 |
GitBAC: Flexible Access Control for Non-Modular Concerns
Mark Robinson, Jianwei Niu, and Macneil Shonle
(University of Texas at San Antonio, USA)
Today’s techniques for controlling access to software artifacts are limited to restricting access to whole files and directories. But when a company’s access control policy does not match a project’s existing physical modularization, these techniques require either an all-or-nothing approach or re-modularization of the files and directories. The increased maintenance overhead this brings to project administration can lead to unimplemented or insufficient developer access control and an increased risk of insider security incidents (e.g., theft of intellectual property). We have created a tool (GitBAC) to provide access control of software artifacts using a crosscutting concern instead of artifact modularization. Our method provides fine-grained access control of artifacts and accommodates flexible access control policies.