@inproceedings{81598cc5d84746e9827c51a3e660e987,
title = "Inferring java security policies through dynamic sandboxing",
abstract = "Complex enterprise and server-level applications are often written in Java because of its reputation for security. The Java policy language allows users to specify very fine-grained and complex security policies. However, this expressiveness makes it difficult to determine the correct policy with respect to the principle of least privilege. We describe a method for automatically learning the minimum security policy called dynamic sandboxing. A minimal sandbox (security policy) is inferred by observing program execution and expressed in the standard Java policy language. The minimum policy stops Java exploits and learning the policy does not cripple performance, allowing applications to run normally during training.",
keywords = "Computer security, Java, Policy inference, Policy language, Principle of least privilege, Security policy",
author = "Hajime Inoue and Stephanie Forrest",
note = "Copyright: Copyright 2012 Elsevier B.V., All rights reserved.; 2005 International Conference on Programming Languages and Compilers, PLC'05 ; Conference date: 27-06-2005 Through 30-06-2005",
year = "2005",
language = "English (US)",
isbn = "9781932415759",
series = "Proceedings of the 2005 International Conference on Programming Languages and Compilers, PLC'05",
pages = "151--157",
booktitle = "Proceedings of the 2005 International Conference on Programming Languages and Compilers, PLC'05",
}