Separation of Powers in the Cloud: Where Applications and Users Become Peers
In this paper we challenge the widely accepted practice that web applications must be trusted with user data. We present an alternative model based on logic programming, where user data and applications are equal peers in a shared cloud environment. User data is represented as a set of facts. The application is represented as a set of rules defining how user data is to be processed, but is not given direct access to the data. This way, users remain the owners of their own data, able to determine who can see it and who can modify it. For concreteness, we define a data representation and query language, named Cloudlog, for a new family of NoDatalog databases. We add access control to the language for guaranteeing that the rules provided by the application cannot change the choices made by users. We demonstrate how business logic can be expressed in Cloudlog, and discuss how an efficient Cloudlog-based database can be implemented.
Conference DayThu 29 OctDisplayed time zone: Eastern Time (US & Canada) change
13:30 - 15:00 | |||
13:30 22mTalk | Just-in-Time Data Structures Onward! Papers Mattias De WaelVrije Universiteit Brussel, Stefan MarrINRIA, France, Joeri De KosterVrije Universiteit Brussel, Jennifer B. SartorVrije Universiteit Brussel, Wolfgang De MeuterVrije Universiteit Brussel Link to publication DOI | ||
13:52 22mTalk | Separation of Powers in the Cloud: Where Applications and Users Become Peers Onward! Papers Media Attached | ||
14:15 22mTalk | Slimming Languages by Reducing Sugar: A Case for Semantics-Altering Transformations Onward! Papers Junsong LiBrown University, Justin Pombrio, Joe Gibbs PolitzSwarthmore College, Shriram KrishnamurthiBrown University Media Attached | ||
14:37 22mTalk | Musiplectics: Computational Assessment of the Complexity of Music Scores Onward! Papers | ||