Yang, H, Li, H, Chen, F, Guo, H and Yang, Y (2011) 'Feasibility study of software reengineering towards role-based access control.' International Journal of Computer Applications in Technology, 42 (2/3). pp. 239-251. ISSN 0952-8091

Official URL: http://dx.doi.org/10.1504/IJCAT.2011.045410


Role-Based Access Control (RBAC) is accepted as the most commonly used access control policy; however, it is mainly used during the development of new software systems. In this paper, an approach to reengineering RBAC into legacy systems by applying program transformation is proposed. Wide Spectrum Language (WSL) and MetaWSL are extended. Transformation rules, algorithm and operations for further authorisation management are defined to support access control reorganisation. A case study is demonstrated on a prototype tool FermaT-based Access Control Reorganisation (F-ACR). The result shows that it is a feasible and promising approach to enforcing RBAC in legacy systems.

Item Type: Article
Keywords: access control policy; RBAC; role-based access control; program transformation; legacy systems; software reengineering.
Divisions: College of Liberal Arts
Date Deposited: 03 Jul 2013 10:04
Last Modified: 29 Apr 2016 13:28
Request a change to this item or report an issue Request a change to this item or report an issue
Update item (repository staff only) Update item (repository staff only)