Today's systems produce a rapidly exploding amount of data, and the data further derives
more data, forming a complex data propagation network that we call the data's lineage …

Smartphone users often use private and enterprise data with untrusted third party
applications. The fundamental lack of secrecy guarantees in smartphone OSes, such as …

The POSIX standard, developed 25 years ago, comprises a set of operating system (OS)
abstractions that aid application portability across UNIX-based OSes. While OSes and …

We introduce TxFS, a transactional file system that builds upon a file system's atomic-update
mechanism such as journaling. Though prior work has explored a number of transactional …

Developers of cloud-connected mobile apps need to ensure the consistency of application
and user data across multiple devices. Mobile apps demand different choices of distributed …

Billions of users rely on the security of the Android platform to protect phones, tablets, and
many different types of consumer electronics. While Android's permission model is well …

We present Maxoid, a system that allows an Android app to process its sensitive data by
securely invoking other, untrusted apps. Maxoid provides secrecy and integrity for both the …

In mobile platforms and their app markets, controlling app permissions and preventing
abuse of private information are crucial challenges. Information Flow Control (IFC) is a …

Dynamic taint tracking is an information flow analysis that can be applied to many areas of
testing. Phosphor is the first portable, accurate and performant dynamic taint tracking system …

Conventional data deletion is implemented for reclaiming storage as a rapid operation.
However, the content of the deleted file still persists on the storage medium. Secure data …