Abstract | ||
---|---|---|
Today's techniques for controlling access to software artifacts are limited to restricting access to whole files and directories. But when a company's access control policy does not match a project's existing physical modularization, these techniques require either an all-or-nothing approach or re-modularization of the files and directories. The increased maintenance overhead this brings to project administration can lead to unimplemented or insufficient developer access control and an increased risk of insider security incidents (e.g., theft of intellectual property). We have created a tool (GitBAC) to provide access control of software artifacts using a crosscutting concern instead of artifact modularization. Our method provides fine-grained access control of artifacts and accommodates flexible access control policies. |
Year | DOI | Venue |
---|---|---|
2011 | 10.1109/ASE.2011.6100109 | ASE |
Keywords | Field | DocType |
software artifact,non-modular concern,existing physical modularization,fine-grained access control,access control,increased maintenance,artifact modularization,access control policy,accommodates flexible access control,insufficient developer access control,increased risk,intellectual property,software maintenance,authorisation | Computer access control,Software engineering,Computer security,Computer science,Role-based access control,Insider,Modular programming,Access control,Software maintenance,Modular design,Intellectual property | Conference |
ISSN | ISBN | Citations |
1938-4300 | 978-1-4577-1638-6 | 0 |
PageRank | References | Authors |
0.34 | 14 | 3 |
Name | Order | Citations | PageRank |
---|---|---|---|
Mark Robinson | 1 | 1 | 0.72 |
Jianwei Niu | 2 | 275 | 26.61 |
Macneil Shonle | 3 | 208 | 12.67 |