MetaJava: an efficient run-time meta architecture for Java/sup TM/

Kleinöder, Jürgen; Golm, Michael

doi:10.1109/iwooos.1996.557866

Cited by 20 publications

(14 citation statements)

References 21 publications

Supporting

Mentioning

Contrasting

Unclassified

Order By: Relevance

“…For example, this is evident in the Smalltalk-based framework AspectS by Hirschfeld [22]. A style of reflective programming that leads to efficient and type-safe programs while still being sufficiently flexible is an ongoing research theme [12,33,45]. The composition filter approach to AOP by Aksit et al [3] also relies on a general form of reflection.…”

Section: Related Workmentioning

confidence: 99%

“…So we need to identify the idioms that help with achieving an efficient implementation. None of the ideas that we will discuss here are very original; several elements of our development also occur in the rich literature on Metaobject protocols and reflection [29,12,33,15,20,45]. So the contribution of this section is more like a survey on optimisation techniques.…”

Section: Compilation Of Superimpositionsmentioning

confidence: 99%

See 1 more Smart Citation

Semantics-directed implementation of method-call interception

Lämmel

Stenzel

2004

IEE Proc., Softw.

View full text Add to dashboard Cite

C e n t r u m v o o r W i s k u n d e e n I n f o r m a t i c aSemantics-Directed Implementation of Method-Call Interception ABSTRACT We describe a form of method-call interception (MCI) that allows the programmer to superimpose extra functionality onto method calls at run-time. We provide a reference semantics and a reference implementation for corresponding language constructs. The setup applies to class-based, statically typed, compiled languages such as Java. The semantics of MCI is used to direct a language implementation with a number of valuable properties: simplicity of the implementational model and run-time adaptation capabilities and static type safety and separate compilation and reasonable performance. Our implementational development employs sourcecode instrumentation. We start from a naive implementational model, which is subsequently refined to optimise program execution. The implementation is assessed via benchmarks. ACM Computing Classification AbstractWe describe a form of method-call interception (MCI) that allows the programmer to superimpose extra functionality onto method calls at run-time. We provide a reference semantics and a reference implementation for corresponding language constructs. The setup applies to class-based, statically typed, compiled languages such as Java. The semantics of MCI is used to direct a language implementation with a number of valuable properties: simplicity of the implementational model and run-time adaptation capabilities and static type safety and separate compilation and reasonable performance. Our implementational development employs sourcecode instrumentation. We start from a naive implementational model, which is subsequently refined to optimise program execution. The implementation is assessed via benchmarks.

show abstract

Section: Related Workmentioning

confidence: 99%

Section: Compilation Of Superimpositionsmentioning

confidence: 99%

Semantics-directed implementation of method-call interception

Lämmel

Stenzel

2004

IEE Proc., Softw.

View full text Add to dashboard Cite

show abstract

“…Interpreters allow us to alter the execution of a program simply by modifying the interpreter, without having to modify the program itself. This is the approach taken by sych runtime-MOPs as MetaXa 2 [16], Guarana [22] and Iguana/J [23].…”

Section: Meta-programming and Javamentioning

confidence: 99%

“…MetaXa [16] and Guaraná [22] are two examples of VM-based run-time MOPs. They both rely on a modified version of the JVM.…”

Section: Vm-based Runtime Mopsmentioning

confidence: 99%

Reflections on MOP s, Components, and Java Security

Caromel¹,

Vayssière²

2001

ECOOP 2001 — Object-Oriented Programming

View full text Add to dashboard Cite

Abstract. This article investigates the security issues raised by the use of meta-programming systems with Java. For each possible type of MOP (compile-time, load-time, etc.), we study the permissions required for both the base and the meta-level protection domains, taking into account the flow of control between the different parts of the application. We show that the choice of a particular MOP architecture has a strong impact on security issues. Assuming a component-based architecture with code from various origins having different levels of trust, we establish a set of rules for combining the permissions associated with each protection domain (integration, base-level, meta-level, etc.).

show abstract

“…First, in order for the SMO approach to be realistic, support for meta-objects is needed in the desired middleware technology. SMO authors use MetaJava system [Kleinoder 1996] to prototype the concept.…”

Section: Security Meta Objectsmentioning

confidence: 99%

Engineering access control for distributed enterprise applications

Beznosov¹,

Deng²

View full text Add to dashboard Cite

iv ACKNOWLEDGMENTS Kent Wreder directed my original steps towards addressing the problem of access control for distributed enterprise applications. Thanks to his encouragements and support, I had a very quick start. Eric Butler and Eric Navarro introduced me to the work of IT architects and were great colleagues.My advisor, Yi Deng, was an unending source of useful and pragmatic advice. He helped me to see the problems more broadly and at the same time be more specific. His patience, compassion and belief in me were instrumental in the completion of this journey.Thanks also to him for reading my dissertation and suggesting structural and stylistic changes that made it much more valuable and comprehendible. Yi, thanks for everything.I would like to thank Yi's students --Suresh Chegireddy, Banaglore Gururprakash, Luis Espinal, Manish Mahajan and Nathan Vuong --for their input during our numorous discussions on CAAS. Luis deserves special thanks for he has been a great help to me throughout my research, we did most of CAAS design and implementation together, and I Miami, FloridaProfessor Yi Deng, Major Professor Access control (AC) is a necessary defense against a large variety of security attacks on the resources of distributed enterprise applications. However, to be effective, AC in some application domains has to be fine-grain, support the use of application-specific factors in authorization decisions, as well as consistently and reliably enforce organization-wide authorization policies across enterprise applications. Because the existing middleware technologies do not provide a complete solution, application developers resort to embedding AC functionality in application systems. This coupling of AC functionality with application logic causes significant problems including tremendously difficult, costly and error prone development, integration, and overall ownership of application software. The way AC for application systems is engineered needs to be changed. viiIn this dissertation, we propose an architectural approach for engineering AC mechanisms to address the above problems. First, we develop a framework for implementing the rolebased access control (RBAC) model using AC mechanisms provided by CORBA Security. For those application domains where the granularity of CORBA controls and the expressiveness of RBAC model suffice, our framework addresses the stated problem.In the second and main part of our approach, we propose an architecture for an authorization service, RAD, to address the problem of controlling access to distributed application resources, when the granularity and support for complex policies by middleware AC mechanisms are inadequate. Applying this architecture, we developed a CORBA-based application authorization service (CAAS). Using CAAS, we studied the main properties of the architecture and showed how they can be substantiated by employing CORBA and Java technologies. Our approach enables a wide-ranging solution for controlling the resources of distributed enterprise applications.

show abstract

MetaJava: an efficient run-time meta architecture for Java/sup TM/

Cited by 20 publications

References 21 publications

Semantics-directed implementation of method-call interception

Semantics-directed implementation of method-call interception

Reflections on MOP s, Components, and Java Security

Engineering access control for distributed enterprise applications

Contact Info

Product

Resources

About