.

An aspect-oriented approach for the systematic security hardening of code

LAUR Repository

Show simple item record

dc.contributor.author Mourad, Azzam
dc.contributor.author Laverdiere, Marc-André
dc.contributor.author Debbabi, Mourad
dc.date.accessioned 2015-11-25T10:39:06Z
dc.date.available 2015-11-25T10:39:06Z
dc.date.copyright 2008
dc.date.issued 2016-05-19
dc.identifier.uri http://hdl.handle.net/10725/2687
dc.description.abstract In this paper, we present an aspect-oriented approach for the systematic security hardening of source code. It aims at allowing developers to perform software security hardening by providing an abstraction over the actions required to improve the security of the program. This is done by giving them the capabilities to specify high-level security hardening plans that leverage a priori defined security hardening patterns. These patterns describe the required steps and actions to harden security code, including detailed information on how and where to inject the security code. We show the viability and relevance of our approach by: (1) elaborating security hardening patterns and plans to common security hardening practices, (2) realizing these patterns by implementing them into aspect-oriented languages, (3) applying them to secure applications, (4) testing the hardened applications. Furthermore, we discuss, in this paper, our insights on the appropriateness, strengths and limitations of the aspect-oriented paradigm for security hardening. en_US
dc.language.iso en en_US
dc.title An aspect-oriented approach for the systematic security hardening of code en_US
dc.type Article en_US
dc.description.version Published en_US
dc.author.school SAS en_US
dc.author.idnumber 200904853 en_US
dc.author.woa N/A en_US
dc.author.department Computer Science and Mathematics en_US
dc.description.embargo N/A en_US
dc.relation.journal Computers & Security en_US
dc.journal.volume 27 en_US
dc.journal.issue 3-4 en_US
dc.article.pages 101-114 en_US
dc.keywords Security hardening en_US
dc.keywords Security hardening patterns en_US
dc.keywords Security hardening plans en_US
dc.keywords Aspect-oriented programming en_US
dc.keywords Computer security en_US
dc.keywords Security patterns en_US
dc.keywords Secure programming en_US
dc.identifier.doi http://dx.doi.org/10.1016/j.cose.2008.04.003 en_US
dc.identifier.ctation Mourad, A., Laverdière, M. A., & Debbabi, M. (2008). An aspect-oriented approach for the systematic security hardening of code. Computers & security, 27(3), 101-114. en_US
dc.author.email azzam.mourad@lau.edu.lb
dc.identifier.url http://www.sciencedirect.com/science/article/pii/S0167404808000126
dc.orcid.id https://orcid.org/0000-0001-9434-5322


Files in this item

Files Size Format View

There are no files associated with this item.

This item appears in the following Collection(s)

Show simple item record

Search LAUR


Advanced Search

Browse

My Account