Title: Automated detection and resolution of least privilege violations in software architectures
Authors: Buyens, Koen
Scandariato, Riccardo
Joosen, Wouter
Issue Date: Jan-2010
Publisher: Department of Computer Science, K.U.Leuven
Series Title: CW Reports vol:CW575
Abstract: Supporting security principles, like least privilege, in a software architecture is difficult due to the lack of both a sound theory and effective secure software engineering practices. As a result, principles are often neglected by practitioners, resulting in potentially high risk threats to systems.

This paper improves the understanding and the support for least privilege in software architectures by (i) defining the foundations to identify potential violations of the principle herein and (ii) providing architectural transformations that can be used to improve the security properties of an architecture, in an automated way. These results have been implemented and validated in a case study.
Publication status: published
KU Leuven publication type: IR
Appears in Collections:Informatics Section

Files in This Item:
File Description Status SizeFormat
CW575.pdfDocument Published 583KbAdobe PDFView/Open


All items in Lirias are protected by copyright, with all rights reserved.