Reflections on MOP s, Components, and Java Security

Caromel, Denis; Vayssière, Julien

doi:10.1007/3-540-45337-7_14

Cited by 10 publications

(9 citation statements)

References 23 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…5 For instance, to be able to intercept field accesses we have presented a scheme for transforming such accesses to invocations of automatically generated getter/setter methods -a general transformation scheme whose applicability is not limited to the generation of dynamic proxies and the Java language.…”

Section: Discussionmentioning

confidence: 99%

“…This makes a case against the claim that the achievement of field access interception with a proxy approach is impossible without specifically modified virtual machine[5] 6. Not to be confused with the Kava approach to behavioral reflection in Java[33], cf.…”

mentioning

confidence: 99%

“…3. An in-depth presentation of security issues raised by general-purpose reflective extensions to Java can be found in[5].…”

mentioning

confidence: 99%

See 2 more Smart Citations

Uniform proxies for Java

Eugster

2006

Proceedings of the 21st Annual ACM SIGPLAN Conference on Object-Oriented Programming Systems, Languages, and Applications

View full text Add to dashboard Cite

The proxy abstraction has a longlasting tradition in object settings. From design pattern to inherent language support, from remote method invocations to simple forms of behavioral reflection -incarnations as well as applications of proxies are innumerable.Since version 1.3, Java supports the concept of dynamic proxy. Such an object conforms to a set of types specified by the program and can be used wherever an expression of any of these types is expected, yet reifies invocations performed on it. Dynamic proxies have been applied to implement paradigms as diverse as behavioral reflection, structural conformance, or multi-methods. Alas, these proxies are only available "for interfaces". The case of creating dynamic proxies for a set of types including a class type has not been considered, meaning that it is currently not possible to create a dynamic proxy mimicking an instance of a given class. This weakness strongly limits any application of dynamic proxies.In this paper we unfold the current support for dynamic proxies in Java, assessing it in the light of a set of generic criteria for proxy implementations. We present an approach to supporting dynamic proxies "for classes" in Java, consisting in transformations performed on classes at load-time, including a generic scheme for enforcing encapsulation upon field accesses. These transformations seemlessly extend the scope of the current support for dynamic proxies. We discuss the precise benefits and costs of our extension in terms of the criteria introduced, and illustrate the usefulness of uniformly available proxies by implementing future method invocations both safely and transparently.

show abstract

Section: Discussionmentioning

confidence: 99%

mentioning

confidence: 99%

See 1 more Smart Citation

Uniform proxies for Java

Eugster

2006

Proceedings of the 21st Annual ACM SIGPLAN Conference on Object-Oriented Programming Systems, Languages, and Applications

View full text Add to dashboard Cite

show abstract

“…For instance, by setting the mintypes attribute, the metalevel architect can enforce the use of a particular metaobject framework. This can be useful to impose a security framework [7], or to provide a common metaobject composition framework [44,45,56].…”

Section: Configurationmentioning

confidence: 99%

Partial behavioral reflection

Tanter

Noyé

Caromel

et al. 2003

Proceedings of the 18th Annual ACM SIGPLAN Conference on Object-Oriented Programing, Systems, Languages, and Applications

Self Cite

View full text Add to dashboard Cite

Behavioral reflection is a powerful approach for adapting the behavior of running applications. In this paper we present and motivate partial behavioral reflection, an approach to more efficient and flexible behavioral reflection. We expose the spatial and temporal dimensions of such reflection, and propose a model of partial behavioral reflection based on the notion of hooksets. In the context of Java, we describe a reflective architecture offering appropriate interfaces for static and dynamic configuration of partial behavioral reflection at various levels, as well as Reflex, an open reflective extension for Java implementing this architecture. Reflex is the first extension that fully supports partial behavioral reflection in a portable manner, and that seamlessly integrates load-time and runtime behavioral reflection. The paper shows preliminary benchmarks and examples supporting the approach. The examples, dealing with the observer pattern and asynchronous communication via transparent futures, also show the interest of partial behavioral reflection as a tool for open dynamic Aspect-Oriented Programming.

show abstract

“…When it is not possible to modify the base-level class, the programmer can subclass the 1 as opposed to the invocation of static methods. 2 Marker interfaces are interfaces that do not declare any methods but ' ag' a class with a speci c property. The use of marker interfaces has become an idiom of the Java language, as exempli ed by t h e Serializable or Cloneable interfaces.…”

Section: Mapping Base-level Objects To Meta-objectsmentioning

confidence: 99%

A simple security–Aware MOP for Java

Caromel

Huet

Vayssière

2001

Lecture Notes in Computer Science

Self Cite

View full text Add to dashboard Cite

Abstract. This article investigates the security problems raised by t h e use of proxy-based runtime meta-object protocols (MOPs) for Java a n d provides an approach for making meta-level code transparent t o baselevel code, security-wise. We p r o ve that, but giving all permissions only to the kernel of the MOP and by using Java's built-in mechanism for propagating security contexts, the permissions required by base-level and meta-level code do not interfere. We illustrate this result in the context of a simple proxy-based runtime MOP that we wrote.

show abstract

Reflections on MOP s, Components, and Java Security

Cited by 10 publications

References 23 publications

Uniform proxies for Java

Uniform proxies for Java

Partial behavioral reflection

A simple security–Aware MOP for Java

Contact Info

Product

Resources

About