首页    期刊浏览 2024年11月28日 星期四
登录注册

文章基本信息

  • 标题:A security assurance framework for component based software development
  • 本地全文:下载
  • 作者:Ashwin Kumar M. V. N. ; Arun K. Singh ; Ramesh Babu S.
  • 期刊名称:Informatica
  • 印刷版ISSN:1514-8327
  • 电子版ISSN:1854-3871
  • 出版年度:2001
  • 卷号:25
  • 期号:4
  • 页码:509-515
  • 出版社:The Slovene Society Informatika, Ljubljana
  • 摘要:Commercial-off-the-shelf (COTS) components are black box software products. The absence of their code precludes them from any kind of inspection to certify that the code is safe. This increases the security risk for safety-sensitive applications. The application, before interfacing with COTS component, needs an assurance that it is secure. This paper presents a framework to assure security of components for such applications. This framework uses Aspect Oriented Programming (AOP) paradigm to capture security characteristics of the components and weaves the corresponding security checks into them. It also introduces a novel verification mechanism to ensure that the COTS components are developed as per security contract.
  • 关键词:Components; Security; Proof Carrying Code; Aspect Oriented Programming
国家哲学社会科学文献中心版权所有