Combining static analysis and runtime checking in security aspects for distributed tuple spaces

Authors:
Fan Yang;Tomoyuki Aotani;Hidehiko Masuhara;Flemming Nielson;Hanne Riis Nielson
Affiliations:
DTU Informatics, Technical University of Denmark;School of Information Science, Japan Advanced Institute of Science and Technology;Graduate School of Arts and Sciences, University of Tokyo;DTU Informatics, Technical University of Denmark;DTU Informatics, Technical University of Denmark
Venue:
COORDINATION'11 Proceedings of the 13th international conference on Coordination models and languages
Year:
2011

Citing 24
Cited 3

Generative communication in Linda

ACM Transactions on Programming Languages and Systems (TOPLAS)
KLAIM: A Kernel Language for Agents Interaction and Mobility

IEEE Transactions on Software Engineering
Types for access control

Theoretical Computer Science
JavaSpaces Principles, Patterns, and Practice

JavaSpaces Principles, Patterns, and Practice
Coordinating processes with secure spaces

Science of Computer Programming - Special issue on coordination languages and architectures
An Overview of AspectJ

ECOOP '01 Proceedings of the 15th European Conference on Object-Oriented Programming
A Java Middleware for Guaranteeing Privacy of Distributed Tuple Spaces

FIDJI '01 Revised Papers from the International Workshop on Scientific Engineering for Distributed Java Applications
KLAVA: a Java package for distributed and mobile applications

Software—Practice & Experience
Remote pointcut: a language construct for distributed AOP

Proceedings of the 3rd international conference on Aspect-oriented software development
Josh: an open AspectJ-like language

Proceedings of the 3rd international conference on Aspect-oriented software development
A case study in access control requirements for a Health Information System

ACSW Frontiers '04 Proceedings of the second workshop on Australasian information security, Data Mining and Web Intelligence, and Software Internationalisation - Volume 32
Composing security policies with polymer

Proceedings of the 2005 ACM SIGPLAN conference on Programming language design and implementation
Adding trace matching with free variables to AspectJ

OOPSLA '05 Proceedings of the 20th annual ACM SIGPLAN conference on Object-oriented programming, systems, languages, and applications
Explicitly distributed AOP using AWED

Proceedings of the 5th international conference on Aspect-oriented software development
SCoPE: an AspectJ compiler for supporting user-defined analysis-based pointcuts

Proceedings of the 6th international conference on Aspect-oriented software development
Supporting Secure Coordination in SecSpaces

Fundamenta Informaticae
Weaving rewrite-based access control policies

Proceedings of the 2007 ACM workshop on Formal methods in security engineering
Enforcing security for desktop clients using authority aspects

Proceedings of the 8th ACM international conference on Aspect-oriented software development
Transactional pointcuts: designation reification and advice of interrelated join points

GPCE '09 Proceedings of the eighth international conference on Generative programming and component engineering
From flow logic to static type systems for coordination languages

COORDINATION'08 Proceedings of the 10th international conference on Coordination models and languages
Aspect-Oriented Race Detection in Java

IEEE Transactions on Software Engineering
Expressive pointcuts for increased modularity

ECOOP'05 Proceedings of the 19th European conference on Object-Oriented Programming
Mobile distributed programming in X-KLAIM

SFM-Moby'05 Proceedings of the 5th international conference on Formal Methods for the Design of Computer, Communication, and Software Systems: mobile computing
A versatile kernel for multi-language AOP

GPCE'05 Proceedings of the 4th international conference on Generative Programming and Component Engineering

Modeling adaptation with a tuple-based coordination language

Proceedings of the 27th Annual ACM Symposium on Applied Computing
Scoped synchronization constraints for large scale actor systems

COORDINATION'12 Proceedings of the 14th international conference on Coordination Models and Languages
Modeling adaptation with Klaim

ACM SIGAPP Applied Computing Review

Quantified Score

Hi-index	0.00

Visualization

Abstract

Enforcing security policies to distributed systems is difficult, in particular, to a system containing untrusted components. We designed AspectKE*, an aspect-oriented programming language based on distributed tuple spaces to tackle this issue. One of the key features in AspectKE* is the program analysis predicates and functions that provide information on future behavior of a program. With a dual value evaluation mechanism that handles results of static analysis and runtime values at the same time, those functions and predicates enable the users to specify security policies in a uniform manner. Our two-staged implementation strategy gathers fundamental static analysis information at loadtime, so as to avoid performing all analysis at runtime. We built a compiler for AspectKE*, and successfully implemented security aspects for a distributed chat system and an electronic healthcare record workflow system.