IRM enforcement of Java stack inspection 论文
2002引用 294
Security and Verification in ComputingAdvanced Malware Detection TechniquesNetwork Security and Intrusion Detection
摘要
Two implementations are given for Java's stack inspection access-control policy. Each implementation is obtained by generating an inlined reference monitor (IRM) for a different formulation of the policy. Performance of the implementations is evaluated, and one is found to be competitive with Java's less flexible, JVM-resident implementation. The exercise illustrates the power of the IRM approach for enforcing security policies.