Publication:

Integrating Messaging Middleware and Information Flow Control

Thumbnail Image

Date

2015

Authors

Published Version

10.1109/IC2E.2015.13

Journal Title

Journal ISSN

Volume Title

Publisher

The Harvard community has made this article openly available. Please share how this access benefits you.

Research Projects

Organizational Units

Journal Issue

Citation

Pasquier, Thomas F. J.-M., Jatinder Singh, Jean Bacon, and David Eyers. 2015. Integrating Messaging Middleware and Information Flow Control. In IEEE International Conference on Cloud Engineering (IC2E 2015), Tempe, AZ, Mar 9-12, 2015.

Abstract

Security is an ongoing challenge in cloud computing. Currently, cloud consumers have few mechanisms for managing their data within the cloud provider’s infrastructure. Information Flow Control (IFC) involves attaching labels to data, to govern its flow throughout a system. We have worked on kernel-level IFC enforcement to protect data flows within a virtual machine (VM). This paper makes the case for, and demonstrates the feasibility of an IFC-enabled messaging middleware, to enforce IFC within and across applications, containers, VMs, and hosts. We detail how such middleware can integrate with local (kernel) enforcement mechanisms, and highlight the benefits of separating data management policy from application/service-logic.

Description

Other Available Sources

Research Data

Keywords

Information flow control, middleware, cloud computing, distributed systems, policy, security

Terms of Use

Metadata Only

URI

http://nrs.harvard.edu/urn-3:HUL.InstRepos:37140359

Collections

FAS Scholarly Articles

Endorsement

Review

Supplemented By

Related Stories