DOCSLIB.ORG

Advancing Practical Specification Techniques for Modern Software Systems

Total Page:16

File Type:pdf, Size:1020Kb

Download full-text PDF Read full-text
Advancing Practical Specification Techniques for Modern Software Systems University of Central Florida STARS Electronic Theses and Dissertations, 2004-2019 2018 Advancing Practical Specification echniquesT for Modern Software Systems John Singleton University of Central Florida Part of the Computer Sciences Commons Find similar works at: https://stars.library.ucf.edu/etd University of Central Florida Libraries http://library.ucf.edu This Doctoral Dissertation (Open Access) is brought to you for free and open access by STARS. It has been accepted for inclusion in Electronic Theses and Dissertations, 2004-2019 by an authorized administrator of STARS. For more information, please contact [email protected]. STARS Citation Singleton, John, "Advancing Practical Specification echniquesT for Modern Software Systems" (2018). Electronic Theses and Dissertations, 2004-2019. 5794. https://stars.library.ucf.edu/etd/5794 ADVANCING PRACTICAL SPECIFICATION TECHNIQUES FOR MODERN SOFTWARE SYSTEMS by JOHN L. SINGLETON B.S. University of Central Florida, 2014 M.S. University of Central Florida, 2016 A dissertation submitted in partial fulfilment of the requirements for the degree of Doctor of Philosophy in the Department of Computer Science in the College of Engineering and Computer Science at the University of Central Florida Orlando, Florida Spring Term 2018 Major Professor: Gary T. Leavens © 2018 John L. Singleton ii ABSTRACT The pervasive nature of software (and the tendency for it to contain errors) has long been a concern of theoretical computer scientists. Many investigators have endeavored to produce theories, tools, and techniques for verifying the behavior of software systems. One of the most promising lines of research is that of formal specification, which is a subset of the larger field of formal methods. In formal specification, one composes a precise mathematical description of a software system and uses tools and techniques to ensure that the software that has been written conforms to this specification. Examples of such systems are Z notation, the Java Modeling Language, and many others. However, a fundamental problem that plagues this line of research is that the specifications themselves are often costly to produce and difficult to reuse. If the field of formal specification is to advance, we must develop sound techniques for reducing the cost of producing and reusing software specifications. The work presented in this dissertation lays out a path to producing so- phisticated, automated tools for inferring large, complex code bases, tools for allowing engineers to share and reuse specifications, and specification languages for specifying information flow poli- cies that can be written separately from program code. This dissertation introduces three main lines of research. First, I discuss a system that facilitates the authoring, sharing, and reuse of software specifications. Next, I discuss a technique which aims to reduce the cost of producing specifica- tions by automatically inferring them. Finally, I discuss a specification language called Evidently which aims to make information flow security policies easier to write, maintain, and enforce by untangling them from the code to which they are applied. iii TABLE OF CONTENTS LIST OF FIGURES . x LIST OF TABLES . xiii CHAPTER 1: INTRODUCTION . 1 Terms and Concepts . .2 Summary of Content and Contributions . .4 CHAPTER 2: A LAYERED APPROACH TO SPECIFICATION AUTHORING, SHAR- ING, AND USAGE . 6 Motivation for Specification Reuse Tooling . .6 Problems in Specification Reuse . .9 Purity . 10 Specifications are Specialized to Analysis Domains . 11 Changes Invisible at the Language Level Can Cause Incompatible Specifications . 13 Subverting Security Specifications . 14 Overview of Spekl’s Features . 15 Verification Tool Installation and Usage . 15 iv Specification Consumption . 18 Specification Layering and Authoring . 18 Verification Tool Management . 20 Creating New Tools . 20 The Spekl Package Format . 21 Package Metadata . 21 Expressing Package Dependencies . 22 Package Assets . 23 Establishing Environmental Assumptions . 23 Specifying Installation Commands . 24 The Check Definition Language . 26 The defcheck Form ............................ 28 Publishing Tools to the Spekl Repository . 29 Installing Tools from the Spekl Repository . 31 Consuming Specifications . 32 The Spekl Specification Project Format . 32 Package Metadata . 32 v Specification and Tool Configuration . 33 Running Verification Tools . 35 Specification Authoring Features . 36 Creating New Specifications . 36 Layering Specifications . 37 How Spekl Manages Hierarchies . 38 Related Work . 41 CHAPTER 3: TRANSMUTING PREDICATE TRANSFORMER RESULTS TO INFER CONCISE SPECIFICATIONS . 43 Defining the Specification Inference Problem . 43 Problems with Specifications Inferred with SP . 47 Our Approach . 50 The FAR Algorithm . 52 Abstract Specifications . 53 Connection with SP . 56 Description of FAR . 59 Base Analysis Types . 63 vi Soundness of ∼ .................................... 63 Soundness of FAR . 64 CHAPTER 4: A TECHNICAL EVALUATION OF FAR AND STRONGARM . 69 Evaluation Methodology . 70 Verification of Inferred Specifications . 71 Threats to Validity . 72 Limitations . 73 Effectiveness of Inference . 73 Efficiency of Reduction . 76 Complexity of Inferred Specifications . 78 Performance of Inference . 78 Performance of FAR . 79 A Study of the Inferred Specifications . 82 Related Work . 85 CHAPTER 5: A POLICY SPECIFICATION LANGUAGE FOR CONDITIONAL GRAD- UAL RELEASE . 87 Introduction . 87 vii Comparison of Evidently with Existing Approaches . 89 Comparison with Aspect-Oriented Programming . 91 Background on information flow Policies . 92 Declassification . 94 Motivating Examples . 98 A Newspaper Changes its Subscription Model . 98 A Growing Ecommerce Site . 99 Modeling Programs for Use in Security Policies . 100 Running Example: Decryption Key Release . 101 Models . 101 Flowpoints . 102 Flowpoint Predicates and Predicate Operators . 103 Properties . 105 Property Projections . 106 Property Specifications . 107 Levels............................................ 108 Policies . 110 viii Template Parameters . 112 The Root Policy . 114 Defining the Default Security Lattice . 115 Implementation . 116 Motivating Examples Revisited . 118 A Newspaper Changes its Subscription Model . 118 A Growing Ecommerce Site . 121 Related Work . 122 CHAPTER 6: CONCLUSIONS . 124 LIST OF REFERENCES . 126 ix LIST OF FIGURES 2.1 (a) An example of an adapter that adapts the type of audio format produced by an audio capture library. (b) An example of attempting to adapt a pure method specification in an implementation that violates the purity. .9 2.2 A simple program and specification. 12 2.3 The updated specification of Figure 2.2. Note that the preconditions have been strengthened and the bounds on a and b have been tightened. 12 2.4 The updated specification of Figure 2.2. Note that the preconditions have been strengthened and the bounds on a and b have been tightened. 13 2.5 An overview of the.
Load more

Recommended publications
  • Continuation Join Points
    Continuation Join Points Yusuke Endoh, Hidehiko Masuhara, Akinori Yonezawa (University of Tokyo) 1 Background: Aspects are reusable in AspectJ (1) Example: A generic logging aspect can log user inputs in a CUI program by defining a pointcut Login Generic Logging id = readLine(); Aspect Main CUI Aspect cmd = readLine(); pointcut input(): call(readLine()) logging return value 2 Background: Aspects are reusable in AspectJ (2) Example: A generic logging aspect can also log environment variable by also defining a pointcut Q. Now, if we want to log environment variable (getEnv) …? Generic Logging Aspect A. Merely concretize an aspect additionally Env Aspect CUI Aspect pointcut input(): pointcut input(): Aspect reusability call(getEnv()) call(readLine()) 3 Problem: Aspects are not as reusable as expected Example: A generic logging aspect can NOT log inputs in a GUI program by defining a pointcut Login Generic Logging void onSubmit(id) Aspect { … } Main void onSubmit(cmd) GUI Aspect { … } pointcut Input(): call(onSubmit(Str)) logging arguments 4 Why can’t we reuse the aspect? Timing of advice execution depends on both advice modifiers and pointcuts Logging Aspect (inner) Generic Logging abstract pointcut: input(); Aspect after() returning(String s) : input() { Log.add(s); } unable to change to before 5 Workaround in AspectJ is awkward: overview Required changes for more reusable aspect: generic aspect (e.g., logging) two abstract pointcuts, two advice decls. and an auxiliary method concrete aspects two concrete pointcuts even if they are not needed 6 Workaround in AspectJ is awkward: how to define generic aspect Simple Logging Aspect 1. define two pointcuts abstract pointcut: inputAfter(); for before and after abstract pointcut: inputBefore(); after() returning(String s) : inputAfter() { log(s); } 2.
    [Show full text]
  • Aspectmaps: a Scalable Visualization of Join Point Shadows
    AspectMaps: A Scalable Visualization of Join Point Shadows Johan Fabry ∗ Andy Kellens y Simon Denier PLEIAD Laboratory Software Languages Lab Stephane´ Ducasse Computer Science Department (DCC) Vrije Universiteit Brussel RMoD, INRIA Lille - Nord Europe University of Chile Belgium France http://pleiad.cl http://soft.vub.ac.be http://rmod.lille.inria.fr of join points. Second, the specification of the implicit invocations is made through a pointcut that selects at which join points the Abstract aspect executes. The behavior specification of the aspect is called the advice. An aspect may contain various pointcuts and advices, When using Aspect-Oriented Programming, it is sometimes diffi- where each advice is associated with one pointcut. cult to determine at which join point an aspect will execute. Simi- The concepts of pointcuts and advices open up new possibil- larly, when considering one join point, knowing which aspects will ities in terms of modularization, allowing for a clean separation execute there and in what order is non-trivial. This makes it difficult between base code and crosscutting concerns. However this sepa- to understand how the application will behave. A number of visu- ration makes it more difficult for a developer to assess system be- alization tools have been proposed that attempt to provide support havior. In particular, the implicit invocation mechanism introduces for such program understanding. However, they neither scale up to an additional layer of complexity in the construction of a system. large code bases nor scale down to understanding what happens at This can make it harder to understand how base system and aspects a single join point.
    [Show full text]
  • Comprehensive Aspect Weaving for Java
    Science of Computer Programming 76 (2011) 1015–1036 Contents lists available at ScienceDirect Science of Computer Programming journal homepage: www.elsevier.com/locate/scico Comprehensive aspect weaving for Java Alex Villazón ∗, Walter Binder, Philippe Moret, Danilo Ansaloni Faculty of Informatics, University of Lugano, CH-6900 Lugano, Switzerland article info a b s t r a c t Article history: Aspect-oriented programming (AOP) has been successfully applied to application code Received 20 July 2009 thanks to techniques such as Java bytecode instrumentation. Unfortunately, with existing Received in revised form 19 October 2009 AOP frameworks for Java such as AspectJ, aspects cannot be woven into the standard Java Accepted 2 December 2009 class library. This restriction is particularly unfortunate for aspects that would benefit Available online 29 April 2010 from comprehensive aspect weaving with complete method coverage, such as profiling or debugging aspects. In this article we present MAJOR, a new tool for comprehensive aspect Keywords: weaving, which ensures that aspects are woven into all classes loaded in a Java Virtual Aspect-oriented programming Aspect weaving Machine, including those in the standard Java class library. MAJOR includes the pluggable Bytecode instrumentation module CARAJillo, which supports efficient access to a complete and customizable calling Profiling context representation. We validate our approach with three case studies. Firstly, we Debugging weave existing profiling aspects with MAJOR which otherwise would generate incomplete Detecting memory leaks profiles. Secondly, we introduce an aspect for memory leak detection that also benefits Recreating crashing conditions from comprehensive weaving. Thirdly, we present an aspect subsuming the functionality Java Virtual Machine of ReCrash, an existing tool based on low-level bytecode instrumentation techniques that generates unit tests to reproduce program failures.
    [Show full text]
  • A Comparison of Context-Oriented and Aspect-Oriented Programming
    A comparison of Context-Oriented and Aspect-Oriented Programming Matthias Springer Hasso Plattner Institute, Advanced Modularity, seminar paper Abstract. Aspect-oriented programming and context-oriented program- ming were designed to modularize cross-cutting concerns that would oth- erwise lead to scattered code. We illustrate conceptual differences be- tween aspect-oriented programming and context-oriented programming in order to point out which technique should be used for a given use case. Besides, we motivate that pointcuts and immediate layer activation no- tifications can be useful in context-oriented programming. 1 Software development for mobile devices In this paper, we will compare aspect-oriented programming and context-oriented programming, two techniques for modularizing cross-cutting concerns. We will show two typical use cases in the area of mobile devices, immediate feedback and power management, that we will implement using aspect-oriented programming and context-oriented programming. 1.1 Immediate feedback Haptic feedback and auditive feedback are well-known patterns in human-com- puter interaction [7]. The idea is to provide immediate feedback to user input, such that the user can be certain that the device received the input. In this example the mobile device should vibrate for a quarter of a second after the user touched the touch screen or pressed a keyboard button or another hardware button. Alternatively, the device should play an unobtrusive click sound. 1.2 Power management Figure 1 shows four power states for a mobile device. If the battery charge level is 50% or greater, then the device is in the high battery state. In that state, no power saving mechanisms are activated, i.e.
    [Show full text]
  • An AOP Extension for C++
    Workshop Aspects AspectC++: Olaf Spinczyk Daniel Lohmann Matthias Urban an AOP Extension for C++ ore and more software developers are The aspect Tracing modularises the implementa- On the CD: getting in touch with aspect-oriented tion of output operations, which are used to trace programming (AOP). By providing the the control flow of the program. Whenever the exe- The evaluation version M means to modularise the implementation of cross- cution of a function starts, the following aspect prints of the AspectC++ Add- in for VisualStudio.NET cutting concerns, it stands for more reusability, its name: and the open source less coupling between modules, and better separa- AspectC++ Develop- tion of concerns in general. Today, solid tool sup- #include <cstdio> ment Tools (ACDT) port for AOP is available, for instance, by JBoss for Eclipse, as well as // Control flow tracing example example listings are (JBoss AOP), BEA (AspectWerkz), and IBM (As- aspect Tracing { available on the ac- pectJ) and the AJDT for Eclipse. However, all // print the function name before execution starts companying CD. these products are based on the Java language. advice execution ("% ...::%(...)") : before () { For C and C++ developers, none of the key players std::printf ("in %s\n", JoinPoint::signature ()); offer AOP support – yet. } This article introduces AspectC++, which is an as- }; pect-oriented language extension for C++. A compil- er for AspectC++, which transforms the source code Even without fully understanding all the syntactical into ordinary C++ code, has been developed as elements shown here, some big advantages of AOP an open source project. The AspectC++ project be- should already be clear from the example.
    [Show full text]
  • Efficient Late Binding of Dynamic Function Compositions
    Efficient Late Binding of Dynamic Function Compositions Lars Schütze Jeronimo Castrillon Chair for Compiler Construction Chair for Compiler Construction Technische Universität Dresden Technische Universität Dresden Dresden, Germany Dresden, Germany [email protected] [email protected] Abstract 1 Introduction Adaptive software becomes more and more important as Ubiquitous computing leads to new challenges where context- computing is increasingly context-dependent. Runtime adapt- dependent software is more and more important. Developing ability can be achieved by dynamically selecting and apply- such software requires approaches that focus on objects, their ing context-specific code. Role-oriented programming has context-dependent behavior and relations. Object-oriented been proposed as a paradigm to enable runtime adaptive soft- programming (OOP) is the de facto standard approach to ware by design. Roles change the objects’ behavior at run- those problems today. This is because of the comprehensi- time and thus allow adapting the software to a given context. bility of object-oriented models and code which enables an However, this increased variability and expressiveness has intuitive representation of aspects of the real world. That is a direct impact on performance and memory consumption. how classes, objects, functions and inheritance originated. We found a high overhead in the steady-state performance of For example, an aspect of the real world is that an object may executing compositions of adaptations. This paper presents appear in different roles at different times (i.e., contexts). To a new approach to use run-time information to construct a reflect the different roles of entities, design patterns have dispatch plan that can be executed efficiently by the JVM.
    [Show full text]
  • A Joint Point Interfaces for Safe and Flexible Decoupling of Aspects
    A Joint Point Interfaces for Safe and Flexible Decoupling of Aspects Eric Bodden, Technische Universität Darmstadt Éric Tanter, University of Chile Milton Inostroza, University of Chile In current aspect-oriented systems, aspects usually carry, through their pointcuts, explicit references to the base code. Those references are fragile and hinder important software engineering properties such as modular reasoning and independent evolution of aspects and base code. In this work, we introduce a novel abstraction called Join Point Interface, which, by design, aids modular reasoning and independent evolution by decoupling aspects from base code and by providing a modular type-checking algorithm. Join point in- terfaces can be used both with implicit announcement through pointcuts, and with explicit announcement, using closure join points. Join point interfaces further offer polymorphic dispatch on join points, with an advice-dispatch semantics akin to multi-methods. To support flexible join point matching, we incorporate into our language an earlier proposal for generic advice, and introduce a mechanism for controlled global quantification. We motivate each language feature in detail, showing that it is necessary to obtain a lan- guage design that is both type safe and flexible enough to support typical aspect-oriented programming idioms. We have implemented join point interfaces as an open-source extension to AspectJ. A case study on existing aspect-oriented programs supports our design, and in particular shows the necessity of both generic interfaces and some mechanism for global quantification. Categories and Subject Descriptors: D.2.3 [Software Engineering]: Coding Tools and Techniques; D.3.3 [Programming Languages]: Language Constructs and Features General Terms: Design, Languages Additional Key Words and Phrases: aspect-oriented programming, modularity, typing, interfaces, implicit announcement, explicit announcement, join point polymorphism, advice dispatch 1.
    [Show full text]
  • Analyzing Multi-Dimensional Programming in Aop and Composition Filters
    ANALYZING MULTI-DIMENSIONAL PROGRAMMING IN AOP AND COMPOSITION FILTERS Lodewijk M.J. Bergmans ([email protected]) Mehmet Aksit ([email protected]) http://trese.cs.utwente.nl TRESE GROUP – CENTRE FOR TELEMATICS AND INFORMATION TECHNOLOGY (CTIT) UNIVERSITY OF TWENTE, P.O. BOX 217, 7500 AE, ENSCHEDE, THE NETHERLANDS Abstract--In this paper, we investigate the meaning and impact of multi-dimensional construction of soft- ware, as exemplified by Aspect-Oriented Programming and Composition Filters. A simple application is introduced to illustrate the discussion topics. We conclude with a number of requirements for multi- dimensional programming. Lately, the software engineering field is increasingly becom- In this paper, we investigate the meaning and impact of ing aware of the need for better modeling techniques to be multi-dimensional construction of software with a few mod- able to design systems as compositions of independent con- eling approaches, notably aspect-oriented programming and cerns. Various models such as Adaptive Programming composition filters. [Mezini 98], Aspect-Oriented Programming [Kiczales 97], Subject-Oriented Programming [Harrison 93] and Composi- tion Filters [Aksit 88, 92, 94] have triggered and/or addressed 1. MODELING SOFTWARE this need. In particular Aspect-Oriented Programming (AOP) is gaining much interest recently. From a software-engineering point of view, a key require- ment of software development is to be able to construct a Previously, we have argued for extending AOP towards – system by combining modules
    [Show full text]
  • A Brief Tour of Join Point Interfaces
    A Brief Tour of Join Point Interfaces Eric Bodden Éric Tanter Milton Inostroza Secure Software Engineering PLEIAD Lab EC SPRIDE, TU Darmstadt, Germany Computer Science Dept (DCC) [email protected] University of Chile {etanter,minostro}@dcc.uchile.cl ABSTRACT As we show in Figure 1a, aspects with pointcuts and ad- In standard AspectJ, aspects and base code are often in- vice as in AspectJ cause implicit dependencies between as- sufficiently decoupled, as aspects hold pointcuts, which can pects and base code. This is because an aspect contains contain explicit textual references to base code. This hin- direct textual references to the base code via its pointcuts. ders aspect evolution and reuse, and may hinder reasoning These implicit dependencies, denoted by the dashed arrows about aspects on the base-code side. in the figure, make programs fragile, hinder aspect evolution In this demo we present join point interfaces as an ex- and reuse, and compromise separate development. Changes tension to the aspect-oriented programming language As- in the base code can unwittingly render aspects ineffective pectJ. Opposed to AspectJ, with join point interfaces as- or cause spurious advice applications. Conversely, a change pects and base code communicate only through a shared in a pointcut definition may cause parts of the base pro- interface abstraction. Aspects themselves go without point- gram to be advised without notice, breaking some implicit cuts and only reference the interface. Pointcuts are typically assumptions. This problem is known as the fragile pointcut defined on the base-code side, or not at all, as join point problem [4, 7].
    [Show full text]
  • Aspect-Oriented Programming and Aspectj
    What is Aspect-Oriented Programming? Many possible answers: • a fad • a way-too-general collection of cross-cutting Aspect-Oriented programming techniques Programming and AspectJ • a new name for old ideas (generators, domain- specific languages, MOPs) • Aspect-oriented programming is a common buzzword lately • the solution to all our problems • Papers from ECOOP 1997 (early overview— My opinion: AOP is just a new name for old the manifesto), ECOOP 2001 (overview of ideas, but these ideas are good AspectJ) - dominant AOP implementations (e.g., AspectJ) are MOP-like, but they don’t • Kiczales (the team leader) was behind the need to be CLOS MOP An aspect is a piece of functionality that cross- cuts functional units of a system 1 of 18 2 of 18 Yannis Smaragdakis Yannis Smaragdakis Simple Working Example (bad, IMO) Aspect-Oriented Principles • Image processing application with filters • A component is a part of the implementation - filters need to be kept separate that is localized in traditional languages (Java/ - filters need to be fused together for C/C++, etc.) optimization (e.g., loop fusion) • An aspect is a part of the implementation that (defun or! (a b) is not well-localized with traditional languages (let ((result (new-image))) (code ends up being scattered everywhere) (loop for i from 1 to width do (loop for j from 1 to height do • AOP tries to offer language support for (set-pixel result i j expressing aspects concisely and separately (or (get-pixel a i j) (get-pixel b i j))))) from components result)) • Join points: the points
    [Show full text]
  • Aspect-Oriented Instrumentation with GCC
    Formal Methods in System Design manuscript No. (will be inserted by the editor) INTERASPECT: Aspect-Oriented Instrumentation with GCC Justin Seyster · Ketan Dixit · Xiaowan Huang · Radu Grosu · Klaus Havelund · Scott A. Smolka · Scott D. Stoller · Erez Zadok Received: date / Accepted: date Abstract We present the INTERASPECT instrumentation framework for GCC, a widely used compiler infrastructure. The addition of plug-in support in the latest release of GCC makes it an attractive platform for runtime instrumentation, as GCC plug-ins can directly add instrumentation by transforming the compiler’s intermediate representation. Such trans- formations, however, require expert knowledge of GCC internals. INTERASPECT addresses this situation by allowing instrumentation plug-ins to be developed using the familiar vo- cabulary of Aspect-Oriented Programming: pointcuts, join points, and advice functions. Moreover, INTERASPECT uses specific information about each join point in a pointcut, possibly including results of static analysis, to support powerful customized instrumenta- tion. We describe the INTERASPECT API and present several examples that illustrate its practical utility as a runtime-verification platform. We also introduce a tracecut system that uses INTERASPECT to construct program monitors that are formally specified as regular expressions. Keywords program instrumentation, aspect-oriented programming, GCC, monitoring, tracecut 1 Introduction GCC is a widely used compiler infrastructure that supports a variety of input languages, e.g., C, C++, Fortran, Java, and Ada, and over 30 different target machine architectures. GCC translates each of its front-end languages into a language-independent intermediate representation called GIMPLE, which then gets translated to machine code for one of GCC’s many target architectures.
    [Show full text]
  • An Overview of Aspectj
    An Overview of AspectJ Gregor Kiczales1, Erik Hilsdale2, Jim Hugunin2, Mik Kersten2, Jeffrey Palm2 and William G. Griswold3 1 Department of Computer Science, University of British Columbia, 201-2366 Main Mall, Vancouver, BC V6T 1Z4 Canada [email protected] 2 Xerox Palo Alto Research Center 3333 Coyote Hill Road, Palo Alto, CA 94304 USA (hilsdale, hugunin, mkersten, palm)@parc.xerox.com 3 Department of Computer Science and Engineering, University of California, San Diego La Jolla, CA 92093 USA [email protected] Abstract. AspectJ™ is a simple and practical aspect-oriented extension to Java™. With just a few new constructs, AspectJ provides support for modular implementation of a range of crosscutting concerns. In AspectJ’s dynamic join point model, join points are well-defined points in the execution of the program; pointcuts are collections of join points; advice are special method-like constructs that can be attached to pointcuts; and aspects are modular units of crosscutting implementation, comprising pointcuts, advice, and ordinary Java member declarations. AspectJ code is compiled into standard Java bytecode. Simple extensions to existing Java development environments make it possible to browse the crosscutting structure of aspects in the same kind of way as one browses the inheritance structure of classes. Several examples show that AspectJ is powerful, and that programs written using it are easy to understand. 1 Introduction Aspect-oriented programming (AOP) [14] has been proposed as a technique for improving separation of concerns in software.1 AOP builds on previous technologies, including procedural programming and object-oriented programming, that have already made significant improvements in software modularity.
    [Show full text]