loading
Papers Papers/2022 Papers Papers/2022

Research.Publish.Connect.

Paper

Paper Unlock

Authors: Azzam Mourad ; Marc-André Laverdière and Mourad Debbabi

Affiliation: Computer Security Laboratory, Concordia Institute for Information Systems Engineering, Concordia University, Canada

Keyword(s): Software Security Hardening, Aspect-Oriented Programming (AOP), Security Hardening Patterns, Security Hardening Plans, Trusted and Open Source Software (FOSS), Aspect-Oriented Language.

Related Ontology Subjects/Areas/Topics: Information and Systems Security ; Secure Software Development Methodologies ; Security Engineering ; Security in Information Systems ; Security Information Systems Architecture and Design and Security Patterns

Abstract: In this paper, we propose an aspect-oriented language, called SHL (Security Hardening Language), for specifying systematically the security hardening solutions. This language constitutes our new achievement towards developing our security hardening framework. SHL allows the description and specification of security hardening plans and patterns that are used to harden systematically security into the code. It is a minimalist language built on top of the current aspect-oriented technologies that are based on advice-poincut model and can also be used in conjunction with them. The primary contribution of this approach is providing the security architects with the capabilities to perform security hardening of software by applying well-defined solution and without the need to have expertise in the security solution domain. At the same time, the security hardening is applied in an organized and systematic way in order not to alter the original functionalities of the software. We explore the viability and relevance of our proposition by applying it into a case study and presenting the experimental results of securing the connections of open source software. (More)

CC BY-NC-ND 4.0

Sign In Guest: Register as new SciTePress user now for free.

Sign In SciTePress user: please login.

PDF ImageMy Papers

You are not signed in, therefore limits apply to your IP address 18.191.107.181

In the current month:
Recent papers: 100 available of 100 total
2+ years older papers: 200 available of 200 total

Paper citation in several formats:
Mourad, A.; Laverdière, M. and Debbabi, M. (2007). A HIGH-LEVEL ASPECT-ORIENTED BASED LANGUAGE FOR SOFTWARE SECURITY HARDENING. In Proceedings of the Second International Conference on Security and Cryptography (ICETE 2007) - SECRYPT; ISBN 978-989-8111-12-8; ISSN 2184-3236, SciTePress, pages 363-370. DOI: 10.5220/0002128403630370

@conference{secrypt07,
author={Azzam Mourad. and Marc{-}André Laverdière. and Mourad Debbabi.},
title={A HIGH-LEVEL ASPECT-ORIENTED BASED LANGUAGE FOR SOFTWARE SECURITY HARDENING},
booktitle={Proceedings of the Second International Conference on Security and Cryptography (ICETE 2007) - SECRYPT},
year={2007},
pages={363-370},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0002128403630370},
isbn={978-989-8111-12-8},
issn={2184-3236},
}

TY - CONF

JO - Proceedings of the Second International Conference on Security and Cryptography (ICETE 2007) - SECRYPT
TI - A HIGH-LEVEL ASPECT-ORIENTED BASED LANGUAGE FOR SOFTWARE SECURITY HARDENING
SN - 978-989-8111-12-8
IS - 2184-3236
AU - Mourad, A.
AU - Laverdière, M.
AU - Debbabi, M.
PY - 2007
SP - 363
EP - 370
DO - 10.5220/0002128403630370
PB - SciTePress