Sciweavers

CN
2000

Supporting reconfigurable security policies for mobile programs

13 years 11 months ago
Supporting reconfigurable security policies for mobile programs
Programming models that support code migration have gained prominence, mainly due to a widespread shift from stand-alone to distributed applications. Although appealing in terms of system design and extensibility, mobile programs are a security risk and require strong access control. Further, the mobile code environment is fluid, i.e. the programs and resources located on a host may change rapidly, necessitating an extensible security model. In this paper, we present the design and implementation of a security infrastructure. The model is built around an event=response mechanism, in which a response is executed when a security-related event occurs. We support a fine-grained, conditional access control language, and enforce policies by instrumenting the bytecode of protected classes. This method enhances efficiency and promotes separation of concerns between security policy and program specification. This infrastructure also allows security policies to change at runtime, adapting to va...
Brant Hashii, Scott Malabarba, Raju Pandey, Matt B
Added 17 Dec 2010
Updated 17 Dec 2010
Type Journal
Year 2000
Where CN
Authors Brant Hashii, Scott Malabarba, Raju Pandey, Matt Bishop
Comments (0)