Mobile Language Study
Final technical rept. 15 Aug 2001-15 Aug 2003
SWEDISH INST OF COMPUTER SCIENCE KISTA (SWEDEN)
Pagination or Media Count:
This report results from a contract tasking Swedish Institute of Computer Science AB as follows Contractor will investigate security issues related to mobile code dynamically loaded code which can potentially compromise information system security This is of special concern to the Air Force because of requirements to access data at various levels of classification The contractor proposes realizing information flow controls for mobile code by expressing security policies as admissibility properties The proposed architecture to be investigated has the following properties code annotations and security guarantees, program analysis to verify security guarantees, and a specially designed user interface to aid in handing data of different security levels The proposed effort spans two years and is divided into four tasks Tasks I and 2 will be completed in the first year and Tasks 3 and 4 are to be completed the second year Task I Program analysis techniques for admissibility Task 2 Experimentation and prototyping Pending successful completion of the first years research and availability of funding, the second years tasks include Task 3 Security architecture Task 4 Java Card and JCVM.
- Computer Systems Management and Standards