Original signé par Frédéric Painchaud

Abstract

Chef de Section, Gestion de l’Information et de la Connaissance Ce travail a été effectué à RDDC – Valcartier en collaboration avec l’Université Laval entre mai et août 2002. © Her Majesty the Queen as represented by the Minister of National Defence, 2002 © Sa majesté la reine, représentée par le ministre de la Défense nationale, 2002 In this document, three recently published papers on different aspects of Java Security are summarized. These papers appeared in international conference proceedings and computer science journals. The first paper presents an approach aiming at replacing the dataflow analysis carried out by the Bytecode Verifier in the Java Virtual Machine. This approach is based on model checking. The second paper presents an approach aiming at instrumenting Java bytecode to ensure better security of applets and Jini services. This new approach makes it possible to detect and stop certain types of denial of service, to ensure integrity of critical data and confidentiality of the system and even to thwart certain types of spoofing. Finally, the third and last paper presents a securit