Title :
A Survey of Approaches to Adaptive Application Security
Author :
Elkhodary, Ahmed ; Whittle, Jon
Author_Institution :
Inf. & Software Eng., George Mason Univ., Fairfax, VA
Abstract :
Adaptive systems dynamically change their behavior or structure at runtime to respond to environmental changes. This paper considers one class of adaptive systems - those that adapt application-level security mechanisms. Nowadays, adaptive software security is gaining greater attention as a way to balance the tradeoff between systems security and IT infrastructure overhead. Several adaptive security systems have been developed recently supporting hardware-level to application-level reconfiguration. This paper surveys four adaptive application-level security systems and evaluates them in terms of how well they support critical security services (i.e. authentication, authorization, and tolerance) and what level of adaptation they achieve. Based on our evaluation results, we provide recommendations for future research.
Keywords :
security of data; adaptive application security; adaptive software security; authentication; authorization; safety critical software; software fault tolerance; Access control; Adaptive systems; Application software; Authorization; Information security; Permission; Programming; Runtime; Software engineering; Software systems;
Conference_Titel :
Software Engineering for Adaptive and Self-Managing Systems, 2007. ICSE Workshops SEAMS '07. International Workshop on
Conference_Location :
Minneapolis, MN
Print_ISBN :
0-7695-2973-9
DOI :
10.1109/SEAMS.2007.2
