Foundations of Information-Flow Control and Effects

Carlos Tomé Cortiñas

Foundations of Information-Flow Control and Effects
Licentiate thesis, 2022

In programming language research, information-flow control (IFC) is a technique for enforcing a variety of security aspects, such as confidentiality of data,
on programs. This Licenciate thesis makes novel contributions to the theory and foundations of IFC in the following ways: Chapter A presents a new proof method for showing the usual desired property of noninterference; Chapter B shows how to securely extend the concurrent IFC language MAC with asynchronous exceptions; and, Chapter C presents a new and simpler language for IFC with effects based on an explicit separation of pure and effectful computations.

Information-flow control

Programming languages

Language-based security

Lecture hall EF, Hörsalsvägen 11, Chalmers

Opponent: Dominique Devriese, Professor, KU Leuven, Belgium

Online defence

Author

Carlos Tomé Cortiñas

Chalmers, Computer Science and Engineering (Chalmers), Information Security

Other publications Research

Securing Asynchronous Exceptions

Proceedings - IEEE Computer Security Foundations Symposium,;Vol. 2020-June(2020)p. 214-229

Paper in proceeding

Simple Noninterference by Normalization

Proceedings of the ACM Conference on Computer and Communications Security,;(2019)p. 61-72

Paper in proceeding

Tomé Cortiñas, C, Russo, A. Pure Information-Flow Control with Effects Made Simple

WebSec: Securing Web-driven Systems

Swedish Foundation for Strategic Research (SSF) (RIT17-0011), 2018-03-01 -- 2023-02-28.

Show Project

Subject Categories

Computer Science

Publisher

Chalmers