A survey of distributed capability file systems and their application to cloud environments

Loading...
Thumbnail Image
Authors
Jatho, Edgar W., III
Subjects
Capabilities
Distributed Capability System Survey
Navy Tactical Cloud
Cloud Security
capability systems
computer security
Distributed File System Security
Advisors
Denning, Peter
Gondree, Mark
Date of Issue
2014-09
Date
Sep-14
Publisher
Monterey, California: Naval Postgraduate School
Language
Abstract
This thesis considers distributed capability systems as a potential solution to securing data in cloud environments. The U.S. Navy, Intelligence Community and Department of Defense have begun a significant investment to leverage scalable, distributed cloud-based solutions for information sharing. We believe capability systems suggest a promising direction for new platforms, a bold approach drawing directly from mature ideas first explored in the 60s and 70s. We survey the properties and limits of existing distributed capability file systems, as a step toward understanding how capability-based designs might serve cloud-scale systems. We highlight some lessons learned in our observations and find that, while no existing capability-based distributed file system demonstrates all of the desirable security traits observed of smaller-scale capability systems, it should be possible to define and create one that does, using capabilities carefully designed to obey a set of known properties.
Type
Thesis
Description
Department
Computer Science
Organization
Identifiers
NPS Report Number
Sponsors
Funder
Format
Citation
Distribution Statement
Approved for public release; distribution is unlimited.
Rights
This publication is a work of the U.S. Government as defined in Title 17, United States Code, Section 101. Copyright protection is not available for this work in the United States.
Collections