An authorization scheme for version control systems

Proceedings of the ... ACM symposium on access control models and technologies. ACM Symposium on Access Control Models and Technologies Pub Date : 2011-06-15 DOI:10.1145/1998441.1998460

Sitaram Chamarty, Hiren D. Patel, Mahesh V. Tripunitara

{"title":"An authorization scheme for version control systems","authors":"Sitaram Chamarty, Hiren D. Patel, Mahesh V. Tripunitara","doi":"10.1145/1998441.1998460","DOIUrl":null,"url":null,"abstract":"We present gitolite, an authorization scheme for Version Control Systems (VCSes). We have implemented it for the Git VCS. A VCS enables versioning, distributed collaboration and several other features, and is an important context for authorization and access control. Our main consideration behind the design of gitolite is the balance between expressive power, correctness and usability in realistic settings. We discuss our design of gitolite, and in particular the four user-classes in its delegation model, and the administrative actions a user at each class performs. We discuss also our ongoing work on expressing gitolite precisely in first-order logic, to thereby give it a precise semantics and establish correctness properties. gitolite has been adopted in open-source software development, university and industry settings. We discuss our experience with these deployments, and present some performance results related to access enforcement from a real deployment.","PeriodicalId":74509,"journal":{"name":"Proceedings of the ... ACM symposium on access control models and technologies. ACM Symposium on Access Control Models and Technologies","volume":"37 1","pages":"123-132"},"PeriodicalIF":0.0000,"publicationDate":"2011-06-15","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"3","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"Proceedings of the ... ACM symposium on access control models and technologies. ACM Symposium on Access Control Models and Technologies","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1145/1998441.1998460","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 3

Abstract

We present gitolite, an authorization scheme for Version Control Systems (VCSes). We have implemented it for the Git VCS. A VCS enables versioning, distributed collaboration and several other features, and is an important context for authorization and access control. Our main consideration behind the design of gitolite is the balance between expressive power, correctness and usability in realistic settings. We discuss our design of gitolite, and in particular the four user-classes in its delegation model, and the administrative actions a user at each class performs. We discuss also our ongoing work on expressing gitolite precisely in first-order logic, to thereby give it a precise semantics and establish correctness properties. gitolite has been adopted in open-source software development, university and industry settings. We discuss our experience with these deployments, and present some performance results related to access enforcement from a real deployment.

查看原文本刊更多论文

版本控制系统的授权方案

我们提出了gitolite，一种版本控制系统(vcse)的授权方案。我们已经为Git VCS实现了它。VCS支持版本控制、分布式协作和其他一些特性，并且是授权和访问控制的重要上下文。我们设计gitolite背后的主要考虑是在现实环境中表达能力，正确性和可用性之间的平衡。我们讨论了gitolite的设计，特别是其委托模型中的四个用户类，以及用户在每个类中执行的管理操作。我们还讨论了我们正在进行的在一阶逻辑中精确表达硅石石的工作，从而给它一个精确的语义并建立正确性。Gitolite已被用于开源软件开发、大学和工业环境。我们将讨论我们在这些部署方面的经验，并从实际部署中提供一些与访问强制相关的性能结果。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

Proceedings of the ... ACM symposium on access control models and technologies. ACM Symposium on Access Control Models and Technologies

自引率

0.00%

发文量