Secure the Clones - Static Enforcement of Policies for Secure Object Copying

Thomas Jensen 1 Florent Kirchner 1 David Pichardie 1
1 CELTIQUE - Software certification with semantic analysis
IRISA-D4 - LANGAGE ET GÉNIE LOGICIEL, Inria Rennes – Bretagne Atlantique
Abstract : Exchanging mutable data objects with untrusted code is a delicate matter because of the risk of creating a data space that is accessible by an attacker. Consequently, secure programming guidelines for Java stress the importance of using defensive copying before accepting or handing out references to an inter-nal mutable object. However, implementation of a copy method (like clone()) is entirely left to the programmer. It may not provide a sufficiently deep copy of an object and is subject to overriding by a malicious sub-class. Currently no language-based mechanism supports secure object cloning. This paper proposes a type-based annotation system for defining modular copy policies for class-based object-oriented programs. A copy policy specifies the maximally allowed sharing between an object and its clone. We present a static enforcement mechanism that will guarantee that all classes fulfill their copy policy, even in the presence of overriding of copy methods, and establish the semantic correctness of the over-all approach in Coq. The mechanism has been implemented and experimentally evaluated on clone methods from several Java libraries.
Type de document :
Communication dans un congrès
ESOP 2011, 2011, Saarbrucken, Germany
Liste complète des métadonnées

Littérature citée [13 références]  Voir  Masquer  Télécharger

https://hal.inria.fr/hal-01110817
Contributeur : David Pichardie <>
Soumis le : mercredi 28 janvier 2015 - 23:41:54
Dernière modification le : jeudi 15 novembre 2018 - 11:57:41
Document(s) archivé(s) le : mercredi 29 avril 2015 - 11:47:12

Fichier

esop11.pdf
Fichiers produits par l'(les) auteur(s)

Identifiants

  • HAL Id : hal-01110817, version 1

Citation

Thomas Jensen, Florent Kirchner, David Pichardie. Secure the Clones - Static Enforcement of Policies for Secure Object Copying. ESOP 2011, 2011, Saarbrucken, Germany. 〈hal-01110817〉

Partager

Métriques

Consultations de la notice

1597

Téléchargements de fichiers

102