Student Work

A Language for Feature-Oriented Security Policies using SMT

Public

Downloadable Content

open in viewer

Shape Security, a cybersecurity startup, employs a reverse proxy server system named Pegasus to protect their customers' network traffic against attacks. Pegasus is configured by software in a feature-oriented paradigm, composing components of domain-specific code to tailor security policies for customers. Since Shape's composition system has no developer-written way to enforce constraints between components, creating valid compositions is difficult. Our project addresses this issue by enabling a means for predicates to be written for components by the developers. This allows the use of programmable first order logic to validate that all components in a given policy satisfy the features' predicates. The result is a new language which tests facts using logic to validate policies.

  • This report represents the work of one or more WPI undergraduate students submitted to the faculty as evidence of completion of a degree requirement. WPI routinely publishes these reports on its website without editorial or peer review.
Creator
Publisher
Identifier
  • E-project-041519-200614
Advisor
Year
  • 2019
Center
Sponsor
Date created
  • 2019-04-15
Resource type
Major
Rights statement

Relations

In Collection:

Items

Items

Permanent link to this page: https://digital.wpi.edu/show/wh246v69t