Agile Security for Storing Sensitive and Critical Information

用于存储敏感和关键信息的敏捷安全性

• 批准号: 0208655
• 负责人: Mustaque Ahamad
• 金额: $ 48.12万
• 依托单位: Georgia Tech Research Corporation
• 依托单位国家: 美国
• 项目类别: Continuing Grant
• 财政年份: 2002
• 资助国家: 美国
• 起止时间: 2002-08-01 至 2006-07-31
• 项目状态: 已结题
• 来源: https://www.nsf.gov/awardsearch/showAward?AWD_ID=0208655&HistoricalAwards=false
• 关键词: Agile; Security; Storing; Sensitive; Critical

As computers become pervasive, an increasing number of information rich applications are being deployed that create, store and access sensitive and critical information. An enabling service that can be used to store and access such information must meet both security and performance requirements even when some nodes that implement the service are compromised or when some clients behave maliciously. This research project focuses on a number of novel techniques for building an agile and secure store that can meet the needs of future applications. First, a flexible and agile architecture for a distributed store is investigated to allow applications to dynamically adapt their desired security and performance levels. Second, the agile nature of the store requires the detection of potential compromises and malicious activity. New protocols that adapt to such suspected attacks are explored. Finally, a variety of ubiquitous applications that need to access sensitive information are investigated. The characteristics of such applications can help quantify the overheads that are inherent when the conflicting goals of security and performance have to be reconciled.

随着计算机的普及，越来越多的信息丰富的应用程序正在部署，创建，存储和访问敏感和关键信息。可用于存储和访问此类信息的启用服务必须同时满足安全性和性能要求，即使在实现该服务的某些节点受到危害或某些客户端恶意行为时也是如此。该研究项目的重点是一些新的技术，用于构建一个敏捷和安全的存储，可以满足未来的应用程序的需求。首先，一个灵活和敏捷的分布式存储体系结构的调查，以允许应用程序动态地适应他们所需的安全性和性能水平。其次，商店的敏捷性要求检测潜在的危害和恶意活动。探索适应这种可疑攻击的新协议。最后，各种无处不在的应用程序，需要访问敏感信息进行了调查。当必须协调安全性和性能这两个相互冲突的目标时，此类应用程序的特征可以帮助量化固有的管理费用。