The safe-Tcl security model

Authors:
Jacob Y. Levy;Laurent Demailly;John K. Ousterhout;Brent B. Welch
Affiliations:
Sun Microsystems Laboratories;Sun Microsystems Laboratories;Scriptics Inc.;Scriptics Inc.
Venue:
ATEC '98 Proceedings of the annual conference on USENIX Annual Technical Conference
Year:
1998

Citing 9
Cited 8

Authentication in distributed systems: theory and practice

ACM Transactions on Computer Systems (TOCS)
Efficient software-based fault isolation

SOSP '93 Proceedings of the fourteenth ACM symposium on Operating systems principles
Tcl and the Tk toolkit

Tcl and the Tk toolkit
Practical programming in Tcl and Tk (2nd ed.)

Practical programming in Tcl and Tk (2nd ed.)
Data Security

ACM Computing Surveys (CSUR)
A note on the confinement problem

Communications of the ACM
The Java Programming Language

The Java Programming Language
EMail With A Mind of Its Own: The Safe-Tcl Language for Enabled Mail

Proceedings of the IFIP TC6/WG6.5 International Conference on Upper Layer Protocols, Architectures and Applications
Going beyond the sandbox: an overview of the new security architecture in the javaTM development Kit 1.2

USITS'97 Proceedings of the USENIX Symposium on Internet Technologies and Systems on USENIX Symposium on Internet Technologies and Systems

Flexible control of downloaded executable content

ACM Transactions on Information and System Security (TISSEC)
Security architecture for component-based operating systems

Proceedings of the 8th ACM SIGOPS European workshop on Support for composing distributed applications
Access control in configurable systems

Secure Internet programming
Security in active networks

Secure Internet programming
Secure Web Scripting

IEEE Internet Computing
Building a Secure Web Browser

Proceedings of the FREENIX Track: 2001 USENIX Annual Technical Conference
Sub-operating systems: a new approach to application security

EW 10 Proceedings of the 10th workshop on ACM SIGOPS European workshop
SoftwarePot: an encapsulated transferable file system for secure software circulation

ISSS'02 Proceedings of the 2002 Mext-NSF-JSPS international conference on Software security: theories and systems

Quantified Score

Hi-index	0.00

Visualization

Abstract

Safe-Tcl is a mechanism for controlling the execution of programs written in the Tcl scripting language. It allows untrusted scripts (applets) to be executed while preventing damage to the environment or leakage of private information. Safe-Tcl uses a padded cell approach: each applet is isolated in a safe interpreter where it cannot interact directly with the rest of the application. The execution environment of an applet is controlled by a trusted script running in a master interpreter. Safe-Tcl supports applets using multiple security policies within an application. These policies determine what an applet can do, based on the degree to which the applet is trusted. Safe-Tcl separates security management into well-defined phases that are geared towards the party responsible for each aspect of security.