The documents distributed by this server have been provided by the contributing authors as a means to ensure timely dissemination of scholarly and technical work on a noncommercial basis. Copyright and all rights therein are maintained by the authors or by other copyright holders, notwithstanding that they have offered their works here electronically. It is understood that all persons copying this information will adhere to the terms and constraints invoked by each author's copyright. These works may not be reposted without the explicit permission of the copyright holder.

Publications

Books and Edited Books
Refereed International Journals Articles
Refereed Papers in Proceedings of International Conference and Workshops
Chapters in Books
Refereed Papers in National Journals
Refereed Papers in Proceedings of National Conferences
Other publications

Books and Edited Books

  • C. Bettini, S. Jajodia, P. Samarati, and X. Sean Wang (eds.), Privacy in Location-Based Applications: Introduction, Research Issues and Applications, Lecture Notes of Computer Science 5599, Springer, 2009 [BibTex entry]
  • P. Samarati, M. Yung, F. Martinelli, and C.A. Ardagna (eds.), Proc. of the 12th Information Security Conference (ISC 2009), Springer, 2009 [BibTex entry]
  • S. Cimato, S. Jajodia, and P. Samarati (eds.), Proceedings of the IFIP TC11 23rd International Information Security Conference (SEC 2008), Springer, Milano, Italy, September 8 - 10, 2008 [BibTex entry]
  • J. Lopez, P. Samarati, and J.L. Ferrer (eds.), Proc. of the 4th European PKI Workshop: Theory and Practice, Palma de Mallorca, Spain, June 28-30, 2007 [BibTex entry]
  • S. Etalle, S. Foresti, and P. Samarati (eds.), Proc. of the Second International Workshop on Security and Trust Management (STM06), Hamburg, Germany, September 20-21, 2006 [BibTex entry]
  • C. Farkas, and P. Samarati (eds.), "Research Directions in Data and Applications Security XVIII," in Proc. of the 18th IFIP WG11.3 Working Conference on Data and Applications Security, Sitges, Spain, 2004 [BibTex entry]
  • P. Samarati, P. Ryan, D. Gollmann, and R. Molva (eds.), Computer Security - ESORICS 2004, Sophia Antipolis, France, September, 2004 [BibTex entry]
  • D. Gritzalis, S. De Capitani di Vimercati, P. Samarati, and S. Katsikas (eds.), Security and Privacy in the Age of Uncertainty, Kluwer, 2003 [BibTex entry]
  • P. Samarati, and P. Syverson (eds.), Proc. of the Second ACM Workshop on Privacy in the Electronic Society, Washington, USA, October 30, 2003 [BibTex entry]
  • S. De Capitani di Vimercati, and P. Samarati (eds.), Proc. of the First ACM Workshop on Privacy in the Electronic Society, Washington, USA, November 21, 2002 [BibTex entry]
  • P. Samarati (ed.), Proc. of the Eighth ACM Conference on Computer and Communications Security, Philadelphia, PA (USA), November 5-8, 2001 [BibTex entry]
  • V. Atluri, and P. Samarati (eds.), Security of Data and Transaction Processing, Kluwer, 2000 [BibTex entry]
  • S. Jajodia, and P. Samarati (eds.), Proc. of the Seventh ACM Conference on Computer and Communications Security, Athens, Greece, November 1-4, 2000 [BibTex entry]
  • P. Samarati, and R. Sandhu (eds.), Database Security X: Status and Prospects, Chapman and Hall, 1997 [BibTex entry]
  • S. Castano, M.G. Fugini, G. Martella, and P. Samarati, Database Security, Addison-Wesley, 1995 [BibTex entry]
  • S. Castano, G. Martella, and P. Samarati, La sicurezza delle Basi di Dati, Mondadori Informatica, 1992 [BibTex entry]

Refereed International Journals Articles

Refereed Papers in Proceedings of International Conference and Workshops

  • C. A. Ardagna, S. De Capitani di Vimercati, S. Paraboschi, E. Pedrini, and P. Samarati, "An XACML-Based Privacy-Centered Access Control System," in Proc. of the 1st ACM Workshop on Information Security Governance (WISG 2009), Chicago, Illinois, USA, November 13, 2009 (to appear) [BibTex entry]
  • V. Ciriani, S. De Capitani di Vimercati, S. Foresti, S. Jajodia, S. Paraboschi, and P. Samarati, "Enforcing Confidentiality Constraints on Sensitive Databases with Lightweight Trusted Clients," in Proc. of the 23rd Annual IFIP WG 11.3 Working Conference on Data and Applications Security (DBSec 2009), Montreal, Quebec, Canada, July 12-15, 2009 [BibTex entry]
  • V. Ciriani, S. De Capitani di Vimercati, S. Foresti, S. Jajodia, S. Paraboschi, and P. Samarati, "Keep a Few: Outsourcing Data while Maintaining Confidentiality," in Proc. of the 14th European Symposium On Research In Computer Security (ESORICS 2009), Saint Malo, France, September 21-25, 2009 [BibTex entry]
  • C. Blundo, S. Cimato, S. De Capitani di Vimercati, A. De Santis, S. Foresti, S. Paraboschi, and P. Samarati, "Efficient Key Management for Enforcing Access Control in Outsourced Scenarios," in Proc. of the 24th IFIP TC-11 International Information Security Conference (SEC 2009), Cyprus, Greece, May 18-20, 2009 [BibTex entry]
  • V. Ciriani, S. De Capitani di Vimercati, S. Foresti, S. Jajodia, S. Paraboschi, and P. Samarati, "Fragmentation Design for Efficient Query Execution over Sensitive Distributed Databases," in Proc. of the 29th International Conference on Distributed Computing Systems (ICDCS 2009), Montreal, Quebec, Canada, June 22-26, 2009 [BibTex entry]
  • C.A. Ardagna, A. Stavrou, S. Jajodia, P. Samarati, and R. Martin, "A Multi-Path Approach for k-Anonymity in Mobile Hybrid Networks," in Proc. of the International Workshop on Privacy in Location-Based Applications (PILBA 2008), Malaga, Spain, October 9, 2008 [BibTex entry]
  • S. De Capitani di Vimercati, S. Foresti, S. Jajodia, S. Paraboschi, G. Pelosi, and P. Samarati, "Preserving Confidentiality of Security Policies in Data Outsourcing," in Proc. of the Workshop on Privacy in the Electronic Society (WPES 2008), Alexandria, Virginia, USA, October 27, 2008 [BibTex entry]
  • S. De Capitani di Vimercati, S. Foresti, S. Jajodia, S. Paraboschi, and P. Samarati, "Assessing Query Privileges via Safe and Efficient Permission Composition," in Proc. of the 15th ACM Conference Conference on Computer and Communications Security (CCS 2008), Alexandria, Virginia, USA, October 27-31, 2008 [BibTex entry]
  • S. De Capitani di Vimercati, S. Foresti, S. Jajodia, S. Paraboschi, and P. Samarati, "Controlled Information Sharing in Collaborative Distributed Query Processing," in Proc. of the 28th International Conference on Distributed Computing Systems (ICDCS 2008), Beijing, China , June 17-20, 2008 [BibTex entry]
  • C.A. Ardagna, S. De Capitani di Vimercati, T. Grandison, S. Jajodia, and P. Samarati, "Regulating Exceptions in Healthcare using Policy Spaces," in Proc. of the 22nd Annual IFIP WG 11.3 Working Conference on Data and Applications Security, London, U.K., July 13-16, 2008 [BibTex entry]
  • C.A. Ardagna, M. Cremonini, E. Damiani, S. De Capitani di Vimercati, and P. Samarati, "Location Privacy Protection Through Obfuscation-based Techniques," in Proc. of the 21st Annual IFIP WG 11.3 Working Conference on Data and Applications Security, Redondo Beach, CA, USA, July 8-11, 2007 [BibTex entry]
  • C.A. Ardagna, M. Cremonini, E. Damiani, S. De Capitani di Vimercati, and P. Samarati, "Managing Privacy in LBAC Systems," in Proc. of the Second IEEE International Symposium on Pervasive Computing and Ad Hoc Communications (PCAC-07), Niagara Falls, Canada, 2007 [BibTex entry]
  • C.A. Ardagna, M. Cremonini, E. Damiani, S. De Capitani di Vimercati, and P. Samarati, "A Middleware Architecture for Integrating Privacy Preferences and Location Accuracy," in Proc. of the 22nd IFIP TC-11 International Information Security Conference (SEC 2007), Sandton, South Africa, May 14-16, 2007 [BibTex entry]
  • S. De Capitani di Vimercati, S. Jajodia, S. Paraboschi, and P. Samarati, "Trust Management Services in Relational Databases," in Proc. of the ACM Symposium on Information, Computer and Communications Security (ASIACCS'07), Singapore, March 20-22, 2007 [BibTex entry]
  • V. Ciriani, S. De Capitani di Vimercati, S. Foresti, S. Jajodia, S. Paraboschi, and P. Samarati, "Fragmentation and Encryption to Enforce Privacy in Data Storage," in Proc. of the 12th European Symposium On Research In Computer Security (ESORICS 2007), Dresden, Germany, September 24-26, 2007 [BibTex entry]
  • E. Damiani, S. De Capitani di Vimercati, S. Foresti, S. Jajodia, S. Paraboschi, and P. Samarati, "An experimental evaluation of multi-key strategies for data outsourcing," in Proc. of the 22nd IFIP TC-11 International Information Security Conference (SEC 2007), Sandton, South Africa, May 14-16, 2007 [BibTex entry]
  • S. De Capitani di Vimercati, S. Foresti, S. Jajodia, S. Paraboschi, and P. Samarati, "A Data Outsourcing Architecture Combining Cryptography and Access Control," in Proc. of the 1st Computer Security Architecture Workshop (CSAW 2007), Fairfax, Virginia, USA, November 2, 2007 [BibTex entry]
  • S. De Capitani di Vimercati, S. Foresti, S. Jajodia, S. Paraboschi, and P. Samarati, "Over-encryption: Management of Access Control Evolution on Outsourced Data," in Proc. of the 33rd International Conference on Very Large Data Bases (VLDB 2007), Vienna, Austria, September 23-28, 2007 [BibTex entry]
  • M. Anisetti, C.A. Ardagna, V. Bellandi, E. Damiani, S. De Capitani di Vimercati, and P. Samarati , "OpenAmbient: a Pervasive Access Control Architecture," in Proc. of ETRICS Workshop on Security in Autonomous Systems (SecAS), June, 2006 [BibTex entry]
  • C.A. Ardagna, M. Cremonini, E. Damiani, S. De Capitani di Vimercati, and P. Samarati, "Location-based Metadata and Negotiation Protocols for LBAC in a One-to-Many Scenario," in Proc. of the Workshop On Security and Privacy in Mobile and Wireless Networking (SecPri MobiWi 2006), Coimbra, Portogal, May 19, 2006 [BibTex entry]
  • C.A. Ardagna, M. Cremonini, E. Damiani, S. De Capitani di Vimercati, and P. Samarati, "Supporting Location-Based Conditions in Access Control Policies," in Proc. of the ACM Symposium on InformAtion, Computer and Communications Security (ASIACCS'06), Taipei, Taiwan, March 21-24, 2006 [BibTex entry]
  • C.A. Ardagna, M. Cremonini, E. Damiani, S. De Capitani di Vimercati, and P. Samarati, "Negotiation Protocols for LBAC Systems," in Proc. of 1st International Conference on Information Security and Computer Forensics (ISCF 2006), Chennai, India, December 6-8, 2006 [BibTex entry]
  • C.A. Ardagna, E. Damiani, S. De Capitani di Vimercati, F. Frati, and P. Samarati,, "CAS++: an Open Source Single Sign-On Solution for Secure e-Services," in Proc. of the 21st IFIP TC-11 International Information Security Conference, Karlstad, Sweden, May 22-24, 2006 [BibTex entry]
  • C.A. Ardagna, S. De Capitani di Vimercati, and P. Samarati, "Enhancing User Privacy Through Data Handling Policies," in Proc. of the 20th Annual IFIP WG 11.3 Working Conference on Data and Applications Security, Sophia Antipolis, France, July 31-August 2, 2006 [BibTex entry]
  • E. Damiani, S. De Capitani di Vimercati, C. Fugazza, and P. Samarati, "Extending Context Descriptions in Semantics-Aware Access Control," in Proc. of the Second International Conference on Information Systems Security (ICISS 2006), Kolkata, India, December 17-21, 2006 [BibTex entry]
  • E. Damiani, S. De Capitani di Vimercati, C. Fugazza, and P. Samarati, "Modality Conflicts in Semantics-Aware Access Control," in Proc. of the International Conference on Web Engineering, Menlo Park, California, USA, July 12-14, 2006 [BibTex entry]
  • E. Damiani, S. De Capitani di Vimercati, S. Foresti, S. Jajodia, S. Paraboschi, and P. Samarati, "Selective Data Encryption in Outsourced Dynamic Environments," in Proc. of the Second International Workshop on Views On Designing Complex Architectures (VODCA 2006), Bertinoro, Italy, September 16-17, 2006 [BibTex entry]
  • C.A. Ardagna, E. Damiani, S. De Capitani di Vimercati, M. Cremonini, and P. Samarati, "Towards Identity Management for E-Services," in Proc. of the TED Conference on e-Government Electronic democracy: The challenge ahead (postersession), Bolzano, Italy, March , 2005 [BibTex entry]
  • C.A. Ardagna, E. Damiani, M. Cremonini, S. De Capitani di Vimercati, and P. Samarati, "The Architecture of a Privacy-aware Access Control Decision Component," in Proc. of the Construction and Analysis of Safe, Secure and Interoperable Smart devices (CASSIS'05), Nice, France, March 8-11, 2005 [BibTex entry]
  • C.A. Ardagna, E. Damiani, S. De Capitani di Vimercati, C. Fugazza, and P. Samarati, "Offline Expansion of XACML Policies Based on P3P Metadata," in Proc. of the 5th International Conference on Web Engineering, Sydney, Australia, July 25-29, 2005 [BibTex entry]
  • R. Aringhieri, E. Damiani, S. De Capitani di Vimercati, and P. Samarati, "Assessing Efficiency of Trust Management in Peer-to-Peer Systems," in 1st International Workshop on Collaborative Peer-to-Peer Information Systems (COPS 2005), Linkoping University, Sweden, June 13-15, 2005 [BibTex entry]
  • C.A. Ardagna, E. Damiani, S. De Capitani di Vimercati, and P. Samarati, "Towards Privacy-Enhanced Authorization Policies and Languages," in Proc. of the 19th IFIP WG11.3 Working Conference on Data and Application Security, Nathan Hale Inn, University of Connecticut, Storrs, USA, August 7-10, 2005 [BibTex entry]
  • P. Ceravolo, E. Damiani, S. De Capitani di Vimercati, C. Fugazza, and P. Samarati, "Advanced Metadata for Privacy-Aware Representation of Credentials," in Proc. of the International Workshop on Privacy Data Management, Tokyo, Japan, April 8-9, 2005 [BibTex entry]
  • E. Damiani, S. De Capitani di Vimercati, and P. Samarati, "New Paradigms for Access Control in Open Environments," in Proc. of the 5th IEEE International Symposium on Signal Processing and Information, Athens, Greece, December 18-21, 2005 [BibTex entry]
  • E. Damiani, S. De Capitani di Vimercati, P. Samarati, and M. Viviani, "A WOWA-based Aggregation Technique on Trust Values Connected to Metadata," in Proc. of the First International Workshop on Security and Trust Management (STM'05), Milan, Italy, September 15, 2005 [BibTex entry]
  • S. De Capitani di Vimercati, S. Marrara, and P. Samarati, "An Access Control Model for Querying XML Data," in Proc. of the ACM Workshop on Secure Web Services (SWS 2005), Fairfax, VA, USA, November 11, 2005 [BibTex entry]
  • S. De Capitani di Vimercati, P. Samarati, and S. Jajodia, "Policies, Models, and Languages for Access Control," in Proc. of the Workshop on Databases in Networked Information Systems, Aizu-Wakamatsu, Japan, March 28-30, 2005 [BibTex entry]
  • E. Damiani, S. De Capitani di Vimercati, S. Foresti, S. Jajodia, S. Paraboschi, and P. Samarati, "Metadata Management in Outsourced Encrypted Databases," in Proc. of the 2nd VLDB Workshop on Secure Data Management (SDM 2005), Trondheim, Norway, September 2-3, 2005 [BibTex entry]
  • E. Damiani, S. De Capitani di Vimercati, S. Foresti, and S. Jajodia, P. Samarati, "Key Management for Multiuser Encrypted Databases," in Proc. of the International Workshop on Storage Security and Survivability, Fairfax, Virginia, USA, November 11, 2005 [BibTex entry]
  • E. Damiani, S. De Capitani di Vimercati, S. Foresti, P. Samarati, and M. Viviani, "Measuring Inference Exposure in Outsourced Encrypted Databases," in Proc. of the First Workshop on Quality of Protection (QoP 2005), Milan, Italy, September 15, 2005 (short paper) [BibTex entry]
  • C.A. Ardagna, E. Damiani, S. De Capitani di Vimercati, and P. Samarati, "A Web Service Architecture for Enforcing Access Control Policies," in Proc. of the First International Workshop on Views On Designing Complex Architectures (VODCA 2004), Bertinoro, Italy, September 11-12, 2004 [BibTex entry]
  • S. Chhabra, E. Damiani, S. De Capitani di Vimercati, S. Paraboschi, and P. Samarati, "A Protocol for Reputation Management in Super-Peer Networks," in Proc. of the 1st International Workshop on Peer2Peer Data Management, Security and Trust, Zaragoza, Spain, 30 August - 3 September, 2004 [BibTex entry]
  • E. Damiani, S. De Capitani di Vimercati, C. Fugazza, and P. Samarati, "Extending Policy Languages to the Semantic Web," in Proc. of the International Conference on Web Engineering, Munich, Germany, July 28-30, 2004 [BibTex entry]
  • E. Damiani, S. De Capitani di Vimercati, S. Paraboschi, and P. Samarati, "P2P-based Collaborative Spam Detection and Filtering," in Proc. of the fourth IEEE International Conference on Peer-to-Peer Computing, Zurich, Switzerland, August 25-27, 2004 [BibTex entry]
  • E. Damiani, S. De Capitani di Vimercati, S. Paraboschi, and P. Samarati, "An Open Digest-based Technique for Spam Detection," in Proc. of the 2004 International Workshop on Security in Parallel and Distributed Systems, San Francisco, CA, USA, September 15-17, 2004 [BibTex entry]
  • E. Damiani, S. De Capitani di Vimercati, S. Paraboschi, and P. Samarati, "Computing Range Queries on Obfuscated Data," in Proc. of the Information Processing and Management of Uncertainty in Knowledge-Based Systems, Perugia, Italy, July, 2004 [BibTex entry]
  • E. Damiani, S. De Capitani di Vimercati, S. Paraboschi, P. Samarati, A. Tironi, and L. Zaniboni, "Spam Attacks: P2P to the Rescue," in Poster Proceedings of the 13th World Wide Web Conference, New York City, USA, May, 2004 [BibTex entry]
  • E. Damiani, S. De Capitani di Vimercati, S. Paraboschi, M. Pesenti, P. Samarati, and S. Zara, "Fuzzy Logic Techniques for Reputation Management in Anonymous Peer-to-Peer Systems," in Proc. of the 3rd International Conference in Fuzzy Logic and Technology, Zittau, Germany, September , 2003 [BibTex entry]
  • P. Bonatti, S. De Capitani di Vimercati, and P. Samarati, "Towards Flexible Credential Negotiation Protocols," in Proc. of the Eleventh Cambridge International Workshop on Security Protocols, Cambridge, England, April, 2003 [BibTex entry]
  • M. Cremonini, E. Damiani, S. De Capitani di Vimercati, and P. Samarati, "An XML-based Approach to Combine Firewalls and Web Services Security Specifications," in Proc. of the ACM Workshop on XML Security, Washington, DC, USA, October, 2003 [BibTex entry]
  • M. Cremonini, E. Damiani, and P. Samarati, "Semantic-Aware Perimeter Protection," in Proc. of the 17th Annual IFIP WG 11.3 Working Conference on Database and Applications Security, Estes Park, CO, USA, August, 2003 [BibTex entry]
  • E. Damiani, S. De Capitani di Vimercati, S. Jajodia, S. Paraboschi, and P. Samarati, "Balancing Confidentiality and Efficiency in Untrusted Relational DBMSs," in Proc. of the 10th ACM Conference on Computer and Communications Security, Washington, DC, USA, October, 2003 [BibTex entry]
  • E. Damiani, S. De Capitani di Vimercati, M. Finetti, S. Jajodia, S. Paraboschi, and P. Samarati, "Implementation of a Storage Mechanism for Untrusted DBMSs," in Proc. of the Second International IEEE Security in Storage Workshop, Washington, DC, USA, October, 2003 [BibTex entry]
  • F. Cornelli, E. Damiani, S. De Capitani di Vimercati, S. Paraboschi, and P. Samarati, "Implementing a Reputation-Aware Gnutella Servent," in International Workshop on Peer-to-Peer Computing, Pisa, Italy, May, 2002 [BibTex entry]
  • F. Cornelli, E. Damiani, S. De Capitani di Vimercati, S. Paraboschi, and P . Samarati, "Choosing Reputable Servents in a P2P Network," in Eleventh International World Wide Web Conference, Honolulu, Hawaii, May, 2002 [BibTex entry]
  • E. Damiani, S. De Capitani di Vimercati, E. Fernandez-Medina, and P. Samarati, "An Access Control System for SVG Documents," in in Proc. of the Sixteenth Annual IFIP WG 11.3 Working Conference on Data and Application Security, King's College, University of Cambridge, UK, July, 2002 [BibTex entry]
  • E. Damiani, S. De Capitani di Vimercati, S. Paraboschi, P. Samarati, and F. Violante, "A Reputation-based Approach for Choosing Reliable Resources in Peer-to-Peer Networks," in Proc. of the 9th ACM Conference on Computer and Communications Security, Washington, DC, USA, November, 2002 [BibTex entry]
  • E. Damiani, S. De Capitani di Vimercati, and P. Samarati, "Towards Securing XML Web Services," in Proc. of the 2002 ACM Workshop on XML Security, Washington, DC, USA, November, 2002 [BibTex entry]
  • P. Bonatti, E. Damiani, S. De Capitani di Vimercati, and P. Samarati, "A Component-based Architecture for Secure Data Publication," in 17th Annual Computer Security Applications Conference, New Orleans, Louisiana, USA, December, 2001 [BibTex entry]
  • P. Bonatti, E. Damiani, S. De Capitani di Vimercati, and P. Samarati, "An Access Control Model for Data Archives," in 16th International Conference on Information Security, Paris, France, June, 2001 [BibTex entry]
  • E. Damiani, S. De Capitani di Vimercati, S. Paraboschi, and P. Samarati, "Fine Grained Access Control for SOAP E-Services," in Tenth International World Wide Web Conference, Hong Kong, China, May, 2001 [BibTex entry]
  • P. Bonatti, S. De Capitani di Vimercati, and P. Samarati, "A Modular Approach to Composing Access Control Policies," in Proc. of the Seventh ACM Conference on Computer and Communications Security, Athens, Greece, 2000 [BibTex entry]
  • P. Bonatti, and P. Samarati, "Regulating Service Access and Information Release on the Web," in Proc. of the Seventh ACM Conference on Computer and Communications Security, Athens, Greece, 2000 [BibTex entry]
  • S. Dawson, S. De Capitani di Vimercati, P. Lincoln, and P. Samarati, "Classifying Information for External Release," in 15th International Conference on Information Security (IFIP SEC2000), Beijing, China, August, 2000 [BibTex entry]
  • E. Damiani, S. De Capitani di Vimercati, S. Paraboschi, and P. Samarati, "Securing XML Documents," in Proc. of the 2000 International Conference on Extending Database Technology (EDBT2000), Konstanz, Germany, March, 2000 [BibTex entry]
  • E. Damiani, S. De Capitani di Vimercati, S. Paraboschi, and P. Samarati, "XML Access Control Systems: A Component-Based Approach," in Fourteenth Annual IFIP WG 11.3 Working Conference on Database Security, Schoorl, The Netherlands, August, 2000 [BibTex entry]
  • E. Damiani, S. De Capitani di Vimercati, S. Paraboschi, and P. Samarati, "Regulating Access to Semistructured Information on the Web," in 15th International Information Security Conference (IFIP SEC2000), Beijing, China, August, 2000 [BibTex entry]
  • S. Dawson, P. Samarati, S. De Capitani di Vimercati, P. Lincoln, G. Wiederhold, M. Bilello, and J. Akella, "Secure Access Wrapper: Mediating Security Between Heterogeneous Databases," in Proc. of the Darpa Information Survivability Conference & Exposition, Hilton Head, South Carolina, USA, January, 2000 [BibTex entry]
  • S. Dawson, S. De Capitani di Vimercati, P. Lincoln, and P. Samarati, "Minimal Data Upgrading to Prevent Inference and Association Attacks," in Proc. of the 18th ACM SIGMOD-SIGACT-SIGART Symposium on Principles of Database Systems (PODS), Philadelphia, PA, USA, May 31-June 3, 1999 [BibTex entry]
  • S. Dawson, S. De Capitani di Vimercati, and P. Samarati, "Specification and Enforcement of Classification and Inference Constraints," in Proc. of the 20th IEEE Symposium on Security and Privacy, Oakland, CA, USA, May, 1999 [BibTex entry]
  • S. De Capitani di Vimercati, P. Lincoln, L. Ricciulli, and P. Samarati, "PGRIP: PNNI Global Routing Infrastructure Protection," in The Internet Society 1999 Network and Distributed System Security Symposium (NDSS'99), San Diego, CA, USA, February, 1999 [BibTex entry]
  • L. Ricciulli, S. De Capitani di Vimercati, P. Lincoln, and P. Samarati, "PNNI Global Routing Infrastructure Protection," in Information Survivability Workshop 1998 (ISW'98), Orlando, Florida, USA, October, 1998 (Position paper) [BibTex entry]
  • S. Dawson, S. Qian, and P. Samarati, "Secure Interoperation of Heterogeneous Systems: A Mediator-Based Approach," in Proc. of the 14th IFIP TC-11 International Conference on Information Security, Vienna-Budapest, August, 1998 [BibTex entry]
  • S. Dawson, P. Samarati, and G. Wiederhold, "Ensuring Survivability in Information Sharing," in Information Survivability Workshop 1998 (ISW'98), Orlando, Florida, October, 1998 (Position paper) [BibTex entry]
  • E. Ferrari, P. Samarati, E. Bertino, and S. Jajodia, "Providing Flexibility in Information Flow Control for Object-Oriented Systems," in Proc. of the 1997 IEEE Symposium on Security and Privacy, Oakland, CA, May, 1997 [BibTex entry]
  • S. Jajodia, P. Samarati, and V.S. Subramanian, "A Logical Language for Expressing Authorizations," in Proc. of the 1997 IEEE Symposium on Security and Privacy, Oakland, CA, May, 1997 [BibTex entry]
  • S. Jajodia, P. Samarati, V.S. Subramanian, and E. Bertino, "A Unified Framework for Enforcing Multiple Access Control Policies," in Proc. of the 1997 ACM International SIGMOD Conference on Management of Data, Tucson, AZ, May, 1997 [BibTex entry]
  • S. De Capitani di Vimercati, and P. Samarati, "An Authorization Model for Federated Systems," in Proc. of the 4th European Symposium on Research in Computer Security, ESORICS'96, Rome, Italy, September, 1996 [BibTex entry]
  • S. De Capitani di Vimercati, and P. Samarati, "Access Control in Federated Systems," in Proc. of the ACM SIGSAC New Security Paradigms Workshop, Lake Arrowhead, CA, USA, September, 1996 [BibTex entry]
  • E. Bertino, C. Bettini, E. Ferrari, and P. Samarati, "A Decentralized Temporal Authorization Model," in Information Systems Security - Facing the Information Society of the 21st Century, S.K. Katsikas, and D. Gritzalis (eds.), Chapman & Hall, 1996 [BibTex entry]
  • E. Bertino, C. Bettini, E. Ferrari, and P. Samarati, "Supporting Periodic Authorizations and Temporal Reasoning in Database Access Control," in Proc. of the 22nd International Conference on Very Large Databases (VLBD), Bombay, India, September, 1996 [BibTex entry]
  • E. Bertino, S. Jajodia, and P. Samarati, "A Non-Timestamped Authorization Model for Relational Databases," in Proc. of the 3rd ACM Conference on Computer and Communications Security, New Delhi, India, March, 1996 [BibTex entry]
  • E. Bertino, S. Jajodia, and P. Samarati, "Supporting Multiple Access Control Policies in Database Systems," in Proc. of the 1996 IEEE Symposium on Security and Privacy, Oakland, CA, May, 1996 [BibTex entry]
  • E. Ferrari, E. Bertino, C. Bettini, A. Motta, and P. Samarati, "On Using Materialization Strategies for a Temporal Authorization Model," in Proc. of the Int. Workshop on Materialized Views: Techniques and Applications (in co-operation with ACM-SIGMOD), Montreal, Canada, June, 1996 [BibTex entry]
  • E. Bertino, and P. Samarati, "Research Issues in Authorization Models for Hypertext Systems," in Proc. of the 1995 ACM SIGSAC New Security Paradigms Workshop, La Jolla, CA, August, 1995 [BibTex entry]
  • E. Bertino, C. Bettini, and P. Samarati, "A Temporal Authorization Model," in Proc. of the 2nd ACM Conference on Computer and Communications Security, Fairfax, VA, Novemver, 1994 [BibTex entry]
  • E. Bertino, C. Bettini, and P. Samarati, "A Discretionary Access Control Model with Temporal Authorizations," in Proc. of the 1994 ACM SIGSAC New Security Paradigms Workshop, Little Compton, RI, August, 1994 [BibTex entry]
  • E. Bertino, S. Jajodia, and P. Samarati, "Enforcing Mandatory Access Controls in Object Bases," in Security for Object-Oriented Systems, B. Thuraisingham, R. Sandhu, and T.Y. Lin (eds.), Springer Verlag London Ltd., 1994 [BibTex entry]
  • E. Bertino, F. Origgi, and P. Samarati, "A New Authorization Model for Object-Oriented Databases," in Database Security VIII - Status and Prospects, J. Biskup, M. Morgesten, and C.E. Landwehr (eds.), North-Holland, 1994 [BibTex entry]
  • E. Bertino, and P. Samarati, "Research Issues in Discretionary Authorizations for Object Bases," in Security for Object-Oriented Systems, B. Thuraisingham, R. Sandhu, and T.Y. Lin (eds.), Springer Verlag London Ltd., 1994 [BibTex entry]
  • P. Samarati, P. Ammann, and S. Jajodia, "Propagation of Authorizations in Distributed Databases," in Proc. of the 2nd ACM Conference on Computer and Communications Security, Fairfax, VA, November, 1994 [BibTex entry]
  • S. Castano, G. Martella, and P. Samarati, "A New Approach to Security System Development," in Proc. of the 1994 ACM SIGSAC New Security Paradigms Workshop, Little Compton, RI, August, 1994 [BibTex entry]
  • E. Bertino, P. Samarati, and S. Jajodia, "Authorizations in Relational Database Management Systems," in Proc. of the First ACM Conference on Computer and Communications Security, Fairfax, VA, November, 1993 [BibTex entry]
  • E. Bertino, P. Samarati, and S. Jajodia, "High Assurance Discretionary Access Control for Object Bases," in Proc. of the First ACM Conference on Computer and Communications Security, Fairfax, VA, November, 1993 [BibTex entry]
  • S. Castano, P. Samarati, and C. Villa, "Verifying System Security Using Petri Nets," in Proc. of the IEEE 27th Int. Carnahan Conf. on Security Technology, Ottawa, Canada, October, 1993 [BibTex entry]
  • S. Ceri, M.A.W. Houtsma, A.M. Keller, and P. Samarati, "Achieving Incremental Consistency among Autonomous Replicated Databases," in Proc. of the IFIP Working Conference on Semantics of Interoperable Database Systems (DS-5), Lorne, Australia, November, 1992 [BibTex entry]
  • S. Ceri, M.A.W. Houtsma, A.M. Keller, and P. Samarati, "The Case for Independent Updates," in Proc. of the 2nd Workshop on the Management of Replicated Data II, Monterey, California, November, 1992 [BibTex entry]
  • S. Castano, and P. Samarati, "Modeling Users' Behavior and Threats in Security Systems," in Proc. of the Int. Conf. on Safety, Security, and Reliability of Computers (Safecomp '92), Zurich, September, 1992 [BibTex entry]
  • S. Castano, and P. Samarati, "An Object-Oriented Security Model for Office Environments," in Proc. of the IEEE 26th Int. Carnahan Conf. on Security Technology, Atlanta, October, 1992 [BibTex entry]
  • V. De Antonellis, B. Pernici, and P. Samarati, "Object-Orientation in the Analysis of Work Organization and Agent Cooperation," in Dynamic Modeling of Information Systems, II, H.G. Sol, R.L. Crosslin (ed.), North-Holland, 1992 [BibTex entry]
  • M.G. Fugini, G. Martella, and P. Samarati, "Complementing Access Controls for Comprehensive Security," in Proc. International Conference on Information Systems and Management of Data (CISMOD), Bangalore, July, 1992 [BibTex entry]
  • F. Carrettoni, S. Castano, G. Martella, and P. Samarati, "RETISS: A Real TIme Security System for Threat Detection Using Fuzzy Logic," in Proc. of the IEEE 25th Int. Carnahan Conf. on Security Technology, Taiwan, October, 1991 [BibTex entry]
  • V. De Antonellis, B. Pernici, and P. Samarati, "Designing Information Systems for Cooperating Agents," in Human Aspects in Computing: Design and Use of Interactive Systems and Information Management, H.J. Bullinger (ed.), Elsevier Science Publ., 1991 [BibTex entry]
  • V. De Antonellis, B. Pernici, and P. Samarati, "F-ORM METHOD: A F-ORM Methodology for Reusing Specifications," in The Object-Oriented Approach in Information Systems, F. Van Assche, B. Moulin, and C. Roland (eds.), North-Holland, 1991 [BibTex entry]

Chapters in Books

  • V. Ciriani, S. De Capitani di Vimercati, S. Foresti, and P. Samarati, "Theory of Privacy and Anonymity," in Algorithms and Theory of Computation Handbook (2nd edition), M. Atallah, and M. Blanton (eds.), CRC Press, 2009 (to appear) [BibTex entry]
  • C.A. Ardagna, M. Cremonini, S. De Capitani di Vimercati, and P. Samarati, "Access Control in Location-Based Services," in Privacy in Location Based Applications, C. Bettini, S. Jajodia, P. Samarati, and S. Wang (eds.), Springer, 2009 [BibTex entry]
  • C.A. Ardagna, S. Jajodia, P. Samarati, and A. Stavrou, "Privacy Preservation over Untrusted Mobile Networks," in Privacy in Location Based Applications, C. Bettini, S. Jajodia, P. Samarati, and S. Wang (eds.), Springer, 2009 [BibTex entry]
  • C. A. Ardagna, M. Cremonini, E. Damiani, S. De Capitani di Vimercati, and P. Samarati, "Privacy in the Electronic Society: Emerging Problems and Solutions," in Statistical Science and Interdisciplinary Research - Vol. 3: Algorithms, Architectures and Information Systems Security, B.B. Bhattacharya, S. Sur-Kolay, S.C. Nandy, and A. Bagchi (eds.), World Scientific Press, November, 2008 [BibTex entry]
  • C. A. Ardagna, M. Cremonini, S. De Capitani di Vimercati, and P. Samarati, "Location Privacy in Pervasive Computing," in Security and Privacy in Mobile and Wireless Networking, S. Gritzalis, T. Karygiannis, and C. Skianis (eds.), Troubador Publishing, 2008 [BibTex entry]
  • C.A. Ardagna, M. Cremonini, S. De Capitani di Vimercati, and P. Samarati, "Managing Privacy in Location-based Access Control Systems," in Mobile Intelligence: Mobile Computing and Computational Intelligence, L.T. Yang, A.B. Waluyo, J. Ma, L. Tan, and B. Srinivasan (eds.), John Wiley & Sons, Inc., 2008 [BibTex entry]
  • V. Ciriani, S. De Capitani di Vimercati, S. Foresti, and P. Samarati, "k-Anonymous Data Mining: A Survey," in Privacy-Preserving Data Mining: Models and Algorithms, C.C. Aggarwal, and P.S. Yu (eds.), Springer-Verlag, 2008 [BibTex entry]
  • S. De Capitani di Vimercati, S. Foresti, S. Paraboschi, and P. Samarati, "Access Control," in The Handbook of Computer Networks, H. Bidgoli (ed.), Wiley, 2008 [BibTex entry]
  • S. De Capitani di Vimercati, S. Foresti, S. Paraboschi, and P. Samarati, "Access Control Models for XML," in Handbook of Database Security: Applications and Trends, M. Gertz, and S. Jajodia (eds.), Springer-Verlag, 2008 [BibTex entry]
  • S. De Capitani di Vimercati, S. Foresti, and P. Samarati, "Recent Advances in Access Control," in Handbook of Database Security: Applications and Trends, M. Gertz, and S. Jajodia (eds.), Springer-Verlag, 2008 [BibTex entry]
  • C.A. Ardagna, M. Cremonini, E. Damiani, S. De Capitani di Vimercati, F. Frati, and P. Samarati, "Privacy-Enhanced Identity Management for E-Services," in Secure E-Government Web Services, A. Mitrakas, P. Hengeveld, D. Polemi, and J. Gamper (eds.), Idea Group INC., 2007 [BibTex entry]
  • C.A. Ardagna, M. Cremonini, E. Damiani, S. De Capitani di Vimercati, and P. Samarati, "Privacy-enhanced location services information," in Digital Privacy: Theory, Technologies and Practices, Acquisti, De Capitani di Vimercati, Gritzalis, and Lambrinoudakis (eds.), Auerbach Publications (Taylor and Francis Group), 2007 [BibTex entry]
  • C.A. Ardagna, M. Cremonini, S. De Capitani di Vimercati, and P. Samarati, "Privacy-enhanced Location-based Access Control," in The Handbook of Database Security: Applications and Trends, M. Gertz, and S. Jajodia (eds.), Springer-Verlag, 2007 [BibTex entry]
  • C.A. Ardagna, E. Damiani, S. De Capitani di Vimercati, and P. Samarati, "XML Security," in Security, Privacy and Trust in Modern Data Management, M. Petkovic, and W. Jonker (eds.), Springer-Verlag, 2007 [BibTex entry]
  • C.A. Ardagna, E. Damiani, S. De Capitani di Vimercati, S. Foresti, and P. Samarati, "Trust Management," in Security, Privacy and Trust in Modern Data Management, M. Petkovic, and W. Jonker (eds.), Springer-Verlag, 2007 [BibTex entry]
  • V. Ciriani, S. De Capitani di Vimercati, S. Foresti, and P. Samarati, "k-Anonymity," in Secure Data Management in Decentralized Systems, T. Yu, and S. Jajodia (eds.), Springer-Verlag, 2007 [BibTex entry]
  • V. Ciriani, S. De Capitani di Vimercati, S. Foresti, and P. Samarati, "Microdata Protection," in Secure Data Management in Decentralized Systems, T. Yu, and S. Jajodia (eds.), Springer-Verlag, 2007 [BibTex entry]
  • S. De Capitani di Vimercati, S. Foresti, S. Paraboschi, and P. Samarati, "Privacy of Outsourced Data," in Digital Privacy: Theory, Technologies and Practices, A. Acquisti, S. Gritzalis, C. Lambrinoudakis, and S. De Capitani di Vimercati (eds.), Auerbach Publications (Taylor and Francis Group), 2007 [BibTex entry]
  • S. De Capitani di Vimercati, S. Foresti, S. Jajodia, and P. Samarati, "Access Control Policies and Languages in Open Environments," in Secure Data Management in Decentralized Systems, T. Yu, and S. Jajodia (eds.), Springer-Verlag, 2007 [BibTex entry]
  • S. De Capitani di Vimercati, S. Foresti, and P. Samarati, "Authorization and Access Control," in Security, Privacy and Trust in Modern Data Management, M. Petkovic, and W. Jonker (eds.), Springer-Verlag, 2007 [BibTex entry]
  • S. De Capitani di Vimercati, S. Paraboschi, and P. Samarati, "Access control: Principles and Solutions," in Handbook of Information Security, H. Bidgoli (ed.), Wiley, 2006 [BibTex entry]
  • M. Cremonini, and P. Samarati, "Contingency Planning Management," in Handbook of Information Security, H. Bidgoli (ed.), Wiley, 2006 [BibTex entry]
  • A. Corallo, M. Cremonini, E. Damiani, S. De Capitani di Vimercati, G. Elia, and P. Samarati, "Security, Privacy, and Trust in Mobile Systems," in Mobile and Wireless Systems beyond 3G: managing new business opportunities, Idea Group Inc, 2005 [BibTex entry]
  • S. De Capitani di Vimercati, and P. Samarati, "New Directions in Access Control," in Cyberspace Security and Defense: Research Issues, Kluwer Academic Publisher, 2005 [BibTex entry]
  • E. Fernandez-Medina, S. De Capitani di Vimercati, E. Damiani, M. Piattini, and P. Samarati, "Multimedia Security And Digital Rights Management Technology,", C. Bellettini, and M.G. Fugini (eds.), Idea Publishing, 2004 [BibTex entry]
  • P. Bonatti, and P. Samarati, "Logics for Authorizations and Security," in Logics for Emerging Applications of Databases, J. Chomicki, R. van der Meyden, and G. Saake (eds.), Springer-Verlag, 2003 [BibTex entry]
  • M. Cremonini, and P. Samarati, "Disaster Recovery Planning," in The Internet Encyclopedia, H. Bidgoli (ed.), John Wiley & Sons Inc., 2003 [BibTex entry]
  • S. De Capitani di Vimercati, P. Samarati, and S. Jajodia, "Hardware and Software Data Security," in EOLSS The Encyclopedia of Life Support Systems, D. Kaeli, and Z. Navabi (eds.), EOLSS Publishers, 2001 [BibTex entry]
  • S. De Capitani di Vimercati, P. Samarati, and S. Jajodia, "Database Security," in Wiley Encyclopedia of Software Engineering, J. Marciniak (ed.), John Wiley & Sons, 2001 [BibTex entry]
  • P. Samarati, and S. De Capitani di Vimercati, " Access Control: Policies, Models, and Mechanisms," in Foundations of Security Analysis and Design, R. Focardi, and R. Gorrieri (eds.), Springer-Verlag, 2001 [BibTex entry]
  • P. Samarati, and S. Jajodia, "Data Security," in Wiley Encyclopedia of Electrical and Electronics Engineering, J.G. Webster (ed.), John Wiley & Sons, February, 1999 [BibTex entry]
  • R. Sandhu, and P. Samarati, "Authentication, Access Control and Intrusion Detection," in CRC Handbook of Computer Science and Engineering, A. Tucker (ed.), CRC Press Inc., 1997 [BibTex entry]
  • S. Castano, G. Martella, and P. Samarati, "Virus, Pirateria, Sabotaggio: l'Emergenza delle Difficoltà," in Le Scienze della Comunicazione, RCS Libri & Grandi Opere, 1996/1997 [BibTex entry]
  • E. Bertino, S. Jajodia, and P. Samarati, "Access Controls in Object-Oriented Database Systems: Some Approaches and Issues," in Advanced Database Concepts and Research Issues, N. Adam, and B. Bhargava (eds.), Springer-Verlag, 1993 [BibTex entry]

Refereed Papers in National Journals

  • S. Castano, G. Martella, and P. Samarati, "Analysis, Comparison and Design of Role-Based Security Specifications," in Data & Knowledge Engineering, December, 1996 [BibTex entry]
  • G. Martella, and P. Samarati, "La Sicurezza dell'Informazione Aziendale," in Rivista di Informatica, 1989 [BibTex entry]

Refereed Papers in Proceedings of National Conferences

  • P. Samarati, "Multilevel Relational Databases: Issues and Solutions," in Atti del Congresso Annuale AICA, Palermo, September, 1994 [BibTex entry]
  • S. Castano, P. Samarati, and C. Villa, "Un Modello di Sicurezza per Ambienti Ipertestuali," in Atti del Congresso Annuale AICA, Lecce, September, 1993 [BibTex entry]
  • S. Castano, and P. Samarati, "Un Modello per la Rilevazione delle Minacce in un Sistema di Elaborazione," in Atti del Congresso Annuale AICA, Torino, October, 1992 [BibTex entry]
  • S. Castano, G. Martella, and P. Samarati, "Un Modello per la Protezione di Basi di Conoscenza," in Atti del Congresso Annuale AICA, Siena, September, 1991 [BibTex entry]
  • M. Bianchini, G. Martella, and P. Samarati, "Un Sistema di Sicurezza Object-Oriented per la Protezione dei Documenti nei Sistemi Informativi per l'Ufficio," in Atti del Congresso Annuale AICA, Bari, September, 1990 [BibTex entry]

Other Publications

  • S. De Capitani di Vimercati, and P. Samarati, "Data Privacy: Problems and Solutions," in Third International Conference on Information Systems Security (ICISS 2007), Delhi, India, December 16-20, 2007 (invited talk) [BibTex entry]
  • S. De Capitani di Vimercati, and P. Samarati, "Privacy in the Electronic Society," in Proc. of the International Conference on Information Systems Security (ICISS 2006), Kolkata, India, December 19-21, 2006 (invited talk) [BibTex entry]
  • S. De Capitani di Vimercati, and P. Samarati, "Protecting Privacy in the Global Infrastructure," in Proc. of the International Conference on Information Security and Computer Forensics, Chennai, India, December 6-8, 2006 (invited talk) [BibTex entry]
  • E. Damiani, S. De Capitani di Vimercati, and P. Samarati, "Towards Privacy-Aware Identity Management," in ERCIM News, October , 2005 [BibTex entry]
  • E. Damiani, S. David, S. De Capitani di Vimercati, C. Fugazza, and P. Samarati, "Open World Reasoning in Semantics-Aware Access Control: a Preliminary Study," in 2nd Italian Semantic Web Workshop (SWAP 2005), University of Trento, Trento, Italy, December 14-16, 2005 [BibTex entry]
  • E. Damiani, S. De Capitani di Vimercati, C. Fugazza, and P.Samarati, "Semantics-aware Privacy and Access Control: Motivation and Preliminary Results," in 1st Italian Semantic Web Workshop, Ancona, Italy, Dicember, 2004 [BibTex entry]
  • E. Damiani, S. De Capitani di Vimercati, S. Paraboschi, and P. Samarati, "Reputation-based Pseudonymity: An Alternative or a Complement to Strong Identities?," in Workshop on Security and Dependability, Brussels, May 10, 2004 [BibTex entry]
  • E. Damiani, and P. Samarati, "Towards Context Awareness in Ambient Intelligence," in Workshop on R&D challenges for Resilience in Ambient Intelligence, Brussels, March 19, 2004 [BibTex entry]
  • S. De Capitani di Vimercati, and P. Samarati, "Privacy in the Electronic Society," in TILT, March, 2003 [BibTex entry]
  • E. Damiani, P. Samarati, C.A. Ardagna, and M. Lupo Stanghellini , "Sicurezza e Web Service," in Sicurezza Digitale, October, 2003 [BibTex entry]
  • P. Samarati, "Access Control in the Open Infrastructure," in Proc. ITI First International Conference on Information & Communication Technology (ICICT), Cairo, Egypt, December, 2003 [BibTex entry]
  • P. Samarati, "Regulating Access to Web-published Data," in ERCIM News , April, 2002 [BibTex entry]
  • E. Damiani, and P. Samarati, "On the Secure Interoperability of E-Business Services," in Business Briefing, Global InfoSecurity, 2001 [BibTex entry]
  • S. Osborn, B. Thuraisingham, and P. Samarati, "Panel of XML and Security," in Proc. of the 15th IFIP WG11.3 Working Conference on Database and Application Security, Niagara on the Lake, Ontario, Canada, July, 2001 [BibTex entry]
  • B. Thuraisingham, S. Jajodia, P. Samarati, J. Dobson, and M. Olivier, "Privacy Issues in WWW and Data Mining: Panel Discussion," in Database Security XII - Status and Prospects, S. Jajodia (ed.), Kluwer, 1999 [BibTex entry]
  • B. Thuraisingham, L. Schillper, P. Samarati, T.Y. Lin, S. Jajodia, and C. Clifton, "Security Issues in Data Warehousing and Data Mining: Panel Discussion," in Database Security XI - Status and Prospects, T.Y. Lin, and S. Qian (eds.), Chapman & Hall, 1998 [BibTex entry]
  • R. Thomas, E. Bertino, P. Samarati, H. Bruggemann, B. Hartman, R. Sandhu, and T.C. Ting, "Panel Discussion: Role-Based Access Control and Next-Generation Security Models," in Database Security IX - Status and Prospects, D. Spooner, S. Demurjian, and J. Dobson (eds.), Chapman & Hall, 1997 [BibTex entry]
  • M. Bianchini, S. Castano, G. Martella, and P. Samarati, "Un Sistema di Sicurezza Object-Oriented per la Protezione di Documenti," in Sistemi e Software, January, 1992 [BibTex entry]
  • S. Ceri, M.A.W. Houtsma, A.M. Keller, and P. Samarati, "A Classification of Update Methods for Replicated Databases,", October, 1991 [BibTex entry]
  • G. Martella, and P. Samarati, "La Progettazione dei Sistemi di Protezione delle Informazioni in Azienda," in Data Manager, October, 1989 [BibTex entry]