Deian Stefan

Basavesh Ammanaghatta Shivakumar

Dagstuhl Reports, March, 2023

MSWasm: Soundly Enforcing Memory-Safe Execution of Unsafe Code.

[BibT_eX]

[DOI]

Proc. ACM Program. Lang., January, 2023

Robust Constant-Time Cryptography.

[BibT_eX]

[DOI]

Matthew Kolosick

CoRR, 2023

Half&Half: Demystifying Intel's Directional Branch Predictors for Fast, Secure Partitioned Execution.

[BibT_eX]

[DOI]

Proceedings of the 44th IEEE Symposium on Security and Privacy, 2023

WaVe: a verifiably secure WebAssembly sandboxing runtime.

[BibT_eX]

[DOI]

Proceedings of the 44th IEEE Symposium on Security and Privacy, 2023

Going beyond the Limits of SFI: Flexible and Secure Hardware-Assisted In-Process Isolation with HFI.

[BibT_eX]

[DOI]

Anjo Vahldiek-Oberwagner

Proceedings of the 28th ACM International Conference on Architectural Support for Programming Languages and Operating Systems, 2023

2022

Blocked or Broken? Automatically Detecting When Privacy Interventions Break Websites.

[BibT_eX]

[DOI]

Proc. Priv. Enhancing Technol., 2022

Isolation without taxation: near-zero-cost transitions for WebAssembly and SFI.

[BibT_eX]

[DOI]

Proc. ACM Program. Lang., 2022

MSWasm: Soundly Enforcing Memory-Safe Execution of Unsafe Code.

[BibT_eX]

[DOI]

CoRR, 2022

From Fine- to Coarse-Grained Dynamic Information Flow Control and Back, a Tutorial on Dynamic Information Flow.

[BibT_eX]

[DOI]

CoRR, 2022

A Turning Point for Verified Spectre Sandboxing.

[BibT_eX]

[DOI]

CoRR, 2022

SoK: Practical Foundations for Software Spectre Defenses.

[BibT_eX]

[DOI]

Proceedings of the 43rd IEEE Symposium on Security and Privacy, 2022

2021

Automatically eliminating speculative leaks from cryptographic code with blade.

[BibT_eX]

[DOI]

Marco Vassena

Proc. ACM Program. Lang., 2021

SoK: Practical Foundations for Spectre Defenses.

[BibT_eX]

[DOI]

CoRR, 2021

Isolation Without Taxation: Near Zero Cost Transitions for SFI.

[BibT_eX]

[DOI]

CoRR, 2021

Solver-Aided Constant-Time Circuit Verification.

[BibT_eX]

[DOI]

CoRR, 2021

Swivel: Hardening WebAssembly against Spectre.

[BibT_eX]

[DOI]

Anjo Vahldiek-Oberwagner

Proceedings of the 30th USENIX Security Symposium, 2021

Tutorial: Sandboxing (unsafe) C code with RLBox.

[BibT_eX]

[DOI]

Shravan Narayan

Proceedings of the IEEE Secure Development Conference, 2021

Scooter & Sidecar: a domain-specific approach to writing secure database migrations.

[BibT_eX]

[DOI]

Proceedings of the PLDI '21: 42nd ACM SIGPLAN International Conference on Programming Language Design and Implementation, 2021

STORM: Refinement Types for Secure Web Applications.

[BibT_eX]

[DOI]

Proceedings of the 15th USENIX Symposium on Operating Systems Design and Implementation, 2021

Доверя'й, но проверя'й: SFI safety for native-compiled Wasm.

[BibT_eX]

[DOI]

Proceedings of the 28th Annual Network and Distributed System Security Symposium, 2021

SugarCoat: Programmatically Generating Privacy-Preserving, Web-Compatible Resource Replacements for Content Blocking.

[BibT_eX]

[DOI]

Proceedings of the CCS '21: 2021 ACM SIGSAC Conference on Computer and Communications Security, Virtual Event, Republic of Korea, November 15, 2021

Solver-Aided Constant-Time Hardware Verification.

[BibT_eX]

[DOI]

Proceedings of the CCS '21: 2021 ACM SIGSAC Conference on Computer and Communications Security, Virtual Event, Republic of Korea, November 15, 2021

2020

The Road to Less Trusted Code: Lowering the Barrier to In-Process Sandboxing.

[BibT_eX]

[DOI]

Liquid information flow control.

[BibT_eX]

[DOI]

Proc. ACM Program. Lang., 2020

Automatically Eliminating Speculative Leaks With Blade.

[BibT_eX]

[DOI]

Marco Vassena

CoRR, 2020

Retrofitting Fine Grain Isolation in the Firefox Renderer (Extended Version).

[BibT_eX]

[DOI]

CoRR, 2020

Retrofitting Fine Grain Isolation in the Firefox Renderer.

[BibT_eX]

[DOI]

Proceedings of the 29th USENIX Security Symposium, 2020

Sys: A Static/Symbolic Tool for Finding Good Bugs in Good (Browser) Code.

[BibT_eX]

[DOI]

Fraser Brown

Dawson R. Engler

Proceedings of the 29th USENIX Security Symposium, 2020

Constant-time foundations for the new spectre era.

[BibT_eX]

[DOI]

Sunjay Cauligi

Proceedings of the 41st ACM SIGPLAN International Conference on Programming Language Design and Implementation, 2020

Towards a verified range analysis for JavaScript JITs.

[BibT_eX]

[DOI]

Proceedings of the 41st ACM SIGPLAN International Conference on Programming Language Design and Implementation, 2020

2019

CT-wasm: type-driven secure cryptography for the web ecosystem.

[BibT_eX]

[DOI]

Proc. ACM Program. Lang., 2019

From fine- to coarse-grained dynamic information flow control and back.

[BibT_eX]

[DOI]

Proc. ACM Program. Lang., 2019

Pretend synchrony: synchronous verification of asynchronous distributed programs.

[BibT_eX]

[DOI]

Proc. ACM Program. Lang., 2019

Gobi: WebAssembly as a Practical Path to Library Sandboxing.

[BibT_eX]

[DOI]

CoRR, 2019

Towards Constant-Time Foundations for the New Spectre Era.

[BibT_eX]

[DOI]

Sunjay Cauligi

Tamara Rezk

Gilles Barthe

CoRR, 2019

IODINE: Verifying Constant-Time Execution of Hardware.

[BibT_eX]

[DOI]

Proceedings of the 28th USENIX Security Symposium, 2019

Foundations for Parallel Information Flow Control Runtime Systems.

[BibT_eX]

[DOI]

Proceedings of the Principles of Security and Trust - 8th International Conference, 2019

FaCT: a DSL for timing-sensitive computation.

[BibT_eX]

[DOI]

Proceedings of the 40th ACM SIGPLAN Conference on Programming Language Design and Implementation, 2019

Position Paper: Progressive Memory Safety for WebAssembly.

[BibT_eX]

[DOI]

Proceedings of the 8th International Workshop on Hardware and Architectural Support for Security and Privacy, 2019

Towards verified programming of embedded devices.

[BibT_eX]

[DOI]

Proceedings of the Design, Automation & Test in Europe Conference & Exhibition, 2019

2018

Browser history re: visited.

[BibT_eX]

[DOI]

Proceedings of the 12th USENIX Workshop on Offensive Technologies, 2018

Towards Verified, Constant-time Floating Point Operations.

[BibT_eX]

[DOI]

Proceedings of the 2018 ACM SIGSAC Conference on Computer and Communications Security, 2018

2017

Flexible dynamic information flow control in the presence of exceptions.

[BibT_eX]

[DOI]

J. Funct. Program., 2017

Hails: Protecting data privacy in untrusted web applications.

[BibT_eX]

[DOI]

J. Comput. Secur., 2017

Finding and Preventing Bugs in JavaScript Bindings.

[BibT_eX]

[DOI]

Proceedings of the 2017 IEEE Symposium on Security and Privacy, 2017

FaCT: A Flexible, Constant-Time Programming Language.

[BibT_eX]

[DOI]

Proceedings of the IEEE Cybersecurity Development, SecDev 2017, Cambridge, MA, USA, 2017

2016

PLAS'16: ACM SIGPLAN 11th Workshop on Programming Languages and Analysis for Security.

[BibT_eX]

[DOI]

Toby C. Murray

Proceedings of the 2016 ACM SIGSAC Conference on Computer and Communications Security, 2016

2015

Principled and practical web application security.

[BibT_eX]

[DOI]

PhD thesis, 2015

IFC Inside: Retrofitting Languages with Dynamic Information Flow Control (Extended Version).

[BibT_eX]

[DOI]

CoRR, 2015

IFC Inside: Retrofitting Languages with Dynamic Information Flow Control.

[BibT_eX]

[DOI]

Proceedings of the Principles of Security and Trust - 4th International Conference, 2015

The Most Dangerous Code in the Browser.

[BibT_eX]

[DOI]

Proceedings of the 15th Workshop on Hot Topics in Operating Systems, 2015

2014

Protecting Users by Confining JavaScript with COWL.

[BibT_eX]

[DOI]

Proceedings of the 11th USENIX Symposium on Operating Systems Design and Implementation, 2014

Building secure systems with LIO (demo).

[BibT_eX]

[DOI]

Proceedings of the 2014 ACM SIGPLAN symposium on Haskell, 2014

Demo proposal: making web applications -XSafe.

[BibT_eX]

[DOI]

Proceedings of the 2014 ACM SIGPLAN symposium on Haskell, 2014

Building Secure Systems with LIO (Demo).

[BibT_eX]

[DOI]

David Mazières

Proceedings of the Ninth Workshop on Programming Languages and Analysis for Security, 2014

On Dynamic Flow-Sensitive Floating-Label Systems.

[BibT_eX]

[DOI]

Pablo Buiras

Alejandro Russo

Proceedings of the IEEE 27th Computer Security Foundations Symposium, 2014

2013

A Library for Removing Cache-Based Attacks in Concurrent Information Flow Systems.

[BibT_eX]

[DOI]

Proceedings of the Trustworthy Global Computing - 8th International Symposium, 2013

Toward Principled Browser Security.

[BibT_eX]

[DOI]

Proceedings of the 14th Workshop on Hot Topics in Operating Systems, 2013

Eliminating Cache-Based Timing Attacks with Instruction-Based Scheduling.

[BibT_eX]

[DOI]

Proceedings of the Computer Security - ESORICS 2013, 2013

2012

Data-Provenance Verification For Secure Hosts.

[BibT_eX]

[DOI]

IEEE Trans. Dependable Secur. Comput., 2012

Information-flow control for programming on encrypted data.

[BibT_eX]

[DOI]

IACR Cryptol. ePrint Arch., 2012

Robustness of keystroke-dynamics based biometrics against synthetic forgeries.

[BibT_eX]

[DOI]

Xiaokui Shu

Danfeng (Daphne) Yao

Comput. Secur., 2012

Addressing covert termination and timing channels in concurrent information flow systems.

[BibT_eX]

[DOI]

Proceedings of the ACM SIGPLAN International Conference on Functional Programming, 2012

2011

A Domain-Specific Language for Computing on Encrypted Data.

[BibT_eX]

[DOI]

IACR Cryptol. ePrint Arch., 2011

Disjunction Category Labels.

[BibT_eX]

[DOI]

Proceedings of the Information Security Technology for Applications, 2011

Flexible dynamic information flow control in Haskell.

[BibT_eX]

[DOI]

Proceedings of the 4th ACM SIGPLAN Symposium on Haskell, 2011

A Domain-Specific Language for Computing on Encrypted Data (Invited Talk).

[BibT_eX]

[DOI]

Proceedings of the IARCS Annual Conference on Foundations of Software Technology and Theoretical Computer Science, 2011

2010

Fast Software AES Encryption.

[BibT_eX]

[DOI]

Proceedings of the Fast Software Encryption, 17th International Workshop, 2010

Keystroke-dynamics authentication against synthetic forgeries.

[BibT_eX]

[DOI]

Danfeng Yao

Proceedings of the 6th International Conference on Collaborative Computing: Networking, 2010

Performance Analysis of the SHA-3 Candidates on Exotic Multi-core Architectures.

[BibT_eX]

[DOI]

Joppe W. Bos

Proceedings of the Cryptographic Hardware and Embedded Systems, 2010

Improved Linear Differential Attacks on CubeHash.

[BibT_eX]

[DOI]

Proceedings of the Progress in Cryptology, 2010

2009

Fast Implementations of AES on Various Platforms.

[BibT_eX]

[DOI]

Joppe W. Bos

Dag Arne Osvik

IACR Cryptol. ePrint Arch., 2009

User-Assisted Host-Based Detection of Outbound Malware Traffic.

[BibT_eX]

[DOI]

Proceedings of the Information and Communications Security, 11th International Conference, 2009

Hardware-Optimized Ziggurat Algorithm for High-Speed Gaussian Random Number Generators.

[BibT_eX]

Proceedings of the 2009 International Conference on Engineering of Reconfigurable Systems & Algorithms, 2009

Hardware Framework for the Rabbit Stream Cipher.

[BibT_eX]

[DOI]

Proceedings of the Information Security and Cryptology - 5th International Conference, 2009

2008

On Parallelizing the CryptMT Stream Cipher.

[BibT_eX]

[DOI]

David B. Nummey

Jared Harwayne-Gidansky

Ishaan L. Dalal

Proceedings of the 67th IEEE Vehicular Technology Conference, 2008

A hardware framework for the fast generation of multiple long-period random number streams.

[BibT_eX]

[DOI]

Ishaan L. Dalal

Proceedings of the ACM/SIGDA 16th International Symposium on Field Programmable Gate Arrays, 2008

Low discrepancy sequences for Monte Carlo simulations on reconfigurable platforms.

[BibT_eX]

[DOI]

Ishaan L. Dalal

Jared Harwayne-Gidansky

Proceedings of the 19th IEEE International Conference on Application-Specific Systems, 2008

2007

Prostate ultrasound image processing.

[BibT_eX]

[DOI]