An Aspect Oriented Approach for Security Hardening
Author : Nadia Belblidia
Publisher :
Page : 482 pages
File Size : 46,92 MB
Release : 2008
Category :
ISBN :
An Aspect-oriented Framework for Systematic Security Hardening of Software
Author : Azzam Mourad
Publisher :
Page : 402 pages
File Size : 16,70 MB
Release : 2008
Category :
ISBN :
Book Description
Aspect-Oriented Security Hardening of UML Design Models
Author : Djedjiga Mouheb
Publisher : Springer
Page : 247 pages
File Size : 22,42 MB
Release : 2015-04-22
Category : Computers
ISBN : 3319161067
Book Description
This book comprehensively presents a novel approach to the systematic security hardening of software design models expressed in the standard UML language. It combines model-driven engineering and the aspect-oriented paradigm to integrate security practices into the early phases of the software development process. To this end, a UML profile has been developed for the specification of security hardening aspects on UML diagrams. In addition, a weaving framework, with the underlying theoretical foundations, has been designed for the systematic injection of security aspects into UML models. The work is organized as follows: chapter 1 presents an introduction to software security, model-driven engineering, UML and aspect-oriented technologies. Chapters 2 and 3 provide an overview of UML language and the main concepts of aspect-oriented modeling (AOM) respectively. Chapter 4 explores the area of model-driven architecture with a focus on model transformations. The main approaches that are adopted in the literature for security specification and hardening are presented in chapter 5. After these more general presentations, chapter 6 introduces the AOM profile for security aspects specification. Afterwards, chapter 7 details the design and the implementation of the security weaving framework, including several real-life case studies to illustrate its applicability. Chapter 8 elaborates an operational semantics for the matching/weaving processes in activity diagrams, while chapters 9 and 10 present a denotational semantics for aspect matching and weaving in executable models following a continuation-passing style. Finally, a summary and evaluation of the work presented are provided in chapter 11. The book will benefit researchers in academia and industry as well as students interested in learning about recent research advances in the field of software security engineering.
Model-Driven Aspect-Oriented Software Security Hardening
Author : Djedjiga Mouheb
Publisher :
Page : pages
File Size : 29,89 MB
Release : 2012
Category :
ISBN :
Book Description
Towards systematic software security hardening
Author : Marc-André Laverdière-Papineau
Publisher : Marc-André Laverdière
Page : 129 pages
File Size : 23,29 MB
Release : 2008
Category :
ISBN : 049434444X
Book Description
Towards Systematic Software Security Hardening
Author : Marc-André Laverdière-Papineau
Publisher :
Page : pages
File Size : 23,49 MB
Release : 2007
Category :
ISBN :
Book Description
New Trends in Software Methodologies, Tools and Techniques
Author : Hamido Fujita
Publisher : IOS Press
Page : 640 pages
File Size : 22,97 MB
Release : 2009
Category : Computers
ISBN : 1607500493
Book Description
"Papers presented at the Eighth International Conference on New Trends in Software Methodologies, Tools and Techniques, (SoMeT 09) held in Prague, Czech Republic ... from September 23rd to 25th 2009."--P. v.
Security in Virtual Worlds, 3D Webs, and Immersive Environments: Models for Development, Interaction, and Management
Author : Rea, Alan
Publisher : IGI Global
Page : 356 pages
File Size : 46,50 MB
Release : 2010-11-30
Category : Computers
ISBN : 1615208925
Book Description
Although one finds much discussion and research on the features and functionality of Rich Internet Applications (RIAs), the 3D Web, Immersive Environments (e.g. MMORPGs) and Virtual Worlds in both scholarly and popular publications, very little is written about the issues and techniques one must consider when creating, deploying, interacting within, and managing them securely. Security in Virtual Worlds, 3D Webs, and Immersive Environments: Models for Development, Interaction, and Management brings together the issues that managers, practitioners, and researchers must consider when planning, implementing, working within, and managing these promising virtual technologies for secure processes and initiatives. This publication discusses the uses and potential of these virtual technologies and examines secure policy formation and practices that can be applied specifically to each.
E-business and Telecommunications
Author : Joaquim Filipe
Publisher : Springer Science & Business Media
Page : 408 pages
File Size : 43,50 MB
Release : 2008-11-02
Category : Computers
ISBN : 3540886532
Book Description
This book contains the best papers of the 4th International Conference on E-business and Telecommunications (ICETE), which was held during July 28–31, 2007 in Barcelona, Spain. The conference reflects a continuing effort to increase the dissemination of recent research results among professionals who work in the areas of e-business and telecommunications. ICETE is a joint international conf- ence integrating four major areas of knowledge that are divided into four cor- sponding conferences: ICE-B (International Conference on e-Business), SECRYPT (International Conference on Security and Cryptography), WINSYS (International Conference on Wireless Information Systems) and SIGMAP (International Conf- ence on Signal Processing and Multimedia). The program of this joint conference included several outstanding keynote lectures presented by internationally renowned distinguished researchers who are experts in the various ICETE areas. Their keynote speeches contributed to the ov- all quality of the program and heightened the significance of the theme of the conference. The conference topic areas define a broad spectrum in the key areas of- business and telecommunications. This wide view has made it appealing to a global audience of engineers, scientists, business practitioners and policy experts. The papers accepted and presented at the conference demonstrated a number of new and innovative solutions for e-business and telecommunication networks and systems, showing that the technical problems in these fields are challenging, related and significant.
Aspect-oriented Security Engineering
Author : Peter Amthor
Publisher : Cuvillier Verlag
Page : 260 pages
File Size : 15,90 MB
Release : 2019-03-05
Category : Computers
ISBN : 3736989806
Book Description
Engineering secure systems is an error-prone process, where any decision margin potentially favors critical implementation faults. To this end, formal security models serve as an abstract basis for verifying security properties. Unfortunately, the potential for human error in engineering and analyzing such models is still considerable. This work seeks to mitigate this problem. We identified semantic gaps between security requirements, informal security policies, and security models as a major source of error. Our goal is then based on this observation: to support error-minimizing design decisions by bridging such gaps. Due to the broad range of security-critical application domains, no single modeling framework may achieve this. We therefore adopt the idea of aspect-oriented software development to tailor the formal part of a security engineering process towards security requirements of the system. Our method, termed aspect-oriented security engineering, is based on the idea of keeping each step in this process well-defined, small, and monotonic in terms of the degree of formalism. Our practical results focus on two use cases: first, model engineering for operating systems and middleware security policies; second, model analysis of runtime properties related to potential privilege escalation. We eventually combine both use cases to present a model-based reengineering approach for the access control system of Security-Enhanced Linux (SELinux).
