Secure compilation is a discipline aimed at develo** compilers that preserve the security
properties of the source programs they take as input in the target programs they produce as …

The adoption of microservice architecture is rapidly growing, involving industries of every
size. Their ability to scale and reconstitute complex functionalities into small, cohesive, and …

The aim of this chapter is to act as a primer for those wanting to learn about Runtime
Verification (RV). We start by providing an overview of the main specification languages …

Current software attacks often build on exploits that subvert machine-code execution. The
enforcement of a basic safety property, control-flow integrity (CFI), can prevent such attacks …

We present the first concept for full-fledged app sandboxing on stock Android. Our approach
is based on application virtualization and process-based privilege separation to securely …

The success of Android phones makes them a prominent target for malicious software, in
particular since the Android permission system turned out to be inadequate to protect the …

Similar bugs are bugs that require handling of many common code files. Developers can
often fix similar bugs with a shorter time and a higher quality since they can focus on fewer …

The difference between a malicious and a benign Android application can often be
characterised by context and sequence in which certain permissions and APIs are used. We …

Two implementations are given for Java's stack inspection access-control policy. Each
implementation is obtained by generating an inlined reference monitor (IRM) for a different …

A common mechanism for ensuring that software behaves securely is to monitor programs at
run time and check that they dynamically adhere to constraints specified by a security policy …