Modern browsers and smartphone operating systems treat applications as mutually
untrusting, potentially malicious principals. Applications are (1) isolated except for explicit …

Android's security framework has been an appealing subject of research in the last few
years. Android has been shown to be vulnerable to application-level privilege escalation …

Attacks against computer systems can cause considerable economic or physical damage.
High-quality development of security-critical systems is difficult, mainly because of the …

Smartphone apps are often granted to privilege to run with access to the network and
sensitive local resources. This makes it difficult for remote endpoints to place any trust in the …

Abstract SASI (_Security Automata _SFI _Implementation) enforces security policies by
modifying object code for a target system before that system is executed. The approach has …

Two implementations are given for Java's stack inspection access-control policy. Each
implementation is obtained by generating an inlined reference monitor (IRM) for a different …

Embedding security enforcement code into applications is an alternative to traditional
security mechanisms. This dissertation supports the thesis that such Inlined Reference …

We review the existing literature on Java safety, emphasizing formal approaches, and the
impact of Java safety on small footprint devices such as smartcards. The conclusion is that …

This paper presents secure program partitioning, a language-based technique for protecting
confidential data during computation in distributed systems containing mutually untrusted …

The article introduces a new approach to code safety. We present Naccio, a system
architecture that allows a large class of safety policies to be expressed in a general and …