Securing Distributed Systems with Information Flow Control
نویسندگان
چکیده
Recent operating systems [12, 21, 26] have shown that decentralized information flow control (DIFC) can secure applications built from mostly untrusted code. This paper extends DIFC to the network. We present DStar, a system that enforces the security requirements of mutually distrustful components through cryptography on the network and local OS protection mechanisms on each host. DStar does not require any fully-trusted processes or machines, and is carefully constructed to avoid covert channels inherent in its interface. We use DStar to build a three-tiered web server that mitigates the effects of untrustworthy applications and compromised machines.
منابع مشابه
Message from the SDCS Chairs
elcome to SDCS 2005, the 2nd International Workshop on Security in Distributed Computing Systems. Cyber security is a research area of both theoretical and practical significance. In recent years, securing a large-scale networked system has become a great challenge. Interest has increased in the field of security of parallel and distributed systems, which include specification, analysis, and de...
متن کاملCyber-physical Systems Security- Challenges and Research Ideas
Cyber-physical systems (CPS) are at a crossroads. Typical CPSs with multi-loop control consisting of device controllers, plant-level distributed control, and system-wide SCADA components are pushed (see Figure 1 below) by market forces to: Connect many diverse (e.g., control and business) systems leading to an internetworked system of systems spanning wide geographic areas, Use off-the-shel...
متن کاملDistributed multi-agent Load Frequency Control for a Large-scale Power System Optimized by Grey Wolf Optimizer
This paper aims to design an optimal distributed multi-agent controller for load frequency control and optimal power flow purposes. The controller parameters are optimized using Grey Wolf Optimization (GWO) algorithm. The designed optimal distributed controller is employed for load frequency control in the IEEE 30-bus test system with six generators. The controller of each generator is consider...
متن کاملEffect of Distributed Power-Flow Controller (DPFC) on Power System Stability
Distributed flexible AC- transmission system (D-FACTS) is a recently advanced FACTS device with high flexibility and smaller size. The DPFC can control power flow in transmission lines, regulate bus voltages and it can also enhance stability margin in power grids. Adaptive-neural network-based fuzzy inference system (ANFIS) combines features of artificial neural network and fuzzy controller. Th...
متن کاملSecuring Event-Based Systems
This chapter examines techniques for securing various types of event-based systems. The first section discusses typical application requirements. The following section examines specific event dissemination approaches. Applying applicationlevel security to event-based systems is introduced at first, along with an overview of Role-Based Access Control. Application-level security is a perimeter de...
متن کامل