面向PaaS云的信息流控制框架设计与实现

分布式信息流控制(DIFC)是实施端到端数据保护的一种有效方法。现有DIFC方法存在信息流控制粒度单一、需要修改语言运行时环境等问题,不能很好地满足PaaS平台的数据安全需求。基于最典型的PaaS云平台GAE,提出了一个信息流控制框架GIFC,其结合了对象级、消息级和SQL级3种控制粒度。组件内基于Python库来控制调用 对象的方法中所涉及的实体间的信息交互；组件间消息代理根据消息安全标记来过滤消息,以此限制组件可以接收的消息集；组件与数据库之间扩展GAE中的数据模式支持标记信息在datastore中的持久化存储。实验表明,多种IFC粒度相结合有效平衡了信息流控制精度和运行性能。

Design and Implementation of Information Flow Control Framework for PaaS

Decentralized information flow control is an effective method for end-to-end data protection.The existing DIFC methods have some shortages,for example,information flow tracking granularity is too simplex and language runtime environment has to be modified,which cannot satisfy the data security requirements of PaaS platform.An information flow control framework for GAE was proposed.The framework GIFC combines three granularities of objects,message and SQL.In the component,the information interactions of the entities are controlled with the Python library.The entities are those involved in the method calling for objects.Between the components,message proxies filter the messages with the security labels,in order to restrict the messages received by the component.Between the components and datastore,the data models of GAE are extended,supporting the persistent storage of labels in the datastore.The evaluation shows that the combination of multi IFC granularities effectively balances the precision and performance.