The work presented in this thesis focuses on information-flow control systems for functional programs, particularly on the LIO library in Haskell. The thesis considers threemain aspects in this area: timing covert channels, dynamic policies andenforcement mechanisms that improve precision of the analysis.Timing channels are dangerous in the presence ofconcurrency. We start with the design, formalisation andimplementation of a concurrent version of LIO which is secure againstthem. More specifically, we remove leaks due to non-terminatingbehaviour of programs (termination covert channel) and leaks producedby forcing certain interleavings of threads, as a result of affectingtheir timing behaviour (internal timing covert channel). The keyinsigh...
Abstract. Information-flow control (IFC) is a security mechanism conceived to allow untrusted code t...
LIO is a dynamic information-flow control system embedded in Haskell that uses a runtime monitor to ...
Information-flow control (IFC) allows untrusted code to manipulate sensitive data while preserving c...
The work presented in this thesis focusses on dealing with timingcovert channels in dynamic informat...
We describe a language-based, dynamic information flow control (IFC) system called LIO. Our system p...
We describe a new, dynamic, floating-label approach to language-based information flow control, and ...
This paper presents SLIO, an information-flow control mechanism enforcing dynamic policies: security...
To preserve confidentiality, information-flow control (IFC) restricts how untrusted code handles sec...
When termination of a program is observable by an adversary, confidential information may be leaked ...
When termination of a program is observable by an adversary, confidential information may be leaked ...
Many state-of-the-art information-flow control (IFC) tools are implemented as Haskell libraries. In ...
Information Flow Control (IFC) is a language-based security mechanism that tracks where data flows w...
The problem of controlling information flow in multithreaded programs remains an important open chal...
We describe a language-based, dynamic information flow control (IFC) system called LIO. Our system p...
Information-Flow Control (IFC) is a well-established approach for allowing untrusted code to manipul...
Abstract. Information-flow control (IFC) is a security mechanism conceived to allow untrusted code t...
LIO is a dynamic information-flow control system embedded in Haskell that uses a runtime monitor to ...
Information-flow control (IFC) allows untrusted code to manipulate sensitive data while preserving c...
The work presented in this thesis focusses on dealing with timingcovert channels in dynamic informat...
We describe a language-based, dynamic information flow control (IFC) system called LIO. Our system p...
We describe a new, dynamic, floating-label approach to language-based information flow control, and ...
This paper presents SLIO, an information-flow control mechanism enforcing dynamic policies: security...
To preserve confidentiality, information-flow control (IFC) restricts how untrusted code handles sec...
When termination of a program is observable by an adversary, confidential information may be leaked ...
When termination of a program is observable by an adversary, confidential information may be leaked ...
Many state-of-the-art information-flow control (IFC) tools are implemented as Haskell libraries. In ...
Information Flow Control (IFC) is a language-based security mechanism that tracks where data flows w...
The problem of controlling information flow in multithreaded programs remains an important open chal...
We describe a language-based, dynamic information flow control (IFC) system called LIO. Our system p...
Information-Flow Control (IFC) is a well-established approach for allowing untrusted code to manipul...
Abstract. Information-flow control (IFC) is a security mechanism conceived to allow untrusted code t...
LIO is a dynamic information-flow control system embedded in Haskell that uses a runtime monitor to ...
Information-flow control (IFC) allows untrusted code to manipulate sensitive data while preserving c...