptography and Security, H.C.A. van Tilborg, and S. Jajodia (eds.), Springer, 2011 [BibTex entry]
S. De Capitani di Vimercati, and P. Samarati, "Chinese Wall," in Encyclopedia on Cryptography and Security, H.C.A. van Tilborg, and S. Jajodia (eds.), Springer, 2011 [BibTex entry]
S. De Capitani di Vimercati, and P. Samarati, "Mandatory Access Control Policies (MAC)," in Encyclopedia on Cryptography and Security, H.C.A. van Tilborg, and S. Jajodia (eds.), Springer, 2011 [BibTex entry]
S. De Capitani di Vimercati, and P. Samarati, "Polyinstantiation," in Encyclopedia on Cryptography and Security, H.C.A. van Tilborg, and S. Jajodia (eds.), Springer, 2011 [BibTex entry]
G. Livraga, and P. Samarati, "Multilevel Database," in Encyclopedia on Cryptography and Security, H.C.A. van Tilborg, and S. Jajodia (eds.), Springer, 2011 [BibTex entry]
P. Samarati, "Flexible Authorization Framework (FAF)," in Encyclopedia on Cryptography and Security, H.C.A. van Tilborg, and S. Jajodia (eds.), Springer, 2011 [BibTex entry]
P. Samarati, "k-anonymity," in Encyclopedia on Cryptography and Security, H.C.A. van Tilborg, and S. Jajodia (eds.), Springer, 2011 [BibTex entry]
P. Samarati, "Recursive Revoke," in Encyclopedia on Cryptography and Security, H.C.A. van Tilborg, and S. Jajodia (eds.), Springer, 2011 [BibTex entry]
S. De Capitani di Vimercati, and P. Samarati, "Data Privacy: Problems and Solutions," in Third International Conference on Information Systems Security (ICISS 2007), Delhi, India, December 16-20, 2007 (invited talk) [BibTex entry]
S. De Capitani di Vimercati, and P. Samarati, "Privacy in the Electronic Society," in Proc. of the International Conference on Information Systems Security (ICISS 2006), Kolkata, India, December 19-21, 2006 (invited talk) [BibTex entry]
S. De Capitani di Vimercati, and P. Samarati, "Protecting Privacy in the Global Infrastructure," in Proc. of the International Conference on Information Security and Computer Forensics, Chennai, India, December 6-8, 2006 (invited talk) [BibTex entry]
E. Damiani, S. De Capitani di Vimercati, and P. Samarati, "Towards Privacy-Aware Identity Management," in ERCIM News, October , 2005 [BibTex entry]
E. Damiani, S. David, S. De Capitani di Vimercati, C. Fugazza, and P. Samarati, "Open World Reasoning in Semantics-Aware Access Control: a Preliminary Study," in 2nd Italian Semantic Web Workshop (SWAP 2005), University of Trento, Trento, Italy, December 14-16, 2005 [BibTex entry]
E. Damiani, S. De Capitani di Vimercati, C. Fugazza, and P.Samarati, "Semantics-aware Privacy and Access Control: Motivation and Preliminary Results," in 1st Italian Semantic Web Workshop, Ancona, Italy, Dicember, 2004 [BibTex entry]
E. Damiani, S. De Capitani di Vimercati, S. Paraboschi, and P. Samarati, "Reputation-based Pseudonymity: An Alternative or a Complement to Strong Identities?," in Workshop on Security and Dependability, Brussels, May 10, 2004 [BibTex entry]
E. Damiani, and P. Samarati, "Towards Context Awareness in Ambient Intelligence," in Workshop on R&D challenges for Resilience in Ambient Intelligence, Brussels, March 19, 2004 [BibTex entry]
S. De Capitani di Vimercati, and P. Samarati, "Privacy in the Electronic Society," in TILT, March, 2003 [BibTex entry]
E. Damiani, P. Samarati, C.A. Ardagna, and M. Lupo Stanghellini , "Sicurezza e Web Service," in Sicurezza Digitale, October, 2003 [BibTex entry]
P. Samarati, "Access Control in the Open Infrastructure," in Proc. of the 1st International Conference on Information & Communication Technology (ICICT), Cairo, Egypt, December, 2003 [BibTex entry]
P. Samarati, "Regulating Access to Web-published Data," in ERCIM News , April, 2002 [BibTex entry]
E. Damiani, and P. Samarati, "On the Secure Interoperability of E-Business Services," in Business Briefing, Global InfoSecurity, 2001 [BibTex entry]
S. Osborn, B. Thuraisingham, and P. Samarati, "Panel of XML and Security," in Proc. of the 15th IFIP WG11.3 Working Conference on Database and Application Security, Niagara on the Lake, Ontario, Canada, July, 2001 [BibTex entry]
B. Thuraisingham, S. Jajodia, P. Samarati, J. Dobson, and M. Olivier, "Privacy Issues in WWW and Data Mining: Panel Discussion," in Database Security XII - Status and Prospects, S. Jajodia (ed.), Kluwer, 1999 [BibTex entry]
B. Thuraisingham, L. Schillper, P. Samarati, T.Y. Lin, S. Jajodia, and C. Clifton, "Security Issues in Data Warehousing and Data Mining: Panel Discussion," in Database Security XI - Status and Prospects, T.Y. Lin, and S. Qian (eds.), Chapman & Hall, 1998 [BibTex entry]
R. Thomas, E. Bertino, P. Samarati, H. Bruggemann, B. Hartman, R. Sandhu, and T.C. Ting, "Panel Discussion: Role-Based Access Control and Next-Generation Security Models," in Database Security IX - Status and Prospects, D. Spooner, S. Demurjian, and J. Dobson (eds.), Chapman & Hall, 1997 [BibTex entry]
M. Bianchini, S. Castano, G. Martella, and P. Samarati, "Un Sistema di Sicurezza Object-Oriented per la Protezione di Documenti," in Sistemi e Software, January, 1992 [BibTex entry]
S. Ceri, M.A.W. Houtsma, A.M. Keller, and P. Samarati, "A Classification of Update Methods for Replicated Databases,", October, 1991 [BibTex entry]
G. Martella, and P. Samarati, "La Progettazione dei Sistemi di Protezione delle Informazioni in Azienda," in Data Manager, October, 1989 [BibTex entry]

Publications