Login | Register

Model-Driven Aspect-Oriented Software Security Hardening

Title:

Model-Driven Aspect-Oriented Software Security Hardening

Mouheb, Djedjiga (2012) Model-Driven Aspect-Oriented Software Security Hardening. PhD thesis, Concordia University.

This is the latest version of this item.

[img]
Preview
Text (application/pdf)
Mouheb_PhD_S2013.pdf - Accepted Version
Available under License Spectrum Terms of Access.
2MB

Abstract

Security is of paramount importance in software engineering. Nevertheless, security solutions are generally fitted into existing software as an afterthought phase of the development process. However, given the complexity and the pervasiveness of today's software systems, adding security as an afterthought leads to huge cost in retrofitting security into the software and further can introduce additional vulnerabilities. Furthermore, security is a crosscutting concern that pervades the entire software. Consequently, the manual addition of security solutions may result in the scattering and the tangling of security features throughout the entire software design. Additionally, adding security manually is tedious and generally may lead to other security flaws. In this context, the need for a systematic approach to integrate security practices into the early phases of the software development process becomes crucial. In this thesis, we elaborate an aspect-oriented modeling framework for software security hardening at the UML design level. More precisely, the main contributions of our research are the following: (i) We define a UML profile for the specification of security hardening mechanisms as aspects. (ii) We design and implement a weaving framework for the systematic injection of security aspects into UML design models. (iii) We explore the theoretical foundations for aspect matching and weaving. (iv) We conduct real-life case studies to demonstrate the viability and the scalability of the proposed framework.

Divisions:Concordia University > Gina Cody School of Engineering and Computer Science > Computer Science and Software Engineering
Item Type:Thesis (PhD)
Authors:Mouheb, Djedjiga
Institution:Concordia University
Degree Name:Ph. D.
Program:Computer Science
Date:20 December 2012
Thesis Supervisor(s):Debbabi, Mourad and Wang, Lingyu
ID Code:977255
Deposited By: DJEDJIGA MOUHEB
Deposited On:17 Jun 2013 15:35
Last Modified:18 Jan 2018 17:44

Available Versions of this Item

  • Model-Driven Aspect-Oriented Software Security Hardening. (deposited 17 Jun 2013 15:35) [Currently Displayed]
All items in Spectrum are protected by copyright, with all rights reserved. The use of items is governed by Spectrum's terms of access.

Repository Staff Only: item control page

Downloads per month over past year

Back to top Back to top