Skip to main content
USENIX
  • Conferences
  • Students
Sign in

connect with us


  •  Twitter
  •  Facebook
  •  LinkedIn
  •  Google+
  •  YouTube

twitter

Tweets by @usenix

usenix conference policies

  • Event Code of Conduct
  • Conference Network Policy
  • Statement on Environmental Responsibility Policy

You are here

Home ยป Building Systems That Flexibly Download Executable Content
Tweet

connect with us

Building Systems That Flexibly Download Executable Content

Authors: 

Trent Jaeger and Atul Prakash, University of Michigan; Avi Rubin, Bellcore

Abstract: 

Downloading executable content, which enables principals to run programs from remote sites, is a key technology in a number of emerging applications, including collaborative systems, electronic commerce, and web information services. However, the use of downloaded executable content also presents serious security problems because it enables remote principals to execute programs on behalf of the downloading principal. Unless downloaded executable content is properly controlled, a malicious remote principal may obtain unauthorized access to the downloading principal's resources. Current solutions either attempt to strictly limit the capabilities of downloaded content or require complete trust in the remote principal, so applications which require intermediate amounts of sharing, such as collaborative applications, cannot be constructed over insecure networks. In this paper, we describe an architecture that flexibly controls the access rights of downloaded content by: (1) authenticating content sources; (2) determining content access rights based on its source and the application that it is implementing; and (3) enforcing these access rights over a wide variety of objects and for the entire computation, even if external software is used. We describe the architecture in the context of an infrastructure for supporting collaborative applications.

Trent Jaeger, University of Michigan

Atul Prakash, University of Michigan

Avi Rubin, Bellcore

BibTeX
@inproceedings {260647,
author = {Trent Jaeger and Atul Prakash and Avi Rubin},
title = {Building Systems That Flexibly Download Executable Content},
booktitle = {6th USENIX Security Symposium (USENIX Security 96)},
year = {1996},
address = {San Jose, CA},
url = {https://www.usenix.org/conference/6th-usenix-security-symposium/building-systems-flexibly-download-executable-content},
publisher = {USENIX Association},
month = jul,
}
Download

Links

Paper: 
http://usenix.org/publications/library/proceedings/sec96/full_papers/jaeger/jaeger.pdf
  • Log in or    Register to post comments

© USENIX

  • Privacy Policy
  • Contact Us