Abstract. Information-flow control (IFC) is a security mechanism con-ceived to allow untrusted code to manipulate sensitive data without com-promising confidentiality. Unfortunately, untrusted code might exploit some covert channels in order to reveal information. In this paper, we focus on the LIO concurrent IFC system. By leveraging the effects of hardware caches (e.g., the CPU cache), LIO is susceptible to attacks that leak information through the internal timing covert channel. We present a resumption-based approach to address such attacks. Resumptions pro-vide fine-grained control over the interleaving of thread computations at the library level. Specifically, we remove cache-based attacks by enforc-ing that every thread yield after ex...
Many state-of-the-art IFC libraries support a variety of advanced features like mutuable data struct...
Information security can be compromised by leakage via low-level hardware features. One recently pro...
We describe a language-based, dynamic information flow control (IFC) system called LIO. Our system p...
Abstract. Information-flow control (IFC) is a security mechanism conceived to allow untrusted code t...
Information-flow control (IFC) allows untrusted code to manipulate sensitive data while preserving c...
The work presented in this thesis focusses on dealing with timingcovert channels in dynamic informat...
We present the foundations for a new dynamic information flow control (IFC) parallel runtime system,...
To preserve confidentiality, information-flow control (IFC) restricts how untrusted code handles sec...
Abstract. Information flow control allows untrusted code to access sensitive and trustworthy informa...
The work presented in this thesis focuses on information-flow control systems for functional program...
Information flow control allows untrusted code to access sensitive andtrustworthy information without...
When termination of a program is observable by an adversary, con-fidential information may be leaked...
When termination of a program is observable by an adversary, confidential information may be leaked ...
The problem of controlling information flow in multithreaded programs remains an important open cha...
Adversaries exploit memory corruption vulnerabilities to hijack a program's control flow and gain ar...
Many state-of-the-art IFC libraries support a variety of advanced features like mutuable data struct...
Information security can be compromised by leakage via low-level hardware features. One recently pro...
We describe a language-based, dynamic information flow control (IFC) system called LIO. Our system p...
Abstract. Information-flow control (IFC) is a security mechanism conceived to allow untrusted code t...
Information-flow control (IFC) allows untrusted code to manipulate sensitive data while preserving c...
The work presented in this thesis focusses on dealing with timingcovert channels in dynamic informat...
We present the foundations for a new dynamic information flow control (IFC) parallel runtime system,...
To preserve confidentiality, information-flow control (IFC) restricts how untrusted code handles sec...
Abstract. Information flow control allows untrusted code to access sensitive and trustworthy informa...
The work presented in this thesis focuses on information-flow control systems for functional program...
Information flow control allows untrusted code to access sensitive andtrustworthy information without...
When termination of a program is observable by an adversary, con-fidential information may be leaked...
When termination of a program is observable by an adversary, confidential information may be leaked ...
The problem of controlling information flow in multithreaded programs remains an important open cha...
Adversaries exploit memory corruption vulnerabilities to hijack a program's control flow and gain ar...
Many state-of-the-art IFC libraries support a variety of advanced features like mutuable data struct...
Information security can be compromised by leakage via low-level hardware features. One recently pro...
We describe a language-based, dynamic information flow control (IFC) system called LIO. Our system p...