Abstract
This paper presents secure program partitioning, a language-based technique for protecting confidential data during computation in distributed systems containing mutually untrusted hosts. Confidentiality and integrity policies can be expressed by annotating programs with security types that constrain information flow; these programs can then be partitioned automatically to run securely on heterogeneously trusted hosts. The resulting communicating subprograms collectively implement the original program, yet the system as a whole satisfies the security requirements of participating principals without requiring a universally trusted host machine. The experience in applying this methodology and the performance of the resulting distributed code suggest that this is a promising way to obtain secure distributed computation.
Author supplied keywords
Cite
CITATION STYLE
Zdancewic, S., Zheng, L., Nystrom, N., & Myers, A. C. (2002). Secure Program Partitioning. ACM Transactions on Computer Systems, 20(3), 283–328. https://doi.org/10.1145/566340.566343
Register to see more suggestions
Mendeley helps you to discover research relevant for your work.
