Abstract of

'Aspect-Oriented Security for Web-Applications'

Identity Management is becoming more and more important in business systems as they are opened for third parties including trading partners, consumers and suppliers. This paper presents an approach to securing a system without any knowledge of its source code. The security module adds authentication and authorisation functionalities based on aspect oriented programming (AOP) and the liberty alliance identity federation framework, an upcoming industry standard providing single sign on (SSO). High modularisation is achieved through use of AspectJ, a programming language extension of Java. The security module is adapted to the host application in an intuitive, initial training phase. The use of hardware tokens and proactive computing as authorisation methods is demonstrated.