Meaningful change detection in structured data
SIGMOD '97 Proceedings of the 1997 ACM SIGMOD international conference on Management of data
An Automated Change Detection Algorithm for HTML Documents Based on Semantic Hierarchies
Proceedings of the 17th International Conference on Data Engineering
Differences between versions of UML diagrams
Proceedings of the 9th European software engineering conference held jointly with 11th ACM SIGSOFT international symposium on Foundations of software engineering
Bootstrapping an Infrastructure
LISA '98 Proceedings of the 12th USENIX conference on System administration
Pan: A High-Level Configuration Language
LISA '02 Proceedings of the 16th USENIX conference on System administration
UMLDiff: an algorithm for object-oriented design differencing
Proceedings of the 20th IEEE/ACM international Conference on Automated software engineering
diffX: an algorithm to detect changes in multi-version XML documents
CASCON '05 Proceedings of the 2005 conference of the Centre for Advanced Studies on Collaborative research
Configuration tools: working together
LISA '05 Proceedings of the 19th conference on Large Installation System Administration Conference - Volume 19
A case study in configuration management tool deployment
LISA '05 Proceedings of the 19th conference on Large Installation System Administration Conference - Volume 19
LISA '06 Proceedings of the 20th conference on Large Installation System Administration
Change Distilling: Tree Differencing for Fine-Grained Source Code Change Extraction
IEEE Transactions on Software Engineering
PoDIM: a language for high-level configuration management
LISA'07 Proceedings of the 21st conference on Large Installation System Administration Conference
Devolved management of distributed infrastructures with Quattor
LISA'08 Proceedings of the 22nd conference on Large installation system administration conference
Authorisation and delegation in the machination configuration system
LISA'08 Proceedings of the 22nd conference on Large installation system administration conference
Authorizing and directing configuration updates in contemporary it infrastructures
Proceedings of the 3rd ACM workshop on Assurable and usable security configuration
Fine-grained access-control for the Puppet configuration language
LISA'11 Proceedings of the 25th international conference on Large Installation System Administration
Hi-index | 0.00 |
Every organization with more than a few system administrators has policies in place. These policies define who is allowed to change what aspects of the configuration of a computer infrastructure. Althoughmany system configuration tools are available for automating configuration changes in an infrastructure, very little work has been done to enforce the policies dealing with access control and workflow of configuration changes. In this paper, we present ACHEL. ACHEL makes it possible to integrate fine-grained access control into existing configuration tools and to enforce an organization's configuration changes workflow. In addition, we prototype ACHEL on a popular configuration tool and demonstrate its capabilities in two case studies.