During the design of safety-critical systems, safety and security engineers make use of
architecture patterns, such as Watchdog and Firewall, to address identified failures and …

Data usage control enables data owners to enforce policies over how their data may be
used after they have been released and accessed. We address distributed aspects of this …

Distributed data usage control enables data owners to constrain how their data is used by
remote entities. However, many data usage policies refer to events happening within several …

This paper studies the problem of verifying linearizability at runtime, where one seeks for a
concurrent algorithm for verifying that the current execution of a given concurrent shared …

Data usage control provides mechanisms for data owners to remain in control over how their
data is used after it is has been shared. Many data usage policies can only be enforced on a …

Use-based privacy views privacy in terms of authorized uses, a philosophy well-suited for
data collection and data analysis applications that arise in networked information systems …

Abstract Service matching approaches determine to what extent a provided service matches
a requester's requirements. This process is based on service specifications describing …

CliSeAu is a novel tool for hardening distributed Java programs. CliSeAu takes as input a
specification of the desired properties and a Java bytecode target program, ie the format in …

We propose an approach to using run-time monitoring for the re-engineering of distributed
systems. Our re-engineering method MBRE consists of five steps that provide guidance …

Run-time monitors ensure that untrusted software and system behavior adheres to a security
policy. This paper defines an expressive formal framework, based on I/O automata, for …