Andrei Sabelfeld

Professor at Chalmers, Computer Science and Engineering (Chalmers), Information Security

Projects

2016–2016

FlexCSP - Putting Content Security Policy to work for Practical Web Applications

Andrei Sabelfeld Software Technology, Group A
Google Ireland Ltd

2015–2018

DecentLP: Robust decentralized location privacy

Andrei Sabelfeld Software Technology (Chalmers)
Swedish Research Council (VR)

2013–2017

Programming Language-Based Security To Rescue (PROSECUTOR)

Andrei Sabelfeld Software Technology (Chalmers)
European Commission (FP7)

2012–2016

Data-Driven Secure Business Intelligence (DataBIN)

David Sands Software Technology (Chalmers)
Andrei Sabelfeld Software Technology (Chalmers)
Peter Damaschke Computing Science (Chalmers)
Devdatt Dubhashi Computing Science (Chalmers)
Olof Mogren Computing Science (Chalmers)
Fredrik Johansson Computing Science (Chalmers)
Raul Pardo Jimenez Software Technology (Chalmers)
Gerardo Schneider Software Technology (Chalmers)
Hamid Ebadi Tavallaei Software Technology (Chalmers)
Swedish Foundation for Strategic Research (SSF)

There might be more projects where Andrei Sabelfeld participates, but you have to be logged in as a Chalmers employee to see them.

Publications

2017

We are family: Relating information-flow trackers

Andrei Sabelfeld, Musard Balliu, Daniel Schoepe
Lecture Notes in Computer Science. Vol. 10492 LNCS, p. 124-145
Conference contribution
2017

Special issue on verified information flow security

Toby Murray, Andrei Sabelfeld, Lujo Bauer
Journal of Computer Security. Vol. 25 (05-apr), p. 319-321
Scientific journal article - non peer reviewed
2017

Measuring login webpage security

Andrei Sabelfeld, Steven Van Acker, Daniel Hausknecht
Proceedings of the ACM Symposium on Applied Computing. Vol. Part F128005, p. 1753-1760
Paper in proceedings
2017

PrivatePool: Privacy-Preserving Ridesharing

Claudio Orlandi, Andrei Sabelfeld, Per Hallgren
Computer Security Foundations
Journal article
2017

Privacy-Preserving Location-Proximity for Mobile Apps

O.A. Nabah, S. Stirbys, Andrei Sabelfeld et al
Proceedings - 2017 25th Euromicro International Conference on Parallel, Distributed and Network-Based Processing, PDP 2017, p. 337-345
Paper in proceedings
2017

A Principled Approach to Tracking Information Flow in the Presence of Libraries

Daniel Hedin, Andrei Sabelfeld, Frank Piessens et al
Lecture Notes in Computer Science. Vol. 10204, p. 49-70
Paper in proceedings
2017

Discovering Browser Extensions via Web Accessible Resources

Steven Van Acker, Alexander Sjösten, Andrei Sabelfeld
CODASPY 2017 - Proceedings of the 7th ACM Conference on Data and Applications Security and Privacy, p. 329-336
Paper in proceedings
2016

Javascript sandboxing: Isolating and restricting client-side javascript

Andrei Sabelfeld, Steven Van Acker
Lecture Notes in Computer Science. Vol. 9808, p. 32-86
Magazine article
2016

Web Application Security using JSFlow

Daniel Hedin, Andrei Sabelfeld
2015 17th International Symposium on Symbolic and Numeric Algorithms for Scientific Computing, p. 16-19
Conference contribution
2016

Location-enhanced authentication using the IoT because you cannot be in two places at once

D. Damopoulos, Andrei Sabelfeld, G. Portokalidis et al
ACM International Conference Proceeding Series. Vol. 5, p. 251-264
Paper in proceedings
2016

Data Exfiltration in the Face of CSP

Andrei Sabelfeld, Steven Van Acker, Daniel Hausknecht
Proceedings of the 11th ACM on Asia Conference on Computer and Communications Security, p. 853-864
Paper in proceedings
2016

Secure multi-execution: Fine-grained, declassification-aware, and transparent

Willard Thor Rafnsson, Andrei Sabelfeld
Journal of Computer Security. Vol. 24 (1), p. 39-90
Journal article
2016

Progress-sensitive security for SPARK

Willard Thor Rafnsson, Andrei Sabelfeld, D. Garg
Lecture Notes in Computer Science. Vol. 9639, p. 20-37
Paper in proceedings
2016

MaxPace: Speed-Constrained Location Queries

Martin Ochoa, Andrei Sabelfeld, Per Hallgren
Proceedings of the IEEE Conference on Communications and Network Security (CNS), p. 136-144
Paper in proceedings
2016

Let’s face it: Faceted values for taint tracking

Musard Balliu, Andrei Sabelfeld, Frank Piessens et al
Lecture Notes in Computer Science. Vol. 9878 LNCS, 2016, p. 561-580
Paper in proceedings
2016

Location-enhanced Authentication using the IoT

Georgios Portokalidis, Per Hallgren, Ioannis Agadakos et al
Paper in proceedings
2016

Information-flow security for JavaScript and its APIs

Luciano Bello, Andrei Sabelfeld, Daniel Hedin
Journal of Computer Security. Vol. 24 (2), p. 181-234
Journal article
2016

Explicit Secrecy: A Policy for Taint Tracking

Andrei Sabelfeld, Daniel Schoepe, B. C. Pierce et al
1st IEEE European Symposium on Security and Privacy (Euro S&P), Saarbruecken, Germany, Mar 21-24, 2016, p. 15-30
Paper in proceedings
2016

JSLINQ: Building secure applications across tiers

Benjamin Liebe, Daniel Schoepe, Andrei Sabelfeld et al
6th ACM Conference on Data and Application Security and Privacy, CODASPY 2016; New Orleans; United States; 9 March 2016 through 11 March 2016, p. 307-318
Paper in proceedings
2015

Password meters and generators on the web: From large-scale empirical study to getting it right

Andrei Sabelfeld, W. Joosen, Steven Van Acker et al
CODASPY 2015 - Proceedings of the 5th ACM Conference on Data and Application Security and Privacy, p. 253-262
Paper in proceedings
2015

Value-sensitive Hybrid Information Flow Control for a JavaScript-like Language

Daniel Hedin, Luciano Bello, Andrei Sabelfeld
28th IEEE Computer Security Foundations Symposium, CSF 2015, Verona, Italy, 13-17 July. Vol. 2015-September, p. 351-365
Paper in proceedings
2015

Value Sensitivity and Observable Abstract Values for Information Flow Control

Daniel Hedin, Andrei Sabelfeld, Luciano Bello
Lecture Notes in Computer Science. Vol. 9450, p. 63-78
Paper in proceedings
2015

Understanding and Enforcing Opacity

Daniel Schoepe, Andrei Sabelfeld
28th IEEE Computer Security Foundations Symposium, CSF 2015, Verona, Italy, 13 July-17 July. Vol. 2015-September, p. 539-553
Paper in proceedings
2015

BetterTimes: Privacy-assured Outsourced Multiplications for Additively Homomorphic Encryption on Finite Fields

Andrei Sabelfeld, Martin Ochoa, Per Hallgren
Lecture Notes in Computer Science. Vol. 9451, p. 291-309
Paper in proceedings
2015

InnerCircle: A Parallelizable Decentralized Privacy-Preserving Location Proximity Protocol

Per Hallgren, Martin Ochoa, Andrei Sabelfeld
Proceedings of the International Conference on Privacy, Security and Trust (PST), p. 1-6
Paper in proceedings
2015

May I? - Content Security Policy Endorsement for Browser Extensions

Jonas Magazinius, Andrei Sabelfeld, Daniel Hausknecht
Lecture Notes in Computer Science, p. 261-281
Paper in proceedings
2014

JSFlow: Tracking Information Flow in JavaScript and its APIs

Andrei Sabelfeld, Luciano Bello, Daniel Hedin
Proceedings of the ACM Symposium on Applied Computing (SAC), p. 1663-1671
Paper in proceedings
2014

Compositional Information-flow Security for Interactive Systems

Willard Thor Rafnsson, Andrei Sabelfeld
27th IEEE Computer Security Foundations Symposium, CSF 2014, Vienna, Austria, 19-22 July 2014, p. 277-292
Paper in proceedings
2014

SeLINQ: Tracking information across application-database boundaries

Andrei Sabelfeld, Daniel Hedin, Daniel Schoepe
SIGPLAN Notices (ACM Special Interest Group on Programming Languages). Vol. 49 (9), p. 25-38
Paper in proceedings
2014

Architectures for Inlining Security Monitors in Web Application

Jonas Magazinius, Daniel Hedin, Andrei Sabelfeld
Lecture Notes in Computer Science. Vol. 8364, p. 141-160
Paper in proceedings
2013

Secure multi-execution: Fine-grained, declassification-aware, and transparent

Andrei Sabelfeld, Willard Thor Rafnsson
Proceedings of the Computer Security Foundations Workshop, p. 33-48
Paper in proceedings
2013

GlassTube

Daniel T. Mauritzson, Andrei Sabelfeld, Per Hallgren
PLAS '13 (ACM SIGPLAN workshop on Programming languages and analysis for security). Seattle , WA, USA. June 16-19, 2013. Vol. 8, p. 71-82
Paper in proceedings
2013

Securing Class Initialization in Java-like Languages

K. Nakata, Willard Thor Rafnsson, Andrei Sabelfeld
IEEE Transactions on Dependable and Secure Computing. Vol. 10 (1), p. 1-13
Journal article
2013

Polyglots: Crossing Origins by Crossing Formats

Billy Rios, Andrei Sabelfeld, Jonas Magazinius
ACM SIGSAC Conference on Computer and Communications Security, CCS 2013, Berlin, Germany, 4-8 November 2013, p. 753-764
Paper in proceedings
2012

Securing interactive programs

Andrei Sabelfeld, Willard Thor Rafnsson, Daniel Hedin
Proceedings of the Computer Security Foundations Symposium, p. 293-307
Paper in proceedings
2012

Information-flow security for a core of JavaScript

Andrei Sabelfeld, Daniel Hedin
Proceedings of the Computer Security Foundations Symposium, p. 3-18
Paper in proceedings
2012

Boosting the Permissiveness of Dynamic Information-Flow Tracking by Testing

Andrei Sabelfeld, Arnar Birgisson, Daniel Hedin
Lecture Notes in Computer Science. Vol. 7459, p. 55-72
Journal article
2012

On-The-Fly Inlining Of Dynamic Security Monitors

Jonas Magazinius, Andrei Sabelfeld, Alejandro Russo
Computers and Security. Vol. 31 (7), p. 827-843
Journal article
2012

On-The-Fly Inlining Of Dynamic Security Monitors

Alejandro Russo, Jonas Magazinius, Andrei Sabelfeld
Computers and Security. Vol. 31 (7), p. 827-843
Journal article
2011

Capabilities for information flow

Andrei Sabelfeld, Arnar Birgisson, Alejandro Russo
ACM SIGPLAN Workshop on Programming Languages and Analysis for Security, p. article no. 5-
Paper in proceedings
2011

Limiting Information Leakage in Event-based Communication

Willard Thor Rafnsson, Andrei Sabelfeld
ACM SIGPLAN Workshop on Programming Languages and Analysis for Security, p. (Article no. 4)-
Paper in proceedings
2011

Multi-run security

Andrei Sabelfeld, Arnar Birgisson
Lecture Notes in Computer Science, p. 372-391
Paper in proceedings
2011

Decentralized Delimited Release

Jonas Magazinius, Aslan Askarov, Andrei Sabelfeld
Lecture Notes in Computer Science. Vol. 7078, p. 220-237
Paper in proceedings
2011

A Perspective on Information-Flow Control

Andrei Sabelfeld, Daniel Hedin
Paper in proceedings
2011

Decentralized Delimited Release

Andrei Sabelfeld, Jonas Magazinius, Aslan Askarov
Lecture Notes in Computer Science. Vol. 7078, p. 220-237
Paper in proceedings
2011

Multi-run security

Andrei Sabelfeld, Arnar Birgisson
Lecture Notes in Computer Science, p. 372-391
Paper in proceedings
2010

Securing Class Initialization

Andrei Sabelfeld, Keiko Nakata
IFIP Advances in Information and Communication Technology. Vol. 321, p. 48-62
Paper in proceedings
2010

A lattice-based approach to mashup security

Aslan Askarov, Andrei Sabelfeld, Jonas Magazinius
5th ACM Symposium on Information, Computer and Communication Security, ASIACCS 2010; Beijing; 13 April 2010 through 16 April 2010, p. 15-23
Paper in proceedings
2010

Security of Multithreaded Programs by Compilation

Andrei Sabelfeld, Gilles Barthes, Alejandro Russo et al
ACM Transactions on Information and System Security. Vol. 13 (3)
Journal article
2010

Unifying Facets of Information Integrity

Alejandro Russo, Arnar Birgisson, Andrei Sabelfeld
Lecture Notes in Computer Science. Vol. 6503, p. 48-65
Paper in proceedings
2010

On-the-fly inlining of dynamic security monitors

Andrei Sabelfeld, Alejandro Russo, Jonas Magazinius
IFIP Advances in Information and Communication Technology. Vol. 330, p. 173-186
Paper in proceedings
2010

Dynamic vs. Static Flow-Sensitive Security Analysis

Andrei Sabelfeld, Alejandro Russo
Proceedings of the IEEE Computer Security Foundations Symposium, p. 186-199
Paper in proceedings
2009

Secuirty of Multithreaded Programs by Compilation

Gilles Barthe, Alejandro Russo, Tamara Rezk et al
Journal article
2009

Declassification: Dimensions and Principles

Andrei Sabelfeld, David Sands
Journal of Computer Security. Vol. 17 (5), p. 517-548
Journal article
2009

Implicit flows in malicious and nonmalicious code

Li Keqin, Andrei Sabelfeld, Alejandro Russo
Paper in proceedings
2009

Securing Timeout Instructions in Web Applications

Alejandro Russo, Andrei Sabelfeld
Paper in proceedings
2009

Catch Me If You Can: Permissive Yet Secure Error Handling

Aslan Askarov, Andrei Sabelfeld
Paper in proceedings
2009

Tight Enforcement of Information-Release Policies for Dynamic Languages

Aslan Askarov, Andrei Sabelfeld
2009 22nd IEEE Computer Security Foundations Symposium, CSF 2009; Port Jefferson, NY; United States; 8 July 2009 through 10 July 2009, p. 43-59
Paper in proceedings
2009

Tracking Information Flow in Dynamic Tree Structures

Alejandro Russo, Andrey Chudnov, Andrei Sabelfeld
Lecture Notes in Computer Science, p. 86-103
Paper in proceedings
2009

From dynamic to static and back: Riding the roller coaster of information-flow control research

Alejandro Russo, Andrei Sabelfeld
Lecture Notes in Computer Science. Vol. 5947, p. 352-365
Paper in proceedings
2009

Securing Interaction between Threads and the Scheduler in the Presence of Synchronization

Alejandro Russo, Andrei Sabelfeld
Journal of Logic and Algebraic Programming. Vol. 78 (7), p. 593-618
Journal article
2008

Termination-Insensitive Noninterference Leaks More Than Just a Bit.

Andrei Sabelfeld, Sebastian Hunt, David Sands et al
Lecture Notes in Computer Science. Vol. 5283, p. 333-348
Paper in proceedings
2008

Cryptographically-Masked Flows

Aslan Askarov, Daniel Hedin, Andrei Sabelfeld
Theoretical Computer Science. Vol. 402 (2-3), p. 82-101
Journal article
2007

Security of Multithreaded Programs by Compilation

Gilles Barthe, Tamara Rezk, Alejandro Russo et al
Lecture Notes in Computer Science. Vol. 4734, p. 2-18
Paper in proceedings
2007

Localized Delimited Release: Combining the What and Where Dimensions of Information Release

Aslan Askarov, Andrei Sabelfeld
ACM SIGPLAN Workshop on Programming Languages and Analysis for Security, p. 53-60
Paper in proceedings
2007

Closing Internal Timing Channels by Transformation

Alejandro Russo, Andrei Sabelfeld, David Naumann et al
Paper in proceedings
2007

Gradual Release: Unifying Declassification, Encryption and Key Release Policies

Andrei Sabelfeld, Aslan Askarov
Proceedings of the IEEE Symposium on Security and Privacy, p. 207-227
Paper in proceedings
2006

Cryptographically-Masked Flows

Daniel Hedin, Andrei Sabelfeld, Aslan Askarov
Lecture Notes in Computer Science. Vol. 4134, p. 353-369
Paper in proceedings
2006

Securing Interaction between Threads and the Scheduler

Andrei Sabelfeld, Alejandro Russo
Paper in proceedings
2006

Security for Multithreaded Programs under Cooperative Scheduling

Andrei Sabelfeld, Alejandro Russo
Paper in proceedings
2006

Enforcing Robust Declassification and Qualified Robustness

Andrei Sabelfeld, Andrew Myers, Steve Zdancewic
Journal of Computer Security. Vol. 14 (2), p. 157-196
Journal article
2005

Security-typed languages for implementation of cryptographic protocols: A case study

Andrei Sabelfeld, Aslan Askarov
Proceedings of the 10th European Symposium on Research in Computer Security (ESORICS' 2005), LNCS. Vol. 3679, p. 197-221
Paper in proceedings
2005

Bridging Language-Based and Process Calculi Security

Andrei Sabelfeld, Riccardo Focardi, Sabina Rossi
Proceedings of Foundations of Software Science and Computation Structures (FOSSACS'05),. Vol. LNCS (3441), p. 299-315
Paper in proceedings
2005

Dimensions and Principles of Declassification

David Sands, Andrei Sabelfeld
Paper in proceedings
2004

Enforcing Robust Declassification

Andrei Sabelfeld, Steve Zdancewic, Andrew Myers
Proceedings of the 17th IEEE Computer Security Foundations Workshop / edited by Riccardo Focardi, p. 172--186-
Paper in proceedings
2004

A Model for Delimited Information Release

Andrei Sabelfeld, Andrew Myers
Lecture Notes in Computer Science. Vol. 3233, p. 174-191
Journal article
2001

A Per Model of Secure Information Flow in Sequential Programs

David Sands, Andrei Sabelfeld
Higher-Order and Symbolic Computation. Vol. 14 (1), p. 59-91
Journal article
2000

Probabilistic Noninterference for Multi-threaded Programs

David Sands, Andrei Sabelfeld
Proceedings of the 13th IEEE Computer Security Foundations Workshop, p. 200-214
Paper in proceedings