Location of Repository

Fine-Grained Control of Java Applets Using a Simple Constraint Language

By Nimisha V. Mehta

Abstract

The use of the internet has increased extensively with a growing number of inexperienced users surfing the Web. Lurking in Web pages, Java applets are automatically executed on users' machines. As a result, popular Web browsers are understandably conservative on what they allow Java applets to do. However, this places a heavy restriction on applets which drastically limits their capabilities. Therefore, we have developed a constraint language in which naive users can specify their fine-grained control over applets without needing to know the the intricacies of applet security. We have written an implementation of the Java Security Manager built into Sun's AppletViewer to demonstrate the feasability of this approach, addressing the many security issues that arise when opening the operating system to the public domain. This involves maintaining a log of applets' past accesses to determine the allowability of their future accesses, along with an account of which applets `own' which files

Year: 1997
OAI identifier: oai:CiteSeerX.psu:10.1.1.18.6425
Provided by: CiteSeerX
Download PDF:
Sorry, we are unable to provide the full text but you may find it at the following location(s):
  • http://citeseerx.ist.psu.edu/v... (external link)
  • http://www.lcs.mit.edu/publica... (external link)
  • Suggested articles


    To submit an update or takedown request for this paper, please submit an Update/Correction/Removal Request.