D. S. Wallach, D. Balfanz, D. Dean, and E. W. Felten. Flexible Security Architecture for Java. In Proceedings of the 16th ACM Symposium on Operating Systems Principles (SOSP), October 1997.  Home/Search   Document Not in Database   Summary   Related Articles   Check

....uses MD5 hashes ( fingerprints ) to name on demand loaded modules, the hashes provide unique names rather than security. The ANTS execution environment depends on the Java programming language for protection, a dependency shared by many active network prototypes. Unfortunately, as Wallach et al. [11] note, Java s security is suspect. The remote authentication and namespace security aspects of SANE address issues ignored in these systems, and could be applied even in cases where Java is used (e.g. to provide integrity checking of the JVM or layers beneath it, as well as on demand loaded ....

D. S. Wallach et al., "Flexible Security Architecture for Java," Proc. 16th ACM Symp. Op. Sys. Principles, Oct. 1997.

....MD5 hashes ( fingerprints ) to name on demand loaded modules, the hashes provide unique names rather than security. The ANTS execution environment depends on the Java programming language for protection, a dependency shared by many active network prototypes. Unfortunately, as Wallach, et al. WBDF97] note, Java s security is suspect. The remote authentication and namespace security of SANE address issues ignored in these systems, and could be applied even in cases where Java is used, e.g. to provide integrity checking of the JVM or layers beneath it, as well as on demand loaded modules. ....

Dan S. Wallach, Dirk Balfanz, Drew Dean, and Edward W. Felten. Flexible security architecture for java. In Proceedings of the 16th ACM Symposium on Operating Systems Principles, October 1997.

....language. Many properties of Java programs can be analyzed before the program is executed by the compiler and or verifier, and runtime restrictions are enforced by the Java Virtual Machine (JVM) The risk of this approach, illustrated with many of the security flaws in early Java implementations[WBDF97] is that the security of the JVM relies upon the static checks of the verifier. If the checks in the verifier are less stringent than those in the compiler, the result is the possibility of programs which can run on the JVM which would not compile because of their violation of restrictions. 5 ....

Dan S. Wallach, Dirk Balfanz, Drew Dean, and Edward W. Felten. Flexible security architecture for java. In Proceedings of the 16th ACM Symposium on Operating Systems Principles, October 1997.

....MD5 hashes ( fingerprints ) to name on demand loaded modules, the hashes provide unique names rather than security. The ANTS execution environment depends on the Java programming language for protection, a dependency shared by many active network prototypes. Unfortunately, as Wallach, et al. WBDF97] note, Java s security is suspect. The remote authentication and namespace security of SANE address issues ignored in these systems, and could be applied even in cases where Java is used, e.g. to provide integrity checking of the JVM or layers beneath it, as well as on demand loaded modules. ....

Dan S. Wallach, Dirk Balfanz, Drew Dean, and Edward W. Felten. Flexible security architecture for java. In Proceedings of the 16th ACM Symposium on Operating Systems Principles, October 1997.

....While ANTS uses MD5 hashes ( fingerprints ) to name on demand loaded modules, the hashes provide unique names rather than security. The ANTS execution environment depends on the Java programming language for protection, a dependency shared by many active network prototypes. Unfortunately, as [Wallach et al. 1997] notes, Java s security is suspect. The remote authentication and namespace security of SANE address issues ignored in these systems, and could be applied even in cases where Java is used, e.g. to provide integrity checking of the JVM or layers beneath it, as well as on demand loaded modules. ....

Wallach, D. S., Balfanz, D., Dean, D., and Felten, E. W. 1997. Flexible security architecture for java. In Proceedings of the 16th ACM Symposium on Operating Systems Principles (October 1997).

....block be charged What happens if the original switchlet terminates after making the block available while others still access the block We are not aware of any simple, fair, and general solutions being proposed to this problem. ffl One of the advantages of Java is that it provides a verifier [WBDF97] to check and see that the byte code files that it receives are consistent with its security model. Currently, SANE relies upon certificates which sign the byte code files, but a buggy compiler or less than diligent holder of an authorizing key could cause byte code files which are inconsistent ....

Dan S. Wallach, Dirk Balfanz, Drew Dean, and Edward W. Felten. Flexible security architecture for java. In Proceedings of the 16th ACM Symposium on Operating Systems Principles, October 1997.

No context found.

D. S. Wallach, D. Balfanz, D. Dean, and E. W. Felten. Flexible Security Architecture for Java. In Proceedings of the 16th ACM Symposium on Operating Systems Principles (SOSP), October 1997.

Online articles have much greater impact   More about CiteSeer.IST   Add search form to your site   Submit documents   Feedback  

CiteSeer.IST - Copyright Penn State and NEC