Secure program partitioning-Reference-Cited by-同舟云学术

Secure program partitioning

Published:2002-08 Issue:3 Volume:20 Page:283-328
ISSN:0734-2071
Container-title:ACM Transactions on Computer Systems
language:en
Short-container-title:ACM Trans. Comput. Syst.

Author:

Zdancewic Steve¹,Zheng Lantian¹,Nystrom Nathaniel¹,Myers Andrew C.¹

Affiliation:

1. Cornell University, Ithaca, NY

Abstract

This paper presents secure program partitioning, a language-based technique for protecting confidential data during computation in distributed systems containing mutually untrusted hosts. Confidentiality and integrity policies can be expressed by annotating programs with security types that constrain information flow; these programs can then be partitioned automatically to run securely on heterogeneously trusted hosts. The resulting communicating subprograms collectively implement the original program, yet the system as a whole satisfies the security requirements of participating principals without requiring a universally trusted host machine. The experience in applying this methodology and the performance of the resulting distributed code suggest that this is a promising way to obtain secure distributed computation.

Publisher

Association for Computing Machinery (ACM)

Subject

General Computer Science

Link

https://dl.acm.org/doi/pdf/10.1145/566340.566343

Reference54 articles.

1. Bell D. E. and LaPadula L. J. 1975. Secure computer system: Unified exposition and Multics interpretation. Technical report ESD-TR-75-306 MITRE Corp. MTR-2997 Bedford MA. Defense Technical Information Center document NTIS AD-A023 588 available on the Web at http://csrc.nist.gov/publications/history.]] Bell D. E. and LaPadula L. J. 1975. Secure computer system: Unified exposition and Multics interpretation. Technical report ESD-TR-75-306 MITRE Corp. MTR-2997 Bedford MA. Defense Technical Information Center document NTIS AD-A023 588 available on the Web at http://csrc.nist.gov/publications/history.]]

2. Biba K. J. 1977. Integrity considerations for secure computer systems. Technical report ESD-TR-76-372 USAF Electronic Systems Division Bedford MA.]] Biba K. J. 1977. Integrity considerations for secure computer systems. Technical report ESD-TR-76-372 USAF Electronic Systems Division Bedford MA.]]

3. Cryptix. n.d. http://www.cryptix.org/products/cryptix31/.]] Cryptix. n.d. http://www.cryptix.org/products/cryptix31/.]]

Cited by 75 articles. 订阅此论文施引文献订阅此论文施引文献，注册后可以免费订阅5篇论文的施引文献，订阅后可以查看论文全部施引文献

1. Practical Integrity Validation in the Smart Home with HomeEndorser;Proceedings of the 17th ACM Conference on Security and Privacy in Wireless and Mobile Networks;2024-05-27

2. Vulnerability Flow Type Systems;2024 IEEE Security and Privacy Workshops (SPW);2024-05-23

3. Bridging Between Active Objects: Multitier Programming for Distributed, Concurrent Systems;Lecture Notes in Computer Science;2024

4. Charlotte: Reformulating Blockchains into a Web of Composable Attested Data Structures for Cross-Domain Applications;ACM Transactions on Computer Systems;2023-11-30

5. Type-Safe Dynamic Placement with First-Class Placed Values;Proceedings of the ACM on Programming Languages;2023-10-16