Skip to Main content Skip to Navigation

Lightweight verification of control flow policies on Java bytecode

Abstract : This paper presents the enforcement of control flow policies for Java bytecode devoted to open and constrained devices. On-device enforcement of security policies mostly relies on run-time monitoring or inline checking code, which is not appropriate for strongly constrained devices such as mobile phones and smart-cards. We present a proof-carrying code approach with on-device lightweight verification of control flow policies statically at loading- time. Our approach is suitable for evolving, open and constrained Java-based systems as it is compositional, to avoid re-verification of already verified bytecode upon loading of new bytecode, and it is regressive, to cleanly support bytecode unloading.
Complete list of metadata

Cited literature [30 references]  Display  Hide  Download
Contributor : Arnaud Fontaine Connect in order to contact the contributor
Submitted on : Thursday, April 7, 2011 - 12:01:40 PM
Last modification on : Thursday, February 24, 2022 - 3:10:16 AM
Long-term archiving on: : Friday, July 8, 2011 - 2:32:30 AM


Files produced by the author(s)


  • HAL Id : inria-00580923, version 1



Arnaud Fontaine, Samuel Hym, Isabelle Simplot-Ryl. Lightweight verification of control flow policies on Java bytecode. [Research Report] RR-7584, INRIA. 2011, pp.22. ⟨inria-00580923⟩



Record views


Files downloads