Skip to Main content Skip to Navigation
Conference papers

Securing Class Initialization

Abstract : Language-based information-flow security is concerned with specifying and enforcing security policies for information flow via language constructs. Although much progress has been made on understanding information flow in object-oriented programs, the impact of class initialization on information flow has been so far largely unexplored. This paper turns the spotlight on security implications of class initialization. We discuss the subtleties of information propagation when classes are initialized and propose a formalization that illustrates how to track information flow in presence of class initialization by a type-and-effect system for a simple language. We show how to extend the formalization to a language with exception handling.
Document type :
Conference papers
Complete list of metadata

Cited literature [25 references]  Display  Hide  Download

https://hal.inria.fr/hal-01061318
Contributor : Hal Ifip <>
Submitted on : Friday, November 24, 2017 - 4:37:41 PM
Last modification on : Thursday, June 18, 2020 - 10:18:03 AM

File

NakataS10.pdf
Files produced by the author(s)

Licence


Distributed under a Creative Commons Attribution 4.0 International License

Identifiers

Citation

Keiko Nakata, Andrei Sabelfeld. Securing Class Initialization. 4th IFIP WG 11.11 International on Trust Management (TM), Jun 2010, Morioka, Japan. pp.48-62, ⟨10.1007/978-3-642-13446-3_4⟩. ⟨hal-01061318⟩

Share

Metrics

Record views

132

Files downloads

263