Separation of Concerns for Security
نویسندگان
چکیده
Writing secure code is something most developers know little about. As a result, software vulnerabilities are quite common. We postulate that, by isolating security as a separate concern, this problem can be al-
منابع مشابه
A Framework for Composable Security Definition, Assurance, and Enforcement
The objective of this research is to develop techniques that integrate alternative security concerns (e.g., mandatory access control, delegation, authentication, etc.) into the software process. The resulting model-driven framework preserves separation of security concerns from modeling through implementation, and allows security personnel to pick and choose security concerns to concerns promot...
متن کاملOn the importance of the separation-of-concerns principle in secure software engineering
The separation-of-concerns principle is one of the essential principles in software engineering. It says that software should be decomposed in such a way that different “concerns” or aspects of the problem at hand are solved in well-separated modules or parts of the software. Yet, many security experts feel uneasy about trying to isolate security-related concerns, because security is such a per...
متن کاملAn Aspect of Application Security Management
This paper first presents work in the area of application security management and then investigates relations to the application of Aspect Oriented Software Development (AOSD) to security, as they are both grounded on the systems engineering principle of “Separation of Concerns”.
متن کاملDeveloping secure software using Aspect oriented programming
Aspect oriented programming (AOP) is the programming paradigm that explicitly promotes the separation of crosscutting concerns. Some concerns crosscut the sizable application resulting in code scattering and tangling. These concerns are particularly severe in case of security related applications. The security of these applications can become compromised when the security related concerns are s...
متن کاملA Kernelized Architecture for Multilevel SecureApplication
Mandatory label-based policies may be used to support a wide-range of application security requirements. Labels encode the security state of system entities and the security policy speciies how these labels may change. Building on previous results, this paper develops a model for a kernelized framework for supporting these policies. The framework provides the basis for, what is essentially, an ...
متن کامل