Communications of the ACM
BIND: A Fine-Grained Attestation Service for Secure Distributed Systems
SP '05 Proceedings of the 2005 IEEE Symposium on Security and Privacy
Optimal Component Composition for Scalable Stream Processing
ICDCS '05 Proceedings of the 25th IEEE International Conference on Distributed Computing Systems
Service-Oriented Architecture: Concepts, Technology, and Design
Service-Oriented Architecture: Concepts, Technology, and Design
Securing publish-subscribe overlay services with EventGuard
Proceedings of the 12th ACM conference on Computer and communications security
Network-Aware Operator Placement for Stream-Processing Systems
ICDE '06 Proceedings of the 22nd International Conference on Data Engineering
Scaling Byzantine Fault-Tolerant Replication toWide Area Networks
DSN '06 Proceedings of the International Conference on Dependable Systems and Networks
Design, implementation, and evaluation of the linear road bnchmark on the stream processing core
Proceedings of the 2006 ACM SIGMOD international conference on Management of data
PeerReview: practical accountability for distributed systems
Proceedings of twenty-first ACM SIGOPS symposium on Operating systems principles
VLDB '07 Proceedings of the 33rd international conference on Very large data bases
TVDc: managing security in the trusted virtual datacenter
ACM SIGOPS Operating Systems Review
SPADE: the system s declarative stream processing engine
Proceedings of the 2008 ACM SIGMOD international conference on Management of data
Distributed multimedia service composition with statistical QoS assurances
IEEE Transactions on Multimedia
Adaptive data-driven service integrity attestation for multi-tenant cloud systems
Proceedings of the Nineteenth International Workshop on Quality of Service
The top ten cloud-security practices in next-generation networking
International Journal of Communication Networks and Distributed Systems
Cloud infrastructure for providing tools as a service: quality attributes and potential solutions
Proceedings of the WICSA/ECSA 2012 Companion Volume
A survey on security issues and solutions at different layers of Cloud computing
The Journal of Supercomputing
A reference architecture for providing tools as a service to support global software development
Proceedings of the WICSA 2014 Companion Volume
Hi-index | 0.00 |
Open distributed systems such as service oriented architecture and cloud computing have emerged as promising platforms to deliver software as a service to users. However, for many security sensitive applications such as critical data processing, trust management poses significant challenges for migrating those critical applications into open distributed systems. In this paper, we present the design and implementation of a new secure dataflow processing system that aims at providing trustworthy continuous data processing in multi-party open distributed systems. We identify a set of major security attacks that can compromise the integrity of dataflow processing and provide effective protection mechanisms to counter those attacks. We have implemented a prototype of the secure dataflow processing framework and tested it on the PlanetLab testbed. Our experimental results show that our protection schemes are effective and impose low performance impact for dataflow processing in large-scale open distributed systems.