dc.creator | Horcas Aguilera, José Miguel | es |
dc.creator | Pinto, Mónica | es |
dc.creator | Fuentes, Lidia | es |
dc.date.accessioned | 2021-06-11T08:14:28Z | |
dc.date.available | 2021-06-11T08:14:28Z | |
dc.date.issued | 2014 | |
dc.identifier.citation | Horcas Aguilera, J.M., Pinto, M. y Fuentes, L. (2014). Closing the Gap between the Specification and Enforcement of Security Policies. En TrustBus 2014: 11th International Conference on Trust and Privacy in Digital Business (106-118), Munich, Germany: Springer. | |
dc.identifier.isbn | 978-3-319-09769-5 | es |
dc.identifier.issn | 0302-9743 | es |
dc.identifier.uri | https://hdl.handle.net/11441/111705 | |
dc.description.abstract | Security policies are enforced through the deployment of certain
security functionalities within the applications. Applications can
have different levels of security and thus each security policy is enforced
by different security functionalities. Thus, the secure deployment of an
application is not an easy task, being more complicated due to the existing
gap between the specification of a security policy and the deployment,
inside the application, of the security functionalities that are required to
enforce that security policy. The main goal of this paper is to close this
gap. This is done by using the paradigms of Software Product Lines and
Aspect-Oriented Programming in order to: (1) link the security policies
with the security functionalities, (2) generate a configuration of the security
functionalities that fit a security policy, and (3) weave the selected
security functionalities into an application. We qualitatively evaluate our
approach, and discuss its benefits using a case study. | es |
dc.description.sponsorship | European Union INTER-TRUST FP7- 317731 | es |
dc.description.sponsorship | Ministerio de Economía y Competitividad TIN2012-34840 | es |
dc.description.sponsorship | Junta de Andalucía FamiWare P09-TIC-5231 | es |
dc.description.sponsorship | Junta de Andalucía MAGIC P12-TIC1814 | es |
dc.format | application/pdf | es |
dc.format.extent | 13 | es |
dc.language.iso | eng | es |
dc.publisher | Springer | es |
dc.relation.ispartof | TrustBus 2014: 11th International Conference on Trust and Privacy in Digital Business (2014), pp. 106-118. | |
dc.rights | Attribution-NonCommercial-NoDerivatives 4.0 Internacional | * |
dc.rights.uri | http://creativecommons.org/licenses/by-nc-nd/4.0/ | * |
dc.subject | Security enforcement | es |
dc.subject | Security policies | es |
dc.subject | Aspect-oriented programming | es |
dc.subject | Software Product Lines | es |
dc.title | Closing the Gap between the Specification and Enforcement of Security Policies | es |
dc.type | info:eu-repo/semantics/conferenceObject | es |
dcterms.identifier | https://ror.org/03yxnpp24 | |
dc.type.version | info:eu-repo/semantics/submittedVersion | es |
dc.rights.accessRights | info:eu-repo/semantics/openAccess | es |
dc.contributor.affiliation | Universidad de Sevilla. Departamento de Lenguajes y Sistemas Informáticos | es |
dc.relation.projectID | INTER-TRUST FP7-317731 | es |
dc.relation.projectID | TIN2012-34840 | es |
dc.relation.projectID | FamiWare P09-TIC-5231 | es |
dc.relation.projectID | MAGIC P12-TIC1814 | es |
dc.relation.publisherversion | https://link.springer.com/chapter/10.1007/978-3-319-09770-1_10 | es |
dc.identifier.doi | 10.1007/978-3-319-09770-1_10 | es |
dc.publication.initialPage | 106 | es |
dc.publication.endPage | 118 | es |
dc.eventtitle | TrustBus 2014: 11th International Conference on Trust and Privacy in Digital Business | es |
dc.eventinstitution | Munich, Germany | es |
dc.relation.publicationplace | Cham, Switzerland | es |
dc.contributor.funder | European Union (UE) | es |
dc.contributor.funder | Ministerio de Economía y Competitividad (MINECO). España | es |
dc.contributor.funder | Junta de Andalucía | es |