상세 보기
- Kim Y.;
- Chang B.-M.
WEB OF SCIENCE
0SCOPUS
0초록
The security manager in Java 2 is a runtime access control mechanism. Whenever an access permission to critical resources is requested, the security manager inspects a call stack to examine whether the program has appropriate access permissions or not. This run-time permission check called stack inspection enforces access-control policies that associate access rights with the class that initiates the access. In this paper, we develop a visualization tool which helps programmers enforce security policy effectively into programs. It is based on the static permission check analysis which approximates permission checks statically which must succeed or fail at each method. Using the visualization system, programmers can modify programs and policy files if necessary, as they examine how permission checks and their stack inspection are performed. This process can be repeated until the security policy is enforced correctly. © Springer-Verlag Berlin Heidelberg 2007.
키워드
- 제목
- Visualization of permission checks in java using static analysis
- 저자
- Kim Y.; Chang B.-M.
- 발행일
- 2006-08
- 유형
- Conference Paper
- 권
- 4298 LNCS
- 페이지
- 133 ~ 146