Andrei Sabelfeld

Full Professor at Information Security

Source: chalmers.se
Image of Andrei Sabelfeld

Showing 116 publications

2024

FakeX: A Framework for Detecting Fake Reviews of Browser Extensions

Eric Olsson, Benjamin Eriksson, Pablo Picazo-Sanchez et al
ACM AsiaCCS 2024 - Proceedings of the 19th ACM Asia Conference on Computer and Communications Security, p. 1127-1142
Paper in proceeding
2024

Spider-Scents: Grey-box Database-aware Web Scanning for Stored XSS

Eric Olsson, Benjamin Eriksson, Adam Doupé et al
Proceedings of the 33rd USENIX Security Symposium, p. 6741-6758
Paper in proceeding
2023
Open Access icon

LazyTAP: On-Demand Data Minimization for Trigger-Action Applications

Seyed Mohammad Mehdi Ahmadpanah, Daniel Hedin, Andrei Sabelfeld
Proceedings - IEEE Symposium on Security and Privacy. Vol. 2023-May, p. 3079-3097
Paper in proceeding
Show project
2023
Open Access icon

Black Ostrich: Web Application Scanning with String Solvers

Benjamin Lundblad, Amanda Stjerna, Riccardo De Masellis et al
CCS 2023 - Proceedings of the 2023 ACM SIGSAC Conference on Computer and Communications Security, p. 549-563
Paper in proceeding
Show project
Show project
2023

Poster: Data Minimization by Construction for Trigger-Action Applications

Seyed Mohammad Mehdi Ahmadpanah, Daniel Hedin, Andrei Sabelfeld
CCS 2023 - Proceedings of the 2023 ACM SIGSAC Conference on Computer and Communications Security, p. 3522-3524
Paper in proceeding
2022
Open Access icon

CatNap: Leveraging Generic MPC for Actively Secure Privacy-enhancing Proximity Testing with a Napping Party

Ivan Oleinikov, Elena Pagnin, Andrei Sabelfeld
SECRYPT : PROCEEDINGS OF THE 19TH INTERNATIONAL CONFERENCE ON SECURITY AND CRYPTOGRAPHY. Vol. 1, p. 237-248
Paper in proceeding
2022

Outsourcing MPC Precomputation for Location Privacy

Ivan Oleinikov, Elena Pagnin, Andrei Sabelfeld
Proceedings - 7th IEEE European Symposium on Security and Privacy Workshops, Euro S and PW 2022, p. 504-513
Paper in proceeding
2022

Practical Data Access Minimization in Trigger-Action Platforms

Yunang Chen, Mohannad Alhanahnah, Andrei Sabelfeld et al
Proceedings of the 31st USENIX Security Symposium, Security 2022, p. 2929-2945
Paper in proceeding
2022

No Signal Left to Chance: Driving Browser Extension Analysis by Download Patterns

Pablo Picazo-Sanchez, Benjamin Eriksson, Andrei Sabelfeld
ACM International Conference Proceeding Series, p. 896-910
Paper in proceeding
2022
Open Access icon

Are chrome extensions compliant with the spirit of least privilege?

Pablo Picazo-Sanchez, Lara Ortiz-Martin, Gerardo Schneider et al
International Journal of Information Security. Vol. 21 (6), p. 1283-1297
Journal article
2022
Open Access icon

DeDup.js: Discovering Malicious and Vulnerable Extensions by Detecting Duplication

Pablo Picazo-Sanchez, Maximilian Algehed, Andrei Sabelfeld
PROCEEDINGS OF THE 8TH INTERNATIONAL CONFERENCE ON INFORMATION SYSTEMS SECURITY AND PRIVACY (ICISSP). Vol. 1, p. 528-535
Paper in proceeding
2022

SecWasm: Information Flow Control for WebAssembly

Iulia Bastys, Maximilian Algehed, Alexander Sjösten et al
Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics). Vol. 13790 LNCS, p. 74-103
Paper in proceeding
2022
Open Access icon

Hardening the security analysis of browser extensions

Benjamin Eriksson, Pablo Picazo-Sanchez, Andrei Sabelfeld
Proceedings of the ACM Symposium on Applied Computing, p. 1694-1703
Paper in proceeding
2021

EssentialFP: Exposing the Essence of Browser Fingerprinting

Alexander Sjösten, Daniel Hedin, Andrei Sabelfeld
Proceedings - 2021 IEEE European Symposium on Security and Privacy Workshops, Euro S and PW 2021, p. 32-48
Paper in proceeding
2021

Data privacy in trigger-action systems

Yunang Chen, Amrita Roy Chowdhury, Ruizhe Wang et al
Proceedings - IEEE Symposium on Security and Privacy. Vol. 2021-May, p. 501-518
Paper in proceeding
2021
Open Access icon

SandTrap: Securing JavaScript-driven Trigger-Action Platforms

Seyed Mohammad Mehdi Ahmadpanah, Daniel Hedin, Musard Balliu et al
Proceedings of the 30th USENIX Security Symposium, p. 2899-2916
Paper in proceeding
Show project
2021
Open Access icon

Securing Node-RED Applications

Seyed Mohammad Mehdi Ahmadpanah, Musard Balliu, Daniel Hedin et al
Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics). Vol. 13066 LNCS, p. 1-21
Book chapter
Show project
2021
Open Access icon

Nontransitive Policies Transpiled

Seyed Mohammad Mehdi Ahmadpanah, Aslan Askarov, Andrei Sabelfeld
Proceedings - 2021 IEEE European Symposium on Security and Privacy, Euro S and P 2021, p. 543-561
Paper in proceeding
Show project
2021

Black widow: Blackbox data-driven web scanning

Benjamin Eriksson, Giancarlo Pellegrino, Andrei Sabelfeld
Proceedings - IEEE Symposium on Security and Privacy. Vol. 2021-May, p. 1125-1142
Paper in proceeding
2020

Where are you bob? privacy-preserving proximity testing with a napping party

Ivan Oleinikov, Elena Pagnin, Andrei Sabelfeld
Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics). Vol. 12308 LNCS, p. 677-697
Paper in proceeding
2020
Open Access icon

AutoNav: Evaluation and Automatization of Web Navigation Policies

Benjamin Eriksson, Andrei Sabelfeld
The Web Conference 2020 - Proceedings of the World Wide Web Conference, WWW 2020, p. 1320-1331
Paper in proceeding
2020

VERONICA: Expressive and Precise Concurrent Information Flow Security

Daniel Schoepe, Toby Murray, Andrei Sabelfeld
Proceedings - IEEE Computer Security Foundations Symposium. Vol. 2020-June, p. 79-94
Paper in proceeding
2020

Clockwork: Tracking Remote Timing Attacks

Iulia Bastys, Musard Balliu, Tamara Rezk et al
Proceedings - IEEE Computer Security Foundations Symposium. Vol. 2020-June, p. 350-365
Paper in proceeding
2020

HMAC and “secure preferences”: Revisiting chromium-based browsers security

Pablo Picazo-Sanchez, Gerardo Schneider, Andrei Sabelfeld
Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics). Vol. 12579 LNCS, p. 107-126
Paper in proceeding
2019

Latex Gloves: Protecting Browser Extensions from Probing and Revelation Attacks

Alexander Sjösten, Steven Van Acker, Pablo Picazo-Sanchez et al
Proceedings 2019 Network and Distributed System Security Symposium
Paper in proceeding
2019

An empirical study of information flows in real-world Javascript

Cristian Alexandru Staicu, Daniel Schoepe, Musard Balliu et al
Proceedings of the ACM Conference on Computer and Communications Security, p. 45-59
Paper in proceeding
2019

Securing IoT Apps

Musard Balliu, Iulia Bastys, Andrei Sabelfeld
IEEE Security and Privacy. Vol. 17 (5), p. 22-29
Journal article
2019

Information-flow control for database-backed applications

Marco Guarnieri, Musard Balliu, Daniel Schoepe et al
Proceedings - 4th IEEE European Symposium on Security and Privacy, EURO S and P 2019. Vol. June 2019, p. 79-94
Paper in proceeding
Show project
Show project
2019
Open Access icon

On the road with third-party apps: Security analysis of an in-vehicle app platform

Benjamin Eriksson, Jonas Groth, Andrei Sabelfeld
VEHITS 2019 - Proceedings of the 5th International Conference on Vehicle Technology and Intelligent Transport Systems, p. 64-75
Paper in proceeding
2018

Raising the bar: Evaluating origin-wide security manifests

Steven Van Acker, Daniel Hausknecht, Andrei Sabelfeld
ACM International Conference Proceeding Series, p. 342-354
Paper in proceeding
2018

Tracking Information Flow via Delayed Output: Addressing Privacy in IoT and Emailing Apps

Iulia Bastys, Frank Piessens, Andrei Sabelfeld
Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics). Vol. 11252 LNCS, p. 19-37
Paper in proceeding
2018

Assuring BetterTimes

Per Hallgren, Ravi Kishore, Martin Ochoa et al
Journal of Computer Security. Vol. 26 (4), p. 557-587
Journal article
2018

If This Then What? Controlling Flows in IoT Apps

Iulia Bastys, Musard Balliu, Andrei Sabelfeld
Proceedings of the ACM Conference on Computer and Communications Security, p. 1102-1119
Paper in proceeding
2018

Information Flow Tracking for Side-Effectful Libraries

Alexander Sjösten, Daniel Hedin, Andrei Sabelfeld
Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics). Vol. 10854 LNCS, p. 141-160
Paper in proceeding
2018

Prudent Design Principles for Information Flow Control

Iulia Bastys, Frank Piessens, Andrei Sabelfeld
Proceedings of the ACM Conference on Computer and Communications Security, p. 17-23
Paper in proceeding
2017

We are family: Relating information-flow trackers

Musard Balliu, Daniel Schoepe, Andrei Sabelfeld
Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics). Vol. 10492 LNCS, p. 124-145
Paper in proceeding
2017

Discovering Browser Extensions via Web Accessible Resources

Alexander Sjösten, Steven Van Acker, Andrei Sabelfeld
CODASPY 2017 - Proceedings of the 7th ACM Conference on Data and Applications Security and Privacy, p. 329-336
Paper in proceeding
2017

Measuring login webpage security

Steven Van Acker, Daniel Hausknecht, Andrei Sabelfeld
Proceedings of the ACM Symposium on Applied Computing. Vol. Part F128005, p. 1753-1760
Paper in proceeding
2017

Privacy-Preserving Location-Proximity for Mobile Apps

S. Stirbys, O.A. Nabah, Per Hallgren et al
Proceedings - 2017 25th Euromicro International Conference on Parallel, Distributed and Network-Based Processing, PDP 2017, p. 337-345
Paper in proceeding
2017

Welcome Message from the Program Committee Chairs EuroS&P 2017

Andrei Sabelfeld, Matthew K. Smith
Proceedings - 2nd IEEE European Symposium on Security and Privacy, EuroS and P 2017, p. xii-xiii
Other conference contribution
2017

A Principled Approach to Tracking Information Flow in the Presence of Libraries

Daniel Hedin, Alexander Sjösten, Frank Piessens et al
Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics). Vol. 10204 LNCS, p. 49-70
Paper in proceeding
2017

Special issue on verified information flow security

Toby Murray, Andrei Sabelfeld, Lujo Bauer
Journal of Computer Security. Vol. 25 (05-apr), p. 319-321
Review article
2017

PrivatePool: Privacy-Preserving Ridesharing

Per Hallgren, Claudio Orlandi, Andrei Sabelfeld
Proceedings - IEEE Computer Security Foundations Symposium, p. 276-291
Paper in proceeding
2017

MaxPace: Speed-Constrained Location Queries

Per Hallgren, Martin Ochoa, Andrei Sabelfeld
Proceedings of the IEEE Conference on Communications and Network Security (CNS), p. 136-144
Paper in proceeding
2016

Explicit Secrecy: A Policy for Taint Tracking

Daniel Schoepe, Musard Balliu, B. C. Pierce et al
1st IEEE European Symposium on Security and Privacy (Euro S&P), Saarbruecken, Germany, Mar 21-24, 2016, p. 15-30
Paper in proceeding
2016

Secure multi-execution: Fine-grained, declassification-aware, and transparent

Willard Thor Rafnsson, Andrei Sabelfeld
Journal of Computer Security. Vol. 24 (1), p. 39-90
Journal article
2016

Progress-sensitive security for SPARK

Willard Thor Rafnsson, D. Garg, Andrei Sabelfeld
Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics). Vol. 9639, p. 20-37
Paper in proceeding
2016

Data Exfiltration in the Face of CSP

Steven Van Acker, Daniel Hausknecht, Andrei Sabelfeld
Proceedings of the 11th ACM on Asia Conference on Computer and Communications Security, p. 853-864
Paper in proceeding
2016

Information-flow security for JavaScript and its APIs

Daniel Hedin, Luciano Bello, Andrei Sabelfeld
Journal of Computer Security. Vol. 24 (2), p. 181-234
Journal article
2016

JSLINQ: Building secure applications across tiers

Musard Balliu, Benjamin Liebe, Daniel Schoepe et al
6th ACM Conference on Data and Application Security and Privacy, CODASPY 2016; New Orleans; United States; 9 March 2016 through 11 March 2016, p. 307-318
Paper in proceeding
2016

Location-enhanced Authentication using the IoT

Ioannis Agadakos, Per Hallgren, Georgios Portokalidis et al
Proceedings of the Annual Computer Security Applications Conference (ACSAC)
Paper in proceeding
2016

Javascript sandboxing: Isolating and restricting client-side javascript

Steven Van Acker, Andrei Sabelfeld
Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics). Vol. 9808 LNCS, p. 32-86
Paper in proceeding
2016

Let’s face it: Faceted values for taint tracking

Daniel Schoepe, Musard Balliu, Frank Piessens et al
Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics). Vol. 9878 LNCS, p. 561-580
Paper in proceeding
2016

Location-enhanced authentication using the IoT because you cannot be in two places at once

I. Agadakos, Per Hallgren, D. Damopoulos et al
ACM International Conference Proceeding Series. Vol. 5, p. 251-264
Paper in proceeding
2015

Value Sensitivity and Observable Abstract Values for Information Flow Control

Luciano Bello, Daniel Hedin, Andrei Sabelfeld
Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics). Vol. 9450, p. 63-78
Paper in proceeding
2015

Web Application Security using JSFlow

Daniel Hedin, Andrei Sabelfeld
Proceedings - 17th International Symposium on Symbolic and Numeric Algorithms for Scientific Computing, SYNASC 2015, p. 16-19
Paper in proceeding
2015

BetterTimes: Privacy-assured Outsourced Multiplications for Additively Homomorphic Encryption on Finite Fields

Per Hallgren, Martin Ochoa, Andrei Sabelfeld
Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics). Vol. 9451, p. 291-309
Book chapter
2015

Value-sensitive Hybrid Information Flow Control for a JavaScript-like Language

Daniel Hedin, Luciano Bello, Andrei Sabelfeld
Proceedings. The Computer Security Foundations Workshop III. Vol. 2015-September, p. 351-365
Paper in proceeding
2015

May I? - Content Security Policy Endorsement for Browser Extensions

Daniel Hausknecht, Jonas Magazinius, Andrei Sabelfeld
Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics). Vol. 9148, p. 261-281
Paper in proceeding
2015

Understanding and Enforcing Opacity

Daniel Schoepe, Andrei Sabelfeld
Proceedings. The Computer Security Foundations Workshop III. Vol. 2015-September, p. 539-553
Paper in proceeding
2015

Password meters and generators on the web: From large-scale empirical study to getting it right

Steven Van Acker, Daniel Hausknecht, W. Joosen et al
CODASPY 2015 - Proceedings of the 5th ACM Conference on Data and Application Security and Privacy, p. 253-262
Paper in proceeding
2015

InnerCircle: A Parallelizable Decentralized Privacy-Preserving Location Proximity Protocol

Per Hallgren, Martin Ochoa, Andrei Sabelfeld
Proceedings of the International Conference on Privacy, Security and Trust (PST), p. 1-6
Paper in proceeding
2014

Compositional Information-flow Security for Interactive Systems

Willard Thor Rafnsson, Andrei Sabelfeld
Proceedings. The Computer Security Foundations Workshop III. Vol. 2014-January, p. 277-292
Paper in proceeding
2014

SeLINQ: Tracking information across application-database boundaries

Daniel Schoepe, Daniel Hedin, Andrei Sabelfeld
SIGPLAN Notices (ACM Special Interest Group on Programming Languages). Vol. 49 (9), p. 25-38
Paper in proceeding
2014

JSFlow: Tracking Information Flow in JavaScript and its APIs

Daniel Hedin, Luciano Bello, Andrei Sabelfeld
Proceedings of the ACM Symposium on Applied Computing (SAC), p. 1663-1671
Paper in proceeding
2014

Architectures for Inlining Security Monitors in Web Application

Jonas Magazinius, Daniel Hedin, Andrei Sabelfeld
Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics). Vol. 8364 LNCS, p. 141-160
Paper in proceeding
2013

Securing Class Initialization in Java-like Languages

Willard Thor Rafnsson, K. Nakata, Andrei Sabelfeld
IEEE Transactions on Dependable and Secure Computing. Vol. 10 (1), p. 1-13
Journal article
2013

Secure multi-execution: Fine-grained, declassification-aware, and transparent

Willard Thor Rafnsson, Andrei Sabelfeld
Proceedings. The Computer Security Foundations Workshop III, p. 33-48
Paper in proceeding
2013

GlassTube

Per Hallgren, Daniel T. Mauritzson, Andrei Sabelfeld
PLAS '13 (ACM SIGPLAN workshop on Programming languages and analysis for security). Seattle , WA, USA. June 16-19, 2013. Vol. 8, p. 71-82
Paper in proceeding
2013

Polyglots: Crossing Origins by Crossing Formats

Jonas Magazinius, Billy Rios, Andrei Sabelfeld
Proceedings of the ACM Conference on Computer and Communications Security, p. 753-764
Paper in proceeding
2012

Boosting the Permissiveness of Dynamic Information-Flow Tracking by Testing

Arnar Birgisson, Daniel Hedin, Andrei Sabelfeld
Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics). Vol. 7459 LNCS, p. 55-72
Paper in proceeding
2012

Information-flow security for a core of JavaScript

Daniel Hedin, Andrei Sabelfeld
Proceedings. The Computer Security Foundations Workshop III, p. 3-18
Paper in proceeding
2012

On-The-Fly Inlining Of Dynamic Security Monitors

Jonas Magazinius, Alejandro Russo, Andrei Sabelfeld
Computers and Security. Vol. 31 (7), p. 827-843
Journal article
2012

Securing interactive programs

Willard Thor Rafnsson, Daniel Hedin, Andrei Sabelfeld
Proceedings. The Computer Security Foundations Workshop III, p. 293-307
Paper in proceeding
2011

Capabilities for information flow

Arnar Birgisson, Alejandro Russo, Andrei Sabelfeld
ACM SIGPLAN Workshop on Programming Languages and Analysis for Security, p. article no. 5-
Paper in proceeding
2011

Limiting Information Leakage in Event-based Communication

Willard Thor Rafnsson, Andrei Sabelfeld
ACM SIGPLAN Workshop on Programming Languages and Analysis for Security, p. (Article no. 4)-
Paper in proceeding
2011

A Perspective on Information-Flow Control

Daniel Hedin, Andrei Sabelfeld
Proceedings of the 2011 Marktoberdorf Summer School
Paper in proceeding
2011

Decentralized Delimited Release

Jonas Magazinius, Aslan Askarov, Andrei Sabelfeld
Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics). Vol. 7078, p. 220-237
Paper in proceeding
2011

Multi-run security

Arnar Birgisson, Andrei Sabelfeld
Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics). Vol. 6879 LNCS, p. 372-391
Paper in proceeding
2010

Dynamic vs. Static Flow-Sensitive Security Analysis

Alejandro Russo, Andrei Sabelfeld
Proceedings of the IEEE Computer Security Foundations Symposium, p. 186-199
Paper in proceeding
2010

Security of Multithreaded Programs by Compilation

Gilles Barthes, T. Rezk, Alejandro Russo et al
ACM Transactions on Information and System Security. Vol. 13 (3)
Journal article
2010

A lattice-based approach to mashup security

Jonas Magazinius, Aslan Askarov, Andrei Sabelfeld
5th ACM Symposium on Information, Computer and Communication Security, ASIACCS 2010; Beijing; 13 April 2010 through 16 April 2010, p. 15-23
Paper in proceeding
2010

On-the-fly inlining of dynamic security monitors

Jonas Magazinius, Alejandro Russo, Andrei Sabelfeld
IFIP Advances in Information and Communication Technology. Vol. 330, p. 173-186
Paper in proceeding
2010

Securing Class Initialization

Keiko Nakata, Andrei Sabelfeld
IFIP Advances in Information and Communication Technology. Vol. 321, p. 48-62
Paper in proceeding
2010

Unifying Facets of Information Integrity

Arnar Birgisson, Alejandro Russo, Andrei Sabelfeld
Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics). Vol. 6503, p. 48-65
Paper in proceeding
2009

Implicit flows in malicious and nonmalicious code

Alejandro Russo, Andrei Sabelfeld, Li Keqin
Proceedings of the 2009 Marktoberdorf Summer School, IOS Press
Paper in proceeding
2009

Securing Interaction between Threads and the Scheduler in the Presence of Synchronization

Alejandro Russo, Andrei Sabelfeld
Journal of Logic and Algebraic Programming. Vol. 78 (7), p. 593-618
Journal article
2009

Secuirty of Multithreaded Programs by Compilation

Gilles Barthe, Tamara Rezk, Alejandro Russo et al
Special Issue of ACM Transactions on Information and System Security (TISSEC)
Journal article
2009

Declassification: Dimensions and Principles

Andrei Sabelfeld, David Sands
Journal of Computer Security. Vol. 17 (5), p. 517-548
Journal article
2009

Catch Me If You Can: Permissive Yet Secure Error Handling

Aslan Askarov, Andrei Sabelfeld
ACM SIGPLAN Workshop on Programming Languages and Analysis for Security
Paper in proceeding
2009

From dynamic to static and back: Riding the roller coaster of information-flow control research

Andrei Sabelfeld, Alejandro Russo
Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics). Vol. 5947, p. 352-365
Paper in proceeding
2009

Tight Enforcement of Information-Release Policies for Dynamic Languages

Aslan Askarov, Andrei Sabelfeld
2009 22nd IEEE Computer Security Foundations Symposium, CSF 2009; Port Jefferson, NY; United States; 8 July 2009 through 10 July 2009, p. 43-59
Paper in proceeding
2009

Tracking Information Flow in Dynamic Tree Structures

Alejandro Russo, Andrei Sabelfeld, Andrey Chudnov
Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics). Vol. 5789 LNCS, p. 86-103
Paper in proceeding
2009

Securing Timeout Instructions in Web Applications

Alejandro Russo, Andrei Sabelfeld
Proceedings of the 22th IEEE Computer Security Foundations Symposium
Paper in proceeding
2008
Open Access icon

Cryptographically-Masked Flows

Aslan Askarov, Daniel Hedin, Andrei Sabelfeld
Theoretical Computer Science. Vol. 402 (2-3), p. 82-101
Journal article
2008

Termination-Insensitive Noninterference Leaks More Than Just a Bit.

Aslan Askarov, Sebastian Hunt, Andrei Sabelfeld et al
Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics). Vol. 5283, p. 333-348
Paper in proceeding
2007

Closing Internal Timing Channels by Transformation

Alejandro Russo, John Hughes, David Naumann et al
Proceedings of the 11th Annual Asian Computing Science Conference
Paper in proceeding
2007

Gradual Release: Unifying Declassification, Encryption and Key Release Policies

Aslan Askarov, Andrei Sabelfeld
Proceedings of the IEEE Symposium on Security and Privacy, p. 207-227
Paper in proceeding
2007

Security of Multithreaded Programs by Compilation

Gilles Barthe, Tamara Rezk, Alejandro Russo et al
Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics). Vol. 4734, p. 2-18
Paper in proceeding
2007

Localized Delimited Release: Combining the What and Where Dimensions of Information Release

Aslan Askarov, Andrei Sabelfeld
ACM SIGPLAN Workshop on Programming Languages and Analysis for Security, p. 53-60
Paper in proceeding
2006

Security for Multithreaded Programs under Cooperative Scheduling

Alejandro Russo, Andrei Sabelfeld
Proceedings of Andrei Ershov International Conference on Perspectives of System Informatics, Akademgorodok, Novosibirsk, Russia, June 27-30, 2006. LNCS, Springer-Verlag.
Paper in proceeding
2006

Securing Interaction between Threads and the Scheduler

Alejandro Russo, Andrei Sabelfeld
Proceedings of the 19th IEEE Computer Security Foundations Workshop, Venice, Italy, July 5-7, 2006. IEEE Computer Society Press.
Paper in proceeding
2006

Enforcing Robust Declassification and Qualified Robustness

Andrew Myers, Andrei Sabelfeld, Steve Zdancewic
Journal of Computer Security. Vol. 14 (2), p. 157-196
Journal article
2006

Cryptographically-Masked Flows

Aslan Askarov, Daniel Hedin, Andrei Sabelfeld
Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics). Vol. 4134, p. 353-369
Paper in proceeding
2005

Dimensions and Principles of Declassification

Andrei Sabelfeld, David Sands
Proceedings of the 18th IEEE Computer Security Foundations Workshop
Paper in proceeding
2005

Bridging Language-Based and Process Calculi Security

Riccardo Focardi, Sabina Rossi, Andrei Sabelfeld
Proceedings of Foundations of Software Science and Computation Structures (FOSSACS'05),. Vol. LNCS (3441), p. 299-315
Paper in proceeding
2005

Security-typed languages for implementation of cryptographic protocols: A case study

Aslan Askarov, Andrei Sabelfeld
Proceedings of the 10th European Symposium on Research in Computer Security (ESORICS' 2005), LNCS. Vol. 3679, p. 197-221
Paper in proceeding
2004

A Model for Delimited Information Release

Andrei Sabelfeld, Andrew Myers
Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics). Vol. 3233, p. 174-191
Journal article
2004

Enforcing Robust Declassification

Andrew Myers, Andrei Sabelfeld, Steve Zdancewic
Proceedings of the 17th IEEE Computer Security Foundations Workshop / edited by Riccardo Focardi, p. 172--186-
Paper in proceeding
2001

A Per Model of Secure Information Flow in Sequential Programs

Andrei Sabelfeld, David Sands
Higher-Order and Symbolic Computation. Vol. 14 (1), p. 59-91
Journal article
2000

Probabilistic Noninterference for Multi-threaded Programs

Andrei Sabelfeld, David Sands
Proceedings of the 13th IEEE Computer Security Foundations Workshop, p. 200-214
Paper in proceeding

Download publication list

You can download this list to your computer.

Filter and download publication list

As logged in user (Chalmers employee) you find more export functions in MyResearch.

You may also import these directly to Zotero or Mendeley by using a browser plugin. These are found herer:

Zotero Connector
Mendeley Web Importer

The service SwePub offers export of contents from Research in other formats, such as Harvard and Oxford in .RIS, BibTex and RefWorks format.

Showing 11 research projects

2021–2023

SEBRA: SEcuring BRowser Extensions by Information Flow Analysis

Andrei Sabelfeld Information Security
Facebook, Inc.

2021–2022

Mint: Minimizing Code and Data in Complex Systems”

Andrei Sabelfeld Information Security
Facebook, Inc.

2019–2022

PrinSec: Principled Security for Emerging Application Domains

Andrei Sabelfeld Information Security
Olaf Landsiedel Networks and Systems (Chalmers)
Swedish Research Council (VR)

1 publication exists
2018–2020

FlowShield: Securing Web Applications by Information Flow Tracking

Andrei Sabelfeld Information Security
European Research Council (ERC)

2018–2023

WebSec: Securing Web-driven Systems

Andrei Sabelfeld Information Security
David Sands Information Security
Alejandro Russo Information Security
Swedish Foundation for Strategic Research (SSF)

30 publications exist
2016–2021

WASP - Security for Autonomous Systems

Andrei Sabelfeld Information Security
Knut and Alice Wallenberg Foundation

3 publications exist
2016–2016

FlexCSP - Putting Content Security Policy to work for Practical Web Applications

Andrei Sabelfeld Information Security
Google Ireland Ltd

2015–2018

AppFlow: Putting Information Flow Control to Work

David Sands Software Technology (Chalmers)
Andrei Sabelfeld Information Security
Alejandro Russo Information Security
Niklas Broberg Information Security
Swedish Research Council (VR)

1 publication exists
2015–2018

DecentLP: Robust decentralized location privacy

Andrei Sabelfeld Software Technology (Chalmers)
Swedish Research Council (VR)

2013–2017

Programming Language-Based Security To Rescue (PROSECUTOR)

Andrei Sabelfeld Software Technology (Chalmers)
European Commission (EC)

1 publication exists
2012–2016

Data-Driven Secure Business Intelligence (DataBIN)

David Sands Software Technology (Chalmers)
Devdatt Dubhashi Computing Science (Chalmers)
Peter Damaschke Computing Science (Chalmers)
Gerardo Schneider Software Technology (Chalmers)
Olof Mogren Computing Science (Chalmers)
Raul Pardo Jimenez Software Technology (Chalmers)
Hamid Ebadi Tavallaei Software Technology (Chalmers)
Fredrik Johansson Computing Science (Chalmers)
Andrei Sabelfeld Software Technology (Chalmers)
Swedish Foundation for Strategic Research (SSF)

There might be more projects where Andrei Sabelfeld participates, but you have to be logged in as a Chalmers employee to see them.

Feedback and support

If you have questions, need help, find a bug or just want to give us feedback you may use this form, or contact us per e-mail research.lib@chalmers.se.

About

Research.chalmers.se contains research information from Chalmers University of Technology, Sweden. It includes information on projects, publications, research funders and collaborations.

More about coverage period and what is publicly available

Privacy and cookies

Accessibility

Citation Style Language
citeproc-js (Frank Bennett)

Links

Chalmers Library
Chalmers Research
Chalmers Student Theses

Chalmers University of Technology

SE-412 96 GOTHENBURG, SWEDEN
PHONE: +46 (0)31-772 10 00
WWW.CHALMERS.SE