Implementing Protection Domains in the Java Development Kit 1.2
Uloženo v:
| Název: | Implementing Protection Domains in the Java Development Kit 1.2 |
|---|---|
| Autoři: | Li Gong, Roland Schemers, Sun Microsystems |
| Přispěvatelé: | The Pennsylvania State University CiteSeerX Archives |
| Zdroj: | http://www.cs.purdue.edu/homes/jv/smc/pubs/Gong-NDSS98.ps. |
| Rok vydání: | 1988 |
| Sbírka: | CiteSeerX |
| Popis: | The forthcoming Java TM Development Kit (JDK1.2) provides fine-grained access control via an easily configurable security policy. In this paper, we describe the design and implementation in JDK1.2 of the concept of protection domain, which is a cornerstone of the new security architecture. We present design rationales, implementation details, and performance data, which demonstrate the utility and efficiency of the new security architecture. 1 Introduction The original Java security model [5, 7], known as the sandbox model, provides a very restricted environment in which to run untrusted code (called applet) obtained from the open network. Overall security is enforced through a number of mechanisms, including language type-safety, bytecode verification, runtime type checking, name space separation via class loading, and access control via a security manager. The essence of the sandbox model is that local application is trusted to have full access to system resources while applet is . |
| Druh dokumentu: | text |
| Popis souboru: | application/postscript |
| Jazyk: | English |
| Relation: | http://citeseerx.ist.psu.edu/viewdoc/summary?doi=10.1.1.40.7266 |
| Dostupnost: | http://citeseerx.ist.psu.edu/viewdoc/summary?doi=10.1.1.40.7266 http://www.cs.purdue.edu/homes/jv/smc/pubs/Gong-NDSS98.ps |
| Rights: | Metadata may be used without restrictions as long as the oai identifier remains attached to it. |
| Přístupové číslo: | edsbas.FBAA1987 |
| Databáze: | BASE |
Nájsť tento článok vo Web of Science | Abstrakt: | The forthcoming Java TM Development Kit (JDK1.2) provides fine-grained access control via an easily configurable security policy. In this paper, we describe the design and implementation in JDK1.2 of the concept of protection domain, which is a cornerstone of the new security architecture. We present design rationales, implementation details, and performance data, which demonstrate the utility and efficiency of the new security architecture. 1 Introduction The original Java security model [5, 7], known as the sandbox model, provides a very restricted environment in which to run untrusted code (called applet) obtained from the open network. Overall security is enforced through a number of mechanisms, including language type-safety, bytecode verification, runtime type checking, name space separation via class loading, and access control via a security manager. The essence of the sandbox model is that local application is trusted to have full access to system resources while applet is . |
|---|