Achieving Security Assurance with Assertion-based Application Construction
Journal Title: EAI Endorsed Transactions on Collaborative Computing - Year 2015, Vol 1, Issue 6
Abstract
Modern software applications are commonly built by leveraging pre-fabricated modules, e.g. application programming interfaces (APIs), which are essential to implement the desired functionalities of software applications, helping reduce the overall development costs and time. When APIs deal with security-related functionality, it is critical to ensure they comply with their design requirements since otherwise unexpected flaws and vulnerabilities may consequently occur. Often, such APIs may lack sufficient specification details, or may implement a semantically-different version of a desired security model to enforce, thus possibly complicating the runtime enforcement of security properties and making it harder to minimize the existence of serious vulnerabilities. This paper proposes a novel approach to address such a critical challenge by leveraging the notion of software assertions. We focus on security requirements in role-based access control models and show how proper verification at the source-code level can be performed with our proposed approach as well as with automated state-of-the-art assertion-based techniques.
Authors and Affiliations
Carlos E. Rubio-Medrano, Gail-Joon Ahn, Karsten Sohr
Keywords
Related Articles
- EP ID EP45707
- DOI http://dx.doi.org/10.4108/eai.21-12-2015.150819
- Views 287
- Downloads 0
Analysis of Differential Synchronisation’s Energy Consumption on Mobile Devices
Synchronisation algorithms are central to collaborative editing software. As collaboration is increasingly mediated by mobile devices, the energy eÿciency for such algorithms is interest to a wide community of applicatio...
Message from the Editors-in-Chief
We are very pleased to welcome you all to the second issue of this journal. In this issue, we present six selected invited papers that span various aspects of collaborative computing and technologies. In particular, t...
Notification Mechanisms In Second-Screen Scenarios - Towards a Balanced User Experience
As technological devices surrounding the television are changing, so are viewers’ habits. When the interactive Television industry turns its focus to the development of second-screen applications, this paper reports on a...
Collaborating with executable content across space and time
Executable content is of growing importance in many domains. How does one share and archive such content at Internet-scale for spatial and temporal collaboration? Spatial collaboration refers to the classic concept of us...
TinCan: User-Defined P2P Virtual Network Overlays for Ad-hoc Collaboration
Virtual private networking (VPN) has become an increasingly important component of a collaboration environment because it ensures private, authenticated communication among participants, using existing collaboration tool...