Sciweavers

Share
AOSD
2010
ACM

Disambiguating aspect-oriented security policies

9 years 5 months ago
Disambiguating aspect-oriented security policies
Many software security policies can be encoded as aspects that identify and guard security-relevant program operations. Bugs in these aspectually-implemented security policies often manifest as ambiguities in which aspects provide conflicting advice for a shared join point. The design and implementation of a detection algorithm for such ambiguities is presented and evaluated. The algorithm reduces advice conflict detection to a combination of boolean satisfiability, linear programming, and regular language non-emptiness. Case studies demonstrate that the analysis is useful for debugging aspect-oriented security policies for several existing aspectual security systems. Categories and Subject Descriptors D.2.4 [Software Engineering]: Software/Program Verification; D.3.2 [Programming Languages]: Language Classifications—Constraint and logic languages; D.4.6 [Operating Systems]: Security and Protection General Terms Languages, Security Keywords Aspect-oriented programming, declarat...
Micah Jones, Kevin W. Hamlen
Added 17 May 2010
Updated 17 May 2010
Type Conference
Year 2010
Where AOSD
Authors Micah Jones, Kevin W. Hamlen
Comments (0)
books