Sciweavers

COMPSAC
2008
IEEE

Security Policy Enforcement in the OSGi Framework Using Aspect-Oriented Programming

14 years 6 months ago
Security Policy Enforcement in the OSGi Framework Using Aspect-Oriented Programming
The lifecycle mismatch between vehicles and their IT system poses a problem for the automotive industry. Such systems need to be open and extensible to provide customised functionalities and services. What is less clear is how to achieve this with quality and security guarantees. Recent studies in language-based security – the use of programming language technology to enforce application specific security policies – show that security policy enforcement mechanisms such as inlined reference monitors provide a potential solution for security in extensible systems. In this paper we study the implementation of security policy enforcement using aspect-oriented programming for the OSGi (Open Services Gateway initiative) framework. We identify classes of reference monitor-style policies that can be defined and enforced using AspectJ, a well-known aspect-oriented programming language. We demonstrate the use of security states to describe history-based policies. We also introduce and imp...
Phu H. Phung, David Sands
Added 29 May 2010
Updated 29 May 2010
Type Conference
Year 2008
Where COMPSAC
Authors Phu H. Phung, David Sands
Comments (0)