Abstract
Networked communication systems and the data they make available
have, over the last decades, made their way to the very core
of both society and business. Not only do they support everyday
life and day-to-day operations, in many cases they enable them in
the first place, and often are among the most valuable assets. The
flexibility that makes them so valuable in the first place, is also
their primary vulnerability: via the network, an entity’s data is accessible
from almost everywhere, often without the need of physical
presence in the entity’s perimeter. In this work we propose a
new security paradigm, that aims at using the network’s flexibility
to move data and applications away from potential attackers. We
also present a possible realization of the proposed paradigm, based
on recent advances in language-based security and static analysis,
where data and applications are partitioned ahead-of-time and can
be moved automatically based on activity both in the network as
well as the real world.
have, over the last decades, made their way to the very core
of both society and business. Not only do they support everyday
life and day-to-day operations, in many cases they enable them in
the first place, and often are among the most valuable assets. The
flexibility that makes them so valuable in the first place, is also
their primary vulnerability: via the network, an entity’s data is accessible
from almost everywhere, often without the need of physical
presence in the entity’s perimeter. In this work we propose a
new security paradigm, that aims at using the network’s flexibility
to move data and applications away from potential attackers. We
also present a possible realization of the proposed paradigm, based
on recent advances in language-based security and static analysis,
where data and applications are partitioned ahead-of-time and can
be moved automatically based on activity both in the network as
well as the real world.
Original language | English |
---|---|
Title of host publication | Proceedings of the New Security Paradigms Workshop (NSPW'09) |
Number of pages | 8 |
Publisher | Association for Computing Machinery |
Publication date | 2009 |
ISBN (Electronic) | 978-1-60558-845-2 |
Publication status | Published - 2009 |
Event | New Security Paradigms Workshop (NSPW'09) - Oxford, United Kingdom Duration: 8 Sept 2009 → 11 Sept 2009 |
Conference
Conference | New Security Paradigms Workshop (NSPW'09) |
---|---|
Country/Territory | United Kingdom |
City | Oxford |
Period | 08/09/2009 → 11/09/2009 |