Security Policies as Membranes in Systems for Global Computing
Abstract
We propose a simple global computing framework, whose main concern is code migration. Systems are structured in sites, and each site is divided into two parts: a computing body, and a membrane, which regulates the interactions between the computing body and the external environment. More precisely, membranes are filters which control access to the associated site, and they also rely on the well-established notion of trust between sites. We develop a basic theory to express and enforce security policies via membranes. Initially, these only control the actions incoming agents intend to perform locally. We then adapt the basic theory to encompass more sophisticated policies, where the number of actions an agent wants to perform, and also their order, are considered.
Cite
@article{arxiv.cs/0506061,
title = {Security Policies as Membranes in Systems for Global Computing},
author = {Daniele Gorla and Matthew Hennessy and Vladimiro Sassone},
journal= {arXiv preprint arXiv:cs/0506061},
year = {2017}
}
Comments
23 pages; to appear in Logical Methods in Computer Science