Type-safe distributed programming for OCaml

Billings, John; Sewell, Peter; Shinwell, Mark R.; Strniša, Rok

doi:10.1145/1159876.1159881

Cited by 18 publications

(15 citation statements)

References 34 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

Section: Session Types For Distributed Programmingmentioning

confidence: 99%

“…Their approach is similar to our treatment of session graphs and roles in Section 2; however, their descriptions are executable programs, not types. More generally, distributed languages such as Acute and HashCaml [26,12,5] also rely on types to provide general functional guarantees for networked programs, in particular type-safe marshalling and dynamic rebinding to local resources.Cryptographic communications protocols have been thoroughly studied, so we focus on related work on their use for securing implementations of programming-language abstractions. They can provide secure implementations for distributed languages with private communication channels [1,2].…”

mentioning

confidence: 99%

See 1 more Smart Citation

Secure Implementations for Typed Session Abstractions

Corin

Deniélou

Fournet

et al. 2007

20th IEEE Computer Security Foundations Symposium (CSF'07)

View full text Add to dashboard Cite

Distributed applications can be structured as parties that exchange messages according to some pre-arranged communication patterns. These sessions (or contracts, or protocols) simplify distributed programming: when coding a role for a given session, each party just has to follow the intended message flow, under the assumption that the other parties are also compliant.In an adversarial setting, remote parties may not be trusted to play their role. Hence, defensive implementations also have to monitor one another, in order to detect any deviation from the assigned roles of a session. This task involves low-level coding below session abstractions, thus giving up most of their benefits.We explore language-based support for sessions. We extend the ML language with session types that express flows of messages between roles, such that well-typed programs always play their roles. We compile session type declarations to cryptographic communication protocols that can shield programs from any low-level attempt by coalitions of remote peers to deviate from their roles. Our main result is that, when reasoning about programs that use our session implementation, one can safely assume that all session peers comply with their roles-without trusting their remote implementations. Session types for distributed programmingProgramming networked, independent systems is complex, because the programmer has little control over the runtime environment. To simplify his task, programming languages and system libraries offer abstractions for common communication patterns (such as private channels or RPCs), with automated support to help the programmer use these abstractions reliably and to relieve him from their lowlevel implementation details (such as message format and routing). As an example, web services promote declarative types and policies for messaging, with tools that can automatically fetch these declarations and set up proxies with a simple typed programming interface.From a security perspective, when parts of the system and some of the remote parties are not trusted, communication abstractions can be especially effective: relying on cryptographic protocols, implementations of these abstractions can sometimes entirely shield programmers from low-level attacks (such as message interception and rewriting) [1,2]. However, this is seldom the case in practice, as security concerns force the programmer to understand lowlevel protocol issues.Beyond simple abstractions for communications, distributed applications can often be structured as parties that exchange messages according to some fixed, pre-arranged patterns. These sessions (also named contracts, or workflows, or protocols) simplify distributed programming by specifying the behaviour of each network entity, or role. By agreeing on a common session specification, the parties can resolve most of the complexity upfront. Then, when coding a role for a given session, each party just has to follow the message flow for this role, under the assumption that the other parties are al...

show abstract

Section: Session Types For Distributed Programmingmentioning

confidence: 99%

mentioning

confidence: 99%

Secure Implementations for Typed Session Abstractions

Corin

Deniélou

Fournet

et al. 2007

20th IEEE Computer Security Foundations Symposium (CSF'07)

View full text Add to dashboard Cite

show abstract

“…Appending the time is intended to compensate for the fact that the file name and type name are not alone sufficient to guarantee global uniqueness; there is only limited information about the context available to deriving when the definition is seen. A solution to this problem is given in [1] in the context of a modification to the OCaml compiler, but a solution based on local syntactic transformations remains elusive.…”

Section: Dynamic Typingmentioning

confidence: 99%

“…The HashCaml [1] project extends the OCaml bytecode compiler with type-passing to make the standard Marshal operation type-safe. Cohen and Herrmann [4] discuss the implementation of a staged serialiser in MetaOCaml which bears some similarity to our preprocessor-based approach, with even more reliance on unsafe low-level operations, used by the serialiser to break through abstraction barriers.…”

Section: Serialisation: Related Workmentioning

confidence: 99%

Practical generic programming in OCaml

Yallop

2007

Proceedings of the 2007 Workshop on Workshop on ML

View full text Add to dashboard Cite

We describe deriving, a system of extensible generic functions for OCaml implemented as a preprocessor and supporting library. We argue that generating code from type-definitions has significant advantages over a combinator approach, taking serialisation as an example application: our generate-your-boilerplate design results in a system that is easy to use, has comprehensive coverage of types and handles cyclic values without imposing a burden on the user. Users can extend generic functions with specialised implementations at particular types; we show how this can lead to dramatically improved performance in the serialisation task without the user writing a single line of serialisation code.

show abstract

“…Acute extends an ML-like core language to support distributed development, deployment, and execution, allowing type-safe interaction between separately built programs. Some of these ideas were further developed and put into practice in HashCaml language [3], an extension of the OCaml bytecode compiler with support for type-safe marshalling and related naming features.…”

Section: Introductionmentioning

confidence: 99%

Typed First-Class Communication Channels and Mobility for Concurrent Scripting Languages

Wojciechowski

2012

Software Language Engineering

View full text Add to dashboard Cite

Abstract. In the 1990s, there was considerable interest in mobile computation: systems in which running computations (or mobile agents) could be moved from one machine to another. Much of this work was in terms of high-level programming languages and mobile process calculi. An example is Nomadic Pict-a prototype high-level programming language in which to express and verify overlay networks, for reliable communication between mobile agents. One can ask whether the language abstractions could be useful for scripting programming in modern distributed deployment platforms, such as many-core processors, grids, web servers and datacentres. In this paper, we demonstrate selected features of Nomadic Pict, and show the use of typed channels and agent mobility for programming in the grid. We demonstrate example design patterns that can be used for implementing safe message passing, test & send, system bootstrapping, and relocatable computation.

show abstract

Type-safe distributed programming for OCaml

Cited by 18 publications

References 34 publications

Secure Implementations for Typed Session Abstractions

Secure Implementations for Typed Session Abstractions

Practical generic programming in OCaml

Typed First-Class Communication Channels and Mobility for Concurrent Scripting Languages

Contact Info

Product

Resources

About