Insecurity by Contract

P.L. Nico, C.S. Turner, and K.K. Nico (USA)


: Software Methodologies, Security, Reliability,Design by Contract


Design by Contract is a design methodology that promotes software reliability and reusability by requiring each com ponent module to have a well-specified interface and leaves a module's behavior undefined if its requirements are not met. The DBC methodology may well lead to software with fewer overall faults, but its lack of interface validation encourages the class of failures that, through error propa gation, results in violation of security policy. In this paper we explore the interaction of the tenets of the design by contract methodology with the requirements of system se curity.

Important Links:

Go Back