权益分类	功能权益	普通用户	{{item.name}}会员
{{category.name}}	{{benefitItem.name}}

CAREER: Building Secure Decentralized Applications with Trusted Hardware and Blockchains

职业：使用可信硬件和区块链构建安全的去中心化应用程序

基本信息

批准号：
1750060
负责人：
Owen Arden
金额：
$ 51.08万
依托单位：
University of California-Santa Cruz
依托单位国家：
美国
项目类别：
Continuing Grant
财政年份：
2018
资助国家：
美国
起止时间：
2018-05-01 至 2023-09-30
项目状态：
已结题

来源：
https://www.nsf.gov/awardsearch/showAward?AWD_ID=1750060&HistoricalAwards=false
关键词：
CAREER Building Secure Decentralized Applications

项目摘要

This project explores a new, integrated approach to securing decentralized applications. The key problem is that decentralized applications are executed by mutually distrusting entities in a decentralized distributed system (such as a blockchain), where the entities must collaborate to execute the desired computation, despite not trusting each other. Building decentralized applications is difficult and error prone because the low-level security mechanisms are too removed from the high-level policies, thus it is difficult for programmers to correctly implement the policies. In these cases, no single entity is trusted to fully specify or enforce security policies. The project will develop Flame, a programming language offering more precise abstractions for expressing security intent in decentralized systems. Using Flame gives developers assurance that their programs are both secure and realizable without requiring them to design and implement complex security protocols. This project will also develop Decent, a decentralized runtime platform for executing decentralized applications built with Flame. The project will open-source Flame and Decent and promote them with publications, tutorials, and course materials. To explore a new, integrated approach to enforce end-to-end security for decentralized applications the project will build a prototype based on techniques for decentralized information flow control, blockchain networks, trusted computing, and cryptography to create a high-level programming layer that eases the task of building, verifying, and deploying decentralized applications. The prototype will support policies that cannot be enforced in current information control models and are too difficult to realize with cryptographic and access control mechanisms alone.This award reflects NSF's statutory mission and has been deemed worthy of support through evaluation using the Foundation's intellectual merit and broader impacts review criteria.

该项目探索了一种新的集成方法来保护分散的应用程序。关键问题是，去中心化应用程序是由去中心化分布式系统（如区块链）中相互不信任的实体执行的，在这种系统中，实体必须合作执行所需的计算，尽管彼此不信任。构建去中心化的应用程序是困难的，并且容易出错，因为低级别的安全机制与高级别的策略分离得太远，因此程序员很难正确地实现策略。在这些情况下，没有一个实体可以完全指定或强制执行安全策略。该项目将开发Flame，这是一种编程语言，提供更精确的抽象，用于在分散式系统中表达安全意图。使用Flame可以确保开发人员的程序既安全又可实现，而无需设计和实现复杂的安全协议。该项目还将开发Decent，这是一个分散的运行时平台，用于执行使用Flame构建的分散应用程序。该项目将开源Flame and Decent，并通过出版物、教程和课程材料进行推广。为了探索一种新的集成方法来加强去中心化应用程序的端到端安全性，该项目将基于去中心化信息流控制、区块链网络、可信计算和密码学技术构建一个原型，以创建一个高级编程层，从而简化构建、验证和部署去中心化应用程序的任务。该原型将支持在当前信息控制模型中无法执行的政策，并且单独使用密码和访问控制机制难以实现。该奖项反映了NSF的法定使命，并通过使用基金会的知识价值和更广泛的影响审查标准进行评估，被认为值得支持。