Title :
ACIR: An Aspect-Connector for Intrusion Response
Author :
Uddin, Mohammad Gias ; Shahriar, Hossain ; Zulkernine, Mohammad
Author_Institution :
Queen´´s Univ., Kingston
Abstract :
The modularization concept behind component-based software (CBS) cannot be applied effectively for cross-cutting concerns such as security. Aspect-oriented programming (AOP) helps in better modularization by identifying cross-cutting concerns and providing a suitable way to separate those concerns. In this paper, we provide an aspect-connector based intrusion response (detection and prevention) architecture for CBS by bringing the concepts of aspects into components. The aspect-connector is named as ACIR (aspect connector for intrusion response). Component interfaces act as join points, and aspects containing pointcuts and advices are defined in ACIR configuration file. Advices applicable to particular pointcuts are two types. Signature advices are used to detect intrusions, and action advices are executed to prevent intrusions. A prototype of this architecture is implemented and evaluated using some intrusions included in the Web application security consortium (WASC) intrusion list. This approach detects and prevents intrusions in CBS while maintaining encapsulation, reusability, and modularity.
Keywords :
object-oriented programming; security of data; ACIR; Web application security consortium; aspect connector; aspect-oriented programming; component-based software; intrusion detection; intrusion response; Computer architecture; Computer security; Connectors; Containers; Encapsulation; Prototypes; Scattering; Service oriented architecture; Software reusability; Time factors;
Conference_Titel :
Computer Software and Applications Conference, 2007. COMPSAC 2007. 31st Annual International
Conference_Location :
Beijing
Print_ISBN :
0-7695-2870-8
DOI :
10.1109/COMPSAC.2007.49
