Now showing items 1-19 of 19

    • Big ideas paper: Policy-driven middleware for a legally-compliant Internet of Things 

      Singh, Jatinder; Pasquier, Thomas; Bacon, Jean; Powles, Julia; Diaconu, Raluca; Eyers, David (2016)
      Internet of Things (IoT) applications, systems and services are subject to law. We argue that for the IoT to develop lawfully, there must be technical mechanisms that allow the enforcement of specified policy, such that ...
    • Camflow: Managed Data-Sharing for Cloud Services 

      Pasquier, Thomas; Singh, Jatinder; Eyers, David; Bacon, Jean (Institute of Electrical and Electronics Engineers (IEEE), 2017)
      A model of cloud services is emerging whereby a few trusted providers manage the underlying hardware and communications whereas many companies build on this infrastructure to offer higher level, cloud-hosted PaaS services ...
    • Clouds of Things Need Information Flow Control with Hardware Roots of Trust 

      Pasquier, Thomas; Singh, Jatinder; Bacon, Jean (IEEE, 2015)
      There is a clear, outstanding need for new security mechanisms that allow data to be managed and controlled within the cloud-enabled Internet of Things. Towards this, we propose an approach based on Information Flow Control ...
    • Data Flow Management and Compliance in Cloud Computing 

      Bacon, Jean; Singh, Jatinder; Powles, Julia; Pasquier, Thomas (Institute of Electrical and Electronics Engineers (IEEE), 2015-07)
      As cloud computing becomes an increasingly dominant means of providing computing resources, the legal and regulatory issues associated with data in the cloud become more pronounced. These issues derive primarily from four ...
    • Data provenance to audit compliance with privacy policy in the Internet of Things 

      Pasquier, Thomas; Singh, Jatinder; Powles, Julia; Eyers, David; Seltzer, Margo I.; Bacon, Jean (Springer Nature, 2017)
      Managing privacy in the IoT presents a significant challenge. We make the case that information obtained by auditing the flows of data can assist in demonstrating that the systems handling personal data satisfy regulatory ...
    • Expressing and Enforcing Location Requirements in the Cloud Using Information Flow Control 

      Pasquier, Thomas; Powles, Julia E. (2015)
      The adoption of cloud computing is increasing and its use is becoming widespread in many sectors. As cloud service provision increases, legal and regulatory issues become more significant. In particular, the international ...
    • FlowK: Information Flow Control for the Cloud 

      Pasquier, Thomas; Bacon, Jean; Eyers, David (2018-06-20)
      Security concerns are widely seen as an obstacle to the adoption of cloud computing solutions and although a wealth of law and regulation has emerged, the technical basis for enforcing and demonstrating compliance lags ...
    • FlowR: Aspect Oriented Programming for Information Flow Control in Ruby 

      Pasquier, Thomas; Bacon, Jean; Shand, Brian (ACM, 2014)
      This paper reports on our experience with providing Information Flow Control (IFC) as a library. Our aim was to support the use of an unmodified Platform as a Service (PaaS) cloud infrastructure by IFC-aware web applications. ...
    • FRAPpuccino: Fault-detection through Runtime Analysis of Provenance 

      Han, Xueyuan Michael; Pasquier, Thomas; Ranjan, Tanvi; Goldstein, Mark; Seltzer, Margo I. (2017)
      We present FRAPpuccino (or FRAP), a provenance- based fault detection mechanism for Platform as a Ser- vice (PaaS) users, who run many instances of an appli- cation on a large cluster of machines. FRAP models, records, and ...
    • If these data could talk 

      Pasquier, Thomas; Lau, Matthew; Trisovic, Ana; Boose, Emery Robert; Couturier, Ben; Crosas, Merce; Ellison, Aaron M.; Gibson, Valerie; Jones, Chris R.; Seltzer, Margo I. (Springer Nature, 2017)
      In the last few decades, data-driven methods have come to dominate many fields of scientific inquiry. Open data and open-source software have enabled the rapid implementation of novel methods to manage and analyze the ...
    • Information Flow Audit for Transparency and Compliance in the Handling of Personal Data 

      Pasquier, Thomas; Eyers, David (2018-04-09)
      Abstract—The adoption of cloud computing is increasing and its use is becoming widespread in many sectors. As the proportion of services provided using cloud computing increases, legal and regulatory issues are becoming ...
    • Information Flow Control for Secure Cloud Computing 

      Bacon, Jean; Eyers, David; Pasquier, Thomas; Singh, Jatinder; Papagiannis, Ioannis; Pietzuch, Peter (Institute of Electrical and Electronics Engineers (IEEE), 2014)
      Security concerns are widely seen as an obstacle to the adoption of cloud computing solutions. Information Flow Control (IFC) is a well understood Mandatory Access Control methodology. The earliest IFC models targeted ...
    • Information Flow Control for Strong Protection with Flexible Sharing in PaaS 

      Pasquier, Thomas; Singh, Jatinder; Bacon, Jean (2015)
      The need to share data across applications is be- coming increasingly evident. Current cloud isolation mechanisms focus solely on protection, such as containers that isolate at the OS-level, and virtual machines that isolate ...
    • Integrating Messaging Middleware and Information Flow Control 

      Pasquier, Thomas; Singh, Jatinder; Bacon, Jean; David, Eyers (2015)
      Security is an ongoing challenge in cloud computing. Currently, cloud consumers have few mechanisms for managing their data within the cloud provider’s infrastructure. Information Flow Control (IFC) involves attaching ...
    • Managing Big Data with Information Flow Control 

      Pasquier, Thomas; Singh, Jatinder; Bacon, Jean; Hermant, Olivier (2015)
      Concern about data leakage is holding back more widespread adoption of cloud computing by companies and public institutions alike. To address this, cloud tenants/applications are traditionally isolated in virtual machines ...
    • PHP2Uni: Building Unikernels Using Scripting Language Transpilation 

      Pasquier, Thomas; Eyers, David; Bacon, Jean (2017)
      Unikernels are a rapidly emerging technology in the world of cloud computing. Unikernels build on research on library operating systems to deliver smaller, faster and more secure virtual machines, specifically optimised ...
    • Practical whole-system provenance capture 

      Pasquier, Thomas; Han, Xueyuan Michael; Goldstein, Mark; Moyer, Thomas; Eyers, David; Seltzer, Margo I.; Bacon, Jean (ACM, 2018-04-09)
      Data provenance describes how data came to be in its present form. It includes data sources and the transformations that have been applied to them. Data provenance has many uses, from forensics and security to aiding the ...
    • Regional clouds: technical considerations 

      Pasquier, Thomas; Jean, Bacon; Jon, Crowcroft; Anil, Madhavapeddy; Jatinder, Singh; W. Kuan, Hon; Christopher, Millard (2014)
    • Twenty Security Considerations for Cloud-Supported Internet of Things 

      Singh, Jatinder; Pasquier, Thomas; Bacon, Jean; Ko, Ronny Ronny; Eyers, David (Institute of Electrical and Electronics Engineers (IEEE), 2016)
      To realise the broad vision of pervasive computing, underpinned by the “Internet of Things” (IoT), it is essential to break down application and technology-based silos and support broad connectivity and data sharing; the ...