TC: Medium: Collaborative Research: Techniques to Retrofit Legacy Code with Security

TC：媒介：协作研究：安全改造遗留代码的技术

• 批准号: 0905343
• 负责人: Trent Jaeger
• 金额: $ 30万
• 依托单位: Pennsylvania State Univ University Park
• 依托单位国家: 美国
• 项目类别: Standard Grant
• 财政年份: 2009
• 资助国家: 美国
• 起止时间: 2009-09-01 至 2013-08-31
• 项目状态: 已结题
• 来源: https://www.nsf.gov/awardsearch/showAward?AWD_ID=0905343&HistoricalAwards=false
• 关键词: TC; Medium; Collaborative; Research; Techniques

This award is funded under the American Recovery and Reinvestment Act of 2009 (Public Law 111-5).Though perhaps unfortunate, as a practical matter software is oftenbuilt with functionality as a primary goal, and security features areonly added later, often after vulnerabilities have been identified.To reduce the cost and increase assurance in the process of securityretrofitting, the aim to develop a methodology involving automated andsemi-automated tools and techniques to add authorization policyenforcement functionality to legacy software systems.The main insight is that major portions of the tasks involved inretrofitting code can be or already have been automated, so the designprocess focuses on enabling further automation and aggregating thesetasks into a single, coherent approach.More specifically, techniques and tools are being developed to: (1)identify and label security-relevant objects and I/O channels byanalyzing and instrumenting annotated application source code; (2)insert code to mediate access to labeled entities; (3) abstract theinserted checks into policy-relevant, security-sensitive operationsthat are authorized (or denied) by the application's security policy;(4) integrate the retrofitted legacy code with the site's specificpolicy at deployment time to ensure, through advanced policy analysis,that the application enforces that site's policy correctly, and (5)verify correct enforcement of OS policy delegation by the retrofittedapplication.The techniques and tools being developed are useful not onlyfor retrofitting, but also for augmenting and verifying existing codealready outfitted with security functionality; hence improving thestate-of-the-art in creating more secure software.

该奖项是根据2009年的《美国恢复和再投资法》（公法111-5）资助的。尽管很不幸，因为经常将功能作为主要目标构建的实际物质软件，并且在以后会添加安全功能，并且通常在脆弱性之后添加了脆弱性，从而降低了成本和提高安全性的工具，以自动的方式促进了一种方法，该方法既可以自动地进行，又有一种方法，使您有启发性地进行了研究。将授权政策执行功能添加到遗留软件系统中。主要的见解是，涉及的任务的主要部分可以或已经是已经是自动化的，因此DesignProcess着重于实现进一步的自动化，并将这些方法汇总为单一的，连贯的方法，更具体地识别和实验性的工具和实验性，并识别：1（1）启用：（1）启用：（1）启用：（1）启用：（1）启用：（1）启用：（1）启用：（1）启用：（1）启用：（1）启用。和仪器注释的应用程序代码； （2）插入代码以调解对标记实体的访问； （3）抽象插入的检查与策略相关的，对安全敏感的操作的授权（或拒绝）由申请的安全策略授权（或拒绝）；（4）将改进的遗产代码与站点的特定政策集成到部署时间，以确保通过先进的策略分析来确保该申请通过该站点的策略来确保正确的策略和（5）验证OS的策略，并（5）执行OSS的策略，并（5）依据，并（5）验证OS的策略，并确保OS的策略依据，并且（5）开发的不仅用于改造，而且还用于增强和验证带有安全功能的现有CodealReady；因此，改善了创建更安全的软件的最新情况。