Skip to Main content Skip to Navigation
Conference papers

Towards Dynamic Component Isolation in a Service Oriented Platform

Kiev Gama 1 Didier Donsez 1
1 ADELE - Environnements et outils pour le Génie Logiciel Industriel
LIG - Laboratoire d'Informatique de Grenoble
Abstract : When dealing with dynamic component environments such as the OSGi Service Platform, where components can come from different sources and may be known only during runtime, evaluating third party components trustworthiness at runtime is difficult. The traditional namespace based isolation and the security mechanisms provided in the Java platform (the base platform for OSGi) can restrict the access of such components but can not provide fault isolation. In this paper we present a dynamic component isolation approach for the OSGi platform, based on a recently standardized Java mechanism. When an untrusted component is activated during runtime, it is isolated in a fault contained environment but it can still collaborate with the application. If it is observed that the untrusted code does not bring any threat to the application, at runtime it can be dynamically promoted to the safe environment. Tests have been performed in a controlled environment where misbehaving components hosted in the sandbox were not able to disturb the main application.
Document type :
Conference papers
Complete list of metadata
Contributor : Vincent Lestideau <>
Submitted on : Tuesday, February 4, 2014 - 10:57:06 AM
Last modification on : Tuesday, December 8, 2020 - 10:26:09 AM

Links full text



Kiev Gama, Didier Donsez. Towards Dynamic Component Isolation in a Service Oriented Platform. Component-Based Software Engineering - 12th International Symposium, CBSE 2009, Jun 2009, East Stroudsburg, PA, United States. pp.104-120, ⟨10.1007/978-3-642-02414-6_7⟩. ⟨hal-00941714⟩



Record views