Checking secure information flow in Java bytecode by code transformation and standard bytecode verification

A method is presented for checking secure information flow in Java bytecode, assuming a multilevel security policy that assigns security levels to the objects. The method exploits the type‐level interpretation of standard bytecode verification to detect illegal information flows. We define an algori...

Full description

Saved in:
Bibliographic Details
Published inSoftware, practice & experience Vol. 34; no. 13; pp. 1225 - 1255
Main Authors Bernardeschi, C., De Francesco, N., Lettieri, G., Martini, L.
Format Journal Article
LanguageEnglish
Published Chichester, UK John Wiley & Sons, Ltd 10.11.2004
Subjects
bytecode verifier
information flow
Java bytecode
security
Online AccessGet full text

Cover

More Information
Summary:A method is presented for checking secure information flow in Java bytecode, assuming a multilevel security policy that assigns security levels to the objects. The method exploits the type‐level interpretation of standard bytecode verification to detect illegal information flows. We define an algorithm transforming the original code into another code in such a way that a typing error detected by the Verifier on the transformed code corresponds to a possible illicit information flow in the original code. We present a prototype tool that implements the method and we show an example of application. Copyright © 2004 John Wiley & Sons, Ltd.
Bibliography:istex:C859D7CB321F81541E732DA3BA2BD415A1D4E1CF
ark:/67375/WNG-F7WZ2T3W-P
ArticleID:SPE611
ObjectType-Article-2
SourceType-Scholarly Journals-1
ObjectType-Feature-1
content type line 23
ISSN:0038-0644
1097-024X
DOI:10.1002/spe.611