Current standard security practices do not provide substantial assurance that the end-to-end
behavior of a computing system satisfies important security policies such as confidentiality …

There is growing interest in quantitative theories of information flow in a variety of contexts,
such as secure information flow, anonymity protocols, and side-channel analysis. Such …

We present a model of adaptive side-channel attacks which we combine with information-
theoretic metrics to quantify the information revealed to an attacker. This allows us to …

Computing systems often deliberately release (or declassify) sensitive information. A
principal security concern for systems permitting information release is whether this release …

Abstract Denial-of-Service (DoS) attacks pose a significant threat to the Internet today
especially if they are distributed, ie, launched simultaneously at a large number of systems …

Much work on security-typed languages lacks a satisfactory account of intentional
information release. In the context of confidentiality, a typical security guarantee provided by …

Computing systems often deliberately release (or declassify) sensitive information. A
principal security concern for systems permitting information release is whether this release …

Differential privacy is a notion of confidentiality that protects the privacy of individuals while
allowing useful computations on their private data. Deriving differential privacy guarantees …

Abstract Information-flow control tracks how information propagates through the program
during execution to make sure that the program handles the information securely. Secure …

We consider a framework in which anonymity protocols are interpreted as noisy channels in
the information-theoretic sense, and we explore the idea of using the notion of capacity as a …