The Pasta Group is a research group at the Computer Science department of the University of Tromso. Main research focus is on personal security and the security of (networked) infrastructure. The members of the research group has changed a lot over the years and we will not list them all here. Looking at the author list of the publications may give you an idea. The only constant factor over the years has been Tage Stabell-Kulo, but even this last absolute constant is under attack. The Pasta research group has worked on and collaborated with a variety of projects like the GDD project, the Vermicelli project in collaboration with Telenor FoU, the Ravioli project, the Arctic Beans project, Obol and the Pesto project. Currently, the main projects within the group are the Obol and the Pesto/Penne projects. Our activities are never neatly delimited as they are often simply following up on an idea that popped up in one or more of our heads and seems interesting and valuable to persue. We can say that we lean towards applying useful bits of theory to practical problems that cannot be solved with theory alone. We particularly support David Clark's statement at a 1992 IETF meeting: `We reject: kings, presidents, and voting. We believe in: rough consensus and running code,' Maybe that explains our sometimes vicious verbal attacks on `network quality of service', `3t+1', and `security proofs' (proving that you properly assumed your problems away). Hereby, you are warned. Our web presence is minimized at the moment and will stay like this for quite a while; we are simply to busy doing other things. We hope to add some more information about us and the projects we work on, but currently we have the modest ambition of just keeping our publication list here more or less up-to-date and fairly complete.

Publications

• Simone Lupetti and Gianluca Dini, Practical Verification of Untrusted Terminals Using Remote Attestation, Proceedings of the 2nd International Conference on Security and Cryptography (SECRYPT'07), Barcelona (ES), July 2007.
• A methodology for verification of digital items in fair exchange protocols with active trustee. - Journal of Electronic Commerce Research. Springer Science and Business Media, 2007. DOI 10.1007/s10660-007-9003-8.
• Rendezvous-based access control for medical records in the pre-hospital environment. - The 1st International Workshop at Mobisys 2007 on Systems and Networking Support for Healthcare and Assisted Living Environments. June 11, Puerto Rico, USA.
• Gaining Flexibility by Security Protocol Transfer. IEEE Symposium on Computers and Communications (ISCC 2007), July 1-4, Aveiro, Portugal.
• A Decentralized Authorization Architecture. In the proceedings of: The Third International Symposium on Security in Networks and Distributed Systems (SSNDS07).
• Conflict Resolution for User-Selected Names in Collaborative Systems. In the proceedings of: The 11th International Conference on CSCW in Design. April 26-28, 2007, Melbourne, Australia.
• The Obol Protocol Language, 14th International Workshop on Security Protocols, Cambridge, UK. To appear in Springer Lecture Notes in Computer Science.
• Data popularity and shortest-job-first scheduling of network transfers - International Conference on Digital Telecommunications (ICDT-2006). IEEE Computer Society Press. August 29 - 31, 2006. Cap Esterel, Cote dAzur, France.
• Names in cryptographic protocols - International Workshop on Security In Information Systems, WOSIS-2006
• Parameterized Communication, Dr.Dobbs Journal, September 2006.
• The Role of Reflective Middleware in Supporting Flexible Security Policies To appear in proceedings of Node2006, Erfurt, Germany, September 2006.
• Public-Key Cryptography and Availability - Safecomp 2005
• Cryptographic access control in the Pesto file system - NIK 2005
• The Pesto Broker - NIK 2005
• Disconnected operation in the Pesto storage system PhD. Thesis
• Pesto Flavoured Security - 22nd International Symposium on Reliable Distributed Systems (SRDS'03)
• Security and Middleware WORDS 2003, Guadalajara, Mexico, January 2003
• Reflective Middleware and Security: OOPP Meets Obol. The 2nd International Workshop on Reflective and Adaptive Middleware, Middleware 2003, Rio de Janeiro, Brazil, June 2003.
• Pesto: A Persistent Private Storage System WIP on Middleware 2001
• Security in Pesto - SSGRR-2002
• The Open-End Argument for Private Computing - International Symposium on Handheld and Ubiquitous Computing (HUC'99)
• The Pasta Doorkeeper - NIK'99
• Offline Delegation - The 8th USENIX Symposium on Security
• Providing authentication to messages signed with a smartcard in hostile environments - USENIX Workshop on Smartcard Technology
• User controlled sharing in a variable connected distributed system - Proceedings of the seventh IEEE international Workshop on Enabeling Technologies: Infrastructure for Collaborative Enteprises (WETICE'98)
• Key-dependency Vulnerabilities in Cryptographic Protocols - NIK'97
• Using Quality of Service to manage adaptability of mobile computeres. - NIK'97, Bergen, 24-26 November 1997.
• QoS applied to security in mobile computing. Technical Report No. 97-29, Department of Computer Science, University of Tromso, June 1997.
• Detecting Key-Dependencies - Detecting Key-Dependencies - Proceedings of the Third Australasian Conference on Information Security and Privacy (ACISP'98) - LNCS 1438
• Security and Log Structured File Systems - ACM Operating Systems Review, Vol. 31, No. 2, April 1997, pp. 9-10.
• Security Functions for a File Repository - ACM Operating Systems Review, Vol. 31, No. 2, April 1997, pp. 3-8.
• Supporting Mobile Users in a Variable Connected Distributed System: the PASTA Approach - NIK'95
• Adaptable Mobile Systems - Proc. 5th IEEE Workshop on Future Trends in Distributed Computing, pp. 363-368 (Cheju Island, Republic of Korea, Aug., 1995).

Co-authored 6Net Book

• 6NET IPv6 Deployment Guide - October 2005

Co-authored 6Net Deliverables

• D2.3.4: Final IPv4 to IPv6 transition cookbook for end site networks/universities
  Published: 17 June 2005
• D2.5.3: Final Report on IPv6 Deployment Issues (missing pieces for IPv6 deployment and IPv6-only operation)
  Published: 16 June 2005
• D2.3.3: Updated IPv4 to IPv6 transition cookbook for end-site networks/universities
  Published: 15 March 2004, Updated: 26 May 2004
• D2.4.2: Final report on IPv6-specific implications for Wireless LAN/MAN transition to IPv6
  Published: 30 September 2003
• D2.5.2: Updated IPv6 Deployment Issues (missing pieces for IPv6 deployment and IPv6-only operation)
  Published: 30 September 2003
• D2.3.2: Initial IPv4 to IPv6 transition cookbook for end-site networks/universities
  Published: 24 February 2003
• D2.4.1: Initial report on technology for wireless LAN/MAN transition to IPv6
  Published: 6 December 2002
• D2.5.1: Issues for IPv6 deployment (missing pieces for IPv6 deployment and IPv6-only operation)
  This presents an initial scoping of issues that remain to be resolved for IPv6 deployment to be realised in both site and ISP networks. The report focuses on IPv6 components and "missing pieces" that still require attention in either standardisation processes or within appropriate bodies essential to successful deployment. The scope has changed from the original aim of reporting on IPv6-only networking issues; the broader coverage of general IPv6 deployment issues is more appropriate to this initial scoping report. We also present a case study of an IPv6-only site deployment made at the university in Tromso, Norway.
  Published: 6 December 2002
• D2.3.1: IPv4 to IPv6 scoping report for end-site networks/universities
  Published: 31 July 2002
• D3.2.2: Proxy DNS Installed
  This describes the DNS proxy `totd' that is being developed by the 6NET project to provide DNS support for a variety of IPv4/IPv6 transitioning mechanisms. The proxy is described in general first. Then the special mechanisms it supports are described one at a time. After that, different uses of the proxy in a network are presented. Finally, the most important items left to add to the DNS proxy are discussed briefly.
  Published: 1 August 2003

Technical Reports

• T. Stabell-Kulø and P. H. Myrvang: The Obol Protocol Language Computer Science Technical Report
• T. Stabell-Kulø, T. S. Skogan and P. H. Myrvang: The design and implementation of Obol Computer Science Technical Report, 2004.
• F.W. Dillema and T. Stabell-Kulø: Introducing Pesto. Computer Science Technical Report., August 2001
• F.W. Dillema and T. Stabell-Kulø: Pesto Flavoured Security. CTIT Technical Report, 2003
• F.W. Dillema and T. Stabell-Kulø: A Taste of Pesto. Computer Science Technical Report., August 2001
• R. Arild, T. Stabell-Kulø: Authorization and Access Control in a Distributed File Repository. Computer Science Technical Report no. 99-34, January 1999.
• T. Fallmyr, T. Stabell-Kulø: QoS applied to security in mobile computing. Computer Science Technical Report no. 97-29, June 1997.
• T. Stabell-Kulø: Security in the PASTA project. Computer Science Technical Report no. 96-27, October 1996.
• T. Stabell-Kulø: Some Hints on the Theory and Practice of Authentication in Distributed Systems. Computer Science Technical Report no. 96-24, November 1995.
• T. Stabell-Kulø: File Repository Transfer Protocol. Computer Science Technical Report no. 95-21, February 1995.
• T. Stabell-Kulø: Secure Communication in FRTP. Computer Science Technical Report no. 95-20, February 1995.

Software

• The Obol Protocol Language
• The Pesto filesystem
• The Pseudo Filesystem
• The totd DNS proxy
• IPv6 Ports and Patches
• Obex Software
• Palm Pilot Software
• PGPlib
• SDSIlib
• FR4, The FR Server, and The FR library

Student Assignments and Master Thesis

• Arild Hansen: Design and implementation of a VoIP Gateway.
• Andre Larsen Risnes: Asynchronous Lock Distribution In the New File Repository.
• Christine Lund: Design og implementasjon av 3PC for New File Repository.
• Vegar Skjaerven Wang: Secure and Dynamic Tunnel Broker.
• Troels Walsted Hansen: Multihoming with Internet Protocol Version 6.
• Rune Pedersen 2000: En integrasjon av Inetd og Faithd.
• Ivar Skjoerseter: ZeX - Oversetter til bruk ved soneoverfoering mellom DNS-navnetjenere.
• Per Harald Myrvang 2000: An infrastructure for authentication, authorization and Delegation.
• Ronny Håvard Arild: Delegation of authority in a multi-domain distributed file repository
• Dag-Frode Olsen: Distribuert Autentisering.
• Gaute Moxnes 1997: Design og implementasjon av replikering i File Repository - Source code .
• Dag Brattli 1996: The Software Network: Providing Continuous Network Connectivity for Multihoming Mobile Computers.
• Dag-Frode Olsen 1996: A File Repository Based Distributed Diary in a Mobile Environment.
• Ingeborg Østrem Hellemo 1996: Distribuert e-post for nomadiske brukere.
• Kjetil Kolin 1995: XXX.