Title: Saving the world from bad beans: Deployment-time confinement checking
Authors: Clarke, Dave
Richmond, Michael
Noble, James #
Issue Date: Nov-2003
Publisher: ACM
Host Document: SIGPLAN notices vol:38 issue:11 pages:374-387
Conference: OOPSLA edition:18 location:Anaheim, California, USA date:November 2003
Abstract: The Enterprise JavaBeans (EJB) framework requires developers to preserve architectural integrity constraints when writing EJB components. Breaking these constraints allows components to violate the transaction protocol, bypass security mechanisms, disable object persistence, and be susceptible to malicious attacks from other EJBs. We present an object confinement discipline that allows static verification of component integrity as they are deployed onto an EJB server. The confinement rules are simple for developers to understand, require no annotation to the code of EJB components, and enforcement of these rules can be incorporated efficiently into existing EJB servers.
Publication status: published
KU Leuven publication type: IC
Appears in Collections:Non-KU Leuven Association publications
# (joint) last author

Files in This Item:

There are no files associated with this item.

Request a copy


All items in Lirias are protected by copyright, with all rights reserved.