Secure scripting based composite application development: Framework, architecture, and implementation

Authors:
Tom Dinkelaker;Alisdair Johnstone;Yuecel Karabulut;Ike Nassi
Affiliations:
SAP Research Center Palo Alto, SAP Labs, LLC, USA;SAP Research Center Palo Alto, SAP Labs, LLC, USA;SAP Research Center Palo Alto, SAP Labs, LLC, USA;SAP Research Center Palo Alto, SAP Labs, LLC, USA
Venue:
COLCOM '07 Proceedings of the 2007 International Conference on Collaborative Computing: Networking, Applications and Worksharing
Year:
2007

Citing 0
Cited 3

Dynamically linked domain-specific extensions for advice languages

Proceedings of the 2008 AOSD workshop on Domain-specific aspect languages
Untangling crosscutting concerns in domain-specific languages with domain-specific join points

Proceedings of the 4th workshop on Domain-specific aspect languages
An architecture for composing embedded domain-specific languages

Proceedings of the 9th International Conference on Aspect-Oriented Software Development

Quantified Score

Hi-index	0.00

Visualization

Abstract

Dynamic scripting languages such as Ruby provide language features that enable developers to express their intent more rapidly and with fewer expressions. Organizations started using these languages in order to add enhancements to their existing applications or create composite applications. Current research has not yet addressed how security specification and enforcement can be done for scripting based application development. To fill this gap, we developed a framework for the design and facilitation of security. Our approach enables a business oriented application developer to add high-level security intentions to his business process model. The framework supports the automatic generation of security configuration and enforcement. As a proof-of-concept, we present an architecture and report the implementation status.