A Novel Framework for Executing Untrusted Programs

Bordoloi, Dibyahash; Kumar, Ashish

doi:10.1007/978-3-642-00405-6_35

Dibyahash Bordoloi⁴ &
Ashish Kumar⁴

Part of the book series: Communications in Computer and Information Science ((CCIS,volume 31))

Included in the following conference series:

International Conference on Information Systems, Technology and Management

1317 Accesses

Abstract

Lot of studies has been done on tackling untrusted programs. Most of the studies are aimed at preventing an untrusted program from execution. Models have been established to provide proofs to codes so that a program is allowed to execute only when the program passes a test. The test may be in the form of some proof, certificate etc. The basic idea is not to allow an untrusted program to execute if the safety cannot be guaranteed. This paper proposes a totally novel approach to tackle untrusted programs, infact it is diametrically opposite to the existing policies. It starts with the assumption that all untrusted programs are safe until proven otherwise. The best way to prove the safety of a program is to execute it at least once. We have proposed a new model to execute such programs in a virtual environment and then decide on the trustworthiness of the program.

This is a preview of subscription content, log in via an institution to check access.

Access this chapter

Log in via an institution

Chapter: USD 29.95; Price excludes VAT (USA)

eBook: USD 39.99; Price excludes VAT (USA)

Softcover Book: USD 54.99; Price excludes VAT (USA)

Tax calculation will be finalised at checkout

Purchases are for personal use only

Institutional subscriptions

References

Sekar, Venkatakrishnan, V.N., Basu, S., Bhatkar, S., DuVarney, D.: Model Carrying Code: A Practical Approach for safe Execution of Untrusted Applications. In: ACM Symposium on Operating Systems Principles (SOSP 2003), Bolton Landing, New York (2003)
Google Scholar
Necula, G.: Proof Carrying Code. In: ACM Symposium on Principles of Programming Languages (1997)
Google Scholar
Sandhu, R.S., Coyne, E.J., Feinseein, H.L., Younman, C.E.: Proceedings of the First ACM Workshop on Role-Based-Access Control. ACM, New York (1996)
Google Scholar
Sandhu, R., Ferraiodo, D., Kulin, R.: The NIST Model for Role Based Access Control. In: 5^th ACM Workshop on Role-Based Access Control, Berlin (2000)
Google Scholar

Download references

Author information

Authors and Affiliations

Indian Institute of Technology Kharagpur, Kharagpur, India
Dibyahash Bordoloi & Ashish Kumar

Authors

Dibyahash Bordoloi
View author publications
You can also search for this author in PubMed Google Scholar
Ashish Kumar
View author publications
You can also search for this author in PubMed Google Scholar

Editor information

Editors and Affiliations

Dept. of Computer Science, Georgia State University, 34 Peachtree Street, P.O. Box, Atlanta, GA, USA
Sushil K. Prasad
Institute of Management Technology, Ghaziabad, India
Susmi Routray & Reema Khurana &
Department of Computer and Information Science and Technology, University of Florida, USA
Sartaj Sahni

Rights and permissions

Reprints and permissions

Copyright information

About this paper

Cite this paper

Bordoloi, D., Kumar, A. (2009). A Novel Framework for Executing Untrusted Programs. In: Prasad, S.K., Routray, S., Khurana, R., Sahni, S. (eds) Information Systems, Technology and Management. ICISTM 2009. Communications in Computer and Information Science, vol 31. Springer, Berlin, Heidelberg. https://doi.org/10.1007/978-3-642-00405-6_35

Download citation

DOI: https://doi.org/10.1007/978-3-642-00405-6_35
Publisher Name: Springer, Berlin, Heidelberg
Print ISBN: 978-3-642-00404-9
Online ISBN: 978-3-642-00405-6
eBook Packages: Computer ScienceComputer Science (R0)

Publish with us

Policies and ethics