A secure distributed search system
Proceedings 11th IEEE International Symposium on High Performance Distributed Computing - Trang 321-330
Tóm tắt
This paper presents the design, implementation and evaluation of Mingle, a secure distributed search system. Each participating host runs a Mingle server, which maintains an inverted index of the local file system. Users initiate peer-to-peer keyword searches by typing keywords to lightweight Mingle clients. Central to Mingle are its access control mechanisms and its insistence on user convenience. For access control, we introduce the idea of access-right mapping, which provides a convenient way for file owners to specify access permissions. Access control is supported through a single sign-on mechanism that allows users to conveniently establish their identity to Mingle servers, such that subsequent authentication occurs automatically, with minimal manual involvement. Preliminary performance evaluation suggests that Mingle is both feasible and scalable.
Từ khóa
#Indexing #File servers #Network servers #Access control #Distributed computing #Search engines #Computer science #Keyword search #File systems #PermissionTài liệu tham khảo
guttman, 1998, Service location protocol, version 2, RFC 2165 IETF
0, Internet draft
kirsch, 1997, Document retrieval over networks wherein ranking and relevance scores are computed at the client for multiple database documents
klein, 1990, Foiling the cracker: A survey of, and improvements to, password security, 2nd USENIX Security Workshop
10.1145/138873.138874
lenstra, 2000, Selecting cryptographic key sizes, Proceedings of the 2000 International Workshop on Practice and Theory in Public Key Cryptography (PKC)
manber, 1993, GLIMPSE: A Tool to Search Through Entire File Systems, Technical Report No 34
10.1145/359168.359172
0, Napster
0, OASIS
witten, 1999, Managing Gigabytes Compressing and Indexing Documents and Images
10.1145/313451.313462
10.1145/215206.215327
clarke, 2000, Freenet: A Distributed Anonymous Information Storage and Retrieval System, Designing Privacy Enhancing Technologies International Workshop on Design Issues in Anonymity and Unobservability LNCS 2000
10.1109/ENABL.2000.883724
zhao, 2000, Tapestry: An Infrastructure for Fault-tolerant Wide-area Location and Routing, Technical Report UCB//CSD-01–1141
dai, 0, Crypto
0, Gnutella Hosts
10.1145/312624.312684
10.1145/215206.215328
0, Google
bowman, 1994, Harvest: A Scalable, Customizable Discovery and Access System, Technical Report CU-CS-732–94
perlman, 1999, Secure Password-Based Protocol for Downloading a Private Key, Proc 1999 Networks and Distributed System Security Symp
0, RFC
10.1145/383059.383072
rowstron, 2001, Scalable, distributed object location and routing for large-scale peer-to-peer systems, IFIP/ACM International Conference on Distributed Systems Platforms (Middleware), 329
rivest, 1978, A method for obtaining digital signatures and public key crypt osystems, Communications of the ACM, 27
10.1109/35.649334
10.1145/383059.383071