Flexible Policy-Directed Code Safety

Abstract

This work introduces a new approach to code safety. We present Naccio, a system architecture that allows a large class of safety policies to be expressed in a general and platform-independent way. Policies are defined in terms of abstract resource manipulations. We describe mechanisms that can be used to efficiently and conveniently enforce these safety policies by transforming programs. We are developing implementations of Naccio that enforce policies on JavaVM classes and Win32 executables. We report on results using the JavaVM prototype.

Open PDF

Document Details

Document Type
Technical Report
Publication Date
Jan 01, 2006
Accession Number
ADA446967

Entities

People

  • Andrew Twyman
  • David Evans

Organizations

  • Massachusetts Institute of Technology

Tags

DTIC Thesaurus Topics

  • Abstracts
  • Bandwidth
  • Compilers
  • Computer Programs
  • Computer Science
  • Computers
  • Demographic Cohorts
  • Denial Of Service Attack
  • Generators
  • Information Operations
  • Language
  • Monitoring
  • Operating Systems
  • Platforms
  • Resource Management
  • Side Effects
  • Standards

Fields of Study

  • Computer science
  • Engineering

Readers

  • Aviation Safety Risk Assessment.
  • Database Systems and Applications
  • Strategic Security Studies