TY - GEN
T1 - Towards secure dataflow processing in open distributed systems
AU - Du, Juan
AU - Wei, Wei
AU - Gu, Xiaohui
AU - Yu, Ting
PY - 2009
Y1 - 2009
N2 - Open distributed systems such as service oriented architecture and cloud computing have emerged as promising platforms to deliver software as a service to users. However, for many security sensitive applications such as critical data processing, trust management poses significant challenges for migrating those critical applications into open distributed systems. In this paper, we present the design and implementation of a new secure dataflow processing system that aims at providing trustworthy continuous data processing in multi-party open distributed systems. We identify a set of major security attacks that can compromise the integrity of dataflow processing and provide effective protection mechanisms to counter those attacks. We have implemented a prototype of the secure dataflow processing framework and tested it on the PlanetLab testbed. Our experimental results show that our protection schemes are effective and impose low performance impact for dataflow processing in large-scale open distributed systems.
AB - Open distributed systems such as service oriented architecture and cloud computing have emerged as promising platforms to deliver software as a service to users. However, for many security sensitive applications such as critical data processing, trust management poses significant challenges for migrating those critical applications into open distributed systems. In this paper, we present the design and implementation of a new secure dataflow processing system that aims at providing trustworthy continuous data processing in multi-party open distributed systems. We identify a set of major security attacks that can compromise the integrity of dataflow processing and provide effective protection mechanisms to counter those attacks. We have implemented a prototype of the secure dataflow processing framework and tested it on the PlanetLab testbed. Our experimental results show that our protection schemes are effective and impose low performance impact for dataflow processing in large-scale open distributed systems.
KW - Cloud computing
KW - Secure component composition
KW - Secure data processing
KW - Service oriented architecture
UR - http://www.scopus.com/inward/record.url?scp=74249095734&partnerID=8YFLogxK
U2 - 10.1145/1655108.1655120
DO - 10.1145/1655108.1655120
M3 - Conference contribution
AN - SCOPUS:74249095734
SN - 9781605587882
T3 - Proceedings of the ACM Conference on Computer and Communications Security
SP - 67
EP - 72
BT - Proceedings of the 2009 ACM Workshop on Scalable Trusted Computing, STC '09, Co-located with the 16th ACM Computer and Communications Security Conference, CCS'09
T2 - 2009 ACM Workshop on Scalable Trusted Computing, STC '09, Co-located with the 16th ACM Computer and Communications Security Conference, CCS'09
Y2 - 9 November 2009 through 13 November 2009
ER -