JavaScript is disabled for your browser. Some features of this site may not work without it.
eCommons will be completely unavailable 8am - 5pm (EST) Monday December 13, 2021 for a database update. Thank you for your patience during this planned service interruption.
Please contact us if you have questions or concerns.
eCommons user survey
In anticipation of a significant software upgrade, the eCommons team invites you to participate in a brief survey.
Please contact us if you have questions or concerns.
eCommons user survey
In anticipation of a significant software upgrade, the eCommons team invites you to participate in a brief survey.
A Language for Securely Referencing Persistent Information in a Federated System
Abstract
Referential integrity, which guarantees that named resources can be accessed when referenced, is an important property for reliability and security. In distributed systems, however, the attempt to provide referential integrity can itself lead to security vulnerabilities that are not currently well understood. This paper identifies three kinds of _referential security_ vulnerabilities related to the referential integrity of distributed, persistent information. Security conditions corresponding to the absence of these vulnerabilities are formalized. A language model is used to capture the key aspects of programming distributed systems with named, persistent resources in the presence of an adversary. The referential security of distributed systems is proved to be enforced by a new type system.
Sponsorship
ONR Grants N00014-09-1-0652 and N00014-13-1-0089; MURI grant FA9550-12-1-0400; NSF Grants 0541217, 0627649, and 0964409; Microsoft Corporation
Date Issued
2014-01-17Subject
referential security; distributed systems; type system
Type
technical report