A formal dynamic semantics of Java: an essential ingredient of Java security

Mourad Debbabi; Nadia Tawbi; Hamdi Yahyaoui

doi:10.26636/jtit.2002.4.143

Journal of Telecommunications and Information Technology (Dec 2002)

A formal dynamic semantics of Java: an essential ingredient of Java security

Mourad Debbabi,
Nadia Tawbi,
Hamdi Yahyaoui

Affiliations

Mourad Debbabi
Nadia Tawbi
Hamdi Yahyaoui

DOI: https://doi.org/10.26636/jtit.2002.4.143
Journal volume & issue: no. 4

Abstract

Read online

Security is becoming a major issue in our highly networked and computerized era. Malicious code detection is an essential step towards securing the execution of applications in a highly inter-connected context. In this paper, we present a formal definition of Java dynamic semantics. This semantics has been used as a basis to develop efficient, rigorous and provably correct static analysis tools and a certifying compiler aimed to detect and prevent the presence of malicious code in Java applications. We propose a small step operational semantics of a large subset for Java. The latter includes features that have not been completely addressed in the related work or addressed in another semantics style. We provide a fully-fledged semantic handling of exceptions, reachable statements, modifiers and class initialization.

Published in Journal of Telecommunications and Information Technology

ISSN: 1509-4553 (Print); 1899-8852 (Online)
Publisher: National Institute of Telecommunications
Country of publisher: Poland
LCC subjects: Technology: Electrical engineering. Electronics. Nuclear engineering: Telecommunication; Technology: Technology (General): Industrial engineering. Management engineering: Information technology
Website: https://jtit.pl

About the journal

Abstract

Keywords