.

An aspect-oriented framework for systematic security hardening of software

LAUR Repository

Show simple item record

dc.contributor.author Mourad, Azzam
dc.date.accessioned 2018-08-17T08:10:50Z
dc.date.available 2018-08-17T08:10:50Z
dc.date.copyright 2008 en_US
dc.date.issued 2018-08-17
dc.identifier.uri http://hdl.handle.net/10725/8337
dc.description.abstract In this thesis, we address the problems related to the security hardening of open source software. Accordingly, we first propose an aspect-oriented and pattern-based approach for systematic security hardening. It is based on the full separation between the roles and duties of the security experts and the developers performing the hardening. Such proposition constitutes a bridge that allows the security experts to provide the best solutions to particular security problems with the details on why, how and where to apply them. Moreover, it allows the developers to use these solutions to harden open source software without the need to have high security expertise. We realize the proposed approach by elaborating a programming independent and aspect-oriented based language for security hardening called SHL, developing its corresponding parser, compiler and facilities and integrating all of them into a framework for software security hardening. We also illustrate the feasibility of the elaborated framework by developing several security hardening case studies that deal with known security requirements and vulnerabilities and applying them on large scale software. Second, we enrich SHL and the aspect-oriented languages with new pointcut and primitive constructs ( GAFlow, GDFlow, ExportParameter and ImportParameter ) that provide features missing in the current AOP proposals and needed for systematic security hardening concerns. We also explore the viability of the proposed pointcuts and primitives by elaborating and implementing their algorithms and presenting the result of explanatory case studies. Finally, we improve the proposed framework by proposing a new approach for applying security hardening on the Gimple representation of software and elaborating formal syntax for SHL and Gimple together with an operational semantics for SHL weaving based on Gimple. We realize our proposition by integrating into the GCC compiler few features described in the SHL weaving semantics and developing a demonstrative case study en_US
dc.language.iso en en_US
dc.title An aspect-oriented framework for systematic security hardening of software en_US
dc.type Thesis en_US
dc.author.degree PHD en_US
dc.author.school SAS en_US
dc.author.idnumber 200904853 en_US
dc.author.department Computer Science and Mathematics en_US
dc.description.embargo N/A en_US
dc.description.physdesc xvi, 201 p. ill en_US
dc.author.advisor Debbabi, Mourad
dc.description.bibliographiccitations Includes bibliographical references en_US
dc.identifier.ctation Mourad, A. (2008). An aspect-oriented framework for systematic security hardening of software (Doctoral dissertation, Concordia University). en_US
dc.author.email azzam.mourad@lau.edu.lb en_US
dc.identifier.tou http://libraries.lau.edu.lb/research/laur/terms-of-use/thesis.php en_US
dc.identifier.url https://spectrum.library.concordia.ca/976216/ en_US
dc.orcid.id https://orcid.org/0000-0001-9434-5322 en_US
dc.publisher.institution Concordia University en_US
dc.author.affiliation Lebanese American University en_US


Files in this item

This item appears in the following Collection(s)

Show simple item record

Search LAUR


Advanced Search

Browse

My Account