Mobile Resource Guarantees

Objective

The use of mobile code in a global environment aggravates existing security problems and presents altogether new ones, one of which is the maintenance of bounds on quantitative resources. Without some technological foundations for providing such guarantees, global computing will be confined to applications where malfunction due to resource bound violation is accepted as normal and has little consequence. With more serious applications, resource awareness will be a crucial asset. This project aims at developing the infrastructure needed to endow mobile code with independently verifiable certificates describing resource behaviour. These certificates will be condensed and formalised mathematical proofs of a resource-related property, which are by their very nature self-evident and un-forgeable. Arbitrarily complex methods may be used to construct these certificates, but their verification will always be a simple computation.

DESCRIPTION OF WORK
This project aims at developing the infrastructure needed to endow mobile code with independently verifiable certificates describing resource behaviour. These certificates will be condensed and formalised mathematical proofs of a resource-related property, which are by their very nature self-evident and un-forgeable. Arbitrarily complex methods may be used to construct these certificates, but their verification will always be a simple computation.
The work plan consists of the following central tasks:
1. Define expressive formalised resource policy (cost models);
2. Define notions of independently verifiable certificate (resource sensitive program logic with proof objects);
3. Foundations for efficient generation of certificates (type systems, identification of useful programmer annotations);
4. Foundations for alternatives to generation of full certificates (proof-theoretic compression, probabilistically checkable proofs, game-theoretic approaches).
Where appropriate, each foundational task is accompanied by a prototype implementation and case studies.
In addition, the project includes the following separate engineering-oriented tasks:
1. Design of runtime environment including virtual machine, byte code, implemented program logic;
2. Design and implementation of a high-level programming language in which to write resource-certified code;
3. Generation and integrated use of formalised certificates;
4. Parameterisation by arbitrary runtime environment.
The deliverables are research papers describing our solutions to foundational problems and a working prototype which will be made available as free downloadable software.

Fields of science (EuroSciVoc)

CORDIS classifies projects with EuroSciVoc, a multilingual taxonomy of fields of science, through a semi-automatic process based on NLP techniques. See: The European Science Vocabulary.

• natural sciences computer and information sciences software

Programme(s)

Multi-annual funding programmes that define the EU’s priorities for research and innovation.

• FP5-IST - Programme for research, technological development and demonstration on a "User-friendly information society, 1998-2002"

Topic(s)

Calls for proposals are divided into topics. A topic defines a specific subject or area for which applicants can submit proposals. The description of a topic comprises its specific scope and the expected impact of the funded project.

• IST-2001-6.2.2 - Global computing: co-operation of autonomous and mobile entities in dynamic environments

Call for proposal

Procedure for inviting applicants to submit project proposals, with the aim of receiving EU funding.

Funding Scheme

Funding scheme (or “Type of Action”) inside a programme with common features. It specifies: the scope of what is funded; the reimbursement rate; specific evaluation criteria to qualify for funding; and the use of simplified forms of costs like lump sums.

CSC - Cost-sharing contracts

Coordinator

Participants (1)