A copy of this work was available on the public web and has been preserved in the Wayback Machine. The capture dates from 2017; you can also visit the original URL.
The file type is application/pdf
.
Enforcing Secure Object Initialization in Java
[chapter]
2010
Lecture Notes in Computer Science
Sun and the CERT recommend for secure Java development to not allow partially initialized objects to be accessed. The CERT considers the severity of the risks taken by not following this recommendation as high. The solution currently used to enforce object initialization is to implement a coding pattern proposed by Sun, which is not formally checked. We propose a modular type system to formally specify the initialization policy of libraries or programs and a type checker to statically check at
doi:10.1007/978-3-642-15497-3_7
fatcat:pg5eptxfgbbbred6e24ln3ptru