Software Quality and Infrastructure Protection for Diffuse …spyce/oct03/presentations/... ·...
Transcript of Software Quality and Infrastructure Protection for Diffuse …spyce/oct03/presentations/... ·...
![Page 1: Software Quality and Infrastructure Protection for Diffuse …spyce/oct03/presentations/... · 2003-11-11 · New undergraduate major and minor program at Penn in Logic, Information,](https://reader033.fdocuments.net/reader033/viewer/2022041820/5e5d61919ed2cd1e227a8a4c/html5/thumbnails/1.jpg)
Software Quality and Infrastructure Protection for
Diffuse Computing
FY2001 ONR CIP/SW URI
Principal Investigator: Andre ScedrovInstitution: University of Pennsylvania
URL: http://www.cis.upenn.edu/spyce
STARTED IN MAY 2001
![Page 2: Software Quality and Infrastructure Protection for Diffuse …spyce/oct03/presentations/... · 2003-11-11 · New undergraduate major and minor program at Penn in Logic, Information,](https://reader033.fdocuments.net/reader033/viewer/2022041820/5e5d61919ed2cd1e227a8a4c/html5/thumbnails/2.jpg)
The SPYCE Team
! Joan Feigenbaum (Yale)! Joseph Y. Halpern (Cornell)! Patrick D. Lincoln ! John C. Mitchell (Stanford)! Andre Scedrov (U Penn)! Jonathan M. Smith (U Penn)
![Page 3: Software Quality and Infrastructure Protection for Diffuse …spyce/oct03/presentations/... · 2003-11-11 · New undergraduate major and minor program at Penn in Logic, Information,](https://reader033.fdocuments.net/reader033/viewer/2022041820/5e5d61919ed2cd1e227a8a4c/html5/thumbnails/3.jpg)
External Collaborators
! Cynthia Dwork (Microsoft)! Tim Griffin (Intel)! Vitaly Shmatikov (SRI)! Paul Syverson (NRL)
![Page 4: Software Quality and Infrastructure Protection for Diffuse …spyce/oct03/presentations/... · 2003-11-11 · New undergraduate major and minor program at Penn in Logic, Information,](https://reader033.fdocuments.net/reader033/viewer/2022041820/5e5d61919ed2cd1e227a8a4c/html5/thumbnails/4.jpg)
Postdocs! Bjorn Knutsson, Penn! Ninghui Li, Stanford (till Summer 2003)! Michael Elkin, Yale (since Fall 2003)
! 16 Ph.D. Students
![Page 5: Software Quality and Infrastructure Protection for Diffuse …spyce/oct03/presentations/... · 2003-11-11 · New undergraduate major and minor program at Penn in Logic, Information,](https://reader033.fdocuments.net/reader033/viewer/2022041820/5e5d61919ed2cd1e227a8a4c/html5/thumbnails/5.jpg)
Project Vision: Diffuse Computing
Managing and maintaining a Managing and maintaining a computational computational infrastuctureinfrastucture, , distributed among many distributed among many heterogeneous nodes that do not heterogeneous nodes that do not trust each other completely and trust each other completely and may have incentives (needs, may have incentives (needs, priorities).priorities).
![Page 6: Software Quality and Infrastructure Protection for Diffuse …spyce/oct03/presentations/... · 2003-11-11 · New undergraduate major and minor program at Penn in Logic, Information,](https://reader033.fdocuments.net/reader033/viewer/2022041820/5e5d61919ed2cd1e227a8a4c/html5/thumbnails/6.jpg)
Secure services through heterogeneous overlay networks
!Communication !Cooperation! Incentives!Delivery
![Page 7: Software Quality and Infrastructure Protection for Diffuse …spyce/oct03/presentations/... · 2003-11-11 · New undergraduate major and minor program at Penn in Logic, Information,](https://reader033.fdocuments.net/reader033/viewer/2022041820/5e5d61919ed2cd1e227a8a4c/html5/thumbnails/7.jpg)
MissionAnalysis5.3.1
JFHQ
DevelopCOAE
5.3.4
JFHQ
PlanningGuidance
5.3.2
CDR
EndState 5.3.3
CDR
AnalyzeCOAE
5.3.5
JFHQ
RedTeamInputs
0.0Red
Team
SelectCOAE
5.3.7
CDR
PrepareETO
5.3.9
JFHQ
JFHQFunctional
Inputs 5.3.4
JFHQ
Collaborative Planning Environment
externalFunctional
Inputs0.0
COE
ReviseONA JFHQ
TaskMission CINC
PrepareONA JFHQ
PrepareCONPLAN
w/FDOs5.3.9JFHQ
DetermineDesired
End State CINC
SharpenONA JIC
DevelopLogisticsSupport JFHQ
Command
5.4JFHQ
ProjectFuture
OperationsJFHQ
CompareMoE
0.0JFHQ
CompareMoP 0.0
JFHQ
5.3.6
JFHQ
5.3.8
CDR
JPOTF
DIA
NAVFOR Element
MARFOR Element
JF HQ
JPG
AFFOR Element
ARFOR Element
JFACC
JFLCC
DOCC
JFMCC
JSOTF
POC
JCSNMCC
SPSTF
COC
Theater JIC/JAC
NMJIC
NCAUnified CINC
USAF
SupportCommands
Theater
USMCNavy
Army
JCCC
JLRC
JOCJISE
JPRC
JPRC
ACE
JISE (JFLCC)
JISE/J2 (JSOTF)
JISE/J2 Watch (JFACC)
MTACC/ACE
JFHQ OPFAC Interfaces in Wartime Scenario
TRANSCOM
SPACECOM
STRATCOM
SPOC
JIOC
JWAC
AFSPOCARSPOC
NAVSPOC
MI
CP Main
CP Fwd
CINC IMO
JCCCJCCC
NOC
NOCNOC
NOC
TCCCIO Cell
DISAGNOSC
RNOSC RNOSC
Other AgenciesNRO
NSA
NSA
JMCGAOC
JAOC
JISE/J2 (JFMCC)JMOC
CVIC/CDCTFCC
JCCC
JOC (JFLCC)
JCCC
TOC
JRTOC
JOC
JLRC
JPGJCCC
JISENIST
NRO
JOC (JSOTF)
JF HQ
JFLCC
JFMCC
JFACC
Unified CINC
AFFOR Element
MARFOR Element
NAVFOR Element
ARFOR Element
JSOTF
Theater JIC/JAC
National CINC JFHQ Staff JF Component Service Component
NCA
DIA
NRO
NSA
JCS
NIMA
SOCOM
TacticalAssets
TRANSCOM
SPACECOM
STRATCOM
JWAC
DLA
CIA
Academia
Coast Guard Element
JFHQ CINC Plug
C4ISR ArchitectureCommand, Control, Communications, Computers, Intelligence, Surveillance, and Reconnaissance
![Page 8: Software Quality and Infrastructure Protection for Diffuse …spyce/oct03/presentations/... · 2003-11-11 · New undergraduate major and minor program at Penn in Logic, Information,](https://reader033.fdocuments.net/reader033/viewer/2022041820/5e5d61919ed2cd1e227a8a4c/html5/thumbnails/8.jpg)
Diffuse Computing
! Paradigm developing rapidly as a result of - commercial computing markets - now-recognized potential of
peer-to-peer computing and grid computing- the need for distributed network-centric systems
! Raises challenges for - system design- software production - the development of mechanisms ensuring stable
equilibria of diffuse systems
![Page 9: Software Quality and Infrastructure Protection for Diffuse …spyce/oct03/presentations/... · 2003-11-11 · New undergraduate major and minor program at Penn in Logic, Information,](https://reader033.fdocuments.net/reader033/viewer/2022041820/5e5d61919ed2cd1e227a8a4c/html5/thumbnails/9.jpg)
SPYCE Objective:Scalable Distributed Assurance
Develop fundamental understanding, models, algorithms, and network testbed, in order to reduce cost, improve performance, and provide higher reliability for networked operations across untrusted networks.
Incentives, Privacy, and Anonymity
Protocol Design and Analysis
Trust Management
Network Architecture
Smart devices diffuse into the environment….
… with control and assurance
Desktop ‘80s
Room ‘40s
Wearable ‘90s
Pervasive ‘00s
![Page 10: Software Quality and Infrastructure Protection for Diffuse …spyce/oct03/presentations/... · 2003-11-11 · New undergraduate major and minor program at Penn in Logic, Information,](https://reader033.fdocuments.net/reader033/viewer/2022041820/5e5d61919ed2cd1e227a8a4c/html5/thumbnails/10.jpg)
Critical Infrastructure Protection
Many critical infrastructures, national and DoD-specific, are decentralized systems
Computer networks have, in addition, become critical infrastructures
Research Question: How to build large-scale, adaptive and robust next-gen. systems?
Approach: New Diffuse Computing concept- results with extremely loosely-coupled modules
![Page 11: Software Quality and Infrastructure Protection for Diffuse …spyce/oct03/presentations/... · 2003-11-11 · New undergraduate major and minor program at Penn in Logic, Information,](https://reader033.fdocuments.net/reader033/viewer/2022041820/5e5d61919ed2cd1e227a8a4c/html5/thumbnails/11.jpg)
Critical Infrastructure Protection
!Many critical infrastructures, national and DoD-specific, are decentralized
!Data sharing essential for operation, but data compromise can be catastrophic
!Research Question: How to share data safely, using policies that are easy to formulate, enforce, maintain
!Approach: diffuse trust management
![Page 12: Software Quality and Infrastructure Protection for Diffuse …spyce/oct03/presentations/... · 2003-11-11 · New undergraduate major and minor program at Penn in Logic, Information,](https://reader033.fdocuments.net/reader033/viewer/2022041820/5e5d61919ed2cd1e227a8a4c/html5/thumbnails/12.jpg)
Assuring Software Quality
! Loose coupling leads to natural “sandboxing”! High decentralization means high autonomy! New way of writing software! Pieces of system more robust in face of:
- Failures / Disruptions- Partial Information- Software Engineering for highly decentralized,
policy-controlled and networked world
![Page 13: Software Quality and Infrastructure Protection for Diffuse …spyce/oct03/presentations/... · 2003-11-11 · New undergraduate major and minor program at Penn in Logic, Information,](https://reader033.fdocuments.net/reader033/viewer/2022041820/5e5d61919ed2cd1e227a8a4c/html5/thumbnails/13.jpg)
Assuring Software Quality
!Technology applicable to managing process interaction - Process A delegates rights to process B
" For limited purpose, limited time, limited locations
- Fine-grained control of process actions- Works for diffuse systems that escape
normal controls imposed by localized OSs!Diffuse principle of least privilege
![Page 14: Software Quality and Infrastructure Protection for Diffuse …spyce/oct03/presentations/... · 2003-11-11 · New undergraduate major and minor program at Penn in Logic, Information,](https://reader033.fdocuments.net/reader033/viewer/2022041820/5e5d61919ed2cd1e227a8a4c/html5/thumbnails/14.jpg)
FY2001 CIP/SW URI BAA Topic #9:
ASSURING SOFTWARE QUALITY
Research Concentration Areas
!Reason about uncertainty in all contexts of distributed agent-mediated information systems!Develop co-algebraic foundations for expressing the semantics of concurrency!Express knowledge of interactions building upon a game theoretic semantics
- Vitaly Shmatikov poster!Investigate configuration management in terms of distributed services, policy coordination
- John Mitchell talk!Develop highly dependable self-configuring operating services for net-centric, resource-
aware mobile computing- Jonathan Smith talk, Bjorn Knutsson demo
!Investigate real-time/fault tolerant middleware and component integration in hybrid control- Kostas Anagnostakis demo
!Develop collaborative problem solving theories that emphasize computing as mediation!Express the meaning of software artifacts, interfaces, aspects, and operating environments!Extract and synthesize computational knowledge about algorithms and protocols
- Joe Halpern talk!Investigate the economics of software technology diffusion into commercial infrastructures
- Joan Feigenbaum talk
How to reason about the assurance and quality in highly distributed systems?
![Page 15: Software Quality and Infrastructure Protection for Diffuse …spyce/oct03/presentations/... · 2003-11-11 · New undergraduate major and minor program at Penn in Logic, Information,](https://reader033.fdocuments.net/reader033/viewer/2022041820/5e5d61919ed2cd1e227a8a4c/html5/thumbnails/15.jpg)
DoD Impact
! Joint Vision 2010 / Joint Vision 2020 of “Network Centric” operations
! DoD requirements addressed by project:- Agile and rapidly evolving
" CING/Active Networks" Proxies
- Secure and Robust" *AME A.N. approach
- Scalable" Massively populated persistent worlds concepts
![Page 16: Software Quality and Infrastructure Protection for Diffuse …spyce/oct03/presentations/... · 2003-11-11 · New undergraduate major and minor program at Penn in Logic, Information,](https://reader033.fdocuments.net/reader033/viewer/2022041820/5e5d61919ed2cd1e227a8a4c/html5/thumbnails/16.jpg)
DoD Impact
!Dynamic coalitions- Partial sharing based on partial trust
!Joint Vision 2010 / Joint Vision 2020 of “Network Centric” operations- Can use policy to push data, overcome
network bandwidth limitations- Right data to right place at right time
![Page 17: Software Quality and Infrastructure Protection for Diffuse …spyce/oct03/presentations/... · 2003-11-11 · New undergraduate major and minor program at Penn in Logic, Information,](https://reader033.fdocuments.net/reader033/viewer/2022041820/5e5d61919ed2cd1e227a8a4c/html5/thumbnails/17.jpg)
Project Metrics
! Criteria by which success of the project should be measured
- Good research- Strong collaboration- Educational impact- Relevance to CIP/SW, DoD, and Industry- Transition Potential and Anticipated
Impact
![Page 18: Software Quality and Infrastructure Protection for Diffuse …spyce/oct03/presentations/... · 2003-11-11 · New undergraduate major and minor program at Penn in Logic, Information,](https://reader033.fdocuments.net/reader033/viewer/2022041820/5e5d61919ed2cd1e227a8a4c/html5/thumbnails/18.jpg)
Conferences where we publish! Computer Security Foundations Workshop! Conference on Computer and Communication Security! International Information Security Conference! Workshop on Security and Privacy in Digital Rights Management! Conference on Electronic Commerce! Symposium on Principles of Distributed Computing! International Symposium on High-Performance Distributed
Computing
! Conference on Computer Communications! International Workshop on Web Content Caching and
Distribution! International Symposium on Modeling, Analysis and Simulation
of Computer and Telecommunication Systems
![Page 19: Software Quality and Infrastructure Protection for Diffuse …spyce/oct03/presentations/... · 2003-11-11 · New undergraduate major and minor program at Penn in Logic, Information,](https://reader033.fdocuments.net/reader033/viewer/2022041820/5e5d61919ed2cd1e227a8a4c/html5/thumbnails/19.jpg)
Conferences where we publish! Computer Security Foundations Workshop! Conference on Computer and Communication Security! International Information Security Conference! Workshop on Security and Privacy in Digital Rights Management! Conference on Electronic Commerce! Symposium on Principles of Distributed Computing! International Symposium on High-Performance Distributed
Computing
! Conference on Computer Communications! International Workshop on Web Content Caching and
Distribution! International Symposium on Modeling, Analysis and Simulation
of Computer and Telecommunication Systems
KeywordsComputerSecurityDistributedCommunication
![Page 20: Software Quality and Infrastructure Protection for Diffuse …spyce/oct03/presentations/... · 2003-11-11 · New undergraduate major and minor program at Penn in Logic, Information,](https://reader033.fdocuments.net/reader033/viewer/2022041820/5e5d61919ed2cd1e227a8a4c/html5/thumbnails/20.jpg)
Project Themes! Combines 4 complementary thrusts:
- Incentive-compatibility in distributed computing- Authorization mechanisms- Secure data storage and retrieval- Communication protocols
! Multi-institution experimental platform + systematic, formal treatment of underlying models, algorithms & data structures
July 2001
![Page 21: Software Quality and Infrastructure Protection for Diffuse …spyce/oct03/presentations/... · 2003-11-11 · New undergraduate major and minor program at Penn in Logic, Information,](https://reader033.fdocuments.net/reader033/viewer/2022041820/5e5d61919ed2cd1e227a8a4c/html5/thumbnails/21.jpg)
SPYCE areas of concentration
!Market-based computation (incentive compatibility)
!Communication and security protocols analysis
!Authorization mechanisms (trust management)
!Privacy and anonymity!Networking, experimental platform
Today
![Page 22: Software Quality and Infrastructure Protection for Diffuse …spyce/oct03/presentations/... · 2003-11-11 · New undergraduate major and minor program at Penn in Logic, Information,](https://reader033.fdocuments.net/reader033/viewer/2022041820/5e5d61919ed2cd1e227a8a4c/html5/thumbnails/22.jpg)
- Protocol Analysis- Formal Methods
for Cryptography- Anonymity- Privacy- Algorithmic
Mech Design- Authorization- Decision Theory- Networking - Digital Rights
CynthiaAndre
JonathanJoe
Patrick
John
VitalyJoan
Paul
Spyce Interaction Graph
![Page 23: Software Quality and Infrastructure Protection for Diffuse …spyce/oct03/presentations/... · 2003-11-11 · New undergraduate major and minor program at Penn in Logic, Information,](https://reader033.fdocuments.net/reader033/viewer/2022041820/5e5d61919ed2cd1e227a8a4c/html5/thumbnails/23.jpg)
Spyce Interaction GraphNumber of publications
- Protocol Analysis 14- Formal Methods
for Cryptography 6- Anonymity 5- Privacy 4- Algorithmic
Mech Design 6- Authorization 7- Decision Theory 4- Networking 19- Digital Rights 3
CynthiaAndre
JonathanJoe
Patrick
John
VitalyJoan
Paul
![Page 24: Software Quality and Infrastructure Protection for Diffuse …spyce/oct03/presentations/... · 2003-11-11 · New undergraduate major and minor program at Penn in Logic, Information,](https://reader033.fdocuments.net/reader033/viewer/2022041820/5e5d61919ed2cd1e227a8a4c/html5/thumbnails/24.jpg)
Sample Accomplishments
! Interdomain routing- Path vector protocols [Penn-Yale-Intel] - Local conditions for stable routes [Yale]
! Analysis of cryptographic protocols- Formal methods for cryptography [Penn-Stanford]- Kerberos V analysis [Penn-NRL]
! Logic for reasoning about policies [Cornell-Stanford]! SPAM reduction algorithms [Microsoft-Stanford]! Privacy in databases [SRI-Microsoft]! Anonymity and information hiding [Cornell-NRL]! Content transcoding for heterogeneous clients [Penn]
![Page 25: Software Quality and Infrastructure Protection for Diffuse …spyce/oct03/presentations/... · 2003-11-11 · New undergraduate major and minor program at Penn in Logic, Information,](https://reader033.fdocuments.net/reader033/viewer/2022041820/5e5d61919ed2cd1e227a8a4c/html5/thumbnails/25.jpg)
Impact on Education! This grant has enhanced the ability to educate and train students in
science and engineering and perform CIP/SW-relevant research! 10 Spyce-related courses taught, including:
- Economics and Computation- Computer and Network Security- E-Commerce Doing Business on the Internet- The Internet: Co-Evolution of Technology and Society- Sensitive Information in the Wired World- Decision Theory- Reasoning About Knowledge- Mathematical Foundations of Computer Security
! Active seminars on computer and information security ! New undergraduate major and minor program at Penn
in Logic, Information, and Computation including SPYCE-related courses
! 16 Students in Degree Program Supported by Project (25% or moreFTE)
- Penn 4, Cornell 4, Stanford 5 , Yale 3
![Page 26: Software Quality and Infrastructure Protection for Diffuse …spyce/oct03/presentations/... · 2003-11-11 · New undergraduate major and minor program at Penn in Logic, Information,](https://reader033.fdocuments.net/reader033/viewer/2022041820/5e5d61919ed2cd1e227a8a4c/html5/thumbnails/26.jpg)
Project Statistics! 1 Transition to Tenure-Track Faculty: Ninghui Li
- NYU PhD (advisor: Feigenbaum) → Stanford postdoc→Purdue faculty
! 5 PhDs Awarded: - R. Sami: Yale → MIT - R. Chadha: Penn → U. Sussex - A. Jaggard: Penn → Tulane- N. Durgin: Stanford → Sandia Livermore Labs
Computer Security Group- A. Chander: Stanford → NTT DoCoMo US Labs
" Proof-carrying-code-based security applications for 4G wireless product
" Direct application to commercial wireless security
Sometimes the most effective way to transfer information and technology is to transition people
![Page 27: Software Quality and Infrastructure Protection for Diffuse …spyce/oct03/presentations/... · 2003-11-11 · New undergraduate major and minor program at Penn in Logic, Information,](https://reader033.fdocuments.net/reader033/viewer/2022041820/5e5d61919ed2cd1e227a8a4c/html5/thumbnails/27.jpg)
Project Endorsements
!Microsoft: Cynthia Dwork!Intel: Tim Griffin!IBM: Ran Canetti!HP: Tomas Sander
![Page 28: Software Quality and Infrastructure Protection for Diffuse …spyce/oct03/presentations/... · 2003-11-11 · New undergraduate major and minor program at Penn in Logic, Information,](https://reader033.fdocuments.net/reader033/viewer/2022041820/5e5d61919ed2cd1e227a8a4c/html5/thumbnails/28.jpg)
Spyce Interaction Graph
- Protocol Analysis- Formal Methods
for Cryptography- Anonymity- Privacy- Algorithmic
Mech Design- Authorization- Decision Theory- Networking- Digital Rights
CynthiaAndre
JonathanJoe
Patrick
John
VitalyJoan
Paul
![Page 29: Software Quality and Infrastructure Protection for Diffuse …spyce/oct03/presentations/... · 2003-11-11 · New undergraduate major and minor program at Penn in Logic, Information,](https://reader033.fdocuments.net/reader033/viewer/2022041820/5e5d61919ed2cd1e227a8a4c/html5/thumbnails/29.jpg)
Plans for Option
!In the first two years- Thoroughly familiarized ourselves with
each others areas- Achieved accumulated knowledge of SPYCE
!In option- Will take this to the next level- Apply this collective knowledge in the
following areas
![Page 30: Software Quality and Infrastructure Protection for Diffuse …spyce/oct03/presentations/... · 2003-11-11 · New undergraduate major and minor program at Penn in Logic, Information,](https://reader033.fdocuments.net/reader033/viewer/2022041820/5e5d61919ed2cd1e227a8a4c/html5/thumbnails/30.jpg)
Plans for Option (1)
! Secure, reliable network infrastructure- Combine security mechanism and incentives- Examples: BGP, DNS, NTP, …
! General theory of computational mechanism- Mechanism specification and verification- Computational complexity analysis combining
network communication and incentives! Discrete information management
- Multicentric information delivery and retrieval- Access control, anonymity, and privacy
![Page 31: Software Quality and Infrastructure Protection for Diffuse …spyce/oct03/presentations/... · 2003-11-11 · New undergraduate major and minor program at Penn in Logic, Information,](https://reader033.fdocuments.net/reader033/viewer/2022041820/5e5d61919ed2cd1e227a8a4c/html5/thumbnails/31.jpg)
Plans for Option (2)! Further investigation of practical protocols! Automating verification! Adding utilities to specifications ! Verifying mechanisms
- mechanism = set of rules for playing a game, designed to encourage “good” behavior
e.g., tax system, type of auction
![Page 32: Software Quality and Infrastructure Protection for Diffuse …spyce/oct03/presentations/... · 2003-11-11 · New undergraduate major and minor program at Penn in Logic, Information,](https://reader033.fdocuments.net/reader033/viewer/2022041820/5e5d61919ed2cd1e227a8a4c/html5/thumbnails/32.jpg)
Plans for Option (3)
• Combine the study of incentives, privacy, and anonymity
• Derive hardness results in diffuse computing • Hardness stems from interplay of computational
requirements and incentive-compatibility requirements (as in budget-balanced MCS).
• Use hardness as a building block in private algorithmic mechanisms or anonymous algorithmic mechanisms.
![Page 33: Software Quality and Infrastructure Protection for Diffuse …spyce/oct03/presentations/... · 2003-11-11 · New undergraduate major and minor program at Penn in Logic, Information,](https://reader033.fdocuments.net/reader033/viewer/2022041820/5e5d61919ed2cd1e227a8a4c/html5/thumbnails/33.jpg)
Plans for Option (4)! Kostas Anagnostakis Ph.D research:
- ITRUST – Incentive TRust for Ultrascale Services and Techniques [P,Y,Columbia]" Ultrascale diffuse approach to distributed anomaly (e.g.,
worm) detection " Ultrascale resource (e.g., file) sharing
! Bjorn Knutsson Post-Doctoral research:- Experimental Validation of Massively Populated
Persistent Worlds MPPW on PlanetLab (& new anomaly detection algorithms)
- DHARMA – Distributed Home Agent for Reliable Mobile Access (diffuse approach for mobility; advanced adaptive configuration management)
! Continuing evolution of SPYCELab
![Page 34: Software Quality and Infrastructure Protection for Diffuse …spyce/oct03/presentations/... · 2003-11-11 · New undergraduate major and minor program at Penn in Logic, Information,](https://reader033.fdocuments.net/reader033/viewer/2022041820/5e5d61919ed2cd1e227a8a4c/html5/thumbnails/34.jpg)
Plans for Option (5)! Applications and Transitions
- Work with XrML developers on language and algorithm - IBM Privacy Project
" Use RT algorithms for EPAL, P3P applications- Pursue commercial and DOD applications- Application to large policy sets (social security policies)
! Generalize results: RT ⇒ Datalog ⇒ PFOL! Improve implementation: RT0 ⇒ Datalog ⇒ PFOL! Policy development environment and tools
- User interface, XML-format, interoperability- Testing methodology, analysis methods
![Page 35: Software Quality and Infrastructure Protection for Diffuse …spyce/oct03/presentations/... · 2003-11-11 · New undergraduate major and minor program at Penn in Logic, Information,](https://reader033.fdocuments.net/reader033/viewer/2022041820/5e5d61919ed2cd1e227a8a4c/html5/thumbnails/35.jpg)
SPYCE Objective:Scalable Distributed Assurance
Develop fundamental understanding, models, algorithms, and network testbed, in order to reduce cost, improve performance, and provide higher reliability for networked operations across untrusted networks.
Incentives, Privacy, and Anonymity
Protocol Design and Analysis
Trust Management
Network Architecture
Smart devices diffuse into the environment….
… with control and assurance
Desktop ‘80s
Room ‘40s
Wearable ‘90s
Pervasive ‘00s
![Page 36: Software Quality and Infrastructure Protection for Diffuse …spyce/oct03/presentations/... · 2003-11-11 · New undergraduate major and minor program at Penn in Logic, Information,](https://reader033.fdocuments.net/reader033/viewer/2022041820/5e5d61919ed2cd1e227a8a4c/html5/thumbnails/36.jpg)
URI ObjectiveAlgorithms to model diffuse computing and achieve scaleable high assurance
DoD capabilities enhancedReduced cost, improved performance, and higher reliability for networked operations across untrusted networks
Scientific/technical approachComputing and networking elements diffusing into the environment need:-Local incentive-compatibility in global distributed computing
-Scaleable authorization mechanisms-Assured communication-Experimental evidence
Sample Accomplishments• Local conditions for stable routes in
interdomain routing• SPAM reduction algorithms• Privacy in databases• Content transcoding for
heterogeneous clients• Formal methods for cryptography • Logics for reasoning about policies
URI, 2001 October, 2003
Software Quality and Infrastructure Protection for Diffuse Computing
Smart devices diffuse into the environment….
… with control and assurance
Desktop ‘80s
Room ‘40s
Wearable ‘90s
Pervasive ‘00s
[email protected] Web URL: http://www.cis.upenn.edu/spyce/
![Page 37: Software Quality and Infrastructure Protection for Diffuse …spyce/oct03/presentations/... · 2003-11-11 · New undergraduate major and minor program at Penn in Logic, Information,](https://reader033.fdocuments.net/reader033/viewer/2022041820/5e5d61919ed2cd1e227a8a4c/html5/thumbnails/37.jpg)
Project Statistics! Special Awards or Honors
- Joan FeigenbaumACM Fellow, Member NAS Computer Science and Telecommunications Board
- Joe HalpernACM Fellow, AAAI Fellow
- Pat LincolnMember Defense Science Board task force on Science and Technology
- John Mitchell Invited Speaker USENIX ‘02
- Andre Scedrov Program Co-Chair, International Symposium on Software Security, Tokyo, Japan,
2002- Jonathan Smith
Olga and Alberico Pompa Professorship of Engineering and Applied Science, University of Pennsylvania
- Cynthia DworkSIAM/SIGEST Best Paper 2003
- Paul SyversonMember Board of Directors, International Financial Cryptography Association
![Page 38: Software Quality and Infrastructure Protection for Diffuse …spyce/oct03/presentations/... · 2003-11-11 · New undergraduate major and minor program at Penn in Logic, Information,](https://reader033.fdocuments.net/reader033/viewer/2022041820/5e5d61919ed2cd1e227a8a4c/html5/thumbnails/38.jpg)
Project Statistics! 68 Publications
- 6 refereed journal articles - 60 refereed conference proceedings- 2 book chapters
! 5 Prototypes! 1 Transition to Industry
- IBM Privacy Research Institute ! Related Sponsored Research includes:
- DARPA POSSE, Penn - DARPA Coalitions, Stanford and SRI- NSF ITR PORTIA, Stanford and Yale- DARPA/AFOSR MURI APPeers, UIUC and Stanford - NSF CCR-TC GRIDLOCK, Columbia and Penn and Yale- NSF ITR Networks of strategic agents, Cornell
![Page 39: Software Quality and Infrastructure Protection for Diffuse …spyce/oct03/presentations/... · 2003-11-11 · New undergraduate major and minor program at Penn in Logic, Information,](https://reader033.fdocuments.net/reader033/viewer/2022041820/5e5d61919ed2cd1e227a8a4c/html5/thumbnails/39.jpg)
Project Interactions
! Industry- Microsoft: Cynthia Dwork- Intel: Tim Griffin- IBM Privacy Research Institute
! Labs- NRL: Paul Syverson- SRI: Vitaly Shmatikov- Kestrel: Dusko Pavlovic
! Other universities- UC Berkeley, Columbia, UIUC
![Page 40: Software Quality and Infrastructure Protection for Diffuse …spyce/oct03/presentations/... · 2003-11-11 · New undergraduate major and minor program at Penn in Logic, Information,](https://reader033.fdocuments.net/reader033/viewer/2022041820/5e5d61919ed2cd1e227a8a4c/html5/thumbnails/40.jpg)
Software Quality and Infrastructure Protection for
Diffuse Computing
FY2001 ONR CIP/SW URI
Principal Investigator: Andre ScedrovInstitution: University of Pennsylvania
URL: http://www.cis.upenn.edu/spyce
STARTED IN MAY 2001