CPL - Chalmers Publication Library
| Utbildning | Forskning | Styrkeområden | Om Chalmers | In English In English Ej inloggad.

Securing Class Initialization

Keiko Nakata (Institutionen för data- och informationsteknik, Programvaruteknik (Chalmers)) ; Andrei Sabelfeld (Institutionen för data- och informationsteknik, Programvaruteknik (Chalmers))
4th IFIP WG 11.11 International Conference on Trust Management, IFIPTM 2010; Morioka; Japan; 16 June 2010 through 18 June 2010 (18684238). Vol. 321 (2010), p. 48-62.
[Konferensbidrag, refereegranskat]

Language-based information-flow security is concerned with specifying and enforcing security policies for information flow via language constructs. Although much progress has been made on understanding information flow in object-oriented programs, the impact of class initialization on information flow has been so far largely unexplored. This paper turns the spotlight on security implications of class initialization. We discuss the subtleties of information propagation when classes are initialized and propose a formalization that illustrates how to track information flow in presence of class initialization by a type-and effect system for a simple language. We show how to extend the formalization to a language with exception handling.



Den här publikationen ingår i följande styrkeområden:

Läs mer om Chalmers styrkeområden  

Denna post skapades 2011-01-14. Senast ändrad 2016-07-22.
CPL Pubid: 133943

 

Institutioner (Chalmers)

Institutionen för data- och informationsteknik, Programvaruteknik (Chalmers) (2008-2010)

Ämnesområden

Informations- och kommunikationsteknik
Datavetenskap (datalogi)
Datalogi
Programvaruteknik

Chalmers infrastruktur