Cross-language weaving approach targeting software security hardening
In this paper, we propose an approach for systematic security hardening of software based on aspect-oriented programming and Gimple language. We also present the first steps towards a formal specification for Gimple weaving together with the implementation methodology of the proposed weaving semanti...
Saved in:
| Main Author: | |
|---|---|
| Other Authors: | , |
| Format: | conferenceObject |
| Published: |
2017
|
| Online Access: | http://hdl.handle.net/10725/5333 http://dx.doi.org/10.1109/PST.2008.22 http://libraries.lau.edu.lb/research/laur/terms-of-use/articles.php http://ieeexplore.ieee.org/abstract/document/4641276/ |
| Tags: |
Add Tag
No Tags, Be the first to tag this record!
|
| _version_ | 1864513465796788224 |
|---|---|
| author | Mourad, Azzam |
| author2 | Alhadidi, Dima Debbabi, Mourad |
| author2_role | author author |
| author_facet | Mourad, Azzam Alhadidi, Dima Debbabi, Mourad |
| author_role | author |
| dc.creator.none.fl_str_mv | Mourad, Azzam Alhadidi, Dima Debbabi, Mourad |
| dc.date.none.fl_str_mv | 2017-03-08T13:36:40Z 2017-03-08T13:36:40Z 2017-03-08 |
| dc.identifier.none.fl_str_mv | 9780769533902 http://hdl.handle.net/10725/5333 http://dx.doi.org/10.1109/PST.2008.22 Mourad, A., Alhadidi, D., & Debbabi, M. (2008, October). Cross-language weaving approach targeting software security hardening. In 2008 Sixth Annual Conference on Privacy, Security and Trust (pp. 87-98). IEEE. http://libraries.lau.edu.lb/research/laur/terms-of-use/articles.php http://ieeexplore.ieee.org/abstract/document/4641276/ |
| dc.language.none.fl_str_mv | en |
| dc.publisher.none.fl_str_mv | IEEE |
| dc.rights.*.fl_str_mv | info:eu-repo/semantics/openAccess |
| dc.title.none.fl_str_mv | Cross-language weaving approach targeting software security hardening |
| dc.type.none.fl_str_mv | Conference Paper / Proceeding info:eu-repo/semantics/publishedVersion info:eu-repo/semantics/conferenceObject |
| description | In this paper, we propose an approach for systematic security hardening of software based on aspect-oriented programming and Gimple language. We also present the first steps towards a formal specification for Gimple weaving together with the implementation methodology of the proposed weaving semantics. The primary contribution of this approach is providing the software architects with the capabilities to perform systematic security hardening by applying well-defined solutions and without the need to have expertise in the security solution domain. We explore the viability of our propositions by realizing the weaving semantics for Gimple by implementing it into the GCC compiler and applying our methodologies for systematic security hardening to develop a case study for securing the connections of client applications together with experimental results. |
| eu_rights_str_mv | openAccess |
| format | conferenceObject |
| id | LAURepo_10c20e75b133312b2c6d0af451d59b35 |
| identifier_str_mv | 9780769533902 Mourad, A., Alhadidi, D., & Debbabi, M. (2008, October). Cross-language weaving approach targeting software security hardening. In 2008 Sixth Annual Conference on Privacy, Security and Trust (pp. 87-98). IEEE. |
| language_invalid_str_mv | en |
| network_acronym_str | LAURepo |
| network_name_str | Lebanese American University repository |
| oai_identifier_str | oai:laur.lau.edu.lb:10725/5333 |
| publishDate | 2017 |
| publisher.none.fl_str_mv | IEEE |
| repository.mail.fl_str_mv | |
| repository.name.fl_str_mv | |
| repository_id_str | |
| spelling | Cross-language weaving approach targeting software security hardeningMourad, AzzamAlhadidi, DimaDebbabi, MouradIn this paper, we propose an approach for systematic security hardening of software based on aspect-oriented programming and Gimple language. We also present the first steps towards a formal specification for Gimple weaving together with the implementation methodology of the proposed weaving semantics. The primary contribution of this approach is providing the software architects with the capabilities to perform systematic security hardening by applying well-defined solutions and without the need to have expertise in the security solution domain. We explore the viability of our propositions by realizing the weaving semantics for Gimple by implementing it into the GCC compiler and applying our methodologies for systematic security hardening to develop a case study for securing the connections of client applications together with experimental results.N/AIEEE2017-03-08T13:36:40Z2017-03-08T13:36:40Z2017-03-08Conference Paper / Proceedinginfo:eu-repo/semantics/publishedVersioninfo:eu-repo/semantics/conferenceObject9780769533902http://hdl.handle.net/10725/5333http://dx.doi.org/10.1109/PST.2008.22Mourad, A., Alhadidi, D., & Debbabi, M. (2008, October). Cross-language weaving approach targeting software security hardening. In 2008 Sixth Annual Conference on Privacy, Security and Trust (pp. 87-98). IEEE.http://libraries.lau.edu.lb/research/laur/terms-of-use/articles.phphttp://ieeexplore.ieee.org/abstract/document/4641276/eninfo:eu-repo/semantics/openAccessoai:laur.lau.edu.lb:10725/53332021-03-19T10:03:19Z |
| spellingShingle | Cross-language weaving approach targeting software security hardening Mourad, Azzam |
| status_str | publishedVersion |
| title | Cross-language weaving approach targeting software security hardening |
| title_full | Cross-language weaving approach targeting software security hardening |
| title_fullStr | Cross-language weaving approach targeting software security hardening |
| title_full_unstemmed | Cross-language weaving approach targeting software security hardening |
| title_short | Cross-language weaving approach targeting software security hardening |
| title_sort | Cross-language weaving approach targeting software security hardening |
| url | http://hdl.handle.net/10725/5333 http://dx.doi.org/10.1109/PST.2008.22 http://libraries.lau.edu.lb/research/laur/terms-of-use/articles.php http://ieeexplore.ieee.org/abstract/document/4641276/ |