Title :
Providing secure environments for untrusted network applications-with case studies using VirtualVault and Trusted Sendmail Proxy
Author_Institution :
Hewlett Packard Labs., Bristol, UK
Abstract :
Bugs in network application programs can be exploited to compromise the system on which the application is running. When running these applications in an unsafe environment such as the Internet, the security concerns raised are a significant barrier to electronic commerce. In addition, these application programs (such as Web servers, mailservers, etc.) are usually too big and complex to be bug-free; trying to build security directly into these applications has proven to be very difficult. This paper demonstrates that a compartmented-mode workstation is a suitable platform to provide a secure environment that can contain most existing network applications. We describe how to wrap these applications in order to reduce the potential for a security breach without the need to rewrite the application completely. By minimizing the effort of transferring unsafe application services so that they are reasonably secure, we are able to accelerate the process of electronic commerce
Keywords :
EFTS; Internet; business communication; business data processing; executive workstations; security of data; Internet; Trusted Sendmail Proxy; VirtualVault; World Wide Web servers; application service transfer; applications wrapping; case studies; compartmented-mode workstation; electronic commerce; mailservers; network application program bugs; secure environments; security breaches; unsafe environment; untrusted network applications; Business; Computer aided software engineering; Computer bugs; Data security; Electronic commerce; Network servers; Protection; Web and internet services; Web server; Workstations;
Conference_Titel :
Enabling Technologies: Infrastructure for Collaborative Enterprises, 1997. Proceedings., Sixth IEEE Workshops on
Conference_Location :
Cambridge, MA
Print_ISBN :
0-8186-7967-0
DOI :
10.1109/ENABL.1997.630826
