Secure Internet Programming
* History
* People
* Partners
* Research
* Publications
* FAQ
* Links
Extensible Security Architectures for Java

Authors
Dan S. Wallach
Dirk Balfanz
Drew Dean
Edward W. Felten

Abstract
Mobile code technologies such as Java, JavaScript, and ActiveX generally limit all programs to a single security policy. However, software-based protection can allow for more flexible security models, with potentially significant performance improvements over traditional hardware-based solutions. We describe and analyze three implementation strategies for interposing flexible security policies in software-based security systems. Implementations exist for all three strategies: several vendors have adapted capabilities to Java, Netscape Communicator extended Java's stack introspection, and we built a type-hiding system as an add-on to Microsoft Internet Explorer.

Published
Technical Report 546-97, Department of Computer Science, Princeton University, April 1997.

Text
Please see the newer version.

See Also
Netscape's signed object documentation

Princeton University
Department of Computer Science
Contact: sip@cs.princeton.edu