An efficient security verification method for programs with stack inspection

Naoya Nitta, Yoshiaki Takata, Hiroyuki Seki
2001 Proceedings of the 8th ACM conference on Computer and Communications Security - CCS '01  
Stack inspection is a key technology for runtime access control of programs in a network environment. In this paper, a verication problem to decide whether a given program with stack inspection satises a given security property is discussed. First, the computational complexity of the problem is investigated. Since the result implies the problem is computationally intractable in general, we introduce a practically important subclass of programs which exactly model programs containing
more » ... taining checkPermission of Java development kit 1.2. We show that the problem for this subclass is solvable in linear time in the size of a program.
doi:10.1145/501983.501994 dblp:conf/ccs/NittaTS01 fatcat:eekhqqyjo5h5rksh5h2c2uhpqu