Distributed middleware enforcement of event flow security policy

Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)

Volumn 6452 LNCS, Issue , 2010, Pages 334-354

  Migliavacca, Matteo ^a   Papagiannis, Ioannis ^a   Eyers, David M ^b   Shand, Brian ^c   Bacon, Jean ^b   Pietzuch, Peter ^a  

^a IMPERIAL COLLEGE LONDON   (United Kingdom)

^b UNIVERSITY OF CAMBRIDGE   (United Kingdom)

^c NATIONAL HEALTH SERVICE   (United Kingdom)

Author keywords

Event based middleware; Information flow control; Multi domain distributed applications; Security policy

Indexed keywords

APPLICATION DEVELOPERS; DATA CENTRIC; DISTRIBUTED APPLICATIONS; DISTRIBUTED MIDDLEWARE; DISTRIBUTED SOFTWARE; END-TO-END SECURITY; EVENT-BASED MIDDLEWARE; GLOBAL SECURITY; INFORMATION FLOW CONTROL; INTERACTION OF COMPONENTS; MULTI DOMAINS; MULTIPLE ORGANISATIONAL DOMAINS; SECURITY POLICY; SECURITY REQUIREMENTS; USER DATA; EVENT DRIVEN APPLICATIONS;

HIGH LEVEL LANGUAGES; SECURITY SYSTEMS; COMPUTER PROGRAMMING LANGUAGES; MOBILE SECURITY;

MIDDLEWARE;

EID: 79956292393     PISSN: 03029743     EISSN: 16113349     Source Type: Book Series    
DOI: 10.1007/978-3-642-16955-7_17     Document Type: Conference Paper

References (13)

1. Luckham, D.: The Power of Events: An Introduction to Complex Event Processing in Distributed Enterprise Systems. Addison-Wesley, Reading (2002).
2. Efstathopoulos, P., Krohn, M., VanDeBogart, S., et al.: Labels and event processes in the Asbestos Operating System. In: SOSP 2005, pp. 17-30. ACM, New York (2005). (Pubitemid 44892202)
3. Zeldovich, N., Kohler, E., et al.: Making information flow explicit in HiStar. In: OSDI 2006, Berkeley, CA, USA, pp. 263-278 (2006).
4. Myers, A., Liskov, B.: Protecting privacy using the decentralized label model. ACM Transactions on Software Engineering and Methodology 9(4), 410-442 (2000).
5. Chong, S., Vikram, K., Myers, A.: SIF: Enforcing confidentiality and integrity in web applications. In: USENIX Security Symposium, Berkeley, CA, pp. 1-16 (2007).
6. Papagiannis, I., Migliavacca, M., Eyers, D.M., Shand, B., Bacon, J., Pietzuch, P.: Enforcing user privacy in web applications using Erlang. In: Web 2.0 Security and Privacy (W2SP), Oakland, CA, USA. IEEE, Los Alamitos (2010).
7. Miglivacca, M., Papagiannis, I., Eyers, D., Shand, B., Bacon, J., Pietzuch, P.: High-performance event processing with information security. In: USENIX Annual Technical Conference, Boston, MA, USA, pp. 1-15 (2010).
8. Bandara, A., Kakas, A., Lupu, E., Russo, A.: Using argumentation logic for firewall policy specification and analysis. In: Distributed Systems: Operations and Management (DSOM), Dublin, Ireland, pp. 185-196 (2006). (Pubitemid 44860490)
9. Mont, M.C., Pearson, S., Bramhall, P.: Towards accountable management of identity and privacy: Sticky policies and enforceable tracing services. In: Mǎŕik, V., ̌Sťeṕankov́a, O., Retschitzegger, W. (eds.) DEXA 2003. LNCS, vol. 2736, pp. 377- 382. Springer, Heidelberg (2003).
10. Chadwick, D.W., Lievens, S.F.: Enforcing "sticky" security policies throughout a distributed application. In: Middleware Security (MidSec), pp. 1-6. ACM, New York (2008).
11. Krohn, M., Yip, A., Brodsky, M., et al.: Information flow control for standard OS abstractions. In: SOSP 2007, pp. 321-334. ACM, New York (2007).
12. Zeldovich, N., Boyd-Wickizer, S., Mazìeres, D.: Securing distributed systems with information flow control. In: NSDI 2008, Berkeley, CA, USA, pp. 293-308 (2008).
13. Efstathopoulos, P., Kohler, E.: Manageable fine-grained information flow. In: EuroSys European Conference on Computer Systems, pp. 301-313. ACM, New York (2008).