Share This Author
Language-based information-flow security
A structured view of research on information-flow security is given, particularly focusing on work that uses static program analysis to enforce information- flow policies, and some important open challenges are identified.
JFlow: practical mostly-static information flow control
- A. Myers
- Computer SciencePOPL '99
The new language JFlow is described, an extension to the Java language that adds statically-checked information flow annotations and provides several new features that make information flow checking more flexible and convenient than in previous models.
A decentralized model for information flow control
This paper presents a new model for controlling information flo w in systems with mutual distrust and decentralized authority that improves on existing multilevel security models by allowing users to declassify information in a decentralized way, and by improving support for fine-grained data sharing.
Civitas: Toward a Secure Voting System
- Michael R. Clarkson, Stephen Chong, A. Myers
- Computer ScienceIEEE Symposium on Security and Privacy (sp )
- 18 May 2008
Experimental results give a quantitative evaluation of the tradeoffs between time, cost, and security in Civitas.
Protecting privacy using the decentralized label model
The article introduces the language Jif, an extension to Java that provides static checking of information flow using the decentralized label model, which improves on existing multilevel security models by allowing users to declassify information in a decentralized way, and by improving support for fine-grained data sharing.
Polyglot: An Extensible Compiler Framework for Java
This paper focuses on the design choices in Polyglot that are important for making the framework usable and highly extensible.
Jif: java information flow
Observational determinism for concurrent program security
This paper presents a relatively expressive secure concurrent calculi, provides first-class channels, high-order functions, and an unbounded number of threads.
A Model for Delimited Information Release
A new security property, delimited release, an end-to-end guarantee that declassification cannot be exploited to construct laundering attacks is introduced, and a security type system is given that straightforwardly and provably enforces delimite release.
Parameterized types for Java
The rationale for the design decisions and the impact of the extension on other parts of Java, including arrays and the class library are discussed, and optional extensions to the Java virtual machine to allow parameterized bytecodes are described, and how to verify them efficiently.