A Language for Feature-Oriented Security Policies using SMT
PublicDownloadable Content
open in viewerShape Security, a cybersecurity startup, employs a reverse proxy server system named Pegasus to protect their customers' network traffic against attacks. Pegasus is configured by software in a feature-oriented paradigm, composing components of domain-specific code to tailor security policies for customers. Since Shape's composition system has no developer-written way to enforce constraints between components, creating valid compositions is difficult. Our project addresses this issue by enabling a means for predicates to be written for components by the developers. This allows the use of programmable first order logic to validate that all components in a given policy satisfy the features' predicates. The result is a new language which tests facts using logic to validate policies.
- This report represents the work of one or more WPI undergraduate students submitted to the faculty as evidence of completion of a degree requirement. WPI routinely publishes these reports on its website without editorial or peer review.
- Creator
- Publisher
- Identifier
- E-project-041519-200614
- Advisor
- Year
- 2019
- Center
- Sponsor
- Date created
- 2019-04-15
- Resource type
- Major
- Rights statement
Relations
- In Collection:
Items
Permanent link to this page: https://digital.wpi.edu/show/wh246v69t