@InCollection{	  brucker.ea:cvs-server:2002,
  url		= {http://www.brucker.ch/bibliography/abstract/brucker.ea-cvs-server-2002}
		  ,
  author	= {Achim D. Brucker and Frank Rittinger and Burkhart Wolff},
  title		= {The {CVS}-Server Case Study: A Formalized Security
		  Architecture},
  editor	= {Dominik Haneberg and Gerhard Schellhorn and Wolfgang
		  Reif},
  booktitle	= {FM-TOOLS 2002},
  classification= {proceedings},
  year		= 2002,
  series	= {Technical Report},
  number	= {2002--11},
  pages		= {47--52},
  month		= jul,
  organization	= {University Augsburg},
  address	= {Augsburg},
  pdf		= {http://www.brucker.ch/bibliography/download/2002/fmtools_cvs_02.pdf}
		  ,
  language	= {USenglish},
  abstract	= {CVS is a widely known version management system.
		  Configured in server mode, it can be used for the
		  distributed development of software as well as its
		  distribution from a central database called the
		  \emph{repository}. In this setting, a number of security
		  mechanisms have to be integrated into the CVS-server
		  architecture.
		  
		  We present an abstract formal model of the access control
		  aspects of a CVS-server architecture enforcing a role-based
		  access control on the data in the repository. This abstract
		  architecture is refined to an implementation architecture,
		  which represents (an abstraction of) a concrete CVS-server
		  configuration running in a POSIX/UNIX environment.
		  
		  Both the abstract as well as the concrete architecture are
		  specified in the language Z. The specification is compiled
		  to HOL-Z, such that refinement proofs for this case study
		  can be done in Isabelle/HOL. },
  project	= {FSA}
}