点击次数：

论文类型：期刊论文

发表时间：2011-01-01

发表刊物：International Journal of Computer Applications in Technology

收录刊物：EI、Scopus

卷号：42

期号：2-3

页面范围：239-251

ISSN号：09528091

摘要：Role-Based Access Control (RBAC) is accepted as the most commonly used access control policy; however, it is mainly used during the development of new software systems. In this paper, an approach to reengineering RBAC into legacy systems by applying program transformation is proposed. Wide Spectrum Language (WSL) and MetaWSL are extended. Transformation rules, algorithm and operations for further authorisation management are defined to support access control reorganisation. A case study is demonstrated on a prototype tool FermaT-based Access Control Reorganisation (F-ACR). The result shows that it is a feasible and promising approach to enforcing RBAC in legacy systems. Copyright ? 2011 Inderscience Enterprises Ltd.