See this document in CiteSeerX!

Flexible Policy-Directed Code Safety (1999)  (Make Corrections)  (75 citations)
David Evans Andrew Twyman MIT...
IEEE Symposium on Security and Privacy



  Home/Search   Context   Related

 
View or download:
mit.edu/~evs/sp99.ps.gz
virginia.edu/~evans/sp99.ps.gz
virginia.edu/sp99.pdf
Cached:  PS.gz  PS  PDF   Image  Update  Help

From:  mit.edu/~evs/pubs (more)
Homepages:  D.Evans  

Rate this article: (best)
  Comment on this article  
A platform-independent method for defining safety policies and enforcing them by transforming programs.

Abstract: This work introduces a new approach to code safety. We present Naccio, a system architecture that allows a large class of safety policies to be expressed in a general and platform-independent way. Policies are defined in terms of abstract resource manipulations. We describe mechanisms that can be used to efficiently and conveniently enforce these safety policies by transforming programs. We are developing implementations of Naccio that enforce policies on JavaVM classes and Win32 executables.... (Update)

Cited by:   More
Enforcing Resource Bounds via - Static Verification Of   (Correct)
Secure Untrusted Binaries  Provably! - Simon Winwood And   (Correct)
Harmless Advice - Dantas, Walker (2006)   (Correct)

Active bibliography (related documents):   More   All
0.3:   Flexible Code Safety for Win32 - Twyman (1999)   (Correct)
0.1:   SASI Enforcement of Security Policies: A Retrospective - Erlingsson, Schneider (1999)   (Correct)
0.1:   Building An Extensible Operating System - Small (1998)   (Correct)

Similar documents based on text:   More   All
0.2:   Synthesis of a Safety Controller for ConnectedSpaces.. - Sridharan, Mathur, Cai   (Correct)
0.2:   JavaVM Implementation: Compilers Versus Hardware - Krall, Ertl, Gschwind   (Correct)
0.1:   The SDS Document - A Conceptual Basis Towards Understanding.. - Lutz, Saltmarsh (1991)   (Correct)

Related documents from co-citation:   More   All
46:   SASI enforcement of security policies: A retrospective - Erlingsson, Schneider - 1999
29:   Proof-carrying code - Necula - 1997
22:   IRM enforcement of java stack inspection - Erlingsson, Schneider - 2000

BibTeX entry:   (Update)

David Evans and Andrew Twyman. Flexible Policy-Directed Code Safety. In IEEE Symposium on Security and Privacy, May 1999. http://citeseer.ist.psu.edu/evans99flexible.html   More

@inproceedings{ evans99flexible,
    author = "David Evans and Andrew Twyman",
    title = "Flexible Policy-Directed Code Safety",
    booktitle = "{IEEE} Symposium on Security and Privacy",
    pages = "32-45",
    year = "1999",
    url = "citeseer.ist.psu.edu/evans99flexible.html" }
Citations (may not include all citations):
386   ATOM: A system for building customized program analysis tool.. (context) - Srivastava, Eustace
339   Efficient Software-Based Fault Isolation - Wahbe, Lucco et al.
264   Safe kernel extensions without run-time checking - Necula, Lee
137   The Design and Implementation of a Certifying Compiler - Necula, Lee
136   Java Security: From HotJava to Netscape and Beyond - Dean, Felten et al. - 1996
118   Extensible Security Architectures for Java - Wallach, Balfanz et al.
92   Going Beyond the Sandbox: An Overview of the New Security Ar.. - Gong, Mueller et al. - 1997
66   Enforceable Security Policies - Schneider - 1998
64   Low-level Security in Java (context) - Yellin - 1995
64   Automatic Program Transformation with JOIE - Cohen, Chase et al. - 1998
51   Understanding Java Stack Inspection - Wallach, Felten - 1998
50   The Safe-Tcl Security Model - Ousterhout, Levy et al.
40   Omniware: A Universal Substrate for Web Programming - Lucco, Sharp et al. - 1995
37   JRes: A Resource Accounting Interface for Java - Czajkowsik, von Eicken - 1998
21   A New Approach to Mobile Code Security - Wallach - 1999
19   Efficient Code Certification - Kozen - 1998
17   The Java Class Libraries (context) - Chan, Lee et al. - 1997
9   Providing Fine-Grained Access Control For Mobile Programs Th.. - Pandey, Hashii - 1998
6   Implementation and Analysis of Software Based Fault Isolatio.. - Silver - 1996
1   personal communication (context) - Pandey - 1999
1   Spike: An Optimizer forAlpha/NT Executables (context) - Cohn, Goodwin et al. - 1997
1   personal communication (context) - Erlingsson - 1999
1   MiSFIT: A Tool for Construction Safe Extensible C++ Systems (context) - Small, Seltzer - 1997
1   Fifth Princeton Symposium on Information Sciences and System.. (context) - Lampson - 1971
1   Providing Flexible Code Safety for Win (context) - Twyman - 1999



The graph only includes citing articles where the year of publication is known.

Documents on the same site (http://www.sds.lcs.mit.edu/~evs/pubs.html):
LCLint: A Tool for Using Specifications to Check Code - Evans (1994)   (Correct)
Static Detection of Dynamic Memory Errors - Evans (1996)   (Correct)

Online articles have much greater impact   More about CiteSeer.IST   Add search form to your site   Submit documents   Feedback  

CiteSeer.IST - Copyright Penn State and NEC