Larry Koved P.O. Box 704 Marco Pistoia P.O. Box 704...  Home/Search
Context Related
| mit.edu/readinggrou...koved02access.ps Cached: PS.gz PS PDF This document uses CoBlitz to cache paper downloads. If your firewall is blocking outgoing connections to port 3125, you can use these links to download local copies.
Image Update HelpPS.gz PS PDF From: mit.edu/readinggroup/spring03 (more) (Enter author homepages) |
Rate this article:      (best)Comment on this article |
Abstract: Java^TM 2 has a security architecture that protects systems from unauthorized access by mobile or statically configured code. The problem is in manually determining the set of security access rights required to execute a library or application. The commonly used strategy is to execute the code, note authorization failures, allocate additional access rights, and test again. This process iterates until the code successfully runs for the test cases in hand. Test cases usually do not cover all... (Update)
Cited by: More
Reflection Analysis for Java - Benjamin Livshits John (2005) (Correct)
MOPS: an Infrastructure for Examining Security Properties of.. - Chen, Wagner (2002) (Correct)
Security-Aware Program Transformations - Bartoletti, Degano, Ferrari (2003) (Correct)
Active bibliography (related documents): More All
0.4: Stack Inspection: Theory and Variants - Fournet, Gordon (2001) (Correct)
0.2: Secure Calling Contexts for Stack Inspection - Besson, de Latour, Jensen (2002) (Correct)
0.2: Representation Independence, Confinement and Access Control.. - Banerjee, Naumann (2002) (Correct)
Similar documents based on text: More All
0.2: Internet Security in the Network Computing Framework - Pistoia, Kojima, Raghu (Correct)
0.2: CVIEW: A Real-Time Interactive Conferencing System - Koved (Correct)
0.2: User Authentication and Authorization in the Java Platform - Lai, Gong, Koved.. (1999) (Correct)
Related documents from co-citation: More All
7: A framework for call graph construction algorithms (context) - Grove, Chambers - 2001
6: Detecting format string vulnerabilities with type qualifiers - Shankar, Talwar et al. - 2001
5: A Theory of Type Qualifiers - Foster, Fahndrich et al. - 1999
BibTeX entry: (Update)
L. Koved, M. Pistoia, and A. Kershenbaum. Access rights analysis for java. In Proceedings of the 17th Annual ACM Conference on Object-Oriented Programming, Systems, Languages, and Applications, 2002. http://citeseer.ist.psu.edu/700455.html More
@misc{ koved02access,
author = "L. Koved and M. Pistoia and A. Kershenbaum",
title = "Access rights analysis for java",
text = "L. Koved, M. Pistoia, and A. Kershenbaum. Access rights analysis for java.
In Proceedings of the 17th Annual ACM Conference on Object-Oriented Programming,
Systems, Languages, and Applications, 2002.",
year = "2002",
url = "citeseer.ist.psu.edu/700455.html" }
Citations (may not include all citations):292 Advanced Compiler Design And Implementation (context) - Muchnick - 1997
194 The Protection of Information in Computer Systems (context) - Saltzer, Schroeder - 1975
190 Optimization of object-oriented programs using static class .. - Dean, Grove et al. - 1995
156 A Unified Approach to Global Program Optimization (context) - Kildall - 1973
149 Precise Concrete Type Inference for Object-Oriented Language.. - Plevyak, Chien - 1994
136 Java Security: From HotJava to Netscape and Beyond - Dean, Felten et al. - 1996
127 Control-flow Analysis in Scheme (context) - Shivers - 1988
92 Going Beyond the Sandbox: An Overview of the New Security Ar.. - Gong, Mueller et al. - 1997
75 Practical Virtual Method Call Resolution for Java - Sundaresan, Hendren et al. - 2000
71 Fast static analysis of C++ virtual function calls (context) - Bacon, Sweeney - 1996
62 Scalable Propagation-Based Call Graph Construction Algorithm.. - Tip, Palsberg - 2000
60 The Security of Static Typing with Dynamic Linking - Dean - 1997
51 Understanding Java Stack Inspection - Wallach, Felten - 1998
49 The Cartesian Product Algorithm: Simple and precise type inf.. - Agesen - 1995
47 IRM Enforcement of Java Stack Inspection - Schneider - 2000
39 Implementing Protection Domains in the Java Development Kit - Gong, Schemers - 1998
30 A Framework for Call Graph Construction Algorithms (context) - Grove, Chambers - 2001
24 Call graph construction in object-oriented languages (context) - Chambers, Grove et al. - 1997
23 Java Security: Web Browsers and Beyond - Dean, Felten et al. - 1997
21 Verification of control flow based security properties - Jensen, Le Mtayer et al. - 1998
15 A Systematic Approach to Static Access Control - Pottier, Skalka et al. - 2001
10 Fast and Effective Optimization of Statically Typed Object-O.. - Bacon - 1997
9 Static Analysis for Stack Inspection (context) - Bartoletti, Degano et al. - 2001
8 Formal Aspects of Mobile Code Security (context) - Dean - 1999
6 TM 2 Platform Security: Architecture (context) - Gong - 1999
6 th Symposium on Operating Systems Principles (context) - Wallach, Balfanz et al. - 1997
4 A Simple Semantics and Static Analysis for Java Security - Banerjee, Naumann - 2001
1 TM 2 Network Security (context) - Pistoia, Reller et al. - 1999
1 Securing Java^TM (context) - McGraw, Felten - 1999
1 InACM Transactions on Programming Languages and Systems (context) - Morrisett, Walker et al. - 1999
1 Mastering RMI: Developing Enterprise Applications in Java an.. (context) - Oberg - 2001
The graph only includes citing articles where the year of publication is known.
Documents on the same site (http://pag.lcs.mit.edu/reading-group/spring03.html): More
Selective Memoization - Umut Acar Guy (2003) (Correct)
Design Pattern Implementation in Java and AspectJ - Hannemann, Kiczales (2002) (Correct)
Points-to Analysis using BDDs - Berndl, Lhoták, Qian, Hendren, Umanee (2002) (Correct)
Online articles have much greater impact More about CiteSeer.IST Add search form to your site Submit documents Feedback
CiteSeer.IST - Copyright Penn State and NEC