AOP Extension for Security Testing of Programs

14 years 5 months ago

Download users.encs.concordia.ca

The purpose of this paper is to use the aspect-oriented programming (AOP) paradigm for security testing. AOP allows security experts to develop and inject separate modules for conducting security testing on the applications independent of their business logic. After an appropriateness analysis of the mostly used approaches for AOP, we retain the pointcut-advice model. The pointcut-advice model is significantly better than the other approaches for security testing. However, the current set of pointcuts is insuﬃcient for the purpose of security testing and needs to be extended with new pointcuts. Keywords— AOP, Security, Testing, Pointcut, Instrumentation.

Nadia Belblidia, Mourad Debbabi, Aiman Hanna, Zhen

Real-time Traffic

CCECE 2006 | Electrical And Computer Engineering | Pointcut-advice Model | Security Experts | Security Testing |

claim paper

» A quantitative analysis of aspects in the eCos kernel

» Remote pointcut a language construct for distributed AOP

» Transforming and Selecting Functional Test Cases for Security Policy Testing

» Flexible calling context reification for aspectoriented programming

» Securing The Kernel via Static Binary Rewriting and Program Shepherding

» Ensuring secure program execution in multiprocessor embedded systems a case study

» Using graphic turing tests to counter automated DDoS attacks against web servers

» Automated Vulnerability Analysis Leveraging Control Flow for Evolutionary Input Crafting

Post Info
More Details (n/a)

Added	10 Jun 2010
Updated	10 Jun 2010
Type	Conference
Year	2006
Where	CCECE
Authors	Nadia Belblidia, Mourad Debbabi, Aiman Hanna, Zhenrong Yang

Comments (0)

Sciweavers

AOP Extension for Security Testing of Programs

CCECE 2006 | Electrical And Computer Engineering | Pointcut-advice Model | Security Experts | Security Testing |

Explore & Download

Productivity Tools

Document Tools

Image Tools

Sciweavers