In finance and healthcare, event processing systems handle sensitive data on behalf of many clients. Guaranteeing information security in such systems is challenging because of their strict performance requirements in terms of high event throughput and low processing latency. We describe DEFCON, an event processing system that enforces constraints on event flows between event processing units. DEFCON uses a combination of static and runtime techniques for achieving light-weight isolation of event flows, while supporting efficient sharing of events. Our experimental evaluation in a financial data processing scenario shows that DEFCON can provide information security with significantly lower processing latency compared to a traditional approach.
|Title of host publication||Proceedings of the 2010 USENIX Annual Technical Conference, USENIX ATC 2010|
|Number of pages||15|
|Publication status||Published - 2019|
|Event||2010 USENIX Annual Technical Conference, USENIX ATC 2010 - Boston, United States|
Duration: 23 Jun 2010 → 25 Jun 2010
|Name||Proceedings of the 2010 USENIX Annual Technical Conference, USENIX ATC 2010|
|Conference||2010 USENIX Annual Technical Conference, USENIX ATC 2010|
|Period||23/06/10 → 25/06/10|
Bibliographical noteFunding Information:
We also thank our anonymous reviewers and our shepherd, Nickolai Zeldovich, for their guidance. This work was supported by grants EP/F042469 and EP/F044216 (“SmartFlow: Extendable Event-Based Middleware”) from the UK Engineering and Physical Sciences Research Council (EPSRC).
© 2019 USENIX Annual Technical Conference. All rights reserved.