The work presented in this thesis focusses on dealing with timingcovert channels in dynamic information-flow control systems,particularly for the LIO library in Haskell.Timing channels are dangerous in the presence ofconcurrency. Therefore, we start with the design, formalisation andimplementation of a concurrent version of LIO which is secure againstthem. More specifically, we remove leaks due to non-terminatingbehaviour of programs (termination covert channel) and leaks producedby forcing certain interleavings of threads, as a result of affectingtheir timing behaviour (internal timing covert channel). The keyinsight is to decouple computations so that threads observing thetiming or termination behaviour of other threads are required to be...
Abstract—Secure information flow guarantees the secrecy and integrity of data, preventing an attacke...
Abstract. A major difficulty for tracking information flow in multithreaded programs is due to the i...
We propose a new language-based approach to mitigating timing channels. In this language, well-typed...
The work presented in this thesis focuses on information-flow control systems for functional program...
The problem of controlling information flow in multithreaded programs remains an important open chal...
When termination of a program is observable by an adversary, con-fidential information may be leaked...
Abstract. Information-flow control (IFC) is a security mechanism conceived to allow untrusted code t...
When termination of a program is observable by an adversary, confidential information may be leaked ...
The problem of controlling information flow in multithreaded programs remains an important open chal...
Information-flow control (IFC) allows untrusted code to manipulate sensitive data while preserving c...
Abstract. Information-flow control (IFC) is a security mechanism con-ceived to allow untrusted code ...
To preserve confidentiality, information-flow control (IFC) restricts how untrusted code handles sec...
We present the foundations for a new dynamic information flow control (IFC) parallel runtime system,...
Many state-of-the-art information-flow control (IFC) tools are implemented as Haskell libraries. In ...
Abstract. Information flow control allows untrusted code to access sensitive and trustworthy informa...
Abstract—Secure information flow guarantees the secrecy and integrity of data, preventing an attacke...
Abstract. A major difficulty for tracking information flow in multithreaded programs is due to the i...
We propose a new language-based approach to mitigating timing channels. In this language, well-typed...
The work presented in this thesis focuses on information-flow control systems for functional program...
The problem of controlling information flow in multithreaded programs remains an important open chal...
When termination of a program is observable by an adversary, con-fidential information may be leaked...
Abstract. Information-flow control (IFC) is a security mechanism conceived to allow untrusted code t...
When termination of a program is observable by an adversary, confidential information may be leaked ...
The problem of controlling information flow in multithreaded programs remains an important open chal...
Information-flow control (IFC) allows untrusted code to manipulate sensitive data while preserving c...
Abstract. Information-flow control (IFC) is a security mechanism con-ceived to allow untrusted code ...
To preserve confidentiality, information-flow control (IFC) restricts how untrusted code handles sec...
We present the foundations for a new dynamic information flow control (IFC) parallel runtime system,...
Many state-of-the-art information-flow control (IFC) tools are implemented as Haskell libraries. In ...
Abstract. Information flow control allows untrusted code to access sensitive and trustworthy informa...
Abstract—Secure information flow guarantees the secrecy and integrity of data, preventing an attacke...
Abstract. A major difficulty for tracking information flow in multithreaded programs is due to the i...
We propose a new language-based approach to mitigating timing channels. In this language, well-typed...