Controlling data flow with a policy-based programming language for the web

Thierry Sans; Iliano Cervesato; Soha Hussein

doi:10.1007/978-3-642-41488-6_15

Controlling data flow with a policy-based programming language for the web

Thierry Sans, Iliano Cervesato, Soha Hussein

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

Abstract

It has become increasingly easy to write Web applications and other distributed programs by orchestrating invocations to remote third-party services. Increasingly, these third-party services themselves invoke other services and so on, making it difficult for the original application developer to anticipate where his/her data will end up. This may lead to privacy breaches or contractual violations. In this paper, we explore a simple distributed programming language that allows a web service provider to infer automatically where user data will travel to, and the developer to impose statically-checkable constraints on acceptable routes. For example, this may provide confidence that company data will not flow to a competitor, or that privacy-sensitive data goes through an anonymizer before being sent further out.

Original language	English (US)
Title of host publication	Secure IT Systems - 18th Nordic Conference, NordSec 2013, Proceedings
Publisher	Springer–Verlag
Pages	215-230
Number of pages	16
ISBN (Print)	9783642414879
DOIs	https://doi.org/10.1007/978-3-642-41488-6_15
State	Published - 2013
Externally published	Yes
Event	18th Nordic Conference on Secure IT Systems, NordSec 2013 - Ilulissat, Greenland Duration: Oct 18 2013 → Oct 21 2013

Publication series

Name	Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
Volume	8208 LNCS
ISSN (Print)	0302-9743
ISSN (Electronic)	1611-3349

Conference

Conference	18th Nordic Conference on Secure IT Systems, NordSec 2013
Country/Territory	Greenland
City	Ilulissat
Period	10/18/13 → 10/21/13

Publisher link

10.1007/978-3-642-41488-6_15

Find It

Find It at U of M Libraries

Cite this

Sans, T., Cervesato, I., & Hussein, S. (2013). Controlling data flow with a policy-based programming language for the web. In Secure IT Systems - 18th Nordic Conference, NordSec 2013, Proceedings (pp. 215-230). (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics); Vol. 8208 LNCS). Springer–Verlag. https://doi.org/10.1007/978-3-642-41488-6_15

Controlling data flow with a policy-based programming language for the web. / Sans, Thierry; Cervesato, Iliano; Hussein, Soha.
Secure IT Systems - 18th Nordic Conference, NordSec 2013, Proceedings. Springer–Verlag, 2013. p. 215-230 (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics); Vol. 8208 LNCS).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

Sans, T, Cervesato, I & Hussein, S 2013, Controlling data flow with a policy-based programming language for the web. in Secure IT Systems - 18th Nordic Conference, NordSec 2013, Proceedings. Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics), vol. 8208 LNCS, Springer–Verlag, pp. 215-230, 18th Nordic Conference on Secure IT Systems, NordSec 2013, Ilulissat, Greenland, 10/18/13. https://doi.org/10.1007/978-3-642-41488-6_15

Sans T, Cervesato I, Hussein S. Controlling data flow with a policy-based programming language for the web. In Secure IT Systems - 18th Nordic Conference, NordSec 2013, Proceedings. Springer–Verlag. 2013. p. 215-230. (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)). doi: 10.1007/978-3-642-41488-6_15

Sans, Thierry ; Cervesato, Iliano ; Hussein, Soha. / Controlling data flow with a policy-based programming language for the web. Secure IT Systems - 18th Nordic Conference, NordSec 2013, Proceedings. Springer–Verlag, 2013. pp. 215-230 (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)).

@inproceedings{378758c146c2492fba7921e1031522b3,

title = "Controlling data flow with a policy-based programming language for the web",

abstract = "It has become increasingly easy to write Web applications and other distributed programs by orchestrating invocations to remote third-party services. Increasingly, these third-party services themselves invoke other services and so on, making it difficult for the original application developer to anticipate where his/her data will end up. This may lead to privacy breaches or contractual violations. In this paper, we explore a simple distributed programming language that allows a web service provider to infer automatically where user data will travel to, and the developer to impose statically-checkable constraints on acceptable routes. For example, this may provide confidence that company data will not flow to a competitor, or that privacy-sensitive data goes through an anonymizer before being sent further out.",

author = "Thierry Sans and Iliano Cervesato and Soha Hussein",

year = "2013",

doi = "10.1007/978-3-642-41488-6_15",

language = "English (US)",

isbn = "9783642414879",

series = "Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)",

publisher = "Springer–Verlag",

pages = "215--230",

booktitle = "Secure IT Systems - 18th Nordic Conference, NordSec 2013, Proceedings",

note = "18th Nordic Conference on Secure IT Systems, NordSec 2013 ; Conference date: 18-10-2013 Through 21-10-2013",

}

TY - GEN

T1 - Controlling data flow with a policy-based programming language for the web

AU - Sans, Thierry

AU - Cervesato, Iliano

AU - Hussein, Soha

PY - 2013

Y1 - 2013

N2 - It has become increasingly easy to write Web applications and other distributed programs by orchestrating invocations to remote third-party services. Increasingly, these third-party services themselves invoke other services and so on, making it difficult for the original application developer to anticipate where his/her data will end up. This may lead to privacy breaches or contractual violations. In this paper, we explore a simple distributed programming language that allows a web service provider to infer automatically where user data will travel to, and the developer to impose statically-checkable constraints on acceptable routes. For example, this may provide confidence that company data will not flow to a competitor, or that privacy-sensitive data goes through an anonymizer before being sent further out.

AB - It has become increasingly easy to write Web applications and other distributed programs by orchestrating invocations to remote third-party services. Increasingly, these third-party services themselves invoke other services and so on, making it difficult for the original application developer to anticipate where his/her data will end up. This may lead to privacy breaches or contractual violations. In this paper, we explore a simple distributed programming language that allows a web service provider to infer automatically where user data will travel to, and the developer to impose statically-checkable constraints on acceptable routes. For example, this may provide confidence that company data will not flow to a competitor, or that privacy-sensitive data goes through an anonymizer before being sent further out.

UR - http://www.scopus.com/inward/record.url?scp=84890874209&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=84890874209&partnerID=8YFLogxK

U2 - 10.1007/978-3-642-41488-6_15

DO - 10.1007/978-3-642-41488-6_15

M3 - Conference contribution

AN - SCOPUS:84890874209

SN - 9783642414879

T3 - Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)

SP - 215

EP - 230

BT - Secure IT Systems - 18th Nordic Conference, NordSec 2013, Proceedings

PB - Springer–Verlag

T2 - 18th Nordic Conference on Secure IT Systems, NordSec 2013

Y2 - 18 October 2013 through 21 October 2013

ER -

Controlling data flow with a policy-based programming language for the web

Abstract

Publication series

Conference

Publisher link

Find It

Other files and links

Fingerprint

Cite this