Dissertation talk: Global Data Plane -- An architecture for a globally distributed storage and communication infrastructure
Presentation: Dissertation Talk: CS | May 16 | 11 a.m.-12 p.m. | 606 Soda Hall
In today's world, the storage and management of information is highly centralized in data-centers. Such a data-center oriented view of infrastructure shapes the way we think about information security; the de-facto mechanism for security is to draw a perimeter around the infrastructure and protect such perimeter. However, the future is very different. With the advancement of technology, powerful computation devices are making their way into everyday life. Rich applications of today are widely distributed and not limited to data-centers. In many cases, it isn't even possible to draw a perimeter around the infrastructure that an application lives on, and an approach based on perimeter security reaches its limits.
In this talk, I will describe our vision of enabling intrinsic security for the information itself in the form of an abstraction called DataCapsules, and the supporting ecosystem around it called the Global Data Plane. A DataCapsule is a cryptographically hardened cohesive collection of information that allows reasoning about data security (confidentiality, integrity, and provenance) with minimal assertions from the underlying infrastructure. The Global Data Plane is a federated infrastructure that provides the physical backing for DataCapsules in the form of routing and storage nodes. Finally, I will talk about how we turn the vision of DataCapsules and the Global Data Plane into a reality, and how applications can be refactored around information security instead of relying solely on the security of a perimeter around infrastructure.