It has become increasingly easy to write Web applications and other distributed programs by orchestrating invocations to remote third-party services. Increasingly, these third-party services themselves invoke other services and so on, making it difficult for the original application developer to anticipate where his/her data will end up. This may lead to privacy breaches or contractual violations. In this paper, we explore a simple distributed programming language that allows a web service provider to infer automatically where user data will travel to, and the developer to impose statically-checkable constraints on acceptable routes. For example, this may provide confidence that company data will not flow to a competitor, or that privacy-sensitive data goes through an anonymizer before being sent further out. © 2013 Springer-Verlag.
CITATION STYLE
Sans, T., Cervesato, I., & Hussein, S. (2013). Controlling data flow with a policy-based programming language for the web. In Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics) (Vol. 8208 LNCS, pp. 215–230). Springer Verlag. https://doi.org/10.1007/978-3-642-41488-6_15
Mendeley helps you to discover research relevant for your work.