CamFlow: Managed Data-sharing for Cloud Services

A model of cloud services is emerging whereby a few trusted providers manage the underlying hardware and communications whereas many companies build on this infrastructure to offer higher level, cloud-hosted PaaS services and/or SaaS applications. From the start, strong isolation between cloud tenants was seen to be of paramount importance, provided first by virtual machines (VM) and later by containers, which share the operating system (OS) kernel. Increasingly it is the case that applications also require facilities to effect isolation and protection of data managed by those applications. They also require flexible data sharing with other applications, often across the traditional cloud-isolation boundaries; for example, when government provides many related services for its citizens on a common platform. Similar considerations apply to the end-users of applications. But in particular, the incorporation of cloud services within `Internet of Things' architectures is driving the requirements for both protection and cross-application data sharing. These concerns relate to the management of data. Traditional access control is application and principal/role specific, applied at policy enforcement points, after which there is no subsequent control over where data flows; a crucial issue once data has left its owner's control by cloud-hosted applications and within cloud-services. Information Flow Control (IFC), in addition, offers system-wide, end-to-end, flow control based on the properties of the data. We discuss the potential of cloud-deployed IFC for enforcing owners' dataflow policy with regard to protection and sharing, as well as safeguarding against malicious or buggy software. In addition, the audit log associated with IFC provides transparency, giving configurable system-wide visibility over data flows. [...]Comment: 14 pages, 8 figure

The use of selected reaction monitoring in quantitative proteomics

Selected reaction monitoring (SRM) has a long history of use in the area of quantitative MS. In recent years, the approach has seen increased application to quantitative proteomics, facilitating multiplexed relative and absolute quantification studies in a variety of organisms. This article discusses SRM, after introducing the context of quantitative proteomics (specifically primarily absolute quantification) where it finds most application, and considers topics such as the theory and advantages of SRM, the selection of peptide surrogates for protein quantification, the design of optimal SRM co-ordinates and the handling of SRM data. A number of published studies are also discussed to demonstrate the impact that SRM has had on the field of quantitative proteomics. </jats:p

MicroRNA expression is altered in an ovalbumin-induced asthma model and targeting miR-155 with antagomirs reveals cellular specificity

©2015 Plank et al. This is an open access article distributed under the terms of the Creative Commons Attribution License, which permits unrestricted use, distribution, and reproduction in any medium, provided the original author and source arecredited. MicroRNAs are post-transcriptional regulators of gene expression that are differentially regulated during development and in inflammatory diseases. A role for miRNAs in allergic asthma is emerging and further investigation is required to determine whether they may serve as potential therapeutic targets. We profiled miRNA expression in murine lungs from an ovalbumin-induced allergic airways disease model, and compared expression to animals receiving dexamethasone treatment and non-allergic controls. Our analysis identified 29 miRNAs that were significantly altered during allergic inflammation. Target prediction analysis revealed novel genes with altered expression in allergic airways disease and suggests synergistic miRNA regulation of target mRNAs. To assess the impacts of one induced miRNA on pathology, we targeted miR-155-5p using a specific antagomir. Antagomir administration successfully reduced miR-155-5p expression with high specificity, but failed to alter the disease phenotype. Interestingly, further investigation revealed that antagomir delivery has variable efficacy across different immune cell types, effectively targeting myeloid cell populations, but exhibiting poor uptake in lymphocytes. Our findings demonstrate that antagomir-based targeting of miRNA function in the lung is highly specific, but highlights cell-specificity as a key limitation to be considered for antagomir-based strategies as therapeutics

TaLoS: secure and transparent TLS termination inside SGX enclaves

We introduce TaLoS1, a drop-in replacement for existing transport layer security (TLS) libraries that protects itself from a malicious environment by running inside an Intel SGX trusted execution environment. By minimising the amount of enclave transitions and reducing the overhead of the remaining enclave transitions, TaLoS imposes an overhead of no more than 31% in our evaluation with the Apache web server and the Squid proxy

Glamdring: automatic application partitioning for Intel SGX

Trusted execution support in modern CPUs, as offered by Intel SGX enclaves , can protect applications in untrusted environments. While prior work has shown that legacy applications can run in their entirety inside enclaves, this results in a large trusted computing base (TCB). Instead, we explore an approach in which we partition an applica- tion and use an enclave to protect only security-sensitive data and functions, thus obtaining a smaller TCB. We describe Glamdring , the first source-level parti- tioning framework that secures applications written in C using Intel SGX. A developer first annotates security- sensitive application data. Glamdring then automatically partitions the application into untrusted and enclave parts: (i) to preserve data confidentiality, Glamdring uses dataflow analysis to identify functions that may be ex- posed to sensitive data; (ii) for data integrity, it uses back- ward slicing to identify functions that may affect sensitive data. Glamdring then places security-sensitive functions inside the enclave, and adds runtime checks and crypto- graphic operations at the enclave boundary to protect it from attack. Our evaluation of Glamdring with the Mem- cached store, the LibreSSL library, and the Digital Bitbox bitcoin wallet shows that it achieves small TCB sizes and has acceptable performance overheads

Liver Graft Revascularization by Donor Portal Vein Arterialization Following “No Touch” Donor Hepatectomy

Unsatisfactory immediate function of the transplanted liver together with technical complications contribute to a persisting early mortality for hepatic transplantation in the 20% range. We report our initial clinical experience with methods, one not previously used clinically, that resulted in uniformly well-functioning liver grafts in 11 patients and contributed to a satisfactory success rate for the procedure. Donors were heart-beating. During the donor operation all manipulations of the liver were avoided until after cold preservation, achieved by external cooling at the same time as circulatory interruption, donor exsanguination and perfusion of the liver with cold oxygenated fluid of “extracellular̵ type. The organs were then gently dissected. At transplantation the livers were revascularized with arterial blood shunted from the recipient iliac artery to the graft portal vein after completion of the suprahepatic IVC anastomosis. The infrahepatic IVCs and hepatic arteries were then joined, the iliac artery shunts discontinued and the portal veins joined. Total ischaemic intervals for the allografts were 3½–8 (average 5). Anhepatic intervals were 1–2¼ (average 2). The arterio-portal shunts were operating for 18–85 (mean 46) min. Blood loss and haemodynamic, acid-base and electrolyte abnormalities at revascularization were minimal. All grafts secreted bile immediately and all parameters reflected continuing improvement of liver function thereafter. Nine patients (82%) are alive between 4 and 18 (mean 11) months after transplantation. We conclude that these methods offer effective avoidance of serious organ damage during donor hepatectomy and preservation, reduced allograft ischaemic interval and reduced recipient anhepatic time. They result in avoidance of blood loss at the time of revascularization, together with minimal haemodynamic, acid-base or biochemical changes. In addition, they allow the surgeon to perform and test all anastomoses without time constraints, provide the capability to deal with unexpected complications, and assure good early graft function

Metabolic control of BRISC–SHMT2 assembly regulates immune signalling

Serine hydroxymethyltransferase 2 (SHMT2) regulates one-carbon transfer reactions that are essential for amino acid and nucleotide metabolism, and uses pyridoxal-5′-phosphate (PLP) as a cofactor. Apo SHMT2 exists as a dimer with unknown functions, whereas PLP binding stabilizes the active tetrameric state. SHMT2 also promotes inflammatory cytokine signalling by interacting with the deubiquitylating BRCC36 isopeptidase complex (BRISC), although it is unclear whether this function relates to metabolism. Here we present the cryo-electron microscopy structure of the human BRISC–SHMT2 complex at a resolution of 3.8 Å. BRISC is a U-shaped dimer of four subunits, and SHMT2 sterically blocks the BRCC36 active site and inhibits deubiquitylase activity. Only the inactive SHMT2 dimer—and not the active PLP-bound tetramer—binds and inhibits BRISC. Mutations in BRISC that disrupt SHMT2 binding impair type I interferon signalling in response to inflammatory stimuli. Intracellular levels of PLP regulate the interaction between BRISC and SHMT2, as well as inflammatory cytokine responses. These data reveal a mechanism in which metabolites regulate deubiquitylase activity and inflammatory signalling

Covalent Aurora A regulation by the metabolic integrator coenzyme A

Aurora A kinase is a master mitotic regulator whose functions are controlled by several regulatory interactions and post-translational modifications. It is frequently dysregulated in cancer, making Aurora A inhibition a very attractive antitumor target. However, recently uncovered links between Aurora A, cellular metabolism and redox regulation are not well understood. In this study, we report a novel mechanism of Aurora A regulation in the cellular response to oxidative stress through CoAlation. A combination of biochemical, biophysical, crystallographic and cell biology approaches revealed a new and, to our knowledge, unique mode of Aurora A inhibition by CoA, involving selective binding of the ADP moiety of CoA to the ATP binding pocket and covalent modification of Cys290 in the activation loop by the thiol group of the pantetheine tail. We provide evidence that covalent CoA modification (CoAlation) of Aurora A is specific, and that it can be induced by oxidative stress in human cells. Oxidising agents, such as diamide, hydrogen peroxide and menadione were found to induce Thr 288 phosphorylation and DTT-dependent dimerization of Aurora A. Moreover, microinjection of CoA into fertilized mouse embryos disrupts bipolar spindle formation and the alignment of chromosomes, consistent with Aurora A inhibition. Altogether, our data reveal CoA as a new, rather selective, inhibitor of Aurora A, which locks this kinase in an inactive state via a “dual anchor” mechanism of inhibition that might also operate in cellular response to oxidative stress. Finally and most importantly, we believe that these novel findings provide a new rationale for developing effective and irreversible inhibitors of Aurora A, and perhaps other protein kinases containing appropriately conserved Cys residues

Interacting with the public as a risk factor for employee psychological distress

Background: The 1-month prevalence of any mental disorder in employees ranges from 10.5% to 18.5%. Mental disorders are responsible for substantial losses in employee productivity in both absenteeism and presenteeism. Potential work related factors contributing to mental difficulties are of increasing interest to employers. Some data suggests that being sales staff, call centre operator, nurse or teacher increases psychological distress. One aspect of these occupations is that there is an interaction with the public. The aim of this study is to evaluate whether employees who interact with the public are at greater risk of psychological distress