Towards an Aspect-Oriented Intrusion Detection Framework

Zhu, Zhi Jian; Zulkernine, Mohammad

doi:10.1109/compsac.2007.218

Cited by 4 publications

(3 citation statements)

References 2 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…While the related work seek to add protections (access control, encryption) to the target system or change insecure behavior in the target system (flaw fixing), we focus on monitoring the activities of the target system. In [20], we presented the preliminary overview of an aspect-oriented intrusion detection framework. In this work, the intrusion detection aspects are defined over the sequences of observable states, and the state sequences are matched with the attack signature.…”

Section: Aosd For Securitymentioning

confidence: 99%

“…The parameters in this pointcut are the username, the password, and the login HTTP request, req. We declare a before advice associated with the logining pointcut (Lines [18][19][20]. In this advice, we first retrieve the current attack instance from the attackers map or create a new attack instance (Lines [22][23][24][25][26][27], and then pass the username and the password to the attack signature: the getNewState method (Line 29).…”

Section: Aspect Code For Sql Injection Attackmentioning

confidence: 99%

See 1 more Smart Citation

A model-based aspect-oriented framework for building intrusion-aware software systems

Zhu

Zulkernine

2009

Information and Software Technology

Self Cite

View full text Add to dashboard Cite

Section: Aosd For Securitymentioning

confidence: 99%

Section: Aspect Code For Sql Injection Attackmentioning

confidence: 99%

A model-based aspect-oriented framework for building intrusion-aware software systems

Zhu

Zulkernine

2009

Information and Software Technology

Self Cite

View full text Add to dashboard Cite

“…control and encryption using pointcut-based deployment. Other research has proposed even more advanced scenerios where AOSD is applied to address security [4,6,7,9,16,17,20,25,26,28]. However, most existing tools and research focus on the protection of server-side resources.…”

Section: Introductionmentioning

confidence: 99%

Enforcing security for desktop clients using authority aspects

Cannon

Wohlstadter

2009

Proceedings of the 8th ACM International Conference on Aspect-Oriented Software Development

View full text Add to dashboard Cite

Desktop client applications interact with both local and remote resources. This is both a benefit in terms of the rich features desktop clients can provide, but also a security risk. Due to their high connectivity, desktop clients can leave a user's machine vulnerable to viruses, malicious plug-ins, and scripts. Aspect-Oriented Software Development can be used to address security concerns in software in a modular fashion. However, most existing research focuses on the protection of server-side resources. In this paper we introduce an aspect-oriented mechanism, Authority Aspects, to enforce the Principle of Least Privilege on desktop clients. This helps to ensure that legitimate resource access is allowed and illegitimate access is blocked. We present a case study applying our approach on two desktop applications: an RSS feed aggregator and a Web browser.

show abstract

Minimizing resource access and management disparities between desktop and Web applications

Cannon¹

2011

View full text Add to dashboard Cite

Towards an Aspect-Oriented Intrusion Detection Framework

Cited by 4 publications

References 2 publications

A model-based aspect-oriented framework for building intrusion-aware software systems

A model-based aspect-oriented framework for building intrusion-aware software systems

Enforcing security for desktop clients using authority aspects

Minimizing resource access and management disparities between desktop and Web applications

Contact Info

Product

Resources

About