Name
Abstract | ||
|---|---|---|
As non-expert users produce increasing amounts of personal digital data, usable access control becomes critical. Current approaches often fail, because they insufficiently protect data or confuse users about policy specification. This paper presents Penumbra, a distributed file system with access control designed to match users' mental models while providing principled security. Penumbra's design combines semantic, tag-based policy specification with logic-based access control, flexibly supporting intuitive policies while providing high assurance of correctness. It supports private tags, tag disagreement between users, decentralized policy enforcement, and unforgeable audit records. Penumbra's logic can express a variety of policies that map well to real users' needs. To evaluate Penumbra's design, we develop a set of detailed, realistic case studies drawn from prior research into users' access-control preferences. Using microbenchmarks and traces generated from the case studies, we demonstrate that Penumbra can enforce users' policies with overhead less than 5% for most system calls. |
Year | Venue | Keywords |
|---|---|---|
2014 | FAST | intuitive policy,usable access control,tag-based policy specification,policy specification,personal digital data,case study,file system,decentralized policy enforcement,logic-based access control,access control |
Field | DocType | Citations |
Distributed File System,USable,Audit,Computer science,Computer security,Correctness,High assurance,Access control,Policy enforcement,Digital data | Conference | 9 |
PageRank | References | Authors |
0.56 | 51 | 8 |
Name | Order | Citations | PageRank |
|---|---|---|---|
| Michelle L. Mazurek | 1 | 1059 | 57.67 |
| Yuan Liang | 2 | 60 | 2.67 |
| William Melicher | 3 | 144 | 7.94 |
| Manya Sleeper | 4 | 312 | 16.55 |
| Lujo Bauer | 5 | 2460 | 120.71 |
| Gregory R. Ganger | 6 | 4560 | 383.16 |
| Nitin Gupta | 7 | 69 | 3.62 |
| Michael K. Reiter | 8 | 8695 | 764.03 |