Investigation of Access Control Models with Formal Concept Analysis: A case study

被引：2

作者：

Gauthier, Francois ^{[1
]}

Merlo, Ettore ^{[1
]}

机构：

[1] Ecole Polytech Montreal, Dept Comp Engn, Montreal, PQ, Canada

来源：

2012 16TH EUROPEAN CONFERENCE ON SOFTWARE MAINTENANCE AND REENGINEERING (CSMR) | 2012年

关键词：

formal concept analysis; access control models; web applications; reverse-engineering;

D O I：

10.1109/CSMR.2012.50

中图分类号：

TP31 [计算机软件];

学科分类号：

081202 ; 0835 ;

摘要：

Web applications manage increasingly large amounts of sensitive information and often need to implement access control (AC) models. However, documentation about the implemented AC model is often sparse and few, if no tool exists to support AC model investigation. Based on the results of a previous study, we show how formal concept analysis (FCA) can support the understanding and visualization of reverse-engineered AC models. Results of applying FCA to Moodle, a medium-sized (625 473 LOC) Web application, are presented and discussed. We show how FCA enhances the overall comprehension of reverse-engineered AC models and sheds light on previously unknown features of Moodle's AC model.

引用

页码：397 / 402

页数：6

共 50 条

[21] Study of Access Control Models
Ennahbaoui, Mohammed
Elhajji, Said
WORLD CONGRESS ON ENGINEERING - WCE 2013, VOL II, 2013, : 1215 - 1220
[22] Towards the Formal Development of Software Based Systems: Access Control System as a Case Study
Boucherit, Ammar
Castro, Laura M.
Khababa, Abdallah
Hasan, Osman
INFORMATION TECHNOLOGY AND CONTROL, 2018, 47 (03): : 393 - 405
[23] Formal Verification of Usage Control Models: A Case Study of UseCON Using TLA
Gouglidis, Antonios
Grompanopoulos, Christos
Mavridou, Anastasia
ELECTRONIC PROCEEDINGS IN THEORETICAL COMPUTER SCIENCE, 2018, (272): : 52 - 64
[24] Formal Concept Analysis in knowledge processing: A survey on models and techniques
Poelmans, Jonas
Kuznetsov, Sergei O.
Ignatov, Dmitry I.
Dedene, Guido
EXPERT SYSTEMS WITH APPLICATIONS, 2013, 40 (16) : 6601 - 6623
[25] Semantic Smells and Errors in Access Control Models: A Case Study in PHP
Gauthier, Francois
Merlo, Ettore
PROCEEDINGS OF THE 35TH INTERNATIONAL CONFERENCE ON SOFTWARE ENGINEERING (ICSE 2013), 2013, : 1169 - 1172
[26] Extracting Taxonomies from Data - a Case Study using Fuzzy Formal Concept Analysis
Majidian, Andrei
Martin, Trevor
2009 IEEE/WIC/ACM INTERNATIONAL JOINT CONFERENCES ON WEB INTELLIGENCE (WI) AND INTELLIGENT AGENT TECHNOLOGIES (IAT), VOL 3, 2009, : 191 - +
[27] Formal Concept Analysis for Concept Collecting and Their Analysis
Jurkevicius, Darius
Vasilecas, Olegas
BALTIC JOURNAL OF MODERN COMPUTING, 2009, 751 : 22 - 39
[28] SWOT Analysis of Access Control Models
Mohammed, Ennahbaoui
Said, El Hajji
INTERNATIONAL JOURNAL OF SECURITY AND ITS APPLICATIONS, 2014, 8 (03): : 407 - 424
[29] Learning models based on formal concept
Qiu, Guo-Fang
ROUGH SETS AND KNOWLEDGE TECHNOLOGY, PROCEEDINGS, 2007, 4481 : 419 - 426
[30] An Order-Theoretic Study on Formal Concept Analysis
Syau, Yu-Ru
Lin, En-Bing
Liau, Churn-Jung
AXIOMS, 2023, 12 (12)

← 1 2 3 4 5 →