Information flow control for strong protection with flexible sharing in PaaS

Thomas F.J.M. Pasquier, Jatinder Singh, Jean Bacon

Research output: Chapter in Book/Report/Conference proceedingConference Contribution (Conference Proceeding)

13 Citations (Scopus)

Abstract

The need to share data across applications is becoming increasingly evident. Current cloud isolation mechanisms focus solely on protection, such as containers that isolate at the OS-level, and virtual machines that isolate through the hypervisor. However, by focusing rigidly on protection, these approaches do not provide for controlled sharing. This paper presents how Information Flow Control (IFC) offers a flexible alternative. As a data-centric mechanism it enables strong isolation when required, while providing continuous, fine grained control of the data being shared. An IFC-enabled cloud platform would ensure that policies are enforced as data flows across all applications, without requiring any special sharing mechanisms.

Original languageEnglish
Title of host publicationProceedings - 2015 IEEE International Conference on Cloud Engineering, IC2E 2015
PublisherInstitute of Electrical and Electronics Engineers (IEEE)
Pages279-282
Number of pages4
ISBN (Electronic)9781479982189
DOIs
Publication statusPublished - 1 Jan 2015
Event2015 IEEE International Conference on Cloud Engineering, IC2E 2015 - Tempe, United States
Duration: 9 Mar 201512 Mar 2015

Conference

Conference2015 IEEE International Conference on Cloud Engineering, IC2E 2015
Country/TerritoryUnited States
CityTempe
Period9/03/1512/03/15

Fingerprint

Dive into the research topics of 'Information flow control for strong protection with flexible sharing in PaaS'. Together they form a unique fingerprint.

Cite this