Getting to know you: towards a capability model for Java

by Ben Hermann, Michael Reif, Michael Eichberg, and Mira Mezini

Abstract: Developing software from reusable libraries lets developers face a security dilemma: Either be efficient and reuse libraries as they are or inspect them, know about their resource usage, but possibly miss deadlines as reviews are a time consuming process. In this paper, we propose a novel capability inference mechanism for libraries written in Java. It uses a coarse-grained capability model for system resources that can be presented to developers. We found that the capability inference agrees by 86.81% on expectations towards capabilities that can be derived from project documentation. Moreover, our approach can find capabilities that cannot be discovered using project documentation. It is thus a helpful tool for developers mitigating the aforementioned dilemma.

Resources

• Download preprint
• Visit publisher page (via DOI)
• Visit artifact page

BibTeX

@inproceedings {HREM15,
  title = {{Getting to know you: towards a capability model for Java}},
  author = {Hermann, Ben and Reif, Michael and Eichberg, Michael and Mezini, Mira},
  booktitle = {{Proceedings of the 10th Joint Meeting of the European Software Engineering Conference and the ACM SIGSOFT Symposium on the Foundations of Software Engineering}},
  series = {ESEC/FSE 2015},
  pages = {758-769},
  year = {2015},
  doi = {10.1145/2786805.2786829},
  url = {http://dx.doi.org/10.1145/2786805.2786829},
}
        

---