Security on demand

Hafiz, Munawar

Permalink

https://hdl.handle.net/2142/18413 Copy

Description

Title

Security on demand

Author(s)

Hafiz, Munawar

Issue Date

2011-01-14T22:49:49Z

Director of Research (if dissertation) or Advisor (if thesis)

Johnson, Ralph E.

Doctoral Committee Chair(s)

Johnson, Ralph E.

Committee Member(s)

• Gunter, Carl A.
• Marinov, Darko
• Garlan, David

Department of Study

Computer Science

Discipline

Computer Science

Degree Granting Institution

University of Illinois at Urbana-Champaign

Degree Name

Ph.D.

Degree Level

Dissertation

Keyword(s)

• Security
• Program Transformation

Abstract

"Security experts generally believe that, ""security cannot be added on, it must be designed from the beginning."" This dissertation shows that retrofitting security does not need to be a massive reengineering effort, nor does it need to be ad hoc. Security solutions can be added through systematic, general purpose security-oriented program transformations. We describe a catalog of security-oriented program transformations; so far the catalog contains thirty seven transformations. These security-oriented program transformations improve the traditional approaches of security engineering and keep software secure in the face of new security threats. Security-oriented program transformations are not silver bullets; using them requires skill and knowledge of the program being transformed. They are instead power tools that make it easier to add security to existing systems replacing the point solution of a typical patch with a more systematic removal of a vulnerability. When appropriate tools are built and the program transformations are easy enough to apply, then they will allow a software developer to add 'security on demand'."

Graduation Semester

2010-12

Permalink

http://hdl.handle.net/2142/18413

Copyright and License Information

Copyright 2010 Munawar Hafiz

Owning Collections