Nouvelles Approches en Sécurité de Java

PDF

Authors
  1. Painchaud, F.
Corporate Authors
Defence R&D Canada - Valcartier, Valcartier QUE (CAN)
Abstract
In this document, three recently published papers on different aspects of Java Security are summarized. These papers appeared in international conference proceedings and computer science journals. The first paper presents an approach aiming at replacing the dataflow analysis carried out by the Bytecode Verifier in the Java Virtual Machine. This approach is based on model checking. The second paper presents an approach aiming at instrumenting Java bytecode to ensure better security of applets and Jini services. This new approach makes it possible to detect and stop certain types of denial of service, to ensure integrity of critical data and confidentiality of the system and even to thwart certain types of spoofing. Finally, the third and last paper presents a security infrastructure built around an event/response mechanism. This infrastructure built around an event/response mechanism. This infrastructure has an expressive and rather intuitive security policy specification language. Since each paper presents a new approach to solve one of the problems of this architecture, it seems to be essential to summarize them in this document in order to underline their application(s). Finally, some of these new approaches' limitations, surmountable or not, and some personal comments are given.

Il y a un résumé en français ici.

Keywords
Java Security API;Java (Programming language);Information technology security;Software security;Program verification;Program instrumentation;Mobile code;Java security;Java security architecture;Security infrastructure;Java Bytecode Verifier
Report Number
DRDC-VALCARTIER-TN-2002-154 — Technical Note
Date of publication
01 Oct 2002
Number of Pages
54
DSTKIM No
CA021343
CANDIS No
518099
Format(s):
Hardcopy;CD ROM

Permanent link

Document 1 of 1

Date modified: