Security Policies as Membranes in Systems for Global Computing

Daniele Gorla, Matthew Hennessy and Vladimiro Sassone

Short version in 3rd EATCS and (SGUC) Grand Challenge Joint Workshop on Foundations of Global Ubiquitous Computing (FGUC '04), London (UK), September 3-4, 2004.
Full version in Logical Methods in Computer Science.
Formerly available as Research Report 02/2004, Dept. Informatics, Univ. of Sussex at Brighton (UK).

Abstract:

We propose a simple global computing framework, whose main concern is code migration. Systems are structured in sites, and each site is divided into two parts: a computing body, and a membrane which regulates the interactions between the computing body and the external environment. More precisely, membranes are filters which control access to the associated site, and they also rely on the well-established notion of trust between sites. We develop a basic theory to express and enforce security policies via membranes. Initially, these only control the actions incoming agents intend to perform locally. We then adapt the basic theory to encompass more sophisticated policies, where the number of actions an agent wants to perform, and also their order, are considered.

@InProceedings{GHS:FGUC04,
  author    =   {D. Gorla and M. Hennessy and V. Sassone},
  title     =   {Security Policies as Membranes in Systems for Global Computing},
  editor    =   {J. Rathke},
  booktitle =   {Proc. of 3rd EATCS Workshop on Foundations of Global Ubiquitous Computing (FGUC'04)},
  series    =   {ENTCS},
  volume    =  	{138},
  number    =  	{1},
  pages     =  	{23--42},
  year      =  	{2004},
  publisher =   {Elsevier},
}

@Article{GHS:LMCS05,
  author    = 	{D. Gorla and M. Hennessy and V. Sassone},
  title     =  	{Security Policies as Membranes in Systems for Global Computing},
  journal   =   {Logical Methods in Computer Science},
  volume    =   {1},
  number    =  	{3:2},
  pages     =  	{1--23},
  year      =  	{2005},
}

Home page / Publications