A security framework for executables in a ubiquitous computing environment

GLOBECOM - IEEE Global Telecommunications Conference

Volumn 4, Issue , 2004, Pages 2158-2163

  Llewellyn Jones, D ^a   Merabti, M ^a   Shi, Q ^a   Askwith, B ^a  

^a LIVERPOOL JOHN MOORES UNIVERSITY   (United Kingdom)

Author keywords

Certification; Component Composition; Direct Code Analysis; Network Security; Pervasive Computing; Proof Carrying Code; Sandbox; Security; Ubiquitous Computing

Indexed keywords

BINARY CODES; COMPUTER CRIME; FORMAL LOGIC; INTERNET; QUALITY OF SERVICE; TREES (MATHEMATICS); XML;

CERTIFICATION; COMPONENT COMPOSITION; DIRECT CODE ANALYSIS; NETWORK SECURITY; PERVASIVE COMPUTING; PROOF CARRYING CODE; SANDBOX; UBIQUITOUS COMPUTING;

SECURITY OF DATA;

EID: 18144386158     PISSN: None     EISSN: None     Source Type: Conference Proceeding    
DOI: None     Document Type: Conference Paper

References (25)

1. M. Weiser, "The computer for the 21st century," Scientific American Int. Edition, vol. 265(3), pp. 66-73, Sept 1991.
2. G. Banavar and A, Bernstein, "Software infrastructure and design challenges for ubiquitous computing applications," Comm. of the ACM, vol. 45(12), pp. 92-6, Dec 2002.
3. D. Saha and A. Mukherjee, "Pervasive computing: a paradigm for the 21st century," Computer, vol. 36(3), pp. 25-31, March 2003.
4. D. L. Tennenhouse, J. M. Smith, W. D. Sincoskie, D. J. Wetherall, and G. J. Minden, "A survey of active network research," IEEE Communications Magazine, vol. 35(1), pp. 80-6, Jan. 1997.
5. J. Undercoffer, F. Perich, A. Cedilnik, L. Kagal, and A. Joshi, "A secure infrastructure for service discovery and access in pervasive computing," Mobile Networks and Applications, vol. 8(2), pp. 113-25, 2003.
6. S. D. Gribble, M. Welsh, R. Von-Behren, E. A. Brewer, D. Culler, N. Borisov, S. Czerwinski, R. Gummadi, J. Hill, A. Joseph, R. H. Katz, Z. M. Mao, S. Ross, and B. Zhao, "The Ninja architecture for robust Internet-scale systems and services," Comp. Networks, vol. 35(4), pp. 473-97, March 2001.
7. M. S. Greenberg and J. C. Byington, "Mobile Agents and Security," IEEE Communications Magazine, pp. 76-85, July 1998.
8. C. E. Landwehr and D. M. Goldschlag, "Security Issues in Networks with Internet Access," Proc. of the IEEE, vol. 85(12), pp. 2034-51, Dec. 1997.
9. A. D. Rubin and J. D. E. Geer, "Mobile Code Security," IEEE Internet Computing, pp. 31-4, Nov.-Dec. 1998.
10. W. Cheswick, S. M. Bellovin, W. Ford, and J. Gosling, "How computer security works," Scientific American Int. Edition, vol. 279(4), pp. 78-81, Oct. 1998.
11. T. A. Scott, "Java security and how to play outside the Java sandbox," Journal of Computing in Small Colleges, vol. 15(1), pp. 114-25, Nov. 1999.
12. B. Walder, "Throwing sand in the eyes of security [Java]," InformationWeek, vol. 23, pp. 37-8, 41, 18 Feb.-3 March 1998.
13. A. K. Ghosh, "On certifying mobile code for secure applications," in Ninth Int. Symposium on Software Reliability Engineering., Paderborn, Germany, 4-7 Nov. 1998.
14. G. C. Necula and P. Lee, "Safe kernel extensions without run-time checking," Operating Systems Review, vol. 30, pp. 229-43, 28-31 Oct. 1996.
15. C. Colby, K. Crary, R. Harper, P. Lee, and F. Pfenning, "Automated techniques for provably safe mobile code," Theoretical Computer Science, vol. 290(2), pp. 1175-99, 2 Jan 2003.
16. R. W. Floyd, "Assigning Meanings to Programs," Mathematical Aspects of Computer Science, vol 19, pp. 19-32, 1967.
17. G. C. Necula, "A scalable architecture for Proof-Carrying Code," in Functional and Logic Programming. 5th International Symposium, FLOPS 2001. Proc. Lecture Notes in Computer Science vol. 2024, 2001.
18. C. Colby, P. Lee, G. C. Nedula, F. Blau, M. Plesko, and K. Cline, "A certifying compiler for Java," SIGPLAN Notices, vol. 35(5), pp. 95-107, May 2000.
19. Q. Shi and N. Zhang, "An effective model for composition of secure system," Journal of Systems and Software, vol. 43(3), pp. 233-44, Nov. 1998.
20. J. McLean, "A general theory of composition for a class of "possibilistic" properties," IEEE Transactions on Software Engineering, vol. 22(1), pp. 53-67, Jan 1996.
21. R. Focardi and S. Rossi, "Information flow security in dynamic contexts," in Proc. 15th IEEE Computer Security Foundations Workshop. CSFW 15, 2002.
22. H. Mantel, "On the composition of secure systems," in Proceedings 2002 IEEE Symposium on Security and Privacy, 2002.
23. Q. Shi and N. Zhang, "A general approach to secure components composition," in Proc. IEEE High Assurance Systems Eng. Workshop, 1997.
24. B. Askwith, Q. Shi, and M. Merabti, "Secure Component Composition for Networked Appliances," in 5th IEEE International Workshop on Networked Appliances, Liverpool, United Kingdom, 30-31 October 2002.
25. D. Llewellyn-Jones, M. Merabti, Q. Shi, and B. Askwith, "An Extensible Framework for Practical Secure Component Composition in a Ubiquitous Computing Environment," in Int. Conference on Information Technology, Las Vegas, USA, April 2004.