Interprocedural Analysis for Privileged Code Placement and Tainted Variable Detection

@inproceedings{Pistoia2005InterproceduralAF,
  title={Interprocedural Analysis for Privileged Code Placement and Tainted Variable Detection},
  author={Marco Pistoia and Robert J. Flynn and Larry Koved and Vugranam C. Sreedhar},
  booktitle={ECOOP},
  year={2005}
}
In Java 2 and Microsoft .NET Common Language Runtime (CLR), trusted code has often been programmed to perform accessrestricted operations not explicitly requested by its untrusted clients. Since an untrusted client will be on the call stack when access control is enforced, an access-restricted operation will not succeed unless the client is authorized. To avoid this, a portion of the trusted code can be made “privileged.” When access control is enforced, privileged code causes the stack… CONTINUE READING
Highly Cited
This paper has 70 citations. REVIEW CITATIONS

Citations

Publications citing this paper.
Showing 1-10 of 48 extracted citations

71 Citations

0510'08'11'14'17
Citations per Year
Semantic Scholar estimates that this publication has 71 citations based on the available data.

See our FAQ for additional information.

References

Publications referenced by this paper.
Showing 1-10 of 39 references

Similar Papers

Loading similar papers…