Retrofitting legacy code for authorization policy enforcement

Vinod Ganapathy; Trent Jaeger; Somesh Jha

doi:10.1109/SP.2006.34

Retrofitting legacy code for authorization policy enforcement

Vinod Ganapathy, Trent Jaeger, Somesh Jha

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

30 Scopus citations

Abstract

Researchers have argued that the best way to construct a secure system is to proactively integrate security into the design of the system. However, this tenet is rarely followed because of economic and practical considerations. Instead, security mechanisms are added as the need arises, by retrofitting legacy code. Existing techniques to do so are manual and ad hoc, and often result in security holes. We present program analysis techniques to assist the process of retrofitting legacy code for authorization policy enforcement. These techniques can be used to retrofit legacy servers, such as X window, web, proxy, and cache servers. Because such servers manage multiple clients simultaneously, and offer shared resources to clients, they must have the ability to enforce authorization policies. A developer can use our techniques to identify security-sensitive locations in legacy servers, and place reference monitor calls to mediate these locations. We demonstrate our techniques by retrofitting the XII server to enforce authorization policies on its X clients.

Original language	English (US)
Title of host publication	Proceedings - 2006 IEEE Symposium on Security and Privacy, S+P 2006
Pages	214-228
Number of pages	15
DOIs	https://doi.org/10.1109/SP.2006.34
State	Published - 2006
Event	2006 IEEE Symposium on Security and Privacy, S and P 2006 - Berkeley, United States Duration: May 21 2006 → May 24 2006

Publication series

Name	Proceedings - IEEE Symposium on Security and Privacy
Volume	2006
ISSN (Print)	1081-6011

Other

Other	2006 IEEE Symposium on Security and Privacy, S and P 2006
Country/Territory	United States
City	Berkeley
Period	5/21/06 → 5/24/06

All Science Journal Classification (ASJC) codes

General Engineering

Access to Document

10.1109/SP.2006.34

Cite this

@inproceedings{00a94248c91744df88a39a71b58faa6e,

title = "Retrofitting legacy code for authorization policy enforcement",

abstract = "Researchers have argued that the best way to construct a secure system is to proactively integrate security into the design of the system. However, this tenet is rarely followed because of economic and practical considerations. Instead, security mechanisms are added as the need arises, by retrofitting legacy code. Existing techniques to do so are manual and ad hoc, and often result in security holes. We present program analysis techniques to assist the process of retrofitting legacy code for authorization policy enforcement. These techniques can be used to retrofit legacy servers, such as X window, web, proxy, and cache servers. Because such servers manage multiple clients simultaneously, and offer shared resources to clients, they must have the ability to enforce authorization policies. A developer can use our techniques to identify security-sensitive locations in legacy servers, and place reference monitor calls to mediate these locations. We demonstrate our techniques by retrofitting the XII server to enforce authorization policies on its X clients.",

author = "Vinod Ganapathy and Trent Jaeger and Somesh Jha",

year = "2006",

doi = "10.1109/SP.2006.34",

language = "English (US)",

isbn = "0769525741",

series = "Proceedings - IEEE Symposium on Security and Privacy",

pages = "214--228",

booktitle = "Proceedings - 2006 IEEE Symposium on Security and Privacy, S+P 2006",

note = "2006 IEEE Symposium on Security and Privacy, S and P 2006 ; Conference date: 21-05-2006 Through 24-05-2006",

}

Ganapathy, V, Jaeger, T & Jha, S 2006, Retrofitting legacy code for authorization policy enforcement. in Proceedings - 2006 IEEE Symposium on Security and Privacy, S+P 2006., 1624013, Proceedings - IEEE Symposium on Security and Privacy, vol. 2006, pp. 214-228, 2006 IEEE Symposium on Security and Privacy, S and P 2006, Berkeley, United States, 5/21/06. https://doi.org/10.1109/SP.2006.34

TY - GEN

T1 - Retrofitting legacy code for authorization policy enforcement

AU - Ganapathy, Vinod

AU - Jaeger, Trent

AU - Jha, Somesh

PY - 2006

Y1 - 2006

N2 - Researchers have argued that the best way to construct a secure system is to proactively integrate security into the design of the system. However, this tenet is rarely followed because of economic and practical considerations. Instead, security mechanisms are added as the need arises, by retrofitting legacy code. Existing techniques to do so are manual and ad hoc, and often result in security holes. We present program analysis techniques to assist the process of retrofitting legacy code for authorization policy enforcement. These techniques can be used to retrofit legacy servers, such as X window, web, proxy, and cache servers. Because such servers manage multiple clients simultaneously, and offer shared resources to clients, they must have the ability to enforce authorization policies. A developer can use our techniques to identify security-sensitive locations in legacy servers, and place reference monitor calls to mediate these locations. We demonstrate our techniques by retrofitting the XII server to enforce authorization policies on its X clients.

AB - Researchers have argued that the best way to construct a secure system is to proactively integrate security into the design of the system. However, this tenet is rarely followed because of economic and practical considerations. Instead, security mechanisms are added as the need arises, by retrofitting legacy code. Existing techniques to do so are manual and ad hoc, and often result in security holes. We present program analysis techniques to assist the process of retrofitting legacy code for authorization policy enforcement. These techniques can be used to retrofit legacy servers, such as X window, web, proxy, and cache servers. Because such servers manage multiple clients simultaneously, and offer shared resources to clients, they must have the ability to enforce authorization policies. A developer can use our techniques to identify security-sensitive locations in legacy servers, and place reference monitor calls to mediate these locations. We demonstrate our techniques by retrofitting the XII server to enforce authorization policies on its X clients.

UR - http://www.scopus.com/inward/record.url?scp=33751060933&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=33751060933&partnerID=8YFLogxK

U2 - 10.1109/SP.2006.34

DO - 10.1109/SP.2006.34

M3 - Conference contribution

AN - SCOPUS:33751060933

SN - 0769525741

SN - 9780769525747

T3 - Proceedings - IEEE Symposium on Security and Privacy

SP - 214

EP - 228

BT - Proceedings - 2006 IEEE Symposium on Security and Privacy, S+P 2006

T2 - 2006 IEEE Symposium on Security and Privacy, S and P 2006

Y2 - 21 May 2006 through 24 May 2006

ER -

Retrofitting legacy code for authorization policy enforcement

Abstract

Publication series

Other

All Science Journal Classification (ASJC) codes

Access to Document

Other files and links

Fingerprint

Cite this