@inproceedings{DBLP:conf/acsac/WheelerCLX01,
  author    = {David M. Wheeler and
               Adam Conyers and
               Jane Luo and
               Alex Xiong},
  title     = {Java Security Extensions for a Java Server in a Hostile Environment},
  booktitle = {ACSAC},
  year      = {2001},
  pages     = {64-73},
  ee        =
{http://csdl.computer.org/comp/proceedings/acsac/2001/1405/00/14050064abs.htm},
  crossref  = {DBLP:conf/acsac/2001},
  bibsource = {DBLP, http://dblp.uni-trier.de},
  abstract = {

The Java (TM) Virtual Machine is being used more
frequently as the basic engine behind dynamic web
services. With the proliferation of network attacks on
these network resources, much work has been done to
provide security for the network environment. Continuing
work on firewalls, intrusion detection, and even access
control have provided numerous insights and capabilities
for protecting web resources. Java itself has received
much attention in the security arena, and the Java 2(TM)
Architecture has provided considerable in-roads to
providing security services. However, this research has
operated under the assumption that attacks only occur
through the network, and not with direct access to the
web server through a valid login. Little effort has been
placed on securing a Java web server where the attacker
has a valid login to the host machine. This paper
describes specific security extensions developed for a
Java Virtual Machine that provide assurance of correct
system operation and integrity even in the presence of
successful attacks on the underlying operating system.

  }
}

@proceedings{DBLP:conf/acsac/2001,
  title     = {17th Annual Computer Security Applications Conference (ACSAC
               2001), 11-14 December 2001, New Orleans, Louisiana, USA},
  booktitle = {ACSAC},
  publisher = {IEEE Computer Society},
  year      = {2001},
  isbn      = {0-7695-1405-7},
  bibsource = {DBLP, http://dblp.uni-trier.de}
}

--

N.b. This article's DOI 10.1109/ACSAC.2001.991522 links to the IEEE Computer Society's digital library.  Our library doesn't subscribe to this, but it does subscribe to the IEEE digital library, and I was able to retrieve an archival copy from that source:

http://ieeexplore.ieee.org.ezproxy.auckland.ac.nz/iel5/7785/21388/00991522.pdf?tp=&isnumber=21388&arnumber=991522&punumber=%3cb%3e%3cfont%20color=990000%3e7785%3c/font%3e%3c/b%3e

--