dc.contributor.author | Siefers, Joseph | |
dc.contributor.author | Tan, Gang | |
dc.contributor.author | Morrisett, John Gregory | |
dc.date.accessioned | 2012-11-28T15:33:52Z | |
dc.date.issued | 2012 | |
dc.identifier.citation | Siefers, Joseph, Gang Tan, and Greg Morissett. 2010. Robusta: Taming the native beast of the JVM. In proceedings of the 17th ACM Conference on Computer and Communications Security (CCS '10), October 4-8, 2010, Chicago, IL, 201-211. New York: Association for Computing Machinery. | en_US |
dc.identifier.isbn | 978-1-4503-0245-6 | en_US |
dc.identifier.uri | http://nrs.harvard.edu/urn-3:HUL.InstRepos:9961291 | |
dc.description.abstract | Java applications often need to incorporate native-code components for efficiency and for reusing legacy code. However, it is well known that the use of native code defeats Java's security model. We describe the design and implementation of Robusta, a complete framework that provides safety and security to native code in Java applications. Starting from software-based fault isolation (SFI), Robusta isolates native code into a sandbox where dynamic linking/loading of libraries is supported and unsafe system modification and confidentiality violations are prevented. It also mediates native system calls according to a security policy by connecting to Java's security manager. Our prototype implementation of Robusta is based on Native Client and OpenJDK. Experiments in this prototype demonstrate Robusta is effective and efficient, with modest runtime overhead on a set of JNI benchmark programs. Robusta can be used to sandbox native libraries used in Java's system classes to prevent attackers from exploiting bugs in the libraries. It can also enable trustworthy execution of mobile Java programs with native libraries. The design of Robusta should also be applicable when other type-safe languages (e.g., C#, Python) want to ensure safe interoperation with native libraries. | en_US |
dc.description.sponsorship | Engineering and Applied Sciences | en_US |
dc.language.iso | en_US | en_US |
dc.publisher | Association for Computing Machinery | en_US |
dc.relation.isversionof | doi:10.1145/1866307.1866331 | en_US |
dash.license | OAP | |
dc.subject | software | en_US |
dc.subject | software engineering | en_US |
dc.subject | interoperability | en_US |
dc.subject | operating systems | en_US |
dc.subject | operating systems security and protection | en_US |
dc.title | Robusta: Taming the Native Beast of the JVM | en_US |
dc.type | Monograph or Book | en_US |
dc.description.version | Accepted Manuscript | en_US |
dc.relation.journal | Proceedings of the ACM Conference on Computer and Communications Security (CCS) | en_US |
dash.depositing.author | Morrisett, John Gregory | |
dc.date.available | 2012-11-28T15:33:52Z | |
dc.identifier.doi | 10.1145/1866307.1866331 | * |
dash.authorsordered | false | |
dash.contributor.affiliated | Morrisett, Greg Gregory | |