Accountability for Distributed Systems


SAFE – clean slate design of secure hosts, including hardware, operating systems and language research

Secure Network Provenance

AURORA Gigabit Testbed

CING is a tool for measuring network-internal delays.

Confusion: a technique for thwarting network eavesdropping by inserting of uncertainty and indistinguishability in transcripts.


Formally Verifiable Networking

FLAME is a system for flexible, high-performance network monitoring.

The GAIN project.

JitterBug: Covert Channels using Input Device Subversion.

NEBULA Future Internet Architecture


PLAN is a resource-bounded functional programming language that uses a form of remote procedure call to realize active network packet programming.

POSSE is an accelerated program of security-focused software development to produce security-audited, trustworthy software.

Protocol Boosters can improve performance of the communication protocols in a distributed system.




SNAP (Safe and Nimble Active Packets) is an active networking system where traditional packet headers are replaced with programs written in a special-purpose programming language.

SOUND – resilient networking architectures that exploit SAFE hardware

SPYCE explores issues of software quality and infrastructure protection in diffuse computing environments.

STRONGMAN (Scalable TRust Of Next Generation MANagement) addresses issues of scale and complexity in security management by introducing a security policy interoperability layer based on a trust management system, and a high level specification language.

SwitchWare explores the idea of allowing routing elements to be extensively programmed by the packets passing through them.