Containment and Integrity for Mobile Code

Abstract

Significant progress was made on general approaches for security policy enforcement and for building systems that are both fault-tolerant and secure. The work on policy enforcement is based on program analysis and program rewriting, the foundations of language- based security. Authorization, confidentiality, and integrity policies were addressed in a rich model that even admits mutual distrust among principals. Also, a formal characterization was developed for what policies can be enforced by various mechanisms. With regard to composing security and fault-tolerance, proactive threshold cryptographic protocols were developed and studied. Various prototype systems were built to evaluate the practicality of these protocols and the approach. The protocols make extremely weak assumptions about the system in which they are deployed.

Open PDF

Document Details

Document Type
Technical Report
Publication Date
Nov 01, 2004
Accession Number
ADA429261

Entities

People

  • Andrew C. Myers
  • Fred B. Schneider

Organizations

  • Cornell University

Tags

Communities of Interest

  • Cyber
  • Engineered Resilient Systems

DTIC Thesaurus Topics

  • Air Force Research Laboratories
  • Communications Protocols
  • Computer Networks
  • Computer Programming
  • Computer Science
  • Computers
  • Cryptography
  • Cybersecurity
  • Denial Of Service Attack
  • Fault Tolerance
  • Language
  • Local Area Networks
  • Models
  • Operating Systems
  • Programming Languages
  • Security
  • Security Protocols

Fields of Study

  • Computer science

Readers

  • Cybersecurity.
  • Economics
  • Parallel and Distributed Computing.