DEFCON: high-performance event processing with information security
作者: David M. Eyers , Peter Pietzuch , Ioannis Papagiannis , Matteo Migliavacca , Brian Shand
DOI:
关键词: Distributed computing 、 Latency (engineering) 、 Information security 、 Computer programming 、 Computer science 、 Complex event processing 、 Financial data processing 、 Security information and event management
摘要: In finance and healthcare, event processing systems handle sensitive data on behalf of many clients. Guaranteeing information security in such is challenging because their strict performance requirements terms high throughput low latency. We describe DEFCON, an system that enforces constraints flows between units. DEFCON uses a combination static runtime techniques for achieving light-weight isolation flows, while supporting efficient sharing events. Our experimental evaluation financial scenario shows can provide with significantly lower latency compared to traditional approach.
kent.ac.uk
imperial.ac.uk
ic.ac.uk 
acm.org 
nnis.gr 参考文章(28)
Bob Thome, Dieter Gawlick, Maria Pratt, Event processing with an oracle database Proceedings of the 2005 ACM SIGMOD international conference on Management of data - SIGMOD '05. pp. 863- 867 ,(2005) , 10.1145/1066157.1066268
Silas Boyd-Wickizer, David Mazières, Nickolai Zeldovich, Eddie Kohler, Making information flow explicit in HiStar operating systems design and implementation. pp. 263- 278 ,(2006) , 10.5555/1298455.1298481
Grzegorz Czajkowski, Laurent Daynès, Multitasking without compromise ACM SIGPLAN Notices. ,vol. 47, pp. 60- 73 ,(2012) , 10.1145/2442776.2442785
Deyu Hu, Chi-Chao Chang, Thorsten von Eicken, Chris Hawblitzel, Grzegorz Czajkowski, Implementing multiple protection domains in java usenix annual technical conference. pp. 22- 22 ,(1998)
Michael Stonebraker, Uǧur Çetintemel, Stan Zdonik, The 8 requirements of real-time stream processing international conference on management of data. ,vol. 34, pp. 42- 47 ,(2005) , 10.1145/1107499.1107504
Catriel Beeri, Tova Milo, Alon Pilberg, Anat Eyal, Monitoring business processes with queries very large data bases. pp. 603- 614 ,(2007)
Indrajit Roy, Donald E. Porter, Michael D. Bond, Kathryn S. McKinley, Emmett Witchel, Laminar Proceedings of the 2009 ACM SIGPLAN conference on Programming language design and implementation - PLDI '09. ,vol. 44, pp. 63- 74 ,(2009) , 10.1145/1542476.1542484
Petros Efstathopoulos, Maxwell Krohn, Steve VanDeBogart, Cliff Frey, David Ziegler, Eddie Kohler, David Mazières, Frans Kaashoek, Robert Morris, Labels and event processes in the asbestos operating system symposium on operating systems principles. ,vol. 39, pp. 17- 30 ,(2005) , 10.1145/1095809.1095813
N. Geoffray, G. Thomas, G. Muller, P. Parrend, S. Frenot, B. Folliot, I-JVM: a Java Virtual Machine for component isolation in OSGi dependable systems and networks. pp. 544- 553 ,(2009) , 10.1109/DSN.2009.5270296
Srijith K. Nair, Patrick N.D. Simpson, Bruno Crispo, Andrew S. Tanenbaum, A Virtual Machine Based Information Flow Control System for Policy Enforcement Electronic Notes in Theoretical Computer Science. ,vol. 197, pp. 3- 16 ,(2008) , 10.1016/J.ENTCS.2007.10.010