Language-based information flow control (IFC) promises to secure computer programs against malicious or incompetent programmers by addressing key shortcomings of modern programming languages. In spite of showing great promise, the field remains under-utilised in practise. This thesis makes contributions to the theoretical foundations of IFC aimed at making the techniques practically applicable. The paper addresses two primary topics, IFC as a library and IFC without false alarms. The contributions range from foundational observations about soundness and completeness, to practical considerations of efficiency and expressiveness
Information flow control (IFC) is a technique to assert the security of a given program with respect...
Recent years have seen a proliferation of research on information flow control. While the progress h...
This thesis explores information-flow tracking technologies and their applicability on industrial-sc...
Information Flow Control (IFC) is a principled approach to protecting the confidentiality and integr...
In programming language research, information-flow control (IFC) is a technique for enforcing a vari...
Language-based information flow control (IFC) promises to provide programming languages and tools th...
As more and more sensitive data is handled by software, its trustworthinessbecomes an increasingly i...
Information Flow Control (IFC) is a language-based security mechanism that tracks where data flows w...
We describe a language-based, dynamic information flow control (IFC) system called LIO. Our system p...
Many important security problems in JavaScript, such asbrowser extension security, untrusted JavaScr...
Abstract. Many important security problems in JavaScript, such as browser extension security, untrus...
<p>The Web is evolving into a melting pot of content coming from multiple stakeholders. In this mutu...
This tutorial provides a complete and homogeneous account of the latestadvances in fine- and coarse-...
Over the years, computer systems and applications have grown significantly complex while handling a ...
International audienceWeb-browser security with emphasis on JavaScript security, is one of the impor...
Information flow control (IFC) is a technique to assert the security of a given program with respect...
Recent years have seen a proliferation of research on information flow control. While the progress h...
This thesis explores information-flow tracking technologies and their applicability on industrial-sc...
Information Flow Control (IFC) is a principled approach to protecting the confidentiality and integr...
In programming language research, information-flow control (IFC) is a technique for enforcing a vari...
Language-based information flow control (IFC) promises to provide programming languages and tools th...
As more and more sensitive data is handled by software, its trustworthinessbecomes an increasingly i...
Information Flow Control (IFC) is a language-based security mechanism that tracks where data flows w...
We describe a language-based, dynamic information flow control (IFC) system called LIO. Our system p...
Many important security problems in JavaScript, such asbrowser extension security, untrusted JavaScr...
Abstract. Many important security problems in JavaScript, such as browser extension security, untrus...
<p>The Web is evolving into a melting pot of content coming from multiple stakeholders. In this mutu...
This tutorial provides a complete and homogeneous account of the latestadvances in fine- and coarse-...
Over the years, computer systems and applications have grown significantly complex while handling a ...
International audienceWeb-browser security with emphasis on JavaScript security, is one of the impor...
Information flow control (IFC) is a technique to assert the security of a given program with respect...
Recent years have seen a proliferation of research on information flow control. While the progress h...
This thesis explores information-flow tracking technologies and their applicability on industrial-sc...