The idea of building secure systems by plugging together" secure''components is appealing,
but this requires a definition of security which, in addition to taking care of top-level security …

Industries and governments are increasingly compelled by regulations and public pressure
to handle sensitive information responsibly. Regulatory requirements and user expectations …

JOANA is a tool for software security analysis, checking up to 100 kLOC of full multi-
threaded Java. JOANA is based on sophisticated program analysis techniques and thus …

Hyperproperties are system properties that relate multiple computation paths in a system
and are commonly used to, eg, define information-flow policies. In this paper, we study a …

Controlling confidential information in concurrent systems is difficult, due to covert channels
resulting from interaction between threads. This problem is exacerbated if threads share …

The programming language Haskell plays a unique, privileged role in information-flow
control (IFC) research: it is able to enforce information security via libraries. Many state-of …

Hyperproperties are commonly used in computer security to define information-flow policies
and other requirements that reason about the relationship between multiple computations. In …

We present a new algorithm for checking probabilistic noninterference in concurrent
programs. The algorithm, named RLSOD, is based on the Low-Security Observational …

Reasoning about information flow in a concurrent setting is notoriously difficult due in part to
timing channels that may leak sensitive information. In this paper, we present a …

We demonstrate that a practical concurrent language can be extended in a natural way with
information security mechanisms that provably enforce strong information security …