Sciweavers

SP
2003
IEEE

Using Replication and Partitioning to Build Secure Distributed Systems

14 years 5 months ago
Using Replication and Partitioning to Build Secure Distributed Systems
A challenging unsolved security problem is how to specify and enforce system-wide security policies; this problem is even more acute in distributed systems with mutual distrust. This paper describes a way to enforce policies for data confidentiality and integrity in such an environment. Programs annotated with security specifications are statically checked and then transformed by the compiler to run securely on a distributed system with untrusted hosts. The code and data of the computation are partitioned across the available hosts in accordance with the security specification. The key contribution is automatic replication of code and data to increase assurance of integrity—without harming confidentiality, and without placing undue trust in any host. The compiler automatically generates secure run-time protocols for communication among the replicated code partitions. Results are given from a prototype implementation applied to various distributed programs.
Lantian Zheng, Stephen Chong, Andrew C. Myers, Ste
Added 05 Jul 2010
Updated 05 Jul 2010
Type Conference
Year 2003
Where SP
Authors Lantian Zheng, Stephen Chong, Andrew C. Myers, Steve Zdancewic
Comments (0)