TU Darmstadt / ULB / TUbiblio

Getting to Know You: Towards a Capability Model for Java

Hermann, Ben ; Reif, Michael ; Eichberg, Michael ; Mezini, Mira :
Getting to Know You: Towards a Capability Model for Java.
[Online-Edition: http://doi.acm.org/10.1145/2786805.2786829]
In: Proceedings of the 2015 10th Joint Meeting on Foundations of Software Engineering, New York, NY, USA. In: ESEC/FSE 2015 . ACM , New York, NY, USA
[Konferenz- oder Workshop-Beitrag], (2015)

Offizielle URL: http://doi.acm.org/10.1145/2786805.2786829

Kurzbeschreibung (Abstract)

Developing software from reusable libraries lets developers face a security dilemma: Either be efficient and reuse libraries as they are or inspect them, know about their resource usage, but possibly miss deadlines as reviews are a time consuming process. In this paper, we propose a novel capability inference mechanism for libraries written in Java. It uses a coarse-grained capability model for system resources that can be presented to developers. We found that the capability inference agrees by 86.81% on expectations towards capabilities that can be derived from project documentation. Moreover, our approach can find capabilities that cannot be discovered using project documentation. It is thus a helpful tool for developers mitigating the aforementioned dilemma.

Typ des Eintrags: Konferenz- oder Workshop-Beitrag (Keine Angabe)
Erschienen: 2015
Autor(en): Hermann, Ben ; Reif, Michael ; Eichberg, Michael ; Mezini, Mira
Titel: Getting to Know You: Towards a Capability Model for Java
Sprache: Englisch
Kurzbeschreibung (Abstract):

Developing software from reusable libraries lets developers face a security dilemma: Either be efficient and reuse libraries as they are or inspect them, know about their resource usage, but possibly miss deadlines as reviews are a time consuming process. In this paper, we propose a novel capability inference mechanism for libraries written in Java. It uses a coarse-grained capability model for system resources that can be presented to developers. We found that the capability inference agrees by 86.81% on expectations towards capabilities that can be derived from project documentation. Moreover, our approach can find capabilities that cannot be discovered using project documentation. It is thus a helpful tool for developers mitigating the aforementioned dilemma.

Reihe: ESEC/FSE 2015
Ort: New York, NY, USA
Verlag: ACM
Freie Schlagworte: analysis, capability, library, reuse, security
Fachbereich(e)/-gebiet(e): Fachbereich Informatik
Fachbereich Informatik > Softwaretechnik
Zentrale Einrichtungen > EC SPRIDE
Zentrale Einrichtungen
Veranstaltungstitel: Proceedings of the 2015 10th Joint Meeting on Foundations of Software Engineering
Veranstaltungsort: New York, NY, USA
Hinterlegungsdatum: 10 Sep 2015 14:10
Offizielle URL: http://doi.acm.org/10.1145/2786805.2786829
Export:

Optionen (nur für Redakteure)

Eintrag anzeigen Eintrag anzeigen