Static use-based object confinement

Skalka, Christian; Smith, Scott F.

doi:10.1007/s10207-004-0049-5

Cited by 10 publications

(2 citation statements)

References 26 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…The atypical object-capability language of 'pop' [25] follows an approach similar to conventional accessibility: the File class would declare what code can call its methods. Thus their approach inherits the problems of accessibility control, the File class would need to be modified if new code wishes to directly call its methods, even worse, it allows 'rights amplification' by code that has permission to call a certain method on an object.…”

Section: Object-capabilitiesmentioning

confidence: 99%

CallƐ: an effect system for method calls

Gariano

Noble

Servetto

2019

Proceedings of the 2019 ACM SIGPLAN International Symposium on New Ideas, New Paradigms, and Reflections on Programming and Sof

View full text Add to dashboard Cite

Effect systems are used to statically reason about the effects an expression may have when evaluated. In the literature, such effects include various behaviours as diverse as memory accesses and exception throwing. Here we present Callℇ, an object-oriented language that takes a flexible approach where effects are just method calls: this works well because ordinary methods often model things like I/O operations, access to global state, or primitive language operations such as thread creation. Callℇ supports both flexible and finegrained control over such behaviour, in a way designed to minimise the complexity of annotations.Callℇ's effect system can be used to prevent OO code from performing privileged operations, such as querying a database, modifying GUI widgets, exiting the program, or performing network communication. It can also be used to ensure determinism, by preventing methods from (indirectly) calling non-deterministic primitives like random number generation or file reading.

show abstract

Section: Object-capabilitiesmentioning

confidence: 99%

CallƐ: an effect system for method calls

Gariano

Noble

Servetto

2019

Proceedings of the 2019 ACM SIGPLAN International Symposium on New Ideas, New Paradigms, and Reflections on Programming and Sof

View full text Add to dashboard Cite

show abstract

“…The static type system pop [37] supports the reference-as-capability metaphor in an inheritance-less object calculus. Contrary to "communication-based" schemes of object confinement (e.g., confined types), an "used-based" approach has been adopted by pop to impose a custom "user interface" over an object.…”

Section: Related Workmentioning

confidence: 99%

Discretionary Capability Confinement

Fong

2006

Computer Security – ESORICS 2006

View full text Add to dashboard Cite

Abstract. Motivated by the need of application-level access control in dynamically extensible systems, this work proposes a static annotation system for modeling capabilies in a Java-like programming language. Unlike previous language-based capability systems, the proposed annotation system can provably enforce capability confinement. This confinement guarantee is leveraged to model a strong form of separation of duty known as hereditary mutual suspicion. The annotation system has been fully implemented in a standard Java Virtual Machine.

show abstract

Assertion-Based Encapsulation, Object Invariants and Simulations

Naumann

2005

Formal Methods for Components and Objects

View full text Add to dashboard Cite

show abstract

Static use-based object confinement

Cited by 10 publications

References 26 publications

CallƐ: an effect system for method calls

CallƐ: an effect system for method calls

Discretionary Capability Confinement

Assertion-Based Encapsulation, Object Invariants and Simulations

Contact Info

Product

Resources

About