{"id":"https://openalex.org/W4400978528","doi":"https://doi.org/10.1145/3664476.3670929","title":"Enhancing Secure Deployment with Ansible: A Focus on Least Privilege and Automation for Linux","display_name":"Enhancing Secure Deployment with Ansible: A Focus on Least Privilege and Automation for Linux","publication_year":2024,"publication_date":"2024-07-25","ids":{"openalex":"https://openalex.org/W4400978528","doi":"https://doi.org/10.1145/3664476.3670929"},"language":"en","primary_location":{"id":"doi:10.1145/3664476.3670929","is_oa":false,"landing_page_url":"https://doi.org/10.1145/3664476.3670929","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 19th International Conference on Availability, Reliability and Security","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":true,"oa_status":"green","oa_url":"https://hal.science/hal-04663452v1/document","any_repository_has_fulltext":true},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5072042274","display_name":"Eddie Billoir","orcid":"https://orcid.org/0000-0001-5292-3008"},"institutions":[{"id":"https://openalex.org/I1294671590","display_name":"Centre National de la Recherche Scientifique","ror":"https://ror.org/02feahw73","country_code":"FR","type":"government","lineage":["https://openalex.org/I1294671590"]},{"id":"https://openalex.org/I134560555","display_name":"Universit\u00e9 Toulouse III - Paul Sabatier","ror":"https://ror.org/02v6kpv12","country_code":"FR","type":"education","lineage":["https://openalex.org/I134560555"]},{"id":"https://openalex.org/I17866349","display_name":"Universit\u00e9 F\u00e9d\u00e9rale de Toulouse Midi-Pyr\u00e9n\u00e9es","ror":"https://ror.org/004raaa70","country_code":"FR","type":"education","lineage":["https://openalex.org/I17866349"]},{"id":"https://openalex.org/I3131550300","display_name":"Universit\u00e9 Toulouse-I-Capitole","ror":"https://ror.org/0443n9e75","country_code":"FR","type":"education","lineage":["https://openalex.org/I3131550300"]},{"id":"https://openalex.org/I4210119061","display_name":"Institut de Recherche en Informatique de Toulouse","ror":"https://ror.org/01rx4qw44","country_code":"FR","type":"facility","lineage":["https://openalex.org/I1294671590","https://openalex.org/I205747304","https://openalex.org/I205747304","https://openalex.org/I4210119061","https://openalex.org/I4210152422","https://openalex.org/I4387153255","https://openalex.org/I4405258862","https://openalex.org/I4405259414"]},{"id":"https://openalex.org/I4210152422","display_name":"Universit\u00e9 Toulouse - Jean Jaur\u00e8s","ror":"https://ror.org/04ezk3x31","country_code":"FR","type":"education","lineage":["https://openalex.org/I4210152422"]},{"id":"https://openalex.org/I4210160189","display_name":"Institut Polytechnique de Bordeaux","ror":"https://ror.org/054qv7y42","country_code":"FR","type":"education","lineage":["https://openalex.org/I4210160189"]}],"countries":["FR"],"is_corresponding":false,"raw_author_name":"Eddie Billoir","raw_affiliation_strings":["IRIT, Universit\u00e9 de Toulouse, CNRS, Toulouse INP, UT3, France and AIRBUS Protect, France","IRIT-SIERA - Service IntEgration and netwoRk Administration (IRIT\r\n118 Route de Narbonne\r\n31062 Toulouse Cedex 9 - France)"],"raw_orcid":"https://orcid.org/0000-0001-5292-3008","affiliations":[{"raw_affiliation_string":"IRIT, Universit\u00e9 de Toulouse, CNRS, Toulouse INP, UT3, France and AIRBUS Protect, France","institution_ids":["https://openalex.org/I4210152422","https://openalex.org/I1294671590","https://openalex.org/I134560555","https://openalex.org/I17866349","https://openalex.org/I4210119061","https://openalex.org/I3131550300","https://openalex.org/I4210160189"]},{"raw_affiliation_string":"IRIT-SIERA - Service IntEgration and netwoRk Administration (IRIT\r\n118 Route de Narbonne\r\n31062 Toulouse Cedex 9 - France)","institution_ids":["https://openalex.org/I4210152422","https://openalex.org/I134560555","https://openalex.org/I4210119061","https://openalex.org/I3131550300","https://openalex.org/I4210160189"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5001626345","display_name":"Romain Laborde","orcid":"https://orcid.org/0000-0002-0943-6180"},"institutions":[{"id":"https://openalex.org/I1294671590","display_name":"Centre National de la Recherche Scientifique","ror":"https://ror.org/02feahw73","country_code":"FR","type":"government","lineage":["https://openalex.org/I1294671590"]},{"id":"https://openalex.org/I134560555","display_name":"Universit\u00e9 Toulouse III - Paul Sabatier","ror":"https://ror.org/02v6kpv12","country_code":"FR","type":"education","lineage":["https://openalex.org/I134560555"]},{"id":"https://openalex.org/I17866349","display_name":"Universit\u00e9 F\u00e9d\u00e9rale de Toulouse Midi-Pyr\u00e9n\u00e9es","ror":"https://ror.org/004raaa70","country_code":"FR","type":"education","lineage":["https://openalex.org/I17866349"]},{"id":"https://openalex.org/I3131550300","display_name":"Universit\u00e9 Toulouse-I-Capitole","ror":"https://ror.org/0443n9e75","country_code":"FR","type":"education","lineage":["https://openalex.org/I3131550300"]},{"id":"https://openalex.org/I4210119061","display_name":"Institut de Recherche en Informatique de Toulouse","ror":"https://ror.org/01rx4qw44","country_code":"FR","type":"facility","lineage":["https://openalex.org/I1294671590","https://openalex.org/I205747304","https://openalex.org/I205747304","https://openalex.org/I4210119061","https://openalex.org/I4210152422","https://openalex.org/I4387153255","https://openalex.org/I4405258862","https://openalex.org/I4405259414"]},{"id":"https://openalex.org/I4210152422","display_name":"Universit\u00e9 Toulouse - Jean Jaur\u00e8s","ror":"https://ror.org/04ezk3x31","country_code":"FR","type":"education","lineage":["https://openalex.org/I4210152422"]},{"id":"https://openalex.org/I4210160189","display_name":"Institut Polytechnique de Bordeaux","ror":"https://ror.org/054qv7y42","country_code":"FR","type":"education","lineage":["https://openalex.org/I4210160189"]}],"countries":["FR"],"is_corresponding":false,"raw_author_name":"Romain Laborde","raw_affiliation_strings":["IRIT, Universit\u00e9 de Toulouse, CNRS, Toulouse INP, UT3, France","IRIT-SIERA - Service IntEgration and netwoRk Administration (IRIT\r\n118 Route de Narbonne\r\n31062 Toulouse Cedex 9 - France)"],"raw_orcid":"https://orcid.org/0000-0002-0943-6180","affiliations":[{"raw_affiliation_string":"IRIT, Universit\u00e9 de Toulouse, CNRS, Toulouse INP, UT3, France","institution_ids":["https://openalex.org/I17866349","https://openalex.org/I134560555","https://openalex.org/I3131550300","https://openalex.org/I4210160189","https://openalex.org/I4210152422","https://openalex.org/I1294671590","https://openalex.org/I4210119061"]},{"raw_affiliation_string":"IRIT-SIERA - Service IntEgration and netwoRk Administration (IRIT\r\n118 Route de Narbonne\r\n31062 Toulouse Cedex 9 - France)","institution_ids":["https://openalex.org/I4210152422","https://openalex.org/I134560555","https://openalex.org/I4210119061","https://openalex.org/I3131550300","https://openalex.org/I4210160189"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5041476109","display_name":"Ahmad Samer Wazan","orcid":"https://orcid.org/0000-0002-1611-2870"},"institutions":[{"id":"https://openalex.org/I91044093","display_name":"Zayed University","ror":"https://ror.org/03snqfa66","country_code":"AE","type":"education","lineage":["https://openalex.org/I91044093"]}],"countries":["AE"],"is_corresponding":false,"raw_author_name":"Ahmad Samer Wazan","raw_affiliation_strings":["Zayed University, France","Zayed University (P.O. Box 144534 - Abu Dhabi - United Arab Emirates)"],"raw_orcid":"https://orcid.org/0000-0002-1611-2870","affiliations":[{"raw_affiliation_string":"Zayed University, France","institution_ids":[]},{"raw_affiliation_string":"Zayed University (P.O. Box 144534 - Abu Dhabi - United Arab Emirates)","institution_ids":["https://openalex.org/I91044093"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5091999580","display_name":"Yves R\u00fctschl\u00e9","orcid":null},"institutions":[{"id":"https://openalex.org/I112991645","display_name":"Airbus (France)","ror":"https://ror.org/023qdcg29","country_code":"FR","type":"company","lineage":["https://openalex.org/I112991645","https://openalex.org/I4210121748"]}],"countries":["FR"],"is_corresponding":false,"raw_author_name":"Yves Rutschle","raw_affiliation_strings":["AIRBUS Protect, France","AIRBUS Protect (36 Rue Raymond Grimaud, 31700 Blagnac - France)"],"raw_orcid":"https://orcid.org/0009-0007-7365-2105","affiliations":[{"raw_affiliation_string":"AIRBUS Protect, France","institution_ids":["https://openalex.org/I112991645"]},{"raw_affiliation_string":"AIRBUS Protect (36 Rue Raymond Grimaud, 31700 Blagnac - France)","institution_ids":["https://openalex.org/I112991645"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5064062710","display_name":"Abdelmalek Benzekri","orcid":"https://orcid.org/0000-0001-8236-8690"},"institutions":[{"id":"https://openalex.org/I1294671590","display_name":"Centre National de la Recherche Scientifique","ror":"https://ror.org/02feahw73","country_code":"FR","type":"government","lineage":["https://openalex.org/I1294671590"]},{"id":"https://openalex.org/I134560555","display_name":"Universit\u00e9 Toulouse III - Paul Sabatier","ror":"https://ror.org/02v6kpv12","country_code":"FR","type":"education","lineage":["https://openalex.org/I134560555"]},{"id":"https://openalex.org/I17866349","display_name":"Universit\u00e9 F\u00e9d\u00e9rale de Toulouse Midi-Pyr\u00e9n\u00e9es","ror":"https://ror.org/004raaa70","country_code":"FR","type":"education","lineage":["https://openalex.org/I17866349"]},{"id":"https://openalex.org/I3131550300","display_name":"Universit\u00e9 Toulouse-I-Capitole","ror":"https://ror.org/0443n9e75","country_code":"FR","type":"education","lineage":["https://openalex.org/I3131550300"]},{"id":"https://openalex.org/I4210119061","display_name":"Institut de Recherche en Informatique de Toulouse","ror":"https://ror.org/01rx4qw44","country_code":"FR","type":"facility","lineage":["https://openalex.org/I1294671590","https://openalex.org/I205747304","https://openalex.org/I205747304","https://openalex.org/I4210119061","https://openalex.org/I4210152422","https://openalex.org/I4387153255","https://openalex.org/I4405258862","https://openalex.org/I4405259414"]},{"id":"https://openalex.org/I4210152422","display_name":"Universit\u00e9 Toulouse - Jean Jaur\u00e8s","ror":"https://ror.org/04ezk3x31","country_code":"FR","type":"education","lineage":["https://openalex.org/I4210152422"]},{"id":"https://openalex.org/I4210160189","display_name":"Institut Polytechnique de Bordeaux","ror":"https://ror.org/054qv7y42","country_code":"FR","type":"education","lineage":["https://openalex.org/I4210160189"]}],"countries":["FR"],"is_corresponding":false,"raw_author_name":"Abdelmalek Benzekri","raw_affiliation_strings":["IRIT, Universit\u00e9 de Toulouse, CNRS, Toulouse INP, UT3, France","IRIT-SIERA - Service IntEgration and netwoRk Administration (IRIT\r\n118 Route de Narbonne\r\n31062 Toulouse Cedex 9 - France)"],"raw_orcid":"https://orcid.org/0000-0001-8236-8690","affiliations":[{"raw_affiliation_string":"IRIT, Universit\u00e9 de Toulouse, CNRS, Toulouse INP, UT3, France","institution_ids":["https://openalex.org/I17866349","https://openalex.org/I134560555","https://openalex.org/I3131550300","https://openalex.org/I4210160189","https://openalex.org/I4210152422","https://openalex.org/I1294671590","https://openalex.org/I4210119061"]},{"raw_affiliation_string":"IRIT-SIERA - Service IntEgration and netwoRk Administration (IRIT\r\n118 Route de Narbonne\r\n31062 Toulouse Cedex 9 - France)","institution_ids":["https://openalex.org/I4210152422","https://openalex.org/I134560555","https://openalex.org/I4210119061","https://openalex.org/I3131550300","https://openalex.org/I4210160189"]}]}],"institutions":[],"countries_distinct_count":2,"institutions_distinct_count":5,"corresponding_author_ids":[],"corresponding_institution_ids":[],"apc_list":null,"apc_paid":null,"fwci":4.9448,"has_fulltext":true,"cited_by_count":5,"citation_normalized_percentile":{"value":0.94885655,"is_in_top_1_percent":false,"is_in_top_10_percent":true},"cited_by_percentile_year":{"min":96,"max":99},"biblio":{"volume":null,"issue":null,"first_page":"1","last_page":"7"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10927","display_name":"Access Control and Trust","score":0.9998000264167786,"subfield":{"id":"https://openalex.org/subfields/3312","display_name":"Sociology and Political Science"},"field":{"id":"https://openalex.org/fields/33","display_name":"Social Sciences"},"domain":{"id":"https://openalex.org/domains/2","display_name":"Social Sciences"}},"topics":[{"id":"https://openalex.org/T10927","display_name":"Access Control and Trust","score":0.9998000264167786,"subfield":{"id":"https://openalex.org/subfields/3312","display_name":"Sociology and Political Science"},"field":{"id":"https://openalex.org/fields/33","display_name":"Social Sciences"},"domain":{"id":"https://openalex.org/domains/2","display_name":"Social Sciences"}},{"id":"https://openalex.org/T11424","display_name":"Security and Verification in Computing","score":0.9994999766349792,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10237","display_name":"Cryptography and Data Security","score":0.9977999925613403,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/software-deployment","display_name":"Software deployment","score":0.8198209404945374},{"id":"https://openalex.org/keywords/focus","display_name":"Focus (optics)","score":0.6494005918502808},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.603576123714447},{"id":"https://openalex.org/keywords/privilege","display_name":"Privilege (computing)","score":0.5866220593452454},{"id":"https://openalex.org/keywords/automation","display_name":"Automation","score":0.5543792843818665},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.5040665864944458},{"id":"https://openalex.org/keywords/operating-system","display_name":"Operating system","score":0.4455585181713104},{"id":"https://openalex.org/keywords/embedded-system","display_name":"Embedded system","score":0.3743162155151367},{"id":"https://openalex.org/keywords/software-engineering","display_name":"Software engineering","score":0.3377137780189514},{"id":"https://openalex.org/keywords/engineering","display_name":"Engineering","score":0.20491015911102295}],"concepts":[{"id":"https://openalex.org/C105339364","wikidata":"https://www.wikidata.org/wiki/Q2297740","display_name":"Software deployment","level":2,"score":0.8198209404945374},{"id":"https://openalex.org/C192209626","wikidata":"https://www.wikidata.org/wiki/Q190909","display_name":"Focus (optics)","level":2,"score":0.6494005918502808},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.603576123714447},{"id":"https://openalex.org/C2780138299","wikidata":"https://www.wikidata.org/wiki/Q3404265","display_name":"Privilege (computing)","level":2,"score":0.5866220593452454},{"id":"https://openalex.org/C115901376","wikidata":"https://www.wikidata.org/wiki/Q184199","display_name":"Automation","level":2,"score":0.5543792843818665},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.5040665864944458},{"id":"https://openalex.org/C111919701","wikidata":"https://www.wikidata.org/wiki/Q9135","display_name":"Operating system","level":1,"score":0.4455585181713104},{"id":"https://openalex.org/C149635348","wikidata":"https://www.wikidata.org/wiki/Q193040","display_name":"Embedded system","level":1,"score":0.3743162155151367},{"id":"https://openalex.org/C115903868","wikidata":"https://www.wikidata.org/wiki/Q80993","display_name":"Software engineering","level":1,"score":0.3377137780189514},{"id":"https://openalex.org/C127413603","wikidata":"https://www.wikidata.org/wiki/Q11023","display_name":"Engineering","level":0,"score":0.20491015911102295},{"id":"https://openalex.org/C120665830","wikidata":"https://www.wikidata.org/wiki/Q14620","display_name":"Optics","level":1,"score":0.0},{"id":"https://openalex.org/C121332964","wikidata":"https://www.wikidata.org/wiki/Q413","display_name":"Physics","level":0,"score":0.0},{"id":"https://openalex.org/C78519656","wikidata":"https://www.wikidata.org/wiki/Q101333","display_name":"Mechanical engineering","level":1,"score":0.0}],"mesh":[],"locations_count":2,"locations":[{"id":"doi:10.1145/3664476.3670929","is_oa":false,"landing_page_url":"https://doi.org/10.1145/3664476.3670929","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 19th International Conference on Availability, Reliability and Security","raw_type":"proceedings-article"},{"id":"pmh:oai:HAL:hal-04663452v1","is_oa":true,"landing_page_url":"https://hal.science/hal-04663452","pdf_url":"https://hal.science/hal-04663452v1/document","source":{"id":"https://openalex.org/S4306402512","display_name":"HAL (Le Centre pour la Communication Scientifique Directe)","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I1294671590","host_organization_name":"Centre National de la Recherche Scientifique","host_organization_lineage":["https://openalex.org/I1294671590"],"host_organization_lineage_names":[],"type":"repository"},"license":null,"license_id":null,"version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"https://www.ares-conference.eu/asod","raw_type":"Conference papers"}],"best_oa_location":{"id":"pmh:oai:HAL:hal-04663452v1","is_oa":true,"landing_page_url":"https://hal.science/hal-04663452","pdf_url":"https://hal.science/hal-04663452v1/document","source":{"id":"https://openalex.org/S4306402512","display_name":"HAL (Le Centre pour la Communication Scientifique Directe)","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I1294671590","host_organization_name":"Centre National de la Recherche Scientifique","host_organization_lineage":["https://openalex.org/I1294671590"],"host_organization_lineage_names":[],"type":"repository"},"license":null,"license_id":null,"version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"https://www.ares-conference.eu/asod","raw_type":"Conference papers"},"sustainable_development_goals":[],"awards":[],"funders":[],"has_content":{"grobid_xml":true,"pdf":true},"content_urls":{"pdf":"https://content.openalex.org/works/W4400978528.pdf","grobid_xml":"https://content.openalex.org/works/W4400978528.grobid-xml"},"referenced_works_count":6,"referenced_works":["https://openalex.org/W2095881341","https://openalex.org/W2143049370","https://openalex.org/W2154765153","https://openalex.org/W2976189582","https://openalex.org/W3173706523","https://openalex.org/W4388569238"],"related_works":["https://openalex.org/W2770234245","https://openalex.org/W96612179","https://openalex.org/W4229499248","https://openalex.org/W2566006169","https://openalex.org/W1567818861","https://openalex.org/W2987774938","https://openalex.org/W4256492088","https://openalex.org/W632915154","https://openalex.org/W2055733372","https://openalex.org/W3022067003"],"abstract_inverted_index":{"As":[0],"organisations":[1],"increasingly":[2],"adopt":[3],"Infrastructure":[4],"as":[5],"Code":[6],"(IaC),":[7],"ensuring":[8],"secure":[9],"deployment":[10],"practices":[11],"becomes":[12],"paramount.":[13],"Ansible":[14,28,59],"is":[15,29],"a":[16,43],"well-known":[17],"open-source":[18],"and":[19],"modular":[20],"tool":[21],"for":[22],"automating":[23],"IT":[24],"management":[25],"tasks.":[26,60],"However,":[27],"subject":[30],"to":[31,50,58,69],"supply-chain":[32],"attacks":[33],"that":[34,46],"can":[35],"compromise":[36],"all":[37],"managed":[38],"hosts.":[39],"This":[40],"article":[41],"presents":[42],"semi-automated":[44],"process":[45],"improves":[47],"Ansible-based":[48],"deployments":[49],"have":[51],"fine-grained":[52],"control":[53],"on":[54],"administrative":[55],"privileges":[56],"granted":[57],"We":[61],"describe":[62],"the":[63,66,74,77],"integration":[64],"of":[65,76],"RootAsRole":[67],"framework":[68],"Ansible.":[70],"Finally,":[71],"we":[72],"analyse":[73],"limit":[75],"current":[78],"implementation.":[79]},"counts_by_year":[{"year":2026,"cited_by_count":2},{"year":2025,"cited_by_count":3}],"updated_date":"2026-06-11T09:08:48.828518","created_date":"2025-10-10T00:00:00"}