摘要: Practical experience has shown that separating security enforcement code from functional using separation of concerns techniques such as behavioural reflection leads to improvements in undestandability and maintainability. However, these at requires providing a consistent declarative way specify policies. We have developed prototype tool allows the use Ponder policies are enforced by Kava metaobject protocol. This translates high-level into configuration files used enforce upon Java applications.
acm.org
sci-hub.se 参考文章(9)
Roland Schemers, Marianne Mueller, Li Gong, Hemma Prafullchandra, Going beyond the sandbox: an overview of the new security architecture in the java TM development Kit 1.2 usenix symposium on internet technologies and systems. pp. 10- 10 ,(1997)
Ian Welch, Robert J. Stroud, Kava - using byte code rewriting to add behavioural reflection to Java usenix conference on object oriented technologies and systems. pp. 9- 9 ,(2001)
Gregor Kiczales, Erik Hilsdale, Jim Hugunin, Mik Kersten, Jeffrey Palm, William G. Griswold, An Overview of AspectJ ECOOP 2001 — Object-Oriented Programming. pp. 327- 354 ,(2001) , 10.1007/3-540-45337-7_18
Bill Joy, Guy Steele, James Gosling, Gilad Bracha, None, The Java Language Specification ,(1996)
Ian Welch, Robert J. Stroud, Using reflection as a mechanism for enforcing security policies on compiled code Journal of Computer Security. ,vol. 10, pp. 399- 432 ,(2002) , 10.3233/JCS-2002-10405
A. Corradi, R. Montanari, E. Lupu, M. Sloman, C. Stefanelli, A flexible access control service for Java mobile code annual computer security applications conference. pp. 356- 365 ,(2000) , 10.1109/ACSAC.2000.898890
D. Evans, A. Twyman, Flexible policy-directed code safety ieee symposium on security and privacy. pp. 32- 45 ,(1999) , 10.1109/SECPRI.1999.766716
Nicodemos Damianou, Naranker Dulay, Emil Lupu, Morris Sloman, The Ponder Policy Specification Language policies for distributed systems and networks. pp. 18- 38 ,(2001) , 10.1007/3-540-44569-2_2
W. Yeong, C. Robbins, S. Kille, T. Howes, The String Representation of Standard Attribute Syntaxes The String Representation of Standard Attribute Syntaxes. ,vol. 1488, pp. 1- 11 ,(1995)