This paper presents an approach to addressing the known weaknesses and security issues of JVM stack inspection in a unified framework. We first propose an enhanced JVM access control mechanism. In this mechanism, values are also associated with security levels. When enforcing access control, this mechanism checks not only the permissions of code on stack as the usual stack inspection, but also the security levels of values to make sure they are used legally. We then present a static type system to verify whether a bytecode program satisfies the security property achieved by this enhanced mechanism. This type system performs modular and context-sensitive analysis at the method level by generating and solving constraints, and path-sensitive a...
The Java Virtual Machine embodies a verifier which performs a set of checks on bytecode programs bef...
The paper focuses on stack inspection, the access control mechanism implemented in Java and the CLR...
This paper presents a static type system for JAVA Virtual Machine (JVM) code that enforces an access...
We present an approach enabling end-users to prove security properties of the Java bytecode by stati...
We present a method to certify a subset of the Java bytecode, with respect to security. The method i...
Security of Java programs is important as they can be executed in different platforms. This paper ad...
AbstractType-based protection mechanisms in a JVM-like environment must be administrated by the code...
Bytecode verification is a crucial security component for Java applets, on the Web and on embedded d...
When an applet is sent over the internet, Java Virtual Machine code is transmitted and remotely exec...
Through the design and implementation of a JVM that supports Pluggable Verification Modules (PVMs), ...
AbstractOut of annotated programs proof carrying code systems construct and prove verification condi...
AbstractThe current definition of the Java bytecode verifier, as well as the proposals to formalize ...
Stack inspection is a security mechanism implemented in runtimes such as the JVM and the CLR to acco...
The Java Virtual Machine embodies a verifier which performs a set of checks on bytecode programs bef...
Bytecode verification is one of the key security functions of several architectures for mobile and e...
The Java Virtual Machine embodies a verifier which performs a set of checks on bytecode programs bef...
The paper focuses on stack inspection, the access control mechanism implemented in Java and the CLR...
This paper presents a static type system for JAVA Virtual Machine (JVM) code that enforces an access...
We present an approach enabling end-users to prove security properties of the Java bytecode by stati...
We present a method to certify a subset of the Java bytecode, with respect to security. The method i...
Security of Java programs is important as they can be executed in different platforms. This paper ad...
AbstractType-based protection mechanisms in a JVM-like environment must be administrated by the code...
Bytecode verification is a crucial security component for Java applets, on the Web and on embedded d...
When an applet is sent over the internet, Java Virtual Machine code is transmitted and remotely exec...
Through the design and implementation of a JVM that supports Pluggable Verification Modules (PVMs), ...
AbstractOut of annotated programs proof carrying code systems construct and prove verification condi...
AbstractThe current definition of the Java bytecode verifier, as well as the proposals to formalize ...
Stack inspection is a security mechanism implemented in runtimes such as the JVM and the CLR to acco...
The Java Virtual Machine embodies a verifier which performs a set of checks on bytecode programs bef...
Bytecode verification is one of the key security functions of several architectures for mobile and e...
The Java Virtual Machine embodies a verifier which performs a set of checks on bytecode programs bef...
The paper focuses on stack inspection, the access control mechanism implemented in Java and the CLR...
This paper presents a static type system for JAVA Virtual Machine (JVM) code that enforces an access...