@inproceedings{c4150b1ec346406190f3a396f8ad823c,
title = "Policy-Enforced Linking of Untrusted Components (Extended Abstract)",
abstract = "A method of secure linking (SL), a flexible way of allowing software component users to specify their security policy at link time, is discussed. The system gives the users more control than type-checking or traditional digital signing. The SL mechanism does not prevent bugs, but it gives the software provider and the software consumer finer-grain control of the meaning of certificates they use. With the SL framework, a code consumer can establish a linking policy to protect itself from malicious code from outside. The policy can include certain properties such as software component names, and application-specific correctness properties which are useful for system safety.",
keywords = "Component composition, Formal logic, Linking, Proof-carrying",
author = "Eunyoung Lee and Appel, {Andrew W.}",
year = "2003",
language = "English (US)",
isbn = "1581137435",
series = "Proceedings of the Joint European Software Engineering Conference (ESEC) and SIGSOFT Symposium on the Foundations of Software Engineering (FSE-11)",
pages = "371--374",
editor = "P. Inverardi",
booktitle = "Proceedings of the Joint 9th European Software Engineering Conference (ESEC) and 11th SIGSOFT Symposium on the Foundations of Software Engineering (FSE-11)",
note = "Proceedings of the Joint 9th European Software Engineering Conference (ESEC) and 11th SIGSOFT Symposium on the Foundations of Software Engineering (FSE-11) ; Conference date: 01-09-2003 Through 05-09-2003",
}