Enforcing security policies to distributed systems is difficult, in particular, to a system containing untrusted components. We designed AspectKE*, an aspect-oriented programming language based on distributed tuple spaces to tackle this issue. One of the key features in AspectKE* is the program analysis predicates and functions that provide information on future behavior of a program. With a dual value evaluation mechanism that handles results of static analysis and runtime values at the same time, those functions and predicates enable the users to specify security policies in a uniform manner. Our two-staged implementation strategy gathers fundamental static analysis information at load-time, so as to avoid performing all analysis at runtime. We built a compiler for AspectKE*, and successfully implemented security aspects for a distributed chat system and an electronic healthcare record workflow system. © 2011 Springer-Verlag.
CITATION STYLE
Yang, F., Aotani, T., Masuhara, H., Nielson, F., & Nielson, H. R. (2011). Combining static analysis and runtime checking in security aspects for distributed tuple spaces. In Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics) (Vol. 6721 LNCS, pp. 202–218). https://doi.org/10.1007/978-3-642-21464-6_14
Mendeley helps you to discover research relevant for your work.