Precise, dynamic information flow for database-backed applications
We present an approach for dynamic information flow control across the application and
database. Our approach reduces the amount of policy code required, yields formal …
database. Our approach reduces the amount of policy code required, yields formal …
Multi-tier functional reactive programming for the web
The development of robust and efficient interactive web applications is challenging, because
developers have to deal with multiple programming languages, asynchronous events …
developers have to deal with multiple programming languages, asynchronous events …
Liquid information flow control
We present Lifty, a domain-specific language for data-centric applications that manipulate
sensitive data. A Lifty programmer annotates the sources of sensitive data with declarative …
sensitive data. A Lifty programmer annotates the sources of sensitive data with declarative …
Derailer: interactive security analysis for web applications
Derailer is an interactive tool for finding security bugs in web applications. Using symbolic
execution, it enumerates the ways in which application data might be exposed. The user is …
execution, it enumerates the ways in which application data might be exposed. The user is …
Stellar: A programming model for developing protocol-compliant agents
A Günay, AK Chopra - Engineering Multi-Agent Systems: 6th International …, 2019 - Springer
An interaction protocol captures the rules of encounter in a multiagent system. Development
of agents that comply with protocols is a central challenge of multiagent systems. Our …
of agents that comply with protocols is a central challenge of multiagent systems. Our …
Interacto: A Modern User Interaction Processing Model
A Blouin, JM Jézéquel - IEEE Transactions on Software …, 2021 - ieeexplore.ieee.org
Since most software systems provide their users with interactive features, building user
interfaces (UI) is one of the core software engineering tasks. It consists in designing …
interfaces (UI) is one of the core software engineering tasks. It consists in designing …
Engineering web applications using real-time collaborative modeling
In agile practices, near real-time collaboration on the Web facilitates stakeholder activities,
their communication and joint impact analysis. In providing an abstraction layer on the …
their communication and joint impact analysis. In providing an abstraction layer on the …
DEv-PROMELA: an extension of PROMELA for the modelling, simulation and verification of discrete-event systems
PROMELA is a well-known formalism for the modelling and the verification of concurrent
systems. PROMELA deals with high-level specifications. As a result, PROMELA models are …
systems. PROMELA deals with high-level specifications. As a result, PROMELA models are …
[PDF][PDF] End-to-end policy-agnostic security for database-backed applications
Protecting sensitive data often requires implementing repeated security checks and filters
throughout a program. This task is especially error-prone in web programs, where data flows …
throughout a program. This task is especially error-prone in web programs, where data flows …
[PDF][PDF] Type-driven repair for information flow security
We present LIFTY, a language that uses type-driven program repair to enforce information
flow policies. In LIFTY, the programmer specifies a policy by annotating the source of …
flow policies. In LIFTY, the programmer specifies a policy by annotating the source of …