Stack Inspection: Theory and Variants

Stack Inspection: Theory and Variants (2001)

Cached

Download Links

Other Repositories/Bibliography

DBLP

by Cédric Fournet , Andrew D. Gordon

Venue:	ACM TRANSACTIONS ON PROGRAMMING LANGUAGES AND SYSTEMS
Citations:	83 - 4 self

BibTeX

@INPROCEEDINGS{Fournet01stackinspection:,
    author = {Cédric Fournet and Andrew D. Gordon},
    title = {Stack Inspection: Theory and Variants},
    booktitle = {ACM TRANSACTIONS ON PROGRAMMING LANGUAGES AND SYSTEMS},
    year = {2001},
    pages = {307--318},
    publisher = {ACM Press}
}

Years of Citing Articles

Bookmark

OpenURL

Abstract

Stack inspection is a security mechanism implemented in runtimes such as the JVM and the CLR to accommodate components with diverse levels of trust. Although stack inspection enables the finegrained expression of access control policies, it has rather a complex and subtle semantics. We present a formal semantics and an equational theory to explain how stack inspection a#ects program behaviour and code optimisations. We discuss the security properties enforced by stack inspection, and also consider variants with stronger, simpler properties.

Citations

2970	Communication and Concurrency - Milner - 1989
652	Notions of computation and monads - Moggi - 1991
379	Jflow: practical mostly-static information flow control - Myers - 1999
174	Call-by-name, call-by-value and the λ-calculus - Plotkin - 1976
127	Full abstraction in the lazy lambda calculus - Abramsky, Ong - 1993
120	Lambda Calculus Models of Programming Languages - Morris - 1968
119	IRM enforcement of Java stack inspection - Erlingsson, Schneider - 2000
109	Bisimilarity as a theory of functional programming - Gordon
103	Fully abstract models of typed lambda-calculi - Milner - 1977
102	Proving congruence of bisimulation in functional programming languages - Howe - 1996
99	G.: Compiling Standard ML to Java Bytecodes - Benton, Kennedy, et al. - 1998
85	Representation independence, confinement and access control - Banerjee - 2002
85	The JavaTM Virtual Machine Specification - Lindholm, Yellin - 1999
62	Verification of control flow based security properties - Jensen, Métayer, et al. - 1999
60	Analysis and caching of dependencies - Abadi, Lampson, et al. - 1996
56	Security properties of typed applets - Leroy, Rouaix - 1998
51	SAFKASI: A security mechanism for language-based systems - Wallach, Appel, et al. - 2000
48	Static enforcement of security with types - Skalka, Smith - 2000
44	Syntactic type abstraction - Grossman, Morrisett, et al. - 2000
43	Trust in the λ-calculus - Palsberg, Ørbæk - 1995
42	Model checking security properties of control flow graphs - Besson, Jensen, et al.
29	The confused deputy - Hardy - 1989
24	Essential .NET Volume I: The Common Language Runtime - Box - 2002
21	Static analysis for stack inspection - Bartoletti, Degano, et al.
19	Tail call elimination on the Java Virtual Machine - Schinz, Odersky - 2001
12	A simple semantics and static analysis for java security - Banerjee, Naumann - 2001
10	Inside Java TM 2 Platform Security - Gong - 1999
8	A systematic approach to access control - Pottier, Skalka, et al. - 2001
7	An operational semantics of Java 2 access control - Karjoth - 2000
1	Framework Developer’s Guide: Security Optimizations - NET - 2001