version control system (VCS) plays an essential role in software supply chain, as it manages code projects and enables efficient collaboration. For a private repository, where source code is a high-profile asset and n...
详细信息
version control system (VCS) plays an essential role in software supply chain, as it manages code projects and enables efficient collaboration. For a private repository, where source code is a high-profile asset and needs to be protected, VCS' security is extremely important. Traditional (unencrypted or encrypted) VCS solutions rely on a trusted service provider to host the code and enforce access control, which is not realistic enough for real-world threats. If the service provider peep in or the hackers break into the repository, the read & write privilege to the sensitive code is totally lost. Therefore, we consider whether one can relax the assumption on the server by introducing a covert adversary, namely, it may act maliciously, but will not misbehave if it can be caught doing so. However, protecting sensitive code and enforcing access control on a covert adversarial server is a challenging task. Existing encryption-based VCS solutions failed to address this challenge, as they offered limited access control functionalities, introduced heavy key management overhead or storage overhead. Moreover, the crucial feature of compression of the source files were missing in an encrypted and versioned storage. To address these problems, we introduce GRINGOTTS, an end-to-end encrypted VCS, tailored for read & write access control, versioncontrol and source file compression. We present a formal model and propose a scheme with detailed analysis. We also implement and evaluate GRINGOTTS on top-10 most starred code projects on GitHub. The results demonstrate that GRINGOTTS introduces low latency (less than 0.3 s) for commit encryption and decryption, supports fine-grained access control and rich versioncontrol functionalities with practical performance.
As DNA sequencing and synthesis become cheaper and more easily accessible, the scale and complexity of biological engineering projects is set to grow. Yet, although there is an accelerating convergence between biotech...
详细信息
As DNA sequencing and synthesis become cheaper and more easily accessible, the scale and complexity of biological engineering projects is set to grow. Yet, although there is an accelerating convergence between biotechnology and digital technology, a deficit in software and laboratory techniques diminishes the ability to make biotechnology more agile, reproducible, and transparent while, at the same time, limiting the security and safety of synthetic biology constructs. To partially address some of these problems, this paper presents an approach for physically linking engineered cells to their digital footprint-we called it digital twinning. This enables the tracking of the entire engineering history of a cell line in a specialized version control system for collaborative strain engineering via simple barcoding protocols.
Object-oriented technologies are frequently used to design and implement distributed applications. Object replication is a well-established approach to increase the dependability for such applications. Generic replica...
详细信息
ISBN:
(数字)9783540686422
ISBN:
(纸本)9783540686392
Object-oriented technologies are frequently used to design and implement distributed applications. Object replication is a well-established approach to increase the dependability for such applications. Generic replication infrastructures often fail to meet non-standard application-specific requirements such as support for client-side computing. Our FTflex replication infrastructure combines the fragmented object model with semantic annotations in order to customize and optimize replication mechanisms, and thus provides a more flexible replication infrastructure. This paper presents DiGit, a replicated version control system based on the architecture of Git. DiGit is implemented with the help of the FTflex infrastructure for object replication. The contributions of this paper are twofold. First, the paper evaluates the fitness of our replication framework for a specific, complex application. We identify two advantages of the replication infrastructure: the ability to provide client-side code as a conceptually integral part of a remote service, and support for an optimized protocol for remote interaction. As a second contribution, the paper presents a powerful replicated version control system and shows the lessons learned from using object replication in such a system.
In this paper two different techniques of steganography using change tracking are discussed. First method, steganography using change tracking technique uses change tracking feature of MS Word for data hiding. Message...
详细信息
ISBN:
(纸本)9783642178801
In this paper two different techniques of steganography using change tracking are discussed. First method, steganography using change tracking technique uses change tracking feature of MS Word for data hiding. Message embedding and extraction in MS Word document is discussed briefly along with the example. Second method, steganography using version control system is also proposed in this paper. It elaborates the idea of using the version control system for data hiding. One of the most important features provided by version control systems is versioncontrol. It helps to keep track of changes by maintaining multiple versions of the project depending on the requirements. One of the versions of this project can be utilized as a cover medium for data hiding. Generally a project consists of many files. Hence long message can be fragmented and one message fragment can be embedded in one file of the project. Experimentation is carried out using Microsoft Visual Source Safe as the version control system and C# sample project as the cover project.
For enterprise application various software development models are available. Out of these available software development models, micro-services architecture has gained a lot of popularity. The micro-service architect...
详细信息
ISBN:
(纸本)9781665476478
For enterprise application various software development models are available. Out of these available software development models, micro-services architecture has gained a lot of popularity. The micro-service architecture fits well to an enterprise applications which are usually complex in nature and requires out of box scalability along with low latency. Microservices in containerized cloud environment are very useful for enterprise applications. From the software development perspective in a software industry it is also very crucial to identify and rectify the defects at an early development phase rather than at production environment level. Few earlier published works had a focus on micro-services while few others on the issues and challenges of Kubernetes. However, to the best of our knowledge, the relationship between these two has not been worked out earlier. This is the key focus area of this work. This work focuses on identifying the defects at an early stage for micro-services that are deployed on Kubernetes. Few basic guidelines are proposed for a micro-service architecture based on automation, fault design, design philosophy, naming convention, monitoring and warning.
Immersive authoring tools allow users to intuitively create and manipulate 3D scenes while immersed in Virtual Reality (VR). Collaboratively designing these scenes is a creative process that involves numerous edits, e...
详细信息
ISBN:
(纸本)9781450394215
Immersive authoring tools allow users to intuitively create and manipulate 3D scenes while immersed in Virtual Reality (VR). Collaboratively designing these scenes is a creative process that involves numerous edits, explorations of design alternatives, and frequent communication with collaborators. version control systems (VCSs) help users achieve this by keeping track of the version history and creating a shared hub for communication. However, most VCSs are unsuitable for managing the version history of VR content because their underlying line diferencing mechanism is designed for text and lacks the semantic information of 3D content;and the widely adopted commit model is designed for asynchronous collaboration rather than real-time awareness and communication in VR. We introduce VRGit, a new collaborative VCS that visualizes version history as a directed graph composed of 3D miniatures, and enables users to easily navigate versions, create branches, as well as preview and reuse versions directly in VR. Beyond individual uses, VRGit also facilitates synchronous collaboration in VR by providing awareness of users' activities and version history through portals and shared history visualizations. In a lab study with 14 participants (seven groups), we demonstrate that VRGit enables users to easily manage version history both individually and collaboratively in VR.
In agile software development projects, software engineers prioritize implementation over documentation to eliminate needless documentation. Is the cost of missing documentation greater than the cost of producing unne...
详细信息
ISBN:
(纸本)9781538631911
In agile software development projects, software engineers prioritize implementation over documentation to eliminate needless documentation. Is the cost of missing documentation greater than the cost of producing unnecessary or unused documentation? Even without these documents, software engineers maintain other software artifacts, such as tickets in an issue tracking system (ITS) or source code committed to a version control system (VCS). Do these artifacts contain the necessary knowledge? In this paper, we examine undocumented knowledge in an agile software development project at NTT. For our study, we collected 159 commit logs in a VCS and 102 tickets in the ITS from the three-month period of the project. We propose a ticket-commit network chart (TCC) that visually represents time-series commit activities along with filed issue tickets. We also implement a tool to generate the TCC using both commit log and ticket data. Our study revealed that in 16% of all commits, software engineers committed source code to the VCS without a corresponding issue ticket in the ITS. Had these commits been based on individual issue tickets, these "unissued" tickets would have accounted for 20% of all tickets. Software users and requirements engineers also evaluated the contents of these commits and found that 42% of the "unissued" tickets were required for software operation and 23% of those were required for requirements modification.
In iterative software development methodology, a version control system is used in order to record and manage modification histories of products such as source codes and models described in diagrams. However, conventi...
详细信息
In iterative software development methodology, a version control system is used in order to record and manage modification histories of products such as source codes and models described in diagrams. However, conventional version control systems cannot manage the models as a logical unit because the systems mainly handle source codes. In this paper, we propose a versioncontrol technique for handling diagrammatical models as logical units. Then we illustrate the feasibility of our approach with the implementation of versioncontrol functions of a meta-CASE tool that is able to generate a modeling tool in order to deal with various diagrams.
Software is the most vigorous product of Information Technology. The face of software development has changed unprecedentedly and become more custom over a period of time. If we go back 15 years, one can see software ...
详细信息
ISBN:
(纸本)9781509030125
Software is the most vigorous product of Information Technology. The face of software development has changed unprecedentedly and become more custom over a period of time. If we go back 15 years, one can see software were developed for supporting workstations in organizations with centralized database over multiple locations, but rise in international work standard in turn has made software development more competitive and challenging. As a result, software development happens to take place in a collaborative platform - programmers collaborate their code to a central point from multiple locations. How can programmers collaborate? Well, Source code management tools (version control system) tackles every single barrier associated with managing source code such as: Integrity, robustness, synchronization, linearity, and revision control. versioncontrol adhere unique functionalities: commit, push/pull to and from code base, snapshots that makes managing source code fairly simple. However conventional version control system can't manage models and there are problems in syncing main repository and local working copy. This work draws shortcoming of 'Git' as a version control system in managing source code and gives insight into Git's association with source code taking line based approach that makes difficult to versioncontrol model diagrams with software development. The limitations are identified and the model is proposed to facilitate enhancement in future.
The Shanghai Synchrotron Radiation Facility (SSRF) is the first third generation synchrotron light source in China. Presently, the SSRF contains fourteen operational beamlines, but there will be more than 30 beamlines...
详细信息
ISBN:
(纸本)9781728101200
The Shanghai Synchrotron Radiation Facility (SSRF) is the first third generation synchrotron light source in China. Presently, the SSRF contains fourteen operational beamlines, but there will be more than 30 beamlines at the SSRF by the end of 2021. The rapid development of the beamlines has massively increased the beamline control source code, which further creates a tremendous challenge in managing the source code. Traditionally, at the SSRF, beamline engineers realize the versioncontrol of source code by making a full copy of the source files before making any new edits. However, due to a massive increase in source code volume, such a versioncontrol is no longer possible. Therefore, a modern version control system is needed. This paper presents a Git-based version control system intended for the SSRF, demonstrates the framework and workflow used to realize the proposed versioncontrol, and presents the components of Git repositories. In addition, GitHub is used to share the common EPICS software modules of the SSRF with the scientific community.
暂无评论