Inferring Java Security Policies through Dynamic Sandboxing

机译：通过动态沙箱推断Java安全策略

获取原文

获取原文并翻译 | 示例

页面导航

摘要
著录项
引文网络
相似文献
相关主题

摘要

Complex enterprise and server-level applications are often written in Java because of its reputation for security. The Java policy language allows users to specify very fine-grained and complex security policies. However, this expressiveness makes it difficult to determine the correct policy with respect to the principle of least privilege. We describe a method for automatically learning the minimum security policy called dynamic sandboxing. A minimal sandbox (security policy) is inferred by observing program execution and expressed in the standard Java policy language. The minimum policy stops Java exploits and learning the policy does not cripple performance, allowing applications to run normally during training.

机译：复杂的企业和服务器级应用程序由于其在安全方面的声誉而经常用Java编写。 Java策略语言允许用户指定非常细粒度和复杂的安全策略。但是，这种表现力使得很难根据最小特权原则确定正确的策略。我们描述了一种自动学习最小安全策略的方法，称为动态沙箱。通过观察程序执行来推断出最小的沙箱（安全策略），并以标准Java策略语言表示。最低策略可阻止Java攻击，并且了解该策略不会削弱性能，从而使应用程序在培训期间能够正常运行。

著录项

来源
《International Conference on Programming Languages and Compilers(PLC'05); 20050627-30; Las Vegas,NV(US)》|2005年|P.151-157|共7页
会议地点 Las VegasNV(US)
作者
Hajime Inoue; Stephanie Forrest;
展开▼
作者单位

Department of Computer Science University of New Mexico Albuquerque, MM 87131;

展开▼
会议组织
原文格式 PDF
正文语种 eng
中图分类程序设计、软件工程;
关键词
computer security; security policy; policy inference; Java; policy language; principle of least privilege;

机译：计算机安全;安全策略;策略推断; Java;策略语言;最小特权原则;

相似文献

外文文献
中文文献
专利

1. The RAppArmor Package: Enforcing Security Policies in R Using Dynamic Sandboxing on Linux [J] . Jeroen Ooms Journal of Statistical Software . 2013,第1期

机译：RAppArmor软件包：在Linux上使用动态沙箱在R中实施安全策略
2. Fluid dynamics inside a "wet" volcano inferred from the complex frequencies of long-period (LP) events: An example from Papandayan volcano, West Java, Indonesia, during the 2011 seismic unrest [J] . Syahbana Devy Kamil, Caudron Corentin, Jousset Philippe, Journal of Volcanology and Geothermal Research . 2014,第juna1期

机译：从长周期（LP）事件的复杂频率推断出“湿”火山内部的流体动力学：以印度尼西亚西爪哇省的帕潘达延火山为例，该地震发生于2011年地震动荡期间
3. Survey on JavaScript security policies and their enforcement mechanisms in a web browser [J] . Nataliia Bielova Journal of Logic and Algebraic Programming . 2013,第8期

机译：Web浏览器中JavaScript安全策略及其执行机制的调查
4. Inferring Java Security Policies through Dynamic Sandboxing [C] . Hajime Inoue, Stephanie Forrest International Conference on Programming Languages and Compilers . 2005

机译：通过动态沙箱推断Java安全策略
5. Use of volatile and trace elements to infer geodynamic and magmatic processes: Ontong Java Plateau (western Pacific) and Bishop Tuff (eastern California). [D] . Roberge, Julie. 2005

机译：利用挥发性和微量元素推断地球动力学和岩浆过程：Ontong Java高原（西太平洋）和Bishop Tuff（东加利福尼亚）。
6. RESPOnSE—A Framework for Enforcing Risk-Aware Security Policies in Constrained Dynamic Environments [O] . Christina Michailidou, Vasileios Gkioulos, Andrii Shalaginov, 2020

机译：RESPOnSE-在受限动态环境中执行风险感知安全策略的框架
7. The RAppArmor Package: Enforcing Security Policies in R Using Dynamic Sandboxing on Linux [O] . Jeroen Ooms 2016

机译：Rapparmor包：在Linux上使用动态沙盒实施R中的安全策略
8. Global Command and Control System (GCCS). Mobile Code Security Policy Guidance For Browser Script Software Development (JavaScript, JScript, VBScript) [R] . 1999

机译：全球指挥与控制系统（GCCs）。浏览器脚本软件开发的移动代码安全策略指南（Javascript，Jscript，VBscript）

Inferring Java Security Policies through Dynamic Sandboxing

摘要

著录项

引文网络

相似文献

相关主题

期刊订阅