Mobile Calculi based on Domains

A Survey of Some Implementation Techniques for Security Membranes

M. Lacoste


The notion of security membrane appears as an emerging concept in the design of secure languages for global computing. Membranes separate the computational behavior of a site from the security code controlling access to site-located resources. We provide a survey of some of the challenges which arise when trying to implement security membranes in an execution platform such as an operating system. We identify four main design issues: the choice of a security model; the type of architecture for the execution environment; the layer at which to place security mechanisms; and the assurance level of the platform. In each case, we discuss possible trade-offs between security, flexibility, simplicity, and trustworthiness. We then show how applying a component-based approach to design and implement the execution environment can help to reach an acceptable compromise between such properties.

  author = \{M. Lacoste},
  title = \{A Survey of Some Implementation Techniques for Security Membranes},
  institution = \{France Telecom R&D},
  year = \{2004}, 
  url = \{}

About this site. Last modified: Wed Sep 20 22:08:41 CEST 2017