The meaning of memory safety
We give a rigorous characterization of what it means for a programming language to be
memory safe, capturing the intuition that memory safety supports local reasoning about …
memory safe, capturing the intuition that memory safety supports local reasoning about …
IFC inside: Retrofitting languages with dynamic information flow control
Many important security problems in JavaScript, such as browser extension security,
untrusted JavaScript libraries and safe integration of mutually distrustful websites (mash …
untrusted JavaScript libraries and safe integration of mutually distrustful websites (mash …
SC-Haskell: sequential consistency in languages that minimize mutable shared heap
A core, but often neglected, aspect of a programming language design is its memory
(consistency) model. Sequential consistency~(SC) is the most intuitive memory model for …
(consistency) model. Sequential consistency~(SC) is the most intuitive memory model for …
Foundations for parallel information flow control runtime systems
We present the foundations for a new dynamic information flow control (IFC) parallel runtime
system, LIO _ PAR. To our knowledge, LIO _ PAR is the first dynamic language-level IFC …
system, LIO _ PAR. To our knowledge, LIO _ PAR is the first dynamic language-level IFC …
Prioritized garbage collection: explicit GC support for software caches
Programmers routinely trade space for time to increase performance, often in the form of
caching or memoization. In managed languages like Java or JavaScript, however, this …
caching or memoization. In managed languages like Java or JavaScript, however, this …
Securing asynchronous exceptions
CT Cortiñas, M Vassena… - 2020 IEEE 33rd Computer …, 2020 - ieeexplore.ieee.org
Language-based information-flow control (IFC) techniques often rely on special purpose, ad-
hoc primitives to address different covert channels that originate in the runtime system …
hoc primitives to address different covert channels that originate in the runtime system …
[图书][B] Computational state transfer: an architectural style for decentralized systems
MM Gorlick - 2016 - search.proquest.com
A decentralized system is a distributed system that operates under multiple, distinct spheres
of authority in which collaboration among the principals is characterized by mutual distrust …
of authority in which collaboration among the principals is characterized by mutual distrust …
[图书][B] Verifying Information Flow Control Libraries
M Vassena - 2019 - search.proquest.com
Abstract Information Flow Control (IFC) is a principled approach to protecting the
confidentiality and integrity of data in software systems. Intuitively, IFC systems associate …
confidentiality and integrity of data in software systems. Intuitively, IFC systems associate …
[图书][B] Principled and Practical Web Application Security
D Stefan - 2015 - search.proquest.com
Large-scale private user data theft has become a common occurrence on the web. A huge
factor in these privacy breaches is that developers specify and enforce data security policies …
factor in these privacy breaches is that developers specify and enforce data security policies …
Tapir: a language for verified OS kernel probes
I Yanok, N Nystrom - ACM SIGOPS Operating Systems Review, 2016 - dl.acm.org
Kernel probes allow code to be inserted into a running operating system kernel to gather
information for debugging or profiling. Inserting code into the kernel raises a number of …
information for debugging or profiling. Inserting code into the kernel raises a number of …