Flexible security model for using Internet content

Rangachari Anand, Nayeem Islam, Trent Jaeger, Josyula R. Rao

Research output: Contribution to journalConference articlepeer-review

2 Scopus citations

Abstract

Java applets, Netscape plug-ins and ActiveX controls have led to the popularization of a new paradigm: extensive downloading of executable code into applications to enhance the functionality of the desktop. One of the problems with this paradigm is the need to control the access rights of the downloaded content. In this paper, we describe a system for downloading content front the Internet and controlling its actions on a client machine. Our system generates a protection domain for the downloaded content dynamically using the content's requested domain and a policy database that describes the user's trust in the content's manufacturer and type. Our system ensures that this protection domain is enforced throughout the execution of the content. We have modified the Java Virtual Machine to implement our security model. Our implementation, called Flexxguard, is freely available at http://www.alphaworks.ibm.com.

Original languageEnglish (US)
Pages (from-to)89-96
Number of pages8
JournalProceedings of the IEEE Symposium on Reliable Distributed Systems
StatePublished - Dec 1 1997
EventProceedings of the 1997 IEEE 16th Symposium on Reliable Distributed Systems - Durham, NC, USA
Duration: Oct 22 1997Oct 24 1997

All Science Journal Classification (ASJC) codes

  • Software
  • Theoretical Computer Science
  • Hardware and Architecture
  • Computer Networks and Communications

Fingerprint Dive into the research topics of 'Flexible security model for using Internet content'. Together they form a unique fingerprint.

Cite this