Blogs (9) >>
SPLASH 2016
Sun 30 October - Fri 4 November 2016 Amsterdam, Netherlands
Sun 30 Oct 2016 14:30 - 15:00 at Matterhorn 3 - Security & Capability-based Designs Chair(s): Shigeru Chiba

Reflection allows a program to examine and even modify itself, but its power can also lead to violations of encapsulation and even security vulnerabilities. The Wyvern language leverages static types for encapsulation and provides security through an object capability model. We present a design for reflection in Wyvern which respects capability safety and type-based encapsulation. This is accomplished through a mirror-based design, with the addition of a mechanism to constrain the visible type of a reflected object. In this way, we ensure that the programmer cannot use reflection to violate basic encapsulation and security guarantees.

Paper (meta16-final3.pdf)137KiB

Sun 30 Oct

Displayed time zone: Amsterdam, Berlin, Bern, Rome, Stockholm, Vienna change

13:30 - 15:10
Security & Capability-based DesignsMETA at Matterhorn 3
Chair(s): Shigeru Chiba University of Tokyo
13:30
30m
Talk
Declaratively Specifying Security Policies For Web Applications
META
Angel Luis Scull Pupo Sofware Languages Lab, Vrije Universiteit Brussel, Jens Nicolay Vrije Universiteit Brussel, Belgium, Elisa Gonzalez Boix Vrije Universiteit Brussel
Media Attached File Attached
14:00
30m
Talk
Virtual Values for Taint and Information Flow Analysis
META
Prakasam Kannan San Jose State University, Thomas H. Austin , Mark Stamp San Jose State University, Tim Disney , Cormac Flanagan University of California, Santa Cruz
Media Attached File Attached
14:30
30m
Talk
Capability Safe Reflection for the Wyvern Language
META
Esther Wang Carnegie Mellon University, Jonathan Aldrich Carnegie Mellon University
Media Attached File Attached