A static type system for JVM access control

Tomoyuki Higuchi, Atsushi Ohori

Research output: Contribution to journalArticlepeer-review

9 Citations (Scopus)


This article presents a static type system for the Java virtual machine (JVM) code that enforces an access control mechanism similar to that found in a Java implementation. In addition to verifying type consistency of a given JVM code, the type system statically verifies whether the code accesses only those resources that are granted by the prescribed access policy. The type system is proved to be sound with respect to an operational semantics that enforces access control dynamically, similar to Java stack inspection. This result ensures that well-typed code cannot violate access policy. The authors then develop a type inference algorithm and show that it is sound with respect to the type system. These results allow us to develop a static system for JVM access control, without resorting to costly runtime stack inspection.

Original languageEnglish
Article number4
JournalACM Transactions on Programming Languages and Systems
Issue number1
Publication statusPublished - 2007 Jan 1
Externally publishedYes


  • Access control
  • JVM
  • Stack inspection
  • Type inference
  • Type system

ASJC Scopus subject areas

  • Software


Dive into the research topics of 'A static type system for JVM access control'. Together they form a unique fingerprint.

Cite this