IRM enforcement of Java stack inspection

IRM enforcement of Java stack inspection

Two implementations are given for Java's stack inspection access-control policy. Each implementation is obtained by generating an inlined reference monitor (IRM) for a different formulation of the policy. Performance of the implementations is evaluated, and one is found to be competitive with J...

Ausführliche Beschreibung

Gespeichert in:
Bibliographische Detailangaben
Veröffentlicht in:Proceeding 2000 IEEE Symposium on Security and Privacy. S&P 2000 2000, p.246-255
Hauptverfasser: Erlingsson, U., Schneider, F.B.
Format: Artikel
Sprache:eng
Schlagworte:
Binary codes
Computer science
Computerized monitoring
Decoding
Genetics
Inspection
Java
Power system security
Runtime
Virtual machining
Online-Zugang:Volltext bestellen
Tags: Tag hinzufügen
Keine Tags, Fügen Sie den ersten Tag hinzu!
Beschreibung
Zusammenfassung:Two implementations are given for Java's stack inspection access-control policy. Each implementation is obtained by generating an inlined reference monitor (IRM) for a different formulation of the policy. Performance of the implementations is evaluated, and one is found to be competitive with Java's less flexible, JVM-resident implementation. The exercise illustrates the power of the IRM approach for enforcing security policies.
ISSN:1081-6011
1063-7109
2375-1207
DOI:10.1109/SECPRI.2000.848461