Unified Declarative Platform for Secure Netwoked Information Systems

Wenchao Zhou; Mart&#x00ED;n Abadi; Yun Mao; Boon Thau Loo

doi:10.1109/ICDE.2009.58

I
ICDE
2009
2009 IEEE International Conference on Data Engineering
Abstract - Unified Declarative Platform for Secure Netwoked Information Systems

	This Article
	Subscribers, please Login Purchase article: $19 PDF IEEE Xplore Subscribers RSS feed
	Share
	Email this Article to a friend
	Bibliographic References
	ASCII Text BibTex RefWorks Procite/RefMan/EndNote
	Add to:
	Digg Furl Spurl Blink Simpy Google Del.icio.us Y!MyWeb
	Search
	Similar Articles Articles by Wenchao Zhou Articles by Yun Mao Articles by Boon Thau Loo Articles by Martín Abadi

2009 IEEE International Conference on Data Engineering

Unified Declarative Platform for Secure Netwoked Information Systems

March 29-April 02

ISBN: 978-0-7695-3545-6

	ASCII Text	x
	Wenchao Zhou, Yun Mao, Boon Thau Loo, Martín Abadi, "Unified Declarative Platform for Secure Netwoked Information Systems," Data Engineering, International Conference on, pp. 150-161, 2009 IEEE International Conference on Data Engineering, 2009.

	BibTex	x
	@article{ 10.1109/ICDE.2009.58, author = {Wenchao Zhou and Yun Mao and Boon Thau Loo and Martín Abadi}, title = {Unified Declarative Platform for Secure Netwoked Information Systems}, journal ={Data Engineering, International Conference on}, volume = {0}, year = {2009}, issn = {1084-4627}, pages = {150-161}, doi = {http://doi.ieeecomputersociety.org/10.1109/ICDE.2009.58}, publisher = {IEEE Computer Society}, address = {Los Alamitos, CA, USA}, }

	RefWorks Procite/RefMan/Endnote	x
	TY - CONF JO - Data Engineering, International Conference on TI - Unified Declarative Platform for Secure Netwoked Information Systems SN - 1084-4627 SP150 EP161 A1 - Wenchao Zhou, A1 - Yun Mao, A1 - Boon Thau Loo, A1 - Martín Abadi, PY - 2009 VL - 0 JA - Data Engineering, International Conference on ER -

Wenchao Zhou

Yun Mao

Boon Thau Loo

Martín Abadi

DOI Bookmark: http://doi.ieeecomputersociety.org/10.1109/ICDE.2009.58

We present a unified declarative platform for specifying, implementing, and analyzing secure networked information systems. Our work builds upon techniques from logic-based trust management systems, declarative networking, and data analysis via provenance. We make the following contributions. First, we propose the Secure Network Datalog (SeNDlog) language that unifies Binder, a logic-based language for access control in distributed systems, and Network Datalog, a distributed recursive query language for declarative networks. SeNDlog enables network routing, information systems, and their security policies to be specified and implemented within a common declarative framework. Second, we extend existing distributed recursive query processing techniques to execute SeNDlog programs that incorporate authenticated communication among untrusted nodes. Third, we demonstrate that distributed network provenance can be supported naturally within our declarative framework for network security analysis and diagnostics. Finally, using a local cluster and the PlanetLab testbed, we perform a detailed performance study of a variety of secure networked systems implemented using our platform.

Citation:

Wenchao Zhou, Yun Mao, Boon Thau Loo, Martín Abadi, "Unified Declarative Platform for Secure Netwoked Information Systems," icde, pp.150-161, 2009 IEEE International Conference on Data Engineering, 2009

Peer Review Notice | Give Us Feedback

Usage of this product signifies your acceptance of the Terms of Use.