A Proof-Carrying Code Architecture for Java
نویسندگان
چکیده
منابع مشابه
Secure Execution of Mobile Java using Static Analysis and Proof Carrying Code
We consider the problems raised by the use of mobile code in e-Science. If a user submits a program for execution on a remote machine then problems can arise if the program misbehaves, for example by using too much memory or taking too long to execute. We describe methods which can be used to obtain unforgeable a priori guarantees that a mobile program will behave in a reasonable manner. We hav...
متن کاملMOBIUS: Mobility, Ubiquity, Security Objectives and progress report
Through their global, uniform provision of services and their distributed nature, global computers have the potential to profoundly enhance our daily life. However, they will not realize their full potential, unless the necessary levels of trust and security can be guaranteed. The goal of the MOBIUS project is to develop a Proof Carrying Code architecture to secure global computers that consist...
متن کاملTrust Management and Proof Carrying Code in Secure Mobile Code Applications A Position Paper
The popularity of the Java programming language and the concomittant media attention given to the security holes that have been found in the Java run time system have brought the problem of mobile code security to center stage in the computer science research world In this essay we describe how the concepts of trust management and proof carrying code might be used in mobile code applications to...
متن کاملPaderborn Proof - Carrying Code
Proof Carrying Code is a general principle that supports to transfer code from an untrusted producer over an untrusted channel to a code consumer. The producer generates a safety proof that ensures certain properties of the program and transmits this proof together with the program to the consumer side. The consumer checks that the proof guarantees the required security properties before he exe...
متن کاملVerified proof carrying code
Proof Carrying Code (PCC) is a technique to exclude safety errors in low level code. Instead of runtime tests, it statically checks a proof of safety (a certificate) attached to the code. To guarantee that PCC only accepts safe code, we formalise and verify it in Isabelle/HOL, an interactive theorem prover for higher order logic. In an abstract framework we identify key components and their int...
متن کامل