Client Security in Scalable and Survivable Object Systems

Abstract

This report describes an architecture for defending against client capture in a survivable distributed object store called Fleet. The work was primarily concerned with the case in which clients accessing objects are user-driven devices that should be rendered unusable if taken from their rightful owners, but yet are otherwise authorized to invoke methods on objects. Toward this end, we integrate a technique called "capture resilience" into the Fleet system. We demonstrate that capture resilience has a symbiotic relationship with Fleet: in addition to hardening Fleet against client compromise due to physical capture, the capabilities that Fleet offers permit the construction of a capture protection infrastructure with better properties than were previously attainable. This infrastructure is the primary focus of this document.

Open PDF

Document Details

Document Type
Technical Report
Publication Date
Jul 01, 2005
Accession Number
ADA436342

Entities

People

  • Michael Reiter

Organizations

  • Carnegie Mellon University

Tags

DTIC Thesaurus Topics

  • Air Force
  • Air Force Research Laboratories
  • Algorithms
  • Availability
  • Computers
  • Computing Devices
  • Denial Of Service Attack
  • Dictionaries
  • Information Operations
  • Infrastructure
  • Mobile Devices
  • Mobile Phones
  • Networks
  • Resilience
  • Security
  • Servers (Computer Hardware)
  • Wearable Computers

Fields of Study

  • Computer science

Readers

  • Aerospace Engineering
  • Database Systems and Applications
  • Systems Analysis and Design