Publication | Closed Access
IRM enforcement of Java stack inspection
293
Citations
17
References
2002
Year
Unknown Venue
Software MaintenanceEngineeringInspectionInformation SecuritySoftware EngineeringSoftware AnalysisFormal VerificationJvm-resident ImplementationHardware SecurityJava Stack InspectionAccess ControlSystems EngineeringStatic CheckingRuntime VerificationComputer EngineeringComputer ScienceReal-time JavaInlined Reference MonitorStatic Program AnalysisLanguage-based SecurityData SecuritySoftware SecurityProgram AnalysisSoftware TestingIrm ApproachSystem Software
Two implementations are given for Java's stack inspection access-control policy. Each implementation is obtained by generating an inlined reference monitor (IRM) for a different formulation of the policy. Performance of the implementations is evaluated, and one is found to be competitive with Java's less flexible, JVM-resident implementation. The exercise illustrates the power of the IRM approach for enforcing security policies.
| Year | Citations | |
|---|---|---|
Page 1
Page 1