Open Access
Alternative Java Security Policy Model
Frédéric Samson
- 01 Jan 2004
TL;DR: In this paper, the authors propose a new security policy together with the relevant verification mechanisms, which is aimed at controlling the access to the system resources in a trustable and flexible way.
read more
Abstract: Java language and technology [3, 4, 10] were proposed with security in mind, yet there are some limitations especially when it comes to running Java applications in a distributed context. In this work we propose a new security policy together with the relevant verification mechanisms. This model is aimed at controlling the access to the system resources in a trustable and flexible way. This model extends the existing security mechanisms offered by Java in two ways: first the authentication is based on public keys rather than global names which is more flexible. Second our model supports delegation which is of major importance in a distributed context. The new model has been integrated in a Jini-based platform.
read more
Chat with Paper
AI Agents for this Paper
Find similar papers on Google Scholar, PubMed and Arxiv
Write a critical review of this paper
Analyze citations of this paper to find unaddressed research gaps
Citations
•Journal Article
Finite-state analysis of security protocols
TL;DR: Several approaches have been developed for analyzing security protocols as mentioned in this paper, including specialized logics that formalize notions such as secrecy and belief, special-purpose automated tools for cryptographic protocol analysis, and methods that apply general theorem-proving or model-checking tools to security protocols.
References
•Book
The Java Virtual Machine Specification
Tim Lindholm,Frank Yellin +1 more
- 19 Sep 1996
TL;DR: In this article, the authors present a detailed overview of the Java Virtual Machine, including the internal structure of the class file format, the internal form of Fully Qualified Class and Interface names, and the implementation of new class instances.
Kerberos: an authentication service for computer networks
B.C. Neuman,T. Ts'o +1 more
TL;DR: The authors concentrate on authentication for real-time, interactive services that are offered on computer networks, which includes remote login, file system reads and writes, and information retrieval for applications like Mosaic.
Analysis of the SSL 3.0 protocol
David Wagner,Bruce Schneier +1 more
- 18 Nov 1996
TL;DR: A number of minor flaws in the protocol and several new active attacks on SSL are presented; however, these can be easily corrected without overhauling the basic structure of the protocol.
•Book
Java and the Java Virtual Machine: Definition, Verification, Validation
Egon Börger,Robert F. Stärk,Joachim Schmid +2 more
- 20 Jun 2001
TL;DR: In this article, the authors decomposed Java and the JVM, and proposed a dynamic virtual machine to define loaders and transition rules for Java programs, and verified the correctness of these transition rules.
363
Related Papers (5)
Eric Samson
- 01 Jan 2004
Pekka Nikander,Jonna Partanen +1 more
- 01 Jan 1999
Sean B. Maynard,Tobias Ruighaver +1 more
- 01 Jan 1999