Skip to Main content Skip to Navigation
Reports

Lightweight verification of control flow policies on Java bytecode

Abstract : This paper presents the enforcement of control flow policies for Java bytecode devoted to open and constrained devices. On-device enforcement of security policies mostly relies on run-time monitoring or inline checking code, which is not appropriate for strongly constrained devices such as mobile phones and smart-cards. We present a proof-carrying code approach with on-device lightweight verification of control flow policies statically at loading- time. Our approach is suitable for evolving, open and constrained Java-based systems as it is compositional, to avoid re-verification of already verified bytecode upon loading of new bytecode, and it is regressive, to cleanly support bytecode unloading.
Complete list of metadata

Cited literature [30 references]  Display  Hide  Download

https://hal.inria.fr/inria-00580923
Contributor : Arnaud Fontaine <>
Submitted on : Thursday, April 7, 2011 - 12:01:40 PM
Last modification on : Wednesday, April 7, 2021 - 3:00:02 PM
Long-term archiving on: : Friday, July 8, 2011 - 2:32:30 AM

File

RR-7584.pdf
Files produced by the author(s)

Identifiers

  • HAL Id : inria-00580923, version 1

Collections

Citation

Arnaud Fontaine, Samuel Hym, Isabelle Simplot-Ryl. Lightweight verification of control flow policies on Java bytecode. [Research Report] RR-7584, INRIA. 2011, pp.22. ⟨inria-00580923⟩

Share

Metrics

Record views

382

Files downloads

217