The Community for Technology Leaders
2013 IEEE 37th Annual Computer Software and Applications Conference (2002)
Oxford, England
Aug. 26, 2002 to Aug. 29, 2002
ISSN: 0730-3157
ISBN: 0-7695-1727-7
pp: 850
Cinzia Bernardeschi , Università di Pisa
Giuseppe Lettieri , Università di Pisa
Nicoletta De Francesco , Università di Pisa
When an applet is sent over the internet, Java Virtual Machine code is transmitted and remotely executed. Because untrusted code can be executed on the local computer running the web browser, security problems may arise. Here we present a method to check illicit flows in Java bytecode, that exploits the type-level abstract interpretation of bytecode verification. We present an algorithm transforming a bytecode into another one that, when abstractly executed by the standard bytecode Verifier, reveals illicit information flows. We show an example of application of the method.
Cinzia Bernardeschi, Giuseppe Lettieri, Nicoletta De Francesco, "Using Standard Verifier to Check Secure Information Flow in Java Bytecode", 2013 IEEE 37th Annual Computer Software and Applications Conference, vol. 00, no. , pp. 850, 2002, doi:10.1109/CMPSAC.2002.1045113
106 ms
(Ver 3.1 (10032016))