Securing Java with Local Policies

Abstract

We propose an extension to the security model of Java. It allows for specifying, analysing and enforcing history-based policies. Policies are defined by finite state automata recognizing the permitted execution histories. Programmers can sandbox an untrusted piece of code with a policy, which is enforced at run-time through its local scope. A static analysis allows for optimizing the execution monitor, that will only check the program points where some security violation may actually occur.

DOI: 10.5381/jot.2009.8.4.a1

2 Figures and Tables

Cite this paper

@article{Bartoletti2009SecuringJW, title={Securing Java with Local Policies}, author={Massimo Bartoletti and Gabriele Costa and Pierpaolo Degano and Fabio Martinelli and Roberto Zunino}, journal={Journal of Object Technology}, year={2009}, volume={8}, pages={5-32} }