Combining Static Analysis and Runtime Checking in Security Aspects for Distributed Tuple Spaces - Coordination Models and Languages
Conference Papers Year : 2011

Combining Static Analysis and Runtime Checking in Security Aspects for Distributed Tuple Spaces

Abstract

Enforcing security policies to distributed systems is difficult, in particular, to a system containing untrusted components. We designed AspectKE*, an aspect-oriented programming language based on distributed tuple spaces to tackle this issue. One of the key features in AspectKE* is the program analysis predicates and functions that provide information on future behavior of a program. With a dual value evaluation mechanism that handles results of static analysis and runtime values at the same time, those functions and predicates enable the users to specify security policies in a uniform manner. Our two-staged implementation strategy gathers fundamental static analysis information at load-time, so as to avoid performing all analysis at runtime. We built a compiler for AspectKE*, and successfully implemented security aspects for a distributed chat system and an electronic healthcare record workflow system.
Fichier principal
Vignette du fichier
978-3-642-21464-6_14_Chapter.pdf (321.55 Ko) Télécharger le fichier
Origin Files produced by the author(s)
Loading...

Dates and versions

hal-01582991 , version 1 (06-09-2017)

Licence

Identifiers

Cite

Fan Yang, Tomoyuki Aotani, Hidehiko Masuhara, Flemming Nielson, Hanne Riis Nielson. Combining Static Analysis and Runtime Checking in Security Aspects for Distributed Tuple Spaces. 13th Conference on Coordination Models and Languages (COORDINATION), Jun 2011, Reykjavik, Iceland. pp.202-218, ⟨10.1007/978-3-642-21464-6_14⟩. ⟨hal-01582991⟩
77 View
96 Download

Altmetric

Share

More