Joe-E: A Security-Oriented Subset of Java

Proceedings of the Symposium on Network and Distributed System Security, NDSS 2010

Volumn , Issue , 2010, Pages

  Mettler, Adrian ^a   Close, Tyler ^a   Wagner, David ^b  

^a UNIVERSITY OF CALIFORNIA   (United States)

^b waterkenorg

Author keywords

[No Author keywords available]

Indexed keywords

APPLICATION PROGRAMS; JAVA PROGRAMMING LANGUAGE; NETWORK SECURITY;

APPLICATION SPECIFIC; DOMAIN SPECIFIC; LEAST PRIVILEGE; OBJECT-CAPABILITY LANGUAGES; REFERENCE MONITORS; SECURE SOFTWARE; SECURITY PROPERTIES; SOFTWARE-SYSTEMS; STRONG SECURITIES; UNTRUSTED CODE;

OBJECT ORIENTED PROGRAMMING;

EID: 85082855007     PISSN: None     EISSN: None     Source Type: Conference Proceeding    
DOI: None     Document Type: Conference Paper

References (23)

1. A. Bittau, P. Marchenko, M. Handley, and B. Karp. Wedge: splitting applications into reduced-privilege compartments. In 5th USENIX Symposium on Networked Systems Design and Implementation (NSDI’08), pages 309–322, 2008.
2. D. Crockford. ADsafe. http://www.adsafe.org.
3. P. Efstathopoulos, M. Krohn, S. Vandebogart, C. Frey, D. Ziegler, E. Kohler, D. Mazières, F. Kaashoek, and R. Morris. Labels and event processes in the Asbestos operating system. In 20th ACM Symposium on Operating System Principles (SOSP’05), pages 17–30, 2005.
4. M. Finifter, A. Mettler, N. Sastry, and D. Wagner. Verifiable functional purity in Java. In 15th ACM Conference on Computer and Communications Security (CCS’08), pages 161–174, 2008.
5. L. Gong, M. Mueller, and H. Prafullch. Going beyond the sandbox: An overview of the new security architecture in the Java development kit 1.2. In USENIX Symposium on Internet Technologies and Systems, pages 103–112, 1997.
6. N. Hardy. KeyKOS architecture. SIGOPS Operating Systems Review, 19(4):8–25, 1985.
7. D. Kilpatrick. Privman: A library for partitioning applications. In USENIX Annual Technical Conference, FREENIX Track, pages 273–284, 2003.
8. H. M. Levy. Capability-based computer systems. Digital Press, Maynard, MA, USA, 1984.
9. T. Lindholm and F. Yellin. Java(TM) Virtual Machine Specification, The (2nd Edition). Prentice Hall PTR, April 1999.
10. ~daw/joe-e/spec-20090918.pdf.
11. M. S. Miller. Robust Composition: Towards a Unified Approach to Access Control and Concurrency Control. PhD thesis, Johns Hopkins University, Baltimore, Maryland, USA, May 2006.
12. M. S. Miller, M. Samuel, B. Laurie, I. Awad, and M. Stay. Caja: Safe active content in sanitized JavaScript (draft), 2008. http://google-caja.googlecode.com/files/caja-spec-2008-06-07.pdf.
13. J. H. Morris, Jr. Protection in programming languages. Com-mun. ACM, 16(1):15–21, 1973.
14. A. C. Myers and B. Liskov. A decentralized model for information flow control. In Symposium on Operating Systems Principles, pages 129–142, 1997.
15. M. Odersky. The Scala programming language. http://www.scala-lang.org.
16. N. Provos. Preventing privilege escalation. In Proceedings of the 12th USENIX Security Symposium, pages 231–242, 2003.
17. J. A. Rees. A security kernel based on the lambda-calculus. MIT A.I. Memo 1564, 1996.
18. J. S. Shapiro, J. M. Smith, and D. J. Farber. EROS: a fast capability system. In 17th ACM Symposium on Operating Systems Principles (SOSP’99), pages 170–185, 1999.
19. F. Spiessens and P. V. Roy. The Oz-E project: Design guidelines for a secure multiparadigm programming language. In Multiparadigm Programming in Mozart/Oz: Extended Proceedings of the Second International Conference (MOZ 2004), pages 21–40. Springer-Verlag, 2005.
20. M. Steigler and M. Miller. How Emily Tamed the Caml. Technical Report HPL-2006-116, HP Laboratories, August 11, 2006.
21. B. Stroustrup. A rationale for semantically enhanced library languages. In Proceedings of the First International Workshop on Library-Centric Software Design (LCSD 05), pages 44–52, 2005.
22. D. Wagner and D. Tribble. A security analysis of the Combex DarpaBrowser architecture, March 4, 2002. http://www.combex.com/papers/darpa-review/security-review.pdf.
23. N. Zeldovich, S. Boyd-Wickizer, E. Kohler, and D. Mazières. Making information flow explicit in HiStar. In 7th USENIX Symposium on Operating Systems Design and Implementation (OSDI’06), 2006.