Controlling Data Movement in Global Computing Applications

Daniele Gorla and Rosario Pugliese

Short version in 19th Annual ACM-SIGAPP Symposium on Applied Computing (SAC '04), Nicosia (Cyprus), March 14-17, 2004.
A full and revised version appeared in Science of Computer Programming, 63(1):57-87, Elsevier, 2006.


We present a programming notation aiming at protecting the secrecy of both host and agent data in global computing applications. Since global computing relies on open networks, where no assumptions on the behaviour of the execution environment can be done, our approach incorporates some unavoidable runtime checks. However, to minimize the overhead of runtime checks, a static compilation phase is exploited. The proposed approach is largely independent of a specific programming language; however, to put it in concrete form, here we focus on its integration within the process language microKlaim. We prove that in microKlaim nets resulting from compilation, data can be seen only by authorized users. We also give a more local formulation of this property, where only a subnet is assumed to be compiled. Finally, we use our theory to implement the secure behaviour of a UNIX-like multiuser system.

  author    =  	{D. Gorla and R. Pugliese},
  title     =  	{Controlling Data Movement in Global Computing Applications},
  booktitle =   {Proc. of 19th Annual ACM-SIGAPP Symposium on Applied Computing (SAC'04)},
  pages     =  	{1462--1467},
  year      =  	{2004},
  publisher =   {ACM Press},

Home page / Publications