Fable: A Language for Enforcing User-defined Security Policies

  title={Fable: A Language for Enforcing User-defined Security Policies},
  author={Nikhil Swamy and Brian J. Corcoran and Michael Hicks},
  journal={2008 IEEE Symposium on Security and Privacy (sp 2008)},
This paper presents FABLE, a core formalism for a programming language in which programmers may specify security policies and reason that these policies are properly enforced. In FABLE, security policies can be expressed by associating security labels with the data or actions they protect. Programmers define the semantics of labels in a separate part of the program called the enforcement policy. FABLE prevents a policy from being circumvented by allowing labeled terms to be manipulated only… CONTINUE READING
Highly Cited
This paper has 121 citations. REVIEW CITATIONS
84 Citations
50 References
Similar Papers


Publications citing this paper.
Showing 1-10 of 84 extracted citations

121 Citations

Citations per Year
Semantic Scholar estimates that this publication has 121 citations based on the available data.

See our FAQ for additional information.


Publications referenced by this paper.
Showing 1-10 of 50 references

Fable: A language for enforcing user-defined security policies

  • N. Swamy, B. J. Corcoran, M. Hicks
  • Technical Report CS-TR-4895, Depart. Comp. Sci…
  • 2007
Highly Influential
10 Excerpts

Jif: Java + information flow

  • S. Chong, A. C. Myers, N. Nystrom, L. Zheng, S. Zdancewic
  • Software release. Located at http://www.cs…
  • 2006
Highly Influential
7 Excerpts

Similar Papers

Loading similar papers…