Copyright Information
The documents distributed by this server have been provided by the contributing authors as a means to ensure timely dissemination of
scholarly and technical work on a noncommercial basis. Copyright and all rights therein are maintained by the authors or by other
copyright holders, notwithstanding that they have offered their works here electronically. It is understood that all persons copying
this information will adhere to the terms and constraints invoked by each author's copyright. These works may not be reposted without
the explicit permission of the copyright holder.
Sensoria Bibliography Site Securing Java with Local Policies
Massimo Bartoletti, Gabriele Costa, Pierpaolo Degano, Fabio Martinelli, Roberto Zunino
abstract:
We propose an extension to the security model of Java, that allows
for specifying, analysing and enforcing history-based usage
policies. Policies are defined by usage automata, that recognize the
forbidden execution histories. Programmers can sandbox an untrusted
piece of code with a policy, which is enforced at run-time through
its local scope. A static analysis allows for optimizing the
execution monitor: only the policies not guaranteed to be always
obeyed will be enforced at run-time.