ActionScript In-Lined Reference Monitoring in Prolog

Sridhar, Meera; Hamlen, Kevin W.

doi:10.1007/978-3-642-11503-5_13

Meera Sridhar¹⁸ &
Kevin W. Hamlen¹⁸

Part of the book series: Lecture Notes in Computer Science ((LNPSE,volume 5937))

Included in the following conference series:

International Symposium on Practical Aspects of Declarative Languages

404 Accesses
8 Citations

Abstract

A Prolog implementation of an In-lined Reference Monitoring system prototype for Adobe ActionScript Bytecode programs is presented. Prolog provides an elegant framework for implementing IRM’s. Its declarative and reversible nature facilitate the dual tasks of binary parsing and code generation, greatly simplifying many otherwise difficult IRM implementation challenges. The approach is demonstrated via the enforcement of several security policies on real-world Adobe Flash applets and AIR applications.

This research was supported by AFOSR YIP award number FA9550-08-1-0044.

This is a preview of subscription content, log in via an institution to check access.

Access this chapter

Log in via an institution

Chapter: USD 29.95; Price excludes VAT (USA)

eBook: USD 39.99; Price excludes VAT (USA)

Softcover Book: USD 54.99; Price excludes VAT (USA)

Tax calculation will be finalised at checkout

Purchases are for personal use only

Institutional subscriptions

References

DeVries, B.W., Gupta, G., Hamlen, K.W., Moore, S., Sridhar, M.: ActionScript bytecode verification with co-logic programming. In: Proc. of the ACM SIGPLAN Workshop on Prog. Languages and Analysis for Security, PLAS (2009)
Google Scholar
Hamlen, K.W., Morrisett, G., Schneider, F.B.: Certified in-lined reference monitoring on .NET. In: Proc. of the ACM SIGPLAN Workshop on Prog. Languages and Analysis for Security, PLAS (2006)
Google Scholar
Hamlen, K.W., Morrisett, G., Schneider, F.B.: Computability classes for enforcement mechanisms. ACM Trans. Prog. Languages and Sys. 28(1), 175–205 (2006)
Article Google Scholar
Schneider, F.B.: Enforceable security policies. ACM Trans. on Information and System Security 3, 30–50 (2000)
Article Google Scholar
Shapiro, L., Sterling, E.Y.: The Art of PROLOG: Advanced Programming Techniques. The MIT Press, Cambridge (1994)
MATH Google Scholar
Sridhar, M., Hamlen, K.W.: Model-checking in-lined reference monitors. In: Proc. Verification, Model-Checking and Abstract Interpretation (to appear, 2010)
Google Scholar

Download references

Author information

Authors and Affiliations

The University of Texas at Dallas, Richardson, Texas, U.S.A.
Meera Sridhar & Kevin W. Hamlen

Authors

Meera Sridhar
View author publications
You can also search for this author in PubMed Google Scholar
Kevin W. Hamlen
View author publications
You can also search for this author in PubMed Google Scholar

Editor information

Editors and Affiliations

Facultad de Informática, Univrsidad Politécnica de Madrid (UPM), Campus Montegancedo, Boadilla del Monte, 28660, Madrid, Spain
Manuel Carro
Facultad de Informática, Universidad Complutense de Madrid (UPM), c/Profesor José García Santesmases s/n, 28040, Madrid, Spain
Ricardo Peña

Rights and permissions

Reprints and permissions

Copyright information

About this paper

Cite this paper

Sridhar, M., Hamlen, K.W. (2010). ActionScript In-Lined Reference Monitoring in Prolog. In: Carro, M., Peña, R. (eds) Practical Aspects of Declarative Languages. PADL 2010. Lecture Notes in Computer Science, vol 5937. Springer, Berlin, Heidelberg. https://doi.org/10.1007/978-3-642-11503-5_13

Download citation

DOI: https://doi.org/10.1007/978-3-642-11503-5_13
Publisher Name: Springer, Berlin, Heidelberg
Print ISBN: 978-3-642-11502-8
Online ISBN: 978-3-642-11503-5
eBook Packages: Computer ScienceComputer Science (R0)

Publish with us

Policies and ethics