Shape Security, a cybersecurity startup, employs a reverse proxy server system named Pegasus to protect their customers’ network traffic against attacks. Pegasus is configured by software in a feature-oriented paradigm, composing components of domain-specific code to tailor security policies for customers. Since their composition system has no developer-written way to enforce constraints between components, creating valid compositions becomes difficult. Our project addressed this issue by allowing for predicates to be written for components by the developers. This allows for the use of programmable first order logic to validate that all components in a given policy satisfy the features’ predicates. The result is a new language which tests facts using logic to validate policies.

• This report represents the work of one or more WPI undergraduate students submitted to the faculty as evidence of completion of a degree requirement. WPI routinely publishes these reports on its website without editorial or peer review.

Creator

• Shingleton, Paul Clinton

Publisher

• Worcester Polytechnic Institute

Identifier

• E-project-022819-163427

Advisor

• Claypool, Mark L.

Year

• 2019

Center

• Silicon Valley, California Project Center - MQP

Sponsor

• Shape Security

Date created

• 2019-02-28

Resource type

• Major Qualifying Project

Major

• Computer Science

Rights statement

• In Copyright