TY - GEN
T1 - Security-policy monitoring and enforcement with JavaMOP
AU - Hussein, Soha
AU - Meredith, Patrick
AU - Roşlu, Grigore
PY - 2012
Y1 - 2012
N2 - Software security attacks represent an ever growing problem. One way to make software more secure is to use Inlined Reference Monitors (IRMs), which allow security specifications to be inlined inside a target program to ensure its compliance with the desired security specifications. The IRM approach has been developed primarily by the security community. Runtime Verification (RV), on the other hand, is a software engineering approach, which is intended to formally encode system specifications within a target program such that those specifications can be later enforced during the execution of the program. Until now, the IRM and RV approaches have lived separate lives; in particular RV techniques have not been applied to the security domain, being used instead to aid program correctness and testing. This paper discusses the usage of a formalism-generic RV system, JavaMOP, as a means to specify IRMs, leveraging the careful engineering of the JavaMOP system for ensuring secure operation of software in an efficient manner.
AB - Software security attacks represent an ever growing problem. One way to make software more secure is to use Inlined Reference Monitors (IRMs), which allow security specifications to be inlined inside a target program to ensure its compliance with the desired security specifications. The IRM approach has been developed primarily by the security community. Runtime Verification (RV), on the other hand, is a software engineering approach, which is intended to formally encode system specifications within a target program such that those specifications can be later enforced during the execution of the program. Until now, the IRM and RV approaches have lived separate lives; in particular RV techniques have not been applied to the security domain, being used instead to aid program correctness and testing. This paper discusses the usage of a formalism-generic RV system, JavaMOP, as a means to specify IRMs, leveraging the careful engineering of the JavaMOP system for ensuring secure operation of software in an efficient manner.
KW - D.2.0 [Software Engineering]: Protection Mechanisms
KW - Languages
KW - Security
UR - http://www.scopus.com/inward/record.url?scp=84865280730&partnerID=8YFLogxK
UR - http://www.scopus.com/inward/citedby.url?scp=84865280730&partnerID=8YFLogxK
U2 - 10.1145/2336717.2336720
DO - 10.1145/2336717.2336720
M3 - Conference contribution
AN - SCOPUS:84865280730
SN - 9781450314411
T3 - PLAS'12 - Proceedings of Programming Languages and Analysis for Security
BT - PLAS'12 - Proceedings of Programming Languages and Analysis for Security
T2 - ACM SIGPLAN 7th Workshop on Programming Languages and Analysis for Security, PLAS'12
Y2 - 15 June 2012 through 15 June 2012
ER -