Publication:

Information Flow Control for Strong Protection with Flexible Sharing in PaaS

Thumbnail Image

Open/View Files

fpaas-2015.pdf (199.11 KB)

Date

2015

Authors

Published Version

10.1109/IC2E.2015.64

Journal Title

Journal ISSN

Volume Title

Publisher

The Harvard community has made this article openly available. Please share how this access benefits you.

Research Projects

Organizational Units

Journal Issue

Citation

Pasquier, Thomas F. J.-M., Jatinder Singh, and Jean Bacon. 2015. Information Flow Control for Strong Protection with Flexible Sharing in PaaS. In IC2E '15 Proceedings of the 2015 IEEE International Conference on Cloud Engineering, Tempe, AZ, Mar. 9-13, 2015: 279-282.

Abstract

The need to share data across applications is be- coming increasingly evident. Current cloud isolation mechanisms focus solely on protection, such as containers that isolate at the OS-level, and virtual machines that isolate through the hypervi- sor. However, by focusing rigidly on protection, these approaches do not provide for controlled sharing. This paper presents how Information Flow Control (IFC) offers a flexible alternative. As a data-centric mechanism it enables strong isolation when required, while providing continuous, fine grained control of the data being shared. An IFC-enabled cloud platform would ensure that policies are enforced as data flows across all applications, without requiring any special sharing mechanisms.

Description

Other Available Sources

Research Data

Keywords

Terms of Use

This article is made available under the terms and conditions applicable to Other Posted Material (LAA), as set forth at Terms of Service

URI

http://nrs.harvard.edu/urn-3:HUL.InstRepos:37140355

Collections

FAS Scholarly Articles

Endorsement

Review

Supplemented By

Related Stories