[HTML][HTML] Beyond connected cars: A systems of systems perspective
The automotive domain is rapidly changing in the last years. Among the different challenges
OEMs (ie the vehicle manufacturers) are facing, vehicles are evolving into systems of …
OEMs (ie the vehicle manufacturers) are facing, vehicles are evolving into systems of …
LWeb: Information flow security for multi-tier web applications
This paper presents LWeb, a framework for enforcing label-based, information flow policies
in database-using web applications. In a nutshell, LWeb marries the LIO Haskell IFC …
in database-using web applications. In a nutshell, LWeb marries the LIO Haskell IFC …
A programming framework for differential privacy with accuracy concentration bounds
E Lobo-Vesga, A Russo… - 2020 IEEE Symposium on …, 2020 - ieeexplore.ieee.org
Differential privacy offers a formal framework for reasoning about privacy and accuracy of
computations on private data. It also offers a rich set of building blocks for constructing …
computations on private data. It also offers a rich set of building blocks for constructing …
From fine-to coarse-grained dynamic information flow control and back
We show that fine-grained and coarse-grained dynamic information-flow control (IFC)
systems are equally expressive. To this end, we mechanize two mostly standard languages …
systems are equally expressive. To this end, we mechanize two mostly standard languages …
Mechanized logical relations for termination-insensitive noninterference
We present an expressive information-flow control type system with recursive types,
existential types, label polymorphism, and impredicative type polymorphism for a higher …
existential types, label polymorphism, and impredicative type polymorphism for a higher …
[HTML][HTML] Mac a verified static information-flow control library
The programming language Haskell plays a unique, privileged role in information-flow
control (IFC) research: it is able to enforce information security via libraries. Many state-of …
control (IFC) research: it is able to enforce information security via libraries. Many state-of …
Cryptographically secure information flow control on key-value stores
We present Clio, an information flow control (IFC) system that transparently incorporates
cryptography to enforce confidentiality and integrity policies on untrusted storage. Clio …
cryptography to enforce confidentiality and integrity policies on untrusted storage. Clio …
Simple noninterference from parametricity
M Algehed, JP Bernardy - Proceedings of the ACM on Programming …, 2019 - dl.acm.org
In this paper we revisit the connection between parametricity and noninterference. Our
primary contribution is a proof of noninterference for a polyvariant variation of the …
primary contribution is a proof of noninterference for a polyvariant variation of the …
A programming language for data privacy with accuracy estimations
E Lobo-Vesga, A Russo, M Gaboardi - ACM Transactions on …, 2021 - dl.acm.org
Differential privacy offers a formal framework for reasoning about the privacy and accuracy
of computations on private data. It also offers a rich set of building blocks for constructing …
of computations on private data. It also offers a rich set of building blocks for constructing …
HasTEE: Programming Trusted Execution Environments with Haskell
Trusted Execution Environments (TEEs) are hardware enforced memory isolation units,
emerging as a pivotal security solution for security-critical applications. TEEs, like Intel SGX …
emerging as a pivotal security solution for security-critical applications. TEEs, like Intel SGX …