DZone
Java Zone
Thanks for visiting DZone today,
Edit Profile
  • Manage Email Subscriptions
  • How to Post to DZone
  • Article Submission Guidelines
Sign Out View Profile
  • Post an Article
  • Manage My Drafts
Over 2 million developers have joined DZone.
Log In / Join
  • Refcardz
  • Trend Reports
  • Webinars
  • Zones
  • |
    • Agile
    • AI
    • Big Data
    • Cloud
    • Database
    • DevOps
    • Integration
    • IoT
    • Java
    • Microservices
    • Open Source
    • Performance
    • Security
    • Web Dev
DZone > Java Zone > Researchers Incorporate Security Into a Programming Language

Researchers Incorporate Security Into a Programming Language

Mitch Pronschinske user avatar by
Mitch Pronschinske
·
Nov. 24, 10 · Java Zone · Interview
Like (0)
Save
Tweet
8.22K Views

Join the DZone community and get the full member experience.

Join For Free
At Cornell University, researchers have built an extension to Java that incorporates security logic into a program while it's being written.  The platform, named "Fabric", replaces the mishmash of security layers and intermittent patches with one simple programming interface that provides explicit and direct security logic.

Fred Schneider, a Cornell professor of Computer Science, says that computer security has traditionally been reactive, improving only after software is successfully hacked.  Another Computer Science professor working on this project, Andrew Myers, compared modern security to using duct tape.  We just keep putting patches on top of patches, making system security into an utter mess.

Fabric, on the other hand, creates security in distributed computing systems and weaves the security functionality into the code as you write it.  The language is a set of objects labeled with security policies for data access and operations.  The blocks of code have built-in policies when they are written that tell when and where the code can be run.  

Fabric won't let your write insecure code.  The compiler that turns Fabric language into an executable program enforces security policies transparently.  Schneider and Myers plan to scale up Fabric for large-scale distributed computing systems.  Right now Fabric is in the prototype.  They also want to add more complex security restrictions and the ability to assure security when programs on one node are run on another.  

Check out news.cornell.edu for more details.

Computer security

Opinions expressed by DZone contributors are their own.

Popular on DZone

  • APIs Outside, Events Inside
  • 6 Best Books to Learn Multithreading and Concurrency in Java
  • 3 Predictions About How Technology Businesses Will Change In 10 Years
  • Everything I Needed to Know About Observability, I Learned from ‘Bewitched’

Comments

Java Partner Resources

X

ABOUT US

  • About DZone
  • Send feedback
  • Careers
  • Sitemap

ADVERTISE

  • Advertise with DZone

CONTRIBUTE ON DZONE

  • Article Submission Guidelines
  • MVB Program
  • Become a Contributor
  • Visit the Writers' Zone

LEGAL

  • Terms of Service
  • Privacy Policy

CONTACT US

  • 600 Park Offices Drive
  • Suite 300
  • Durham, NC 27709
  • support@dzone.com
  • +1 (919) 678-0300

Let's be friends:

DZone.com is powered by 

AnswerHub logo