Secure execution of Java applets using a remote playground

Malkhi D.; Reiter M.K.

首页> 外文期刊>IEEE Transactions on Software Engineering >Secure execution of Java applets using a remote playground

【24h】

Secure execution of Java applets using a remote playground

机译：使用远程游乐场安全执行Java Applet

获取原文

获取原文并翻译 | 示例

获取外文期刊封面封底 >>

开具论文收录证明 >>

文献代查 >>

页面导航

摘要
著录项
相似文献
相关主题

摘要

Mobile code presents a number of threats to machines that executenit. We introduce an approach for protecting machines and the resourcesnthey hold from mobile code and describe a system based on our approachnfor protecting host machines from Java 1.1 applets. In our approach,neach Java applet downloaded to the protected domain is rerouted to andedicated machine (or set of machines), the playground, at which it isnexecuted. Prior to execution, the applet is transformed to use thendownloading user's Web browser as a graphics terminal for its input andnoutput, and so the user has the illusion that the applet is running onnhis own machine. In reality, however, mobile code runs only in thensanitized environment of the playground, where user files cannot benmounted and from which only limited network connections are accepted bynmachines in the protected domain. Our playground thus provides a secondnlevel of defense against mobile code that circumvents language-basedndefenses. This paper presents the design and implementation of anplayground for Java 1.1 applets and discusses extensions of it for othernforms of mobile code, including Java 1.2

机译：移动代码对执行机器提出了许多威胁。我们介绍了一种用于保护机器及其资源免受移动代码影响的方法，并基于我们的用于保护主机免受Java 1.1小程序侵扰的方法来描述一种系统。在我们的方法中，每个下载到受保护域的Java小程序都被重新路由到专用计算机（或一组计算机），即执行该应用程序的游乐场。在执行之前，小程序被转换为使用然后下载用户的Web浏览器作为其输入和输出的图形终端，因此用户有一个幻想，即小程序正在其自己的计算机上运行。然而，实际上，移动代码仅在游乐场经过消毒的环境中运行，在该环境中无法挂载用户文件，并且受保护域中的计算机仅从中接受有限的网络连接。因此，我们的游乐场提供了针对移动代码的第二层防御，从而可以绕过基于语言的防御。本文介绍了Java 1.1小程序游乐场的设计和实现，并讨论了它对其他形式的移动代码（包括Java 1.2）的扩展。

著录项

来源
《IEEE Transactions on Software Engineering》 |2000年第12期|p.1197-1209|共13页
作者
Malkhi D.; Reiter M.K.;
展开▼
作者单位

展开▼
收录信息美国《科学引文索引》(SCI);美国《工程索引》(EI);
原文格式 PDF
正文语种 eng
中图分类计算机软件;
关键词
Java; distributed programming; object-oriented programming; online front-ends; remote procedure calls; security of data; Java 1.1; Java 1.2; Web browser; applet rerouting; dedicated machine; dowloaded Java applets; graphics terminal; limited network connections; mobil;

机译：Java;分布式程序设计;面向对象程序设计;在线前端;远程过程调用;数据安全性;Java 1.1;Java 1.2;Web浏览器;小程序重路由;专用机器;重载的Java小程序;图形终端;有限的网络连接;移动;

相似文献

外文文献
中文文献
专利

1. Secure execution of Java applets using a remote playground [J] . Malkhi D., Reiter M.K. IEEE Transactions on Software Engineering . 2000,第12期

机译：使用远程游乐场安全执行Java Applet
2. Spout: a transparent proxy for safe execution of Java applets [J] . Tzi-cker Chiueh, Sankaran H., Neogi A. IEEE Journal on Selected Areas in Communications . 2002,第7期

机译：Spout：用于安全执行Java applet的透明代理
3. Spout: a transparent proxy for safe execution of Java applets [J] . Tzi-cker Chiueh, Sankaran H., Neogi A. IEEE Journal on Selected Areas in Communications . 2002,第7期

机译：Spout：用于安全执行Java applet的透明代理
4. Secure execution of Java applets using a remote playground [C] . Malkhi, D., Reiter, . 1998

机译：使用远程游乐场安全执行Java小程序
5. Secure Remote Service Execution for Web Media Streaming =Sichere Remote-Dienstausführung für Webmedien-Streaming [D] . Mikityuk, Alexandra. 2017

机译：用于Web媒体流的安全远程服务执行=用于Web媒体流的安全远程拨号
6. Secure JAVA Applets and Applications: Guidelines and Lessons Learnt from the JAVA Security Model [O] . Isabelle Bichindaritz, Muriel F. Siadak, Jane Jocom, 1999

机译：安全的JAVA小程序和应用程序：从JAVA安全模型中学到的准则和经验教训
7. Secure Execution of Java Applets using a Remote Playground [O] . Malkhi, Dahlia, Reiter, Michael 1999

机译：使用远程操作系统安全执行Java applet
8. Procedure-Level Authorization for Java Remote Method Invocation Using Secure Socket Layer (SSL) Credentials [R] . Shoulson, A., Pearson, K. 2010

机译：使用安全套接字层（ssL）凭据进行Java远程方法调用的过程级授权

Secure execution of Java applets using a remote playground

摘要

著录项

相似文献

相关主题

期刊订阅