ACM Portal
  Subscribe (Full Service)    Register (Limited Service, Free)    Login
  Search:   The ACM Digital Library   The Guide
  
ACM Home Page
Please provide us with feedback. Feedback
A type system for Java bytecode subroutines
Full text PdfPdf (520 KB)
Source ACM Transactions on Programming Languages and Systems (TOPLAS) archive
Volume 21 ,  Issue 1  (January 1999) table of contents
Pages: 90 - 137  
Year of Publication: 1999
ISSN:0164-0925
Authors
Raymie Stata  Digital Equipment Corp., Palo Alto, CA
Martin Abadi  Digital Equipment Corp., Palo Alto, CA
Publisher
ACM  New York, NY, USA
Bibliometrics
Downloads (6 Weeks): 7,   Downloads (12 Months): 55,   Citation Count: 24
Additional Information:

abstract   references   cited by   index terms   collaborative colleagues  

Tools and Actions: Request Permissions Request Permissions    Review this Article  
DOI Bookmark: Use this link to bookmark this Article: http://doi.acm.org/10.1145/314602.314606
What is a DOI?

ABSTRACT

Java is typically compiled into an intermediate language, JVML, that is interpreted by the Java Virtual Machine. Because mobile JVML code is not always trusted, a bytecode verifier enforces static constraints that prevent various dynamic errors. Given the importance of the bytecode verifier for security, its current descriptions are inadequate. This article proposes using typing rules to describe the bytecode verifier because they are more precise than prose, clearer than code, and easier to reason about than either. JVML has a subroutine construct which is used for the compilation of Java's try-finally statement. Subroutines are a major source of complexity for the bytecode verifier because they are not obviously last-in/first-out and because they require a kind of polymorphism. Focusing on subroutines, we isolate an interesting, small subset of JVML. We give typing rules for this subset and prove their correctness. Our type system constitutes a sound basis for bytecode verification and a rational reconstruction of a delicate part of Sun's bytecode verifier.


REFERENCES

Note: OCR errors may be found in this Reference List extracted from the full text article. ACM has opted to expose the complete List rather than only correct and linked references.

 
1
COHEN, R. M. 1997. Defensive Java Virtual Machine version 0.5 alpha release. Web pages at http ://www. cli. com/.
 
2
DROSSOPOULOU, S. AND EISENBACH, S. 1997. Java is type safe--probably. In Proceedings of ECOOP '97. Springer-Verlag, 389-418.
3
Stephen N. Freund , John C. Mitchell, A type system for object initialization in the Java bytecode language, Proceedings of the 13th ACM SIGPLAN conference on Object-oriented programming, systems, languages, and applications, p.310-327, October 18-22, 1998, Vancouver, British Columbia, Canada
4
Allen Goldberg, A specification of Java loading and bytecode verification, Proceedings of the 5th ACM conference on Computer and communications security, p.49-58, November 02-05, 1998, San Francisco, California, United States  [doi>10.1145/288090.288104]
 
5
Masami Hagiya , Akihiko Tozawa, On a New Method for Dataflow Analysis of Java Virtual Machine Subroutines, Proceedings of the 5th International Symposium on Static Analysis, p.17-32, September 14-16, 1998
 
6
Tim Lindholm , Frank Yellin, Java Virtual Machine Specification, Addison-Wesley Longman Publishing Co., Inc., Boston, MA, 1999
 
7
MORRISETT, G. 1995. Compiling with types. Ph.D. thesis, Carnegie Mellon University.
 
8
MORRISETT, G., TARDITI, D., CHENG, P., STONE, C., HARPER, R., AND LEE, P. 1996. The TIL/ML compiler: Performance and safety through types. In Workshop on Compiler Support for Systems Software.
9
Tobias Nipkow , David von Oheimb, Javalight is type-safe—definitely, Proceedings of the 25th ACM SIGPLAN-SIGACT symposium on Principles of programming languages, p.161-170, January 19-21, 1998, San Diego, California, United States  [doi>10.1145/268946.268960]
 
10
Zhenyu Qian, A Formal Specification of Java Virtual Machine Instructions for Objects, Methods and Subrountines, Formal Syntax and Semantics of Java, p.271-312, January 1999
 
11
SARASWAT, V. 1997. The Java bytecode verification problem. Web page at http://www.research art. com/~vj/bcv, html.
 
12
SIRER, E. G., MCDIRMID, S., AND BERSHAD, B. 1997. Kimera: A Java system security architecture. Web pages at http ://kimera. cs. washington, edu/.
 
13
SYME, D. 1997. Proving Java type soundness. Tech. Rep. 427, University of Cambridge Computer Laboratory. June.
 
14
TIC 1997. ACM SIGPLAN Workshop on Types in Compilation (TIC97).
 
15
YELLIN, F. 1997. Private communication.

CITED BY  24
Stephen N. Freund , John C. Mitchell, The type system for object initialization in the Java bytecode language, ACM Transactions on Programming Languages and Systems (TOPLAS), v.21 n.6, p.1196-1250, Nov. 1999
Roberto Barbuti , Luca Tesei , Cinzia Bernardeschi , Nicoletta De Francesco, Fixing the Java bytecode verifier by a suitable type domain, Proceedings of the 14th international conference on Software engineering and knowledge engineering, July 15-19, 2002, Ischia, Italy
Hidehiko Masuhara , Akinori Yonezawa, A portable-approach to dynamic optimization in run-time specialization, New Generation Computing, v.20 n.1, p.101-124, January 2002
Xavier Leroy, Bytecode verification on Java smart cards, Software—Practice & Experience, v.32 n.4, p.319-340, 10 April 2002
Cosimo Laneve, A type system for JVM threads, Theoretical Computer Science, v.290 n.1, p.741-778, 1 January 2003
Futoshi Iwama , Naoki Kobayashi, A new type system for JVM lock primitives, Proceedings of the ASIAN symposium on Partial evaluation and semantics-based program manipulation, p.71-82, September 12-14, 2002, Aizu, Japan
Robert F. Stärk , Joachim Schmid, Completeness of a Bytecode Verifier and a Certifying Java-to-JVM Compiler, Journal of Automated Reasoning, v.30 n.3-4, p.323-361, 2003
Xavier Leroy, Java Bytecode Verification: Algorithms and Formalizations, Journal of Automated Reasoning, v.30 n.3-4, p.235-269, 2003
Stephen N. Freund , John C. Mitchell, A Type System for the Java Bytecode Language and Verifier, Journal of Automated Reasoning, v.30 n.3-4, p.271-321, 2003
David Basin , Stefan Friedrich , Marek Gawkowski, Bytecode Verification by Model Checking, Journal of Automated Reasoning, v.30 n.3-4, p.399-444, 2003
Philip W. L. Fong, Pluggable verification modules: an extensible protection mechanism for the JVM, ACM SIGPLAN Notices, v.39 n.10, October 2004
Roberto Barbuti , Stefano Cataudella, Java bytecode verification on Java cards, Proceedings of the 2004 ACM symposium on Applied computing, March 14-17, 2004, Nicosia, Cyprus
Roberto Barbuti , Cinzia Bernardeschi , Nicoletta De Francesco, Checking security of Java bytecode by abstract interpretation, Proceedings of the 2002 ACM symposium on Applied computing, March 11-14, 2002, Madrid, Spain
Antonella Santone , Gigliola Vaglini, A local approach for temporal model checking of java bytecode, Journal of Computer and System Sciences, v.70 n.2, p.258-281, March 2005
Antonella Santone , Gigliola Vaglini, Local model checking of Java bytecode, Proceedings of the 14th international conference on Software engineering and knowledge engineering, July 15-19, 2002, Ischia, Italy
Akihiko Tozawa , Masami Hagiya, Formalization and Analysis of Class Loading in Java, Higher-Order and Symbolic Computation, v.15 n.1, p.7-55, March 2002
Ando Saabas , Tarmo Uustalu, Compositional type systems for stack-based low-level languages, Proceedings of the 12th Computing: The Australasian Theroy Symposium, p.27-39, January 16-19, 2006, Hobart, Australia
David Aspinall , Adriana Compagnoni, Heap-Bounded Assembly Language, Journal of Automated Reasoning, v.31 n.3-4, p.261-302, 2003
Pieter H. Hartel , Luc Moreau, Formalizing the safety of Java, the Java virtual machine, and Java card, ACM Computing Surveys (CSUR), v.33 n.4, p.517-558, December 2001
Philip W. L. Fong, Reasoning about safety properties in a JVM-like environment, Science of Computer Programming, v.67 n.2-3, p.278-300, July, 2007
Greg Morrisett , Karl Crary , Neal Glew , David Walker, Stack-based typed assembly language, Journal of Functional Programming, v.12 n.1, p.43-88, January 2002
Nicu G. Fruja, Towards proving type safety of .NET CIL, Science of Computer Programming, v.72 n.3, p.176-219, August, 2008
Ando Saabas , Tarmo Uustalu, Type Systems for Optimizing Stack-based Code, Electronic Notes in Theoretical Computer Science (ENTCS), v.190 n.1, p.103-119, July, 2007
Andreas Gal , Christian W. Probst , Michael Franz, Java bytecode verification via static single assignment form, ACM Transactions on Programming Languages and Systems (TOPLAS), v.30 n.4, p.1-21, July 2008

INDEX TERMS

Primary Classification:
  D. Software
  D.3 PROGRAMMING LANGUAGES
      D.3.2 Language Classifications

          Nouns: Java

Additional Classification:
  D. Software
  D.3 PROGRAMMING LANGUAGES
      D.3.1 Formal Definitions and Theory
          Subjects: Semantics
  D.4 OPERATING SYSTEMS
      D.4.6 Security and Protection
          Subjects: Invasive software (e.g., viruses, worms, Trojan horses)

  F. Theory of Computation
  F.3 LOGICS AND MEANINGS OF PROGRAMS
      F.3.2 Semantics of Programming Languages
          Subjects: Operational semantics; Program analysis
      F.3.3 Studies of Program Constructs
          Subjects: Type structure


General Terms:
Languages, Security, Theory, Verification


Keywords:
Java, bytecode verification

Collaborative Colleagues:
Raymie Stata: colleagues
Martin Abadi: colleagues

The ACM Portal is published by the Association for Computing Machinery. Copyright © 2009 ACM, Inc.
Terms of Usage   Privacy Policy   Code of Ethics   Contact Us

Useful downloads: Adobe Acrobat    QuickTime    Windows Media Player    Real Player