Current standard security practices do not provide substantial assurance that the end-to-end
behavior of a computing system satisfies important security policies such as confidentiality …

One aspect of security in mobile code is privacy: private (or secret) data should not be
leaked to unauthorised agents. Most of the work on secure information flow has until recently …

Noninterference is a property of sequential programs that is useful for expressing security
policies for data confidentiality and integrity. However, extending noninterference to …

We present a probability-sensitive confidentiality specification-a form of probabilistic
noninterference-for a small multi-threaded programming language with dynamic thread …

Much work on security-typed languages lacks a satisfactory account of intentional
information release. In the context of confidentiality, a typical security guarantee provided by …

We describe a new, dynamic, floating-label approach to language-based information flow
control, and present an implementation in Haskell. A labeled IO monad, LIO, keeps track of a …

Abstract Information-flow control tracks how information propagates through the program
during execution to make sure that the program handles the information securely. Secure …

This paper proposes an extensional semantics-based formal specification of secure
information-flow properties in sequential programs based on representing degrees of …

We propose a type system to ensure the property of noninterference in a system of
concurrent programs, described in a standard imperative language enriched with …

A challenging unsolved security problem is how to specify and enforce system-wide security
policies; this problem is even more acute in distributed systems with mutual distrust. This …