Java Security Research Homework

Two security related Java questions to entertain your brain.

1.

A GuardedObject is an object that is used to protect access to another object. A GuardedObject encapsulates a target object and a Guard object, such that access to the target object is possible only if the Guard object allows it. Once an object is encapsulated by a GuardedObject, access to that object is controlled by the getObject method, which invokes the checkGuard method on the Guard object that is guarding access. If access is not allowed, an exception is thrown.

Now, write a Java program that illustrates the usage of GuardedObject.

2.

SignedObject is a class for the purpose of creating authentic runtime objects whose integrity cannot be compromised without being detected. More specifically, a SignedObject contains another Serializable object, the (to-be-)signed object and its signature.

Again, write a Java program that illustrates the usage of SignedObject.

NOTE:

What to handin:

• This is a group homework, use the same group members as your project group. Work with each other early.
• Homework is based on complete correctness, so MAKE SURE everything is neat and correct.
• Use a good word processor to writeup all the written assignments. Print them out and handin in class.
• Handin DETAIL running instructions and the actual program (source + class files + html file + h + c files, etc). Print instruction and program listing out, and hand them in with the computer diskette or CD. (I prefer CDs.)
• No late assignment will be accepted
• DO NOT EMAIL ANY assignment to me. Handin in class
• Points will be taken off if you violate any of the above.