Ct-wasm: type-driven secure cryptography for the web ecosystem
A significant amount of both client and server-side cryptography is implemented in
JavaScript. Despite widespread concerns about its security, no other language has been …
JavaScript. Despite widespread concerns about its security, no other language has been …
Hails: Protecting data privacy in untrusted web applications
Modern extensible web platforms like Facebook and Yammer depend on third-party
software to offer a rich experience to their users. Unfortunately, users running a third-party …
software to offer a rich experience to their users. Unfortunately, users running a third-party …
HLIO: Mixing static and dynamic typing for information-flow control in Haskell
Information-Flow Control (IFC) is a well-established approach for allowing untrusted code to
manipulate sensitive data without disclosing it. IFC is typically enforced via type systems and …
manipulate sensitive data without disclosing it. IFC is typically enforced via type systems and …
Ownership is theft: Experiences building an embedded OS in Rust
Rust, a new systems programming language, provides compile-time memory safety checks
to help eliminate runtime bugs that manifest from improper memory management. This …
to help eliminate runtime bugs that manifest from improper memory management. This …
LWeb: Information flow security for multi-tier web applications
This paper presents LWeb, a framework for enforcing label-based, information flow policies
in database-using web applications. In a nutshell, LWeb marries the LIO Haskell IFC …
in database-using web applications. In a nutshell, LWeb marries the LIO Haskell IFC …
A programming framework for differential privacy with accuracy concentration bounds
E Lobo-Vesga, A Russo… - 2020 IEEE Symposium on …, 2020 - ieeexplore.ieee.org
Differential privacy offers a formal framework for reasoning about privacy and accuracy of
computations on private data. It also offers a rich set of building blocks for constructing …
computations on private data. It also offers a rich set of building blocks for constructing …
Functional pearl: two can keep a secret, if one of them uses Haskell
A Russo - ACM SIGPLAN Notices, 2015 - dl.acm.org
For several decades, researchers from different communities have independently focused
on protecting confidentiality of data. Two distinct technologies have emerged for such …
on protecting confidentiality of data. Two distinct technologies have emerged for such …
Testing differential privacy with dual interpreters
Applying differential privacy at scale requires convenient ways to check that programs
computing with sensitive data appropriately preserve privacy. We propose here a fully …
computing with sensitive data appropriately preserve privacy. We propose here a fully …
A programming language for data privacy with accuracy estimations
E Lobo-Vesga, A Russo, M Gaboardi - ACM Transactions on …, 2021 - dl.acm.org
Differential privacy offers a formal framework for reasoning about the privacy and accuracy
of computations on private data. It also offers a rich set of building blocks for constructing …
of computations on private data. It also offers a rich set of building blocks for constructing …
Flexible dynamic information flow control in the presence of exceptions
We describe a language-based, dynamic information flow control (IFC) system called LIO.
Our system presents a new design point for IFC, influenced by the challenge of …
Our system presents a new design point for IFC, influenced by the challenge of …