Title :
I-JVM: a Java Virtual Machine for component isolation in OSGi
Author :
Geoffray, Nicolas ; Thomas, Gaël ; Muller, Gilles ; Parrend, Pierre ; Frénot, Stéphane ; Folliot, Bertil
Author_Institution :
UPMC/LIP6, INRIA-Regal, Paris, France
fDate :
June 29 2009-July 2 2009
Abstract :
The OSGi framework is a Java-based, centralized, component oriented platform. It is being widely adopted as an execution environment for the development of extensible applications. However, current Java Virtual Machines are unable to isolate components from each other. For instance, a malicious component can freeze the complete platform by allocating too much memory or alter the behavior of other components by modifying shared variables. This paper presents I-JVM, a Java Virtual Machine that provides a lightweight approach to isolation while preserving compatibility with legacy OSGi applications. Our evaluation of I-JVM shows that it solves the 8 known OSGi vulnerabilities that are due to the Java Virtual Machine and that the overhead of I-JVM compared to the JVM on which it is based is below 20%.
Keywords :
Java; object-oriented programming; virtual machines; virtual reality; I-JVM; Java virtual machine; OSGi; component isolation; Computer crime; Costs; Data security; Java; Protection; Statistics; Virtual machining; Web and internet services; Yarn;
Conference_Titel :
Dependable Systems & Networks, 2009. DSN '09. IEEE/IFIP International Conference on
Conference_Location :
Lisbon
Print_ISBN :
978-1-4244-4422-9
Electronic_ISBN :
978-1-4244-4421-2
DOI :
10.1109/DSN.2009.5270296
