CHERI JNI: Sinking the Java Security Model into the C

David Chisnall, Brooks Davis, Khilan Gudka, David Brazdil, Alexandre Joannou, Jonathan Woodruff, Athanasios Markettos, J Edward Maste, Robert Norton, Stacey Son, Michael Roe, Simon Moore, Peter G Neumann, Ben Laurie & Robert Watson
Java provides security and robustness by building a high- level security model atop the foundation of memory protection. Unfortunately, any native code linked into a Java program – including the million lines used to implement the standard library – is able to bypass both the memory protection and the higher-level policies. We present a hardware-assisted implementation of the Java native code interface, which extends the guarantees required for Java’s security model to native code. Our...
This data repository is not currently reporting usage information. For information on how your repository can submit usage information, please see our documentation.