Skip to Main Content

IEEE.org| IEEE Xplore Digital Library| IEEE Standards| IEEE Spectrum| More Sites

Cart (Loading....) | Create Account | Sign In

Author Search^beta | Advanced Search | Preferences | | More Search Options

Browse Conference Publications > Web-Age Information Managemen ...

Data-Flow Based Analysis of Java Bytecode Vulnerability

Full Text Sign-In or Purchase

Sign In

Cookies must be enabled to login.After enabling cookies , please use refresh or reload or ctrl+f5 on the browser for the login options.

Username

Password

Purchase PDF
Other Formats

Formats	Non-Member	Member
PDF	$31	$13

IEEE membership options for an individual and IEEE Xplore subscriptions for an organization offer the most affordable access to essential journal articles, conference papers, standards, eBooks, and eLearning courses.

Learn more about:

IEEE membership

IEEE Xplore subscriptions

Already Purchased? View Article
Subscription Options Learn More

3 Author(s)

Gang Zhao ; Dept. of Comput. Sci. & Technol., Tsinghua Univ., Beijing ; Hua Chen ; Dongxia Wang

Java is widely used because its security and platform independence. Although Java's security model is designed for protecting users from untrusted sources, Java's security is not under fully control at the application level. A large number of Java classes or Java class libraries have been used in network iquest application development, whose source is unknown and trust unassured. Analyzing the vulnerability of Java bytecode is helpful for assessing the security of untrusted Java components. The data-flow based methods suit to vulnerability analysis because their data propagation character. The paper is about using data-flow based methods to analyze the vulnerability of Java program in bytecode.

Published in:
Web-Age Information Management, 2008. WAIM '08. The Ninth International Conference on

Date of Conference: 20-22 July 2008

Page(s):: 647 - 653
E-ISBN :: 978-0-7695-3185-4
Print ISBN:: 978-0-7695-3185-4
INSPEC Accession Number:: 10131753

Conference Location :: Zhangjiajie Hunan
Digital Object Identifier :: 10.1109/WAIM.2008.99
Product Type:: Conference Publications

Author(s)

Gang Zhao
Dept. of Comput. Sci. & Technol., Tsinghua Univ., Beijing
Hua Chen ; Dongxia Wang

INSPEC: CONTROLLED INDEXING

Java

data flow analysis

object-oriented programming

safety-critical software

software libraries

INSPEC: NON CONTROLLED INDEXING

Java bytecode vulnerability

Java class libraries

data-flow based analysis

untrusted Java component security

AUTHOR KEYWORDS

Java bytecode

data-flow

vulnerability analysis

IEEE TERMS

Computer science

Data analysis

Data engineering

Data security

Independent component analysis

Information analysis

Information management

Information security

Java

Systems engineering and theory

Referenced Items are not available for this document.

No versions found for this document.

Standards Dictionary Terms are available to subscribers only.

| Create Account

IEEE Account

Purchase Details

Profile Information

Need Help?

US & Canada: +1 800 678 4333
Worldwide: +1 732 981 0060
Contact & Support

IEEE Advancing Technology for Humanity

About IEEE Xplore | Contact | Help | Terms of Use | Nondiscrimination Policy | Site Map | Privacy & Opting Out of Cookies

A not-for-profit organization, IEEE is the world's largest professional association for the advancement of technology.
© Copyright 2013 IEEE - All rights reserved. Use of this web site signifies your agreement to the terms and conditions.