applications using erlang
play

Applications using Erlang Web 2.0 Security & Privacy (W2SP) 2010 - PowerPoint PPT Presentation

May 15, 2023 •312 likes •627 views

Enforcing User Privacy in Web Applications using Erlang Web 2.0 Security & Privacy (W2SP) 2010 May 20, Berkeley, California, USA Ioannis Papagiannis , Matteo Department of Computing Migliavacca, Peter Pietzuch Imperial College London

  1. Enforcing User Privacy in Web Applications using Erlang Web 2.0 Security & Privacy (W2SP) 2010 May 20, Berkeley, California, USA Ioannis Papagiannis , Matteo Department of Computing Migliavacca, Peter Pietzuch Imperial College London Computer Laboratory David Eyers, Jean Bacon University of Cambridge CBCU Brian Shand National Health Service

  2. User Privacy in Web Applications  Which is longer, the United States Constitution or Facebook’s Privacy Policy?  Facebook’s Privacy Policy: 5,830 words  United States Constitution: 4,543 words [NYT, May 12, 2010]  Twitter 0 followers bug  Tweet "accept," followed by "@" and user name  The other user starts following you automatically (!) [Official Twitter Blog, May 10, 2010] W2SP 2010 2

  3. User Privacy in Web Applications  User data privacy must be guaranteed independently of the application’s functional correctness W2SP 2010 3

  4. User Privacy in Web Applications  Code should access only relevant user data and keep them isolated from other users’ data W2SP 2010 4

  5. Use Case: Privacy in Microblogging A microblogging system should guarantee: 1. Messages from a publisher component shall be delivered only to authorised subscribers’ components. [User A’s messages will only go to Users B and C] 2. Authorised subscribers shall not be disclosed to any other publisher or subscriber component. [User B will not know about User C] 3. Subscription authorisation requests from a subscribing component shall be delivered only to the relevant publisher’s component. [Only User A can authorise a new User D] W2SP 2010 5

  6. IFC for Microblogging W2SP 2010 6

  7. IFC for Microblogging W2SP 2010 7

  8. IFC for Microblogging W2SP 2010 8

  9. IFC for Microblogging W2SP 2010 9

  10. IFC for Microblogging W2SP 2010 10

  11. IFC for Microblogging What happens when data belonging to different users has to be processed by a single component? W2SP 2010 11

  12. Microblogging: The Dispatcher Multiple publishing components have to use a single dispatcher to reach the relevant subscriber components W2SP 2010 12

  13. Microblogging: The Dispatcher Multiple publishing components have to use a single dispatcher to reach the relevant subscriber components. W2SP 2010 13

  14. Solution  Each User’s data must be kept separate, but applications are usually monolithic  Compartmentalize the application in multiple isolated components, one per user  Granularity? W2SP 2010 14

  15. Solution  Each User’s data must be kept separate, but applications are usually monolithic  Compartmentalize the application in multiple isolated components, one per user  Granularity? Language Isolation Issue C OS Processes ~100kB per process W2SP 2010 15

  16. Solution  Each User’s data must be kept separate, but applications are usually monolithic  Compartmentalize the application in multiple isolated components, one per user  Granularity? Language Isolation Issue C OS Processes ~100kB per process Java OS Threads Limited isolation: static fields, object locks, runtime channels W2SP 2010 16

  17. Solution  Each User’s data must be kept separate, but applications are usually monolithic  Compartmentalize the application in multiple isolated components, one per user  Granularity? Language Isolation Issue C OS Processes ~100kB per process Java OS Threads Limited isolation: static fields, object locks, runtime channels PHP OS Processes Spawning a new runtime on top of JavaScript spawning a new OS process W2SP 2010 17

  18. Erlang  Sequential Part: functional language, single assignment, dynamic typing  Concurrency: share nothing concurrency, message passing  Erlang is great for IFC  Isolation is free  Asynchronous message passing can be naturally combined with label checks  Processes are lightweight (~100B, runtime implementation) W2SP 2010 18

  19. Erlang: Example  Sender Process: test(0) -> done; test(N) -> Spawning processes is fast! pid=spawn(primeTester) , You can want to have pid ! {calculate, self(), N}, lots of them! receive {result, Result}-> io:format (“~w”,[Result]) end, test(N-1)  Receiver Process: end. primeTester() -> receive {calculate, Pid, Number} -> Result = isPrime(Number), Pid ! {result, Result} end. Async message passing is the only way * of communication! W2SP 2010 19

  20. Supporting IFC in Erlang  Attach labels to pids  new_tag() creates a new tag for the calling process  spawn(TagsAdd, TagsRemove, ...) changes the tags of the spawned process (≠ caller’s tags)  send(TagsAdd, TagsRemove, ...) changes the tags of the message (≠caller’s tags) checks labels  delegate(PidReceiver, Tag, Type) gives privileges over a tag to another process W2SP 2010 20

  21. Erlang for Microblogging I 1. Messages from a publisher shall be received only by authorised subscribers. (untrusted code) W2SP 2010 21

  22. Erlang for Microblogging I 2. Authorised subscribers shall not be disclosed to any other publisher or subscriber. (untrusted code) W2SP 2010 22

  23. Erlang for Microblogging II 2. Authorised subscribers shall not be disclosed to any other publisher or subscriber. (bug prevention) W2SP 2010 23

  24. Erlang for Microblogging III 3. Subscription authorisation requests from subscribers shall be delivered only to the relevant publisher. (bug prevention) W2SP 2010 24

  25. Experimental Setup Erlang Library that provides the IFC API  Measure throughput in terms of messages per second  #publishers=#subscribers, 10 subscriptions/subscriber  Ignored orthogonal issues like message persistence  Comparison between: Python  [represents scripting languages] Erlang (no IFC)  [Dispatcher per publisher, better multicore performance] Erlang (IFC)  [Anonymisers plus label checks] Erlang (IFC + caching)  [cache and reuse of label checks] W2SP 2010 25

  26. Evaluation W2SP 2010 26

  27. Limitations & Discussion Complexity  Applications have to handle tags/privileges manually  Deciding upon a tag allocation scheme is challenging  Handling tags routines must be correct for secure operation  Policy languages may come to the rescue  Persistence  Messages must be stored permanently  Fetching and storing data but be compatible with labels  Extend Mnesia to be label aware  Scalability  Inactive users must be offloaded from RAM  Scalability depends upon the ability to keep in memory only  the required state Introduce a primitive to hibernate/restore a process  W2SP 2010 27

  28. Conclusion Erlang is an attractive approach for web applications that use IFC to provide privacy guarantees: Isolation of components is free  Asynchronous message passing is the norm in IFC  systems Scales well in multicore architectures  Web applications can provide IFC-enabled Erlang APIs and hosting facilities for untrusted extensions The web application has to disseminate tags to components  according to the relationships between users Tags can enforce that the third-party extensions do not violate  high level policy W2SP 2010 28

  29. The End Ioannis Papagiannis DoC, Imperial College London ip108@doc.ic.ac.uk 29

  30. Related Work [How are Erlang Processes Lightweight? 2006]  Stack frames can be resized/moved (mem)  User-level, efficient caching when switching (time)  Lack of shared state means no locking (time) [xBook09]  Uses a subset of JavaScript on the server side  Recreates Erlang’s communication model [Abestos05]  Lightweight OS Processes, one per user  Cooperative Scheduling 30

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

The ABC of Erlang Jo Jonty Pearce Editor The ABC of Erlang In Historical Order Erlang B

The ABC of Erlang Jo Jonty Pearce Editor The ABC of Erlang In Historical Order Erlang B

The ABC of Erlang Jo Jonty Pearce Editor The ABC of Erlang In Historical Order Erlang B Erlang C Erlang A Erlang B Invented by AK Erlang (Danish Mathematician) Works out the Percentage of Blocking in a Phone System

567 views • 10 slides
ERLANG/OTP Torben Ho fg mann Erlang Solutions @LeHo fg torben@erlang-solutions.com

ERLANG/OTP Torben Ho fg mann Erlang Solutions @LeHo fg torben@erlang-solutions.com

TORBEN HOFFMANN presents ERLANG/OTP Torben Ho fg mann Erlang Solutions @LeHo fg torben@erlang-solutions.com www.erlang-solutions.com W HAT I S S CALABILITY ? handle tra ffj c spike Behave predictably under extended heavy load Carry the tra ffj

841 views • 60 slides
Protocols The Glue for Applications Torben Hoffmann CTO @ Erlang Solutions

Protocols The Glue for Applications Torben Hoffmann CTO @ Erlang Solutions

Protocols The Glue for Applications Torben Hoffmann CTO @ Erlang Solutions torben.hoffmann@erlang-solutions.com @LeHoff Why are we here? Distributed Systems How likely is it that this will just work? source:

872 views • 51 slides
An Introduction to Erlang Erlang Buzzwords Functional (strict) Automatic memory

An Introduction to Erlang Erlang Buzzwords Functional (strict) Automatic memory

An Introduction to Erlang Erlang Buzzwords Functional (strict) Automatic memory management (GC) Single-assignment Virtual Machine Dynamically typed (BEAM) Part 1 Sequential Erlang Concurrent Dynamic code

304 views • 6 slides
Erlang: An Overview Part 1 Sequential Erlang Thanks to Richard Carlsson for the original

Erlang: An Overview Part 1 Sequential Erlang Thanks to Richard Carlsson for the original

Erlang: An Overview Part 1 Sequential Erlang Thanks to Richard Carlsson for the original version of many slides in this part Erlang buzzwords Functional (strict) Automatic memory management (GC) Single-assignment Virtual

360 views • 34 slides
Parallel Programming in Erlang John Hughes What is Erlang? Haskell Erlang - Types - Lazyness

Parallel Programming in Erlang John Hughes What is Erlang? Haskell Erlang - Types - Lazyness

Parallel Programming in Erlang John Hughes What is Erlang? Haskell Erlang - Types - Lazyness - Purity + Concurrency + Syntax If you know Haskell, Erlang is easy to learn! QuickSort again Haskell qsort [] = [] qsort (x:xs) = qsort [y

895 views • 61 slides
Lua & Erlang James Lee The George Washington University June 16, 2009 James Lee Lua &

Lua & Erlang James Lee The George Washington University June 16, 2009 James Lee Lua &

Lua Erlang Lua & Erlang James Lee The George Washington University June 16, 2009 James Lee Lua & Erlang Introduction Lua Examples Erlang The C API History Created in 1993 by members of Computer Graphics Technology Group at

206 views • 16 slides
Erlang and RTEMS Embedded Erlang, two case studies Peer Stritzinger Talk at Erlang Factory Light

Erlang and RTEMS Embedded Erlang, two case studies Peer Stritzinger Talk at Erlang Factory Light

Erlang and RTEMS Embedded Erlang, two case studies Peer Stritzinger Talk at Erlang Factory Light Munich 2013 Outline Case 1: Hydraprog-3, Reflashing system for Automotive "Embedded Control Units" (= ECUs) Big picture

448 views • 30 slides
Erlang/OTP XX.12.2008 xmpp:astro@spaceboyz.net Geschichte Agner Krarup Erlang (1878 1929)

Erlang/OTP XX.12.2008 xmpp:astro@spaceboyz.net Geschichte Agner Krarup Erlang (1878 1929)

C3D2-Themenabend Erlang/OTP XX.12.2008 xmpp:astro@spaceboyz.net Geschichte Agner Krarup Erlang (1878 1929) Ericsson Language 1986, 1998 Konzept http://muharem.wordpress.com/2007/07/31/erlang-vs-stackless-python-a-first-benchmark/ Hilfe

1.08k views • 81 slides
That's Billion with a B: Scaling to the next level at WhatsApp Rick Reed WhatsApp Erlang

That's Billion with a B: Scaling to the next level at WhatsApp Rick Reed WhatsApp Erlang

That's Billion with a B: Scaling to the next level at WhatsApp Rick Reed WhatsApp Erlang Factory SF March 7, 2014 1 About Me Joined WhatsApp in 2011 Learned Erlang at WhatsApp Scalability & multimedia Team Small (~10 on Erlang)

649 views • 44 slides
ErlyWeb A web development framework for Erlang Yariv Sadan 12/6/2007 Benefits Erlang/OTP

ErlyWeb A web development framework for Erlang Yariv Sadan 12/6/2007 Benefits Erlang/OTP

ErlyWeb A web development framework for Erlang Yariv Sadan 12/6/2007 Benefits Erlang/OTP Industrial-strength platform built by Ericsson (better than 5 nines) Functional programming Concurrent programming MVC

561 views • 21 slides
IV P E R K 1 S X T Jw fshjxht Gjxfw n sn Erlang Solutions @FrancescoC

IV P E R K 1 S X T Jw fshjxht Gjxfw n sn Erlang Solutions @FrancescoC

FRANCESCO CESARINI presents IV P E R K 1 S X T Jw fshjxht Gjxfw n sn Erlang Solutions @FrancescoC francesco@erlang-solutions.com www.erlang-solutions.com W HAT I S S CALABILITY ? W HAT I S ( MASSIVE ) C ONCURRENCY ? W HAT I S H IGH

751 views • 60 slides
Robust Erlang John Hughes Genesis of Erlang Problem: telephony systems in the late 1980s

Robust Erlang John Hughes Genesis of Erlang Problem: telephony systems in the late 1980s

Robust Erlang John Hughes Genesis of Erlang Problem: telephony systems in the late 1980s Digital More and more complex Plain Old Telephony Highly concurrent System Hard to get right Approach: a group at Ericsson

629 views • 50 slides
HiPE Implemented and commercially supported by Ericsson, but the source code is free and

HiPE Implemented and commercially supported by Ericsson, but the source code is free and

Open Source Erlang (Erlang/OTP) Part of Ericssons Open Telecom Platform (OTP). HiPE Implemented and commercially supported by Ericsson, but the source code is free and High Performance Erlang available on-line ( www.erlang.org ).

325 views • 5 slides
Luerl - Lua in Erlang Scripting mechanisms for the BEAM ecosystem Jean Chassoul FOSDEM 2019

Luerl - Lua in Erlang Scripting mechanisms for the BEAM ecosystem Jean Chassoul FOSDEM 2019

Luerl - Lua in Erlang Scripting mechanisms for the BEAM ecosystem Jean Chassoul FOSDEM 2019 Jean Chassoul Luerl - Lua in Erlang Luerl: Lua in Erlang Luerl is an implementation of standard Lua written in Erlang/OTP. Lua is a powerful,

428 views • 24 slides
CPL 2016, week 9 Erlang fault tolerance and distributed programming Oleg Batrashev Institute of

CPL 2016, week 9 Erlang fault tolerance and distributed programming Oleg Batrashev Institute of

CPL 2016, week 9 Erlang fault tolerance and distributed programming Oleg Batrashev Institute of Computer Science, Tartu, Estonia April 4, 2016 Overview Previous week Erlang: functional core and agents Today Erlang fault tolerance and

828 views • 29 slides
A Semi-Supervised Bayesian Network Model for Microblog Topic Classification Yan Chen 1 , 2 Zhoujun

A Semi-Supervised Bayesian Network Model for Microblog Topic Classification Yan Chen 1 , 2 Zhoujun

A Semi-Supervised Bayesian Network Model for Microblog Topic Classification Yan Chen 1 , 2 Zhoujun Li 1 Liqiang Nie 2 Xia Hu 3 Xiangyu Wang 2 Tat-seng Chua 2 Xiaoming Zhang 1 1 State Key Laboratory of Software Development Environment, Beihang

528 views • 49 slides
Designing a scalable twitter Nati Shalom , CTO & Founder GigaSpaces John D. Mitchell Mad

Designing a scalable twitter Nati Shalom , CTO & Founder GigaSpaces John D. Mitchell Mad

Designing a scalable twitter Nati Shalom , CTO & Founder GigaSpaces John D. Mitchell Mad Scientist of Friendster. About GigaSpaces Technologies Enabling applications to run a distributed cluster as if it was a single machine 75+

372 views • 26 slides
Simple policy negotiation for location disclosure Nick Doty & Erik Wilde UC Berkeley, School

Simple policy negotiation for location disclosure Nick Doty & Erik Wilde UC Berkeley, School

Simple policy negotiation for location disclosure Nick Doty & Erik Wilde UC Berkeley, School of Information Geolocation and privacy Location information is: informationally revealing personally identifying physically intrusive W3C

361 views • 15 slides
Diffusion of Following Links in Microblogging Networks Jing Zhang Tsinghua University

Diffusion of Following Links in Microblogging Networks Jing Zhang Tsinghua University

Diffusion of Following Links in Microblogging Networks Jing Zhang Tsinghua University Collaborate with Wei Chen ( MSRA ) Zhanpeng Fang and Jie Tang ( THU ) Jing Zhang, ZhanpengFang, Wei Chen, and Jie Tang. Diffusion of Following

765 views • 25 slides
Twitter Sentiment Analysis Twitter Sentiment Analysis Presented by: Loitongbam Gyanendro Singh

Twitter Sentiment Analysis Twitter Sentiment Analysis Presented by: Loitongbam Gyanendro Singh

Twitter Sentiment Analysis Twitter Sentiment Analysis Presented by: Loitongbam Gyanendro Singh What is Sentiment analysis? Study that aims to identify the orientation of opinions in a text Source of Sentiment Information Source of

704 views • 22 slides
wPod Weibo Public Opinion (Polarity) Detection Haotian He & Sanae Sato Microblog is

wPod Weibo Public Opinion (Polarity) Detection Haotian He & Sanae Sato Microblog is

wPod Weibo Public Opinion (Polarity) Detection Haotian He & Sanae Sato Microblog is always updating, and new issues and terms come out . There are not many valuable handy labeled data. Co-training is a semi-supervised learning

453 views • 11 slides
Reciprocal Relationship Prediction* 1 John Hopcroft, 2 Tiancheng Lou, 3 Jie Tang 1 Department of

Reciprocal Relationship Prediction* 1 John Hopcroft, 2 Tiancheng Lou, 3 Jie Tang 1 Department of

Who Will Follow You Back? Reciprocal Relationship Prediction* 1 John Hopcroft, 2 Tiancheng Lou, 3 Jie Tang 1 Department of Computer Science, Cornell University, 2 Institute for Interdisciplinary Information Sciences, Tsinghua University 3

398 views • 25 slides
Why? CASCADE project Digital Literacies in Academia Engaging with research online podcasts

Why? CASCADE project Digital Literacies in Academia Engaging with research online podcasts

Why? CASCADE project Digital Literacies in Academia Engaging with research online podcasts academic online PSYM202 blogs magazines research social networks Diana Onu Today 1. Discussion of current practice 1. Discussion of current

460 views • 4 slides

More recommend