Aclamate: An AOSD Security Framework for Access Control

Author

Prunicki, Andrew ; Elrad, Tzilla

Author_Institution

Concurrent Programming Res. Group, Illinois Inst. of Technol., Chicago, IL

fYear

2006

fDate

Sept. 29 2006-Oct. 1 2006

Firstpage

293

Lastpage

300

Abstract

The development of secure software could be simplified if tooling were readily available to application developers. Improvements can be made to better support software developers to secure their applications, without requiring that security code be inserted throughout core application processing code. The Aclamate framework is introduced here for securing software that imposes little restrictions on the writing of software. Aclamate uses AOSD to secure applications in a non-invasive manner. Both the existing state of software security frameworks and what support already exists to assist application development are discussed. Emphasis is placed on access control and authorization - as these areas are particularly lacking with security tooling to support software development in a non-invasive manner. Finally, there is a critique of Aclamate, the challenges remain in its development, and the remaining opportunities that may exist to provide application developers with more tools to ease the development of secure software

Keywords

authorisation; software tools; AOSD security framework; Aclamate; access control; authorization; software security; Access control; Application software; Authorization; Data security; Java; Permission; Programming; Software quality; Software tools; Writing;

fLanguage

English

Publisher

ieee

Conference_Titel

Dependable, Autonomic and Secure Computing, 2nd IEEE International Symposium on

Conference_Location

Indianapolis, IN

Print_ISBN

0-7695-2539-3

Type

conf

DOI

10.1109/DASC.2006.16

Filename

4030895