Given two random variables X and Y, an operational approach is undertaken to quantify the
“leakage” of information from X to Y. The resulting measure L (X→ Y) is called maximal …

We propose a method, based on program analysis and transformation, for eliminating timing
side channels in software code that implements security-critical applications. Our method …

We introduce a privacy measure called pointwise maximal leakage, generalizing the pre-
existing notion of maximal leakage, which quantifies the amount of information leaking about …

Local differential privacy (LPD) is a distributed variant of differential privacy (DP) in which the
obfuscation of the sensitive information is done at the level of the individual records, and in …

In computer security, it is frequently necessary in practice to accept some leakage of
confidential information. This motivates the development of theories of Quantitative …

We introduce a gain function viewpoint of information leakage by proposing maximal-
leakage, a rich class of operationally meaningful leakage measures that subsumes recently …

Industries and governments are increasingly compelled by regulations and public pressure
to handle sensitive information responsibly. Regulatory requirements and user expectations …

Differential Privacy protects individuals' data when statistical queries are published from
aggregated databases: applying" obfuscating" mechanisms to the query results makes the …

We experimentally evaluate program transformations for removing timing side-channel
vulnerabilities wrt. security and overhead. Our study of four well-known transformations …

Quantitative information flow aims to assess and control the leakage of sensitive information
by computer systems. A key insight in this area is that no single leakage measure is …