MonicaLam

BenDodson,MichaelFischer,SudheendraHangal,Ma8hewNasielski,DebangsuSengupta,JiwonSeo,Seok‐WonSeong,SengKeatTeh

BuildingaSocialNetworkingFutureWithoutBigBrother

PC,TVathome,ontheroad,inhotels,ontheplane

Vision:3‐TierArchitecture

servers data

PersonalizethegenericPC,borrowthepower,display,keyboard,memory,etc

Mykey,cache,windowintomydigitalcloud:ID,personality,assets,andtheinternet

天 Tian

(Heaven)

地 Di

(Earth)

人 Ren

(Man)

TheOmniscientMonopoly

What’shappeningtoday…

Mission

Tocreatechoice.

SoluPon:DecentralizaPon

Infrastructure&API:Open,horizontal,modular,

enablingindividuals

vs.ver?cal,monopolis?c

TechnicalChallenges

Distributedsystemshavenotmadeit!

Enduser:Easytouse,deploy,manage,secureAppdevelopers:Easytowriteapps

AdopPonChallenge

MakeSharingwithPrivacyEasy.

MakePrivacyFun.

MakePrivacyPay.

SocialNetworking1.0

Applica?on‐centricdesign•  Facebook,MySpace,LinkedIn,Yahoo,Google,Apple,…•  Flickr,Shu8erfly,Picasa,Adobe,Ning,…•  Twi8er,Tumblr,Crowdvine,Friendfeed,…•  Hi5,WAYN,Friendster,Frengo,Bebo,Plaxo,…•  3Jam,ZinPn,Loopt,…

Strengths:convenience,availableeverywhere,freeWeaknesses

•  Datalock‐in,lossofdataownershipandprivacy

•  Disparatedatasources•  InconvenienttouploaddataandrelaPons•  Inefficient,hardtoscale

Person‐Centric,In‐Situ,DecentralizedSocialNetworking

MyPersonalCloud

MyFriends’Cloud

MyDevices,Resources

MyRelaPons

PublicCloud

Unifiedpersonalcloud•  Unifiedviewofallmystuff

accessibleonanydevice•  Federatedstoragesystem

Mul?pleiden??es•  Fine‐grainaccesscontrol

In‐situsocialnetworking•  ConnectsvianormalacPons

(email,sms,phone,playingmusic)

Distributedservers•  Homeservers(likeTivo)•  Passiveencryptedbackup

Personal Cloud Butlers

Personal‐CloudButler

Privacyandconfiden?ality

–  Livesathome

–  KnowsallconfidenPalinfoIntelligentassistance

–  SavesyouPme

–  Showsdiscreetness,suggestsideasSocialnetworking

–  GossipsandnegoPateswithotherButlers–  Mediatesallaccesses–  Providesplausibledeniability

PersonalCloudButler

PrPlInfrastructure

SemanPcWebIndex AAA

DeviceManager

GuestServices

MusicMovieDate

GUI

DirectoryService

iPhone

DataStewardAPI

DataManager

imap

Serverplug‐inAPIs

facebook Yelp

PersonalYelp

PhotoSharing

MobileclientAPI

Android

Friend’sButlers

Friend’sButlers

Friends’Butlers

Distributedappsarehardtowrite!

DevelopmentPlaNorm

ManyapplicaPons:(distributed)databasequery+GUI

Database:accessrightsembeddedwitheverytupleDistributedDatalogquery:abstractsawaydistribuPon

supportsrecursion,persistence,incrementality

Example:

•  FOAF(?p):‐FRIEND(?p)

•  FOAF(?p):‐FRIEND(?x),FOAF[?x](?p)

Butler:TargetofA8acks

•  3rdpartyplug‐ins,mobilecode

•  Object‐orientedsafetychecks

–  TaintforSQLinjecPon,XSS–  Accesscontrol

•  EnforcedbylanguagerunPme

–  Nochangesto3rdpartycode•  ImplementedforPython

•  Ex:MoinMoinwikiengine

–  92Klinesofcode+200extensions–  Added150linesofcode–  <1%overhead–  11XSSand3accesscontrolbugs

OriginalClass

SuperClass

ProtectedClass

PolicyClass

InvisiType

String type TaintPolicy

InvisiType: Object-Oriented Security Policies

AdopPonChallenge

MakeSharingwithPrivacyEasy.

MakePrivacyFun.

MakePrivacyPay.

MakingFriendsinaSnap

MonicaLamGates307

Stanford,CA94305650‐725‐3714

lamatcs.stanford.edu

InSituLinked‐InDemo

1. Auto weighted social graph

3. Access hosted as a Facebook app

4. Make a new friend with a snap

2. Butler has my contacts, photos, music

5. Auto upload photos to butler

6. Distributed Datalog query to see friends’ photos

Privacyiskey In‐situsocialnetworking

NoBigBrother

Connectcyberspacewithphysicalspace

Separateaccessandownership

Appdevelopmentplatormfocus

ThemesAppsInfrastructure

Privacyiskey

In‐situsocialnetworking

NoBigBrother

Connectcyberspacewithphysicalspace

Viral

E‐MailMiningInSituLinked‐In

DigitalHandshakeDigitalPayment

SocialAppMusicJukebox

ComputeU?lityTianDiRen3‐TierArch

Representa?onCaching

SemanPcWebWeb

DevelopmentPlaNormDistributedDatalogInfoFlowControl

PrivacyPreservaPon

HCISemanPcWebDisplayInteracPveFrontPage