Abstract Confined types enforce a form of encapsulation stronger than what the standard Java typesystem offers. It is known that confined types effectively prevent accidental reference leaks that could lead to security breaches in object-oriented programs. Because existing formulationsof confined types target the Java source language, they can only be enforced by the code producer at compile time. As such these formulations fail to qualify as practical language-based protection mechanisms for the Java platform. This paper presents a capability-based formulation of confined types for JVM bytecode,and reports the first implementation to enforce confined types at link time, on the code consumer side. This novel formulation of confined types is...
International audienceSun and the CERT recommend for secure Java development to not allow partially ...
Thesis (Ph. D.)--Massachusetts Institute of Technology, Dept. of Electrical Engineering and Computer...
Abstract—LJGS is a lightweight Java core calculus with a gradual security type system. The calculus ...
The language-based approach to security employs programming language technologies to construct secur...
AbstractType-based protection mechanisms in a JVM-like environment must be administrated by the code...
Sharing and transfer of references is difficult to control in object-oriented languages. As informat...
Confinement is required in object-oriented programming in order to protect sensitive object referenc...
Confinement properties impose a structure on object graphs which can be used to enforce encapsulatio...
Language-based security provides a means to enforce end-to-end condentiality and integrity policies ...
Many secure applications are emerging using the Java TM language and running on the Java platform....
machine level: The Java Virtual Machine (JVM) is a language dependent abstract machine that is close...
AbstractThe current definition of the Java bytecode verifier, as well as the proposals to formalize ...
Abstract To offload the computational burden of bytecode verification within Java Virtual Machines (...
Existing approaches to object encapsulation either rely on ad hoc syntactic restrictions or require ...
The Java Virtual Machine executes bytecode programs that may have been sent from other, possibly unt...
International audienceSun and the CERT recommend for secure Java development to not allow partially ...
Thesis (Ph. D.)--Massachusetts Institute of Technology, Dept. of Electrical Engineering and Computer...
Abstract—LJGS is a lightweight Java core calculus with a gradual security type system. The calculus ...
The language-based approach to security employs programming language technologies to construct secur...
AbstractType-based protection mechanisms in a JVM-like environment must be administrated by the code...
Sharing and transfer of references is difficult to control in object-oriented languages. As informat...
Confinement is required in object-oriented programming in order to protect sensitive object referenc...
Confinement properties impose a structure on object graphs which can be used to enforce encapsulatio...
Language-based security provides a means to enforce end-to-end condentiality and integrity policies ...
Many secure applications are emerging using the Java TM language and running on the Java platform....
machine level: The Java Virtual Machine (JVM) is a language dependent abstract machine that is close...
AbstractThe current definition of the Java bytecode verifier, as well as the proposals to formalize ...
Abstract To offload the computational burden of bytecode verification within Java Virtual Machines (...
Existing approaches to object encapsulation either rely on ad hoc syntactic restrictions or require ...
The Java Virtual Machine executes bytecode programs that may have been sent from other, possibly unt...
International audienceSun and the CERT recommend for secure Java development to not allow partially ...
Thesis (Ph. D.)--Massachusetts Institute of Technology, Dept. of Electrical Engineering and Computer...
Abstract—LJGS is a lightweight Java core calculus with a gradual security type system. The calculus ...