| Title: | Aspectizing Security Concerns |
| Course: | Software Adaptation (CPSC 539c) |
| Timeframe: | 01.2005 - 04.2005 |
| Supervisor: | Eric Wohlstadter |
| Abstract: | Most aspects of computer security revolve around rules preventing an entity from performing an action outside of its permitted sphere of influence and inside that of another. The paper discusses a number of different security augmentation methods, such as dynamic wrappers, dataflow analysis based on extensions of type systems, and history-based access control. In general, security checks are crosscutting concerns and are hard to modularize. The paper describes how most of existing methods can be implemented in a more modular and evolution-friendly fashion with help of aspect-oriented techniques. Additionally, it proposes how effectiveness of aspectized solutions can be validated and evaluated. |
| Downloads: | Paper (PDF) [100 KB], Presentation (PPT) [130 KB] |
minevskiy
gmail.com
|
