Journal Article10.1002/SPE.528
A security framework for reflective Java applications
Denis Caromel,Julien Vayssière +1 more
14
TL;DR: This paper presents a security framework for enforcing access control between metalevel components and the baselevel components they reflect on, and extends the standard security architecture of Java to provide security for a fully‐functional proxy‐based MOP for Java.
read more
Abstract: The advent of component-based reflective applications raises the issue of protecting baselevel components from the actions performed by metalevel components. However, by their very nature, reflective applications are far more difficult to secure than non-reflective applications, which certainly explains why the problem has received very little attention so far. In this paper we present a security framework for enforcing access control between metalevel components and the baselevel components they reflect on Rather than designing a new security architecture from scratch, we extend the standard security architecture of Java to provide security for a fully-functional proxy-based MOP for Java. We implement a number of well-known meta-level behaviors and study their security requirements, the results of which support our design choices.
read more
Chat with Paper
AI Agents for this Paper
Find similar papers on Google Scholar, PubMed and Arxiv
Write a critical review of this paper
Analyze citations of this paper to find unaddressed research gaps
Citations
Secure and modular access control with aspects
Rodolfo Toledo,Éric Tanter +1 more
- 24 Mar 2013
TL;DR: It is demonstrated that it is possible to fully modularize aspect control, even in the presence of untrusted aspects, by describing a self-protecting aspect that secures ModAC and using a core calculus for AspectScript, an aspect-oriented extension of JavaScript, to prove effectiveness and non-interference properties of ModAC.
Activity Report 2012. Project-Team RMOD. Analyses and Languages Constructs for Object-Oriented Application Evolution
Nicolas Anquetil,Damien Cassou,Marcus Denker,Stéphane Ducasse,Damien Pollet +4 more
- 20 Dec 2012
TL;DR: Activity Report 2012 Project-Team RMOD Analyses and Languages Constructs for Object-Oriented Application Evolution
7
An access control framework for reflective middleware
Gang Huang,Lianshan Sun +1 more
TL;DR: This paper studies how to design a reflective J2EE middleware — PKUAS with access control in mind and evaluates the security and the performance overheads of the framework in quality and quantity.
6
•Dissertation
Using a loadtime metaobject protocol to enforce access control policies upon user-level compiled code
Ian Shawn Welch
- 01 Jan 2005
TL;DR: This thesis evaluates the use of a loadtime metaobject protocol as a practical mechanism for enforcing access control policies upon applications distributed as user-level compiled code.
•Dissertation
Protecting management information systems: Virtual Private Network competitive advantage
Sid Sirisukha
- 21 Feb 2008
3
References
•Book
The Java Language Specification
James Gosling,Bill Joy,Guy L. Steele +2 more
- 12 Sep 1996
TL;DR: The Java Language Specification, Second Edition is the definitive technical reference for the Java programming language and provides complete, accurate, and detailed coverage of the syntax and semantics of the Java language.
The protection of information in computer systems
Jerome H. Saltzer,Michael D. Schroeder +1 more
- 01 Sep 1975
TL;DR: In this article, the authors explore the mechanics of protecting computer-stored information from unauthorized use or modification, focusing on those architectural structures-whether hardware or software-that are necessary to support information protection.
Monitors: an operating system structuring concept
TL;DR: In this paper, the authors develop Brinch-Hansen's concept of a monitor as a method of structuring an operating system and describe a possible method of implementation in terms of semaphores and give a suitable proof rule.
Protection of information in computer systems
Jerome H. Saltier,Michael D. Schroeder +1 more
- 01 Dec 1975
TL;DR: An excellant technical survey of the mechanics of protecting computer-stored information from unauthorised use or modifications, with a focus on the conceptual framework necessary to enforce data security.
1.4K
JFlow: practical mostly-static information flow control
Andrew C. Myers
- 01 Jan 1999
TL;DR: The new language JFlow is described, an extension to the Java language that adds statically-checked information flow annotations and provides several new features that make information flow checking more flexible and convenient than in previous models.
Related Papers (5)
Qun Zhong,N. Edwards +1 more
- 20 Oct 1998
Almut Herzog,Nahid Shahmehri +1 more
- 01 Jan 2002
Muahmmad Ali Babar,Xiaowen Wang,Ian Gorton +2 more
- 20 Sep 2005