A security policy defines executions that, for one reason or another, have been deemed unacceptable. We give a precise characterization of what security policies are enforceable. We also discuss practical methods for enforcing such a policy. One method is based on object-code editing, and we have developed a tool for this that works on x86 and JVM assembly language.
Back to LESSLast modified: February 8, 1999