Software Investigate

Aspect-Oriented In-Lined Reference Monitors

Download now Free registration required

Executive Summary

An Aspect-Oriented, declarative, security policy specification language is presented, for enforcement by In-lined Reference Monitors. The semantics of the language establishes a formal connection between Aspect-Oriented Programming and In-lined Reference Monitoring wherein policy specifications denote Aspect-Oriented security automata - security automata whose edge labels are encoded as pointcut expressions. The prototype language implementation enforces these security policies by automatically rewriting Java bytecode programs so as to detect and prevent policy violations at run-time. Over the past 15 years, In-lined Reference Monitors (IRM's) have emerged as a powerful, flexible method of enforcing security policies over untrusted, mobile code.

  • Format: PDF
  • Size: 413.2 KB