[e-lang] Joe-E Doc
Karp, Alan H
alan.karp at hp.com
Wed Mar 12 13:01:56 EDT 2008
David Wagner wrote:
>
> Our approach is dangerous: if we overlook a single case where the Java
> compiler implicitly introduces method calls or field
> accesses, Joe-E code
> may be able to bypass the taming checks. We're essentially
> blacklisting,
> and that's always risky.
>
The last time I looked, the .class file lists the imported methods as text strings. That means you can use grep to check for untamed methods to see how well you've done. I don't know about field accesses.
________________________
Alan Karp
Principal Scientist
Virus Safe Computing Initiative
Hewlett-Packard Laboratories
1501 Page Mill Road
Palo Alto, CA 94304
(650) 857-3967, fax (650) 857-7029
http://www.hpl.hp.com/personal/Alan_Karp
More information about the e-lang
mailing list