EPTL - A Temporal Logic for Weakly Consistent Systems (Short Paper)

Weber, Mathias; Bieniusa, Annette; Poetzsch-Heffter, Arnd

doi:10.1007/978-3-319-60225-7_17

Cited by 2 publications

(2 citation statements)

References 14 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…We have already shown in prior work [19] that correct access control can be established by putting the policy and data state in the same weakly consistent datastore. Our definition of access control is given in [20] and is based on the fact that policy modifications should become active after they have been issued and until the same policy is modified again. This property can be implemented without reverting to strong consistency or establishing global invariants.…”

Section: Combined Policy and Data Statementioning

confidence: 99%

See 1 more Smart Citation

ACGreGate: A Framework for Practical Access Control for Applications using Weakly Consistent Databases

Weber¹,

Bieniusa²

2018

Preprint

Self Cite

View full text Add to dashboard Cite

Scalable and highly available systems often require data stores that offer weaker consistency guarantees than traditional relational databases systems. The correctness of these applications highly depends on the resilience of the application model against data inconsistencies. In particular regarding application security, it is difficult to determine which inconsistencies can be tolerated and which might lead to security breaches.In this paper, we discuss the problem of how to develop an access control layer for applications using weakly consistent data stores without loosing the performance benefits gained by using weaker consistency models. We present ACGreGate, a Java framework for implementing correct access control layers for applications using weakly consistent data stores. Under certain requirements on the data store, ACGreGate ensures that the access control layer operates correctly with respect to dynamically adaptable security policies. We used AC-GreGate to implement the access control layer of a student management system. This case study shows that practically useful security policies can be implemented with the framework incurring little overhead. A comparison with a setup using a centralized server shows the benefits of using ACGreGate for scalability of the service to geo-scale.

show abstract

Section: Combined Policy and Data Statementioning

confidence: 99%

“…Access Control One important topic of application design is access control. As definition of access control, we follow the definition provided in prior work [20].…”

Section: Introductionmentioning

confidence: 99%