New aspect-oriented constructs for security hardening concerns
In this paper, we present new pointcuts and primitives to Aspect-Oriented Programming (AOP) languages that are needed for systematic hardening of security concerns. The two proposed pointcuts allow to identify particular join points in a program's control-flow graph (CFG). The first one is the...
محفوظ في:
| المؤلف الرئيسي: | |
|---|---|
| مؤلفون آخرون: | , , |
| التنسيق: | article |
| منشور في: |
2009
|
| الوصول للمادة أونلاين: | http://hdl.handle.net/10725/2683 http://dx.doi.org/10.1016/j.cose.2009.02.003 http://www.sciencedirect.com/science/article/pii/S016740480900011X |
| الوسوم: |
إضافة وسم
لا توجد وسوم, كن أول من يضع وسما على هذه التسجيلة!
|
| _version_ | 1864513459062833152 |
|---|---|
| author | Mourad, Azzam |
| author2 | Soeanu, Andrei Laverdiere, Marc-André Debbabi, Mourad |
| author2_role | author author author |
| author_facet | Mourad, Azzam Soeanu, Andrei Laverdiere, Marc-André Debbabi, Mourad |
| author_role | author |
| dc.creator.none.fl_str_mv | Mourad, Azzam Soeanu, Andrei Laverdiere, Marc-André Debbabi, Mourad |
| dc.date.none.fl_str_mv | 2009 2015-11-25T10:03:14Z 2015-11-25T10:03:14Z 2016-05-19 |
| dc.identifier.none.fl_str_mv | http://hdl.handle.net/10725/2683 http://dx.doi.org/10.1016/j.cose.2009.02.003 Mourad, A., Soeanu, A., Laverdière, M. A., & Debbabi, M. (2009). New aspect-oriented constructs for security hardening concerns. Computers & security, 28(6), 341-358. http://www.sciencedirect.com/science/article/pii/S016740480900011X |
| dc.language.none.fl_str_mv | en |
| dc.relation.none.fl_str_mv | Computers & Security |
| dc.rights.*.fl_str_mv | info:eu-repo/semantics/openAccess |
| dc.title.none.fl_str_mv | New aspect-oriented constructs for security hardening concerns |
| dc.type.none.fl_str_mv | Article info:eu-repo/semantics/publishedVersion info:eu-repo/semantics/article |
| description | In this paper, we present new pointcuts and primitives to Aspect-Oriented Programming (AOP) languages that are needed for systematic hardening of security concerns. The two proposed pointcuts allow to identify particular join points in a program's control-flow graph (CFG). The first one is the GAFlow, Closest Guaranteed Ancestor, which returns the closest ancestor join point to the pointcuts of interest that is on all their runtime paths. The second one is the GDFlow, Closest Guaranteed Descendant, which returns the closest child join point that can be reached by all paths starting from the pointcut of interest. The two proposed primitives are called ExportParameter and ImportParameter and are used to pass parameters between two pointcuts. They allow to analyze a program's call graph in order to determine how to change function signatures for passing the parameters associated with a given security hardening. We find these pointcuts and primitives to be necessary because they are needed to perform many security hardening practices and, to the best of our knowledge, none of the existing ones can provide their functionalities. Moreover, we show the viability and correctness of the proposed pointcuts and primitives by elaborating and implementing their algorithms and presenting the result of explanatory case studies. |
| eu_rights_str_mv | openAccess |
| format | article |
| id | LAURepo_c8df3aa3ad7ac90dfbab4b940aaaad15 |
| identifier_str_mv | Mourad, A., Soeanu, A., Laverdière, M. A., & Debbabi, M. (2009). New aspect-oriented constructs for security hardening concerns. Computers & security, 28(6), 341-358. |
| language_invalid_str_mv | en |
| network_acronym_str | LAURepo |
| network_name_str | Lebanese American University repository |
| oai_identifier_str | oai:laur.lau.edu.lb:10725/2683 |
| publishDate | 2009 |
| repository.mail.fl_str_mv | |
| repository.name.fl_str_mv | |
| repository_id_str | |
| spelling | New aspect-oriented constructs for security hardening concernsMourad, AzzamSoeanu, AndreiLaverdiere, Marc-AndréDebbabi, MouradIn this paper, we present new pointcuts and primitives to Aspect-Oriented Programming (AOP) languages that are needed for systematic hardening of security concerns. The two proposed pointcuts allow to identify particular join points in a program's control-flow graph (CFG). The first one is the GAFlow, Closest Guaranteed Ancestor, which returns the closest ancestor join point to the pointcuts of interest that is on all their runtime paths. The second one is the GDFlow, Closest Guaranteed Descendant, which returns the closest child join point that can be reached by all paths starting from the pointcut of interest. The two proposed primitives are called ExportParameter and ImportParameter and are used to pass parameters between two pointcuts. They allow to analyze a program's call graph in order to determine how to change function signatures for passing the parameters associated with a given security hardening. We find these pointcuts and primitives to be necessary because they are needed to perform many security hardening practices and, to the best of our knowledge, none of the existing ones can provide their functionalities. Moreover, we show the viability and correctness of the proposed pointcuts and primitives by elaborating and implementing their algorithms and presenting the result of explanatory case studies.PublishedN/A2015-11-25T10:03:14Z2015-11-25T10:03:14Z20092016-05-19Articleinfo:eu-repo/semantics/publishedVersioninfo:eu-repo/semantics/articlehttp://hdl.handle.net/10725/2683http://dx.doi.org/10.1016/j.cose.2009.02.003Mourad, A., Soeanu, A., Laverdière, M. A., & Debbabi, M. (2009). New aspect-oriented constructs for security hardening concerns. Computers & security, 28(6), 341-358.http://www.sciencedirect.com/science/article/pii/S016740480900011XenComputers & Securityinfo:eu-repo/semantics/openAccessoai:laur.lau.edu.lb:10725/26832021-03-19T09:59:49Z |
| spellingShingle | New aspect-oriented constructs for security hardening concerns Mourad, Azzam |
| status_str | publishedVersion |
| title | New aspect-oriented constructs for security hardening concerns |
| title_full | New aspect-oriented constructs for security hardening concerns |
| title_fullStr | New aspect-oriented constructs for security hardening concerns |
| title_full_unstemmed | New aspect-oriented constructs for security hardening concerns |
| title_short | New aspect-oriented constructs for security hardening concerns |
| title_sort | New aspect-oriented constructs for security hardening concerns |
| url | http://hdl.handle.net/10725/2683 http://dx.doi.org/10.1016/j.cose.2009.02.003 http://www.sciencedirect.com/science/article/pii/S016740480900011X |