Conference paper
Program Partitioning using Dynamic Trust Models
Language-Based Technology, Department of Informatics and Mathematical Modeling, Technical University of Denmark1
Department of Informatics and Mathematical Modeling, Technical University of Denmark2
System Security, Department of Informatics and Mathematical Modeling, Technical University of Denmark3
Developing distributed applications is a difficult task. It is further complicated if system-wide security policies shall be specified and enforced, or if both data and hosts are owned by principals that do not fully trust each other, as is typically the case in service-oriented or grid-based scenarios.
Language-based technologies have been suggested to support developers of those applications---the \$\backslash\$emph{Decentralized Label Model} and \$\backslash\$emph{Secure Program Partitioning} allow to annotate programs with security specifications, and to partition the annotated program across a set of hosts, obeying both the annotations and the trust relation between the principals.
The resulting applications guarantee \$\backslash\$emph{by construction} that safety and confidentiality of both data and computations are ensured. In this work, we develop a generalised version of the splitting framework, that is parametrised in the trust component, and show the result of specialising it with different trust models.
We also develop a metric to measure the quality of the result of the partitioning process.
Language: | English |
---|---|
Publisher: | Springer Berlin Heidelberg |
Year: | 2006 |
Pages: | 170-184 |
Proceedings: | Workshop on Formal Aspects in Security and Trust |
ISBN: | 3540752269 , 3540752277 , 9783540752264 and 9783540752271 |
Types: | Conference paper |
DOI: | 10.1007/978-3-540-75227-1_12 |
ORCIDs: | Probst, Christian W. and Jensen, Christian D. |