TY - GEN
T1 - Flexibly constructing secure groups in Antigone 2.0
AU - McDaniel, P.
AU - Prakash, A.
AU - Irrer, J.
AU - Mittal, S.
AU - Thuang, Thai Chuin
N1 - Funding Information:
This work is supported in part by the Defense Advanced Research Projects Agency (DARPA) and Air Force Research Laboratory, Air Force Materiel Command, USAF, under agreement number F30602-00-2-0508. The U.S. Government is authorized to reproduce and distribute reprints for Governmental purposes notwithstanding any copyright annotation thereon. The views and conclusions contained herein are those of the authors and should not be interpreted as necessarily representing the official policies or endorsements, either expressed or implied, of the Defense Advanced Research Projects Agency (DARPA), the Air Force Research Laboratory, or the U.S. Government.
Publisher Copyright:
© 2001 IEEE.
PY - 2001
Y1 - 2001
N2 - Group communication is increasingly used as a low-cost building block for the development of highly available and survivable services in dynamic environments. However, contemporary frameworks often provide limited facilities for the definition and enforcement of precise security policies. This paper presents the Antigone 2.0 framework that allows the flexible specification and enforcement of group security policies. Enforcement is achieved through the policy-directed composition and configuration of sets of basic security services implementing the group. We summarize the design of the Antigone 2.0 architecture, its use and the application programming interface (API). The use of the API is illustrated through two applications built on Antigone: a reliable multicast system and host-level multicast security service. We conclude with a description of the current status and plans for future work.
AB - Group communication is increasingly used as a low-cost building block for the development of highly available and survivable services in dynamic environments. However, contemporary frameworks often provide limited facilities for the definition and enforcement of precise security policies. This paper presents the Antigone 2.0 framework that allows the flexible specification and enforcement of group security policies. Enforcement is achieved through the policy-directed composition and configuration of sets of basic security services implementing the group. We summarize the design of the Antigone 2.0 architecture, its use and the application programming interface (API). The use of the API is illustrated through two applications built on Antigone: a reliable multicast system and host-level multicast security service. We conclude with a description of the current status and plans for future work.
UR - http://www.scopus.com/inward/record.url?scp=84964476016&partnerID=8YFLogxK
UR - http://www.scopus.com/inward/citedby.url?scp=84964476016&partnerID=8YFLogxK
U2 - 10.1109/DISCEX.2001.932159
DO - 10.1109/DISCEX.2001.932159
M3 - Conference contribution
AN - SCOPUS:84964476016
T3 - Proceedings - DARPA Information Survivability Conference and Exposition II, DISCEX 2001
SP - 55
EP - 67
BT - Proceedings - DARPA Information Survivability Conference and Exposition II, DISCEX 2001
PB - Institute of Electrical and Electronics Engineers Inc.
T2 - DARPA Information Survivability Conference and Exposition II, DISCEX 2001
Y2 - 12 June 2001 through 14 June 2001
ER -