| dc.date.accessioned |
2017-03-07T13:13:15Z |
|
| dc.date.available |
2017-03-07T13:13:15Z |
|
| dc.date.copyright |
2008 |
en_US |
| dc.date.issued |
2017-03-07 |
|
| dc.identifier.isbn |
9783540886532 |
en_US |
| dc.identifier.uri |
http://hdl.handle.net/10725/5326 |
|
| dc.description.abstract |
In this paper, we propose an aspect-oriented language, called SHL (Security Hardening Language), for specifying systematically the security hardening solutions. This language constitutes our new achievement towards developing our security hardening framework. SHL allows the description and specification of security hardening plans and patterns that are used to harden systematically security into the code. It is a minimalist language built on top of the current aspect-oriented technologies that are based on advice-poincut model and can also be used in conjunction with them. The primary contribution of this approach is providing the security architects with the capabilities to perform security hardening of software by applying well-defined solution and without the need to have expertise in the security solution domain. At the same time, the security hardening is applied in an organized and systematic way in order not to alter the original functionalities of the software. We explore the viability and relevance of our proposition by applying it into a case study and presenting the experimental results of securing the connections of open source software. |
en_US |
| dc.language.iso |
en |
en_US |
| dc.publisher |
Springer Berlin Heidelberg |
en_US |
| dc.relation.ispartofseries |
Communications in computer and information science |
|
| dc.subject |
Computer Communication Networks |
|
| dc.subject |
Computer security |
|
| dc.subject |
Data encryption (Computer science) |
|
| dc.title |
E-business and Telecommunications : 4th International Conference, ICETE 2007, Barcelona, Spain, July 28-31, 2007 |
|
| dc.type |
Book / Chapter of a Book |
en_US |
| dc.author.school |
SAS |
en_US |
| dc.author.idnumber |
200904853 |
en_US |
| dc.author.department |
Computer Science and Mathematics |
en_US |
| dc.description.embargo |
N/A |
en_US |
| dc.publication.place |
Berlin, Heidelberg |
|
| dc.keywords |
Software Security Hardening |
en_US |
| dc.keywords |
Aspect-Oriented Programming (AOP) |
en_US |
| dc.keywords |
Security Hardening Patterns |
en_US |
| dc.keywords |
Security Hardening Plans |
en_US |
| dc.keywords |
Trusted and Open Source Software (FOSS) |
en_US |
| dc.keywords |
Aspect-Oriented Language |
en_US |
| dc.identifier.doi |
http://dx.doi.org/10.1007/978-3-540-88653-2_19 |
en_US |
| dc.identifier.ctation |
Mourad, A., Laverdière, M. A., & Debbabi, M. (2008). A Security Hardening Language Based on Aspect-Orientation. In International Conference on E-Business and Telecommunications (pp. 254-266). Springer Berlin Heidelberg. |
en_US |
| dc.chapter.author |
Mourad, Azzam |
|
| dc.chapter.author |
Laverdiere, Marc-André |
|
| dc.chapter.author |
Debbabi, Mourad |
|
| dc.author.email |
azzam.mourad@lau.edu.lb |
en_US |
| dc.chapter.pages |
254-266 |
|
| dc.identifier.tou |
http://libraries.lau.edu.lb/research/laur/terms-of-use/articles.php |
en_US |
| dc.identifier.url |
https://link.springer.com/chapter/10.1007/978-3-540-88653-2_19 |
en_US |
| dc.orcid.id |
https://orcid.org/0000-0001-9434-5322 |
|
| dc.book.author |
Filipe, Joaquim |
|
| dc.book.author |
Obaidat, Mohammad S. |
|
| dc.author.affiliation |
Lebanese American University |
en_US |
| dc.relation.numberofseries |
23 |
|