Please use this identifier to cite or link to this item: https://doi.org/10.1145/2508859.2512525
Title: Poster - CryptServer: strong data protection in commodity LAMP servers
Authors: Chen, Z.
Dong, X.
Saxena, P.
Liang, Z. 
Keywords: data protection
server security
web security
Issue Date: 2013
Citation: Chen, Z.,Dong, X.,Saxena, P.,Liang, Z. (2013). Poster - CryptServer: strong data protection in commodity LAMP servers. Proceedings of the ACM Conference on Computer and Communications Security : 1457-1459. ScholarBank@NUS Repository. https://doi.org/10.1145/2508859.2512525
Abstract: Modern web applications store sensitive data on their servers. Such data is prone to theft resulting from exploits against vulnerabilities in the server software stacks. In this work, we propose a new architecture for web servers, called CryptServer, in which we pre-determine and fix a small amount of application code that can compute over sensitive data. By encrypting sensitive data before making it available to the rest of untrusted application code, CryptServer provides strong defense against all malicious code that an attacker may run in the server software stack. As a step towards making this approach practical, we develop an assistance tool to identify the portion of server-side logic that requires computation over sensitive data. Our preliminary results show that the size of such logic is small in six popular web applications we study. To the extent of our evaluation, converting these applications to a CryptServer architecture requires modest developer effort. © 2013 Authors.
Source Title: Proceedings of the ACM Conference on Computer and Communications Security
URI: http://scholarbank.nus.edu.sg/handle/10635/78289
ISBN: 9781450324779
ISSN: 15437221
DOI: 10.1145/2508859.2512525
Appears in Collections:Staff Publications

Show full item record
Files in This Item:
There are no files associated with this item.

Page view(s)

52
checked on Nov 9, 2018

Google ScholarTM

Check

Altmetric


Items in DSpace are protected by copyright, with all rights reserved, unless otherwise indicated.