skip to content
UC Santa Cruz
User Tools
Log In
Site Tools
Search
Tools
Show pagesource
Old revisions
Backlinks
Recent Changes
Media Manager
Sitemap
Log In
>
Recent Changes
Media Manager
Sitemap
You are here:
slang
»
readinggroup
»
spring09
readinggroup:spring09
Spring 2009
April 13 Information Flow Analysis
Termination-Insensitive Noninterference Leaks More Than Just a Bit
. Aslan Askarov et al. ESORICS 2008.
Contributions
:
Addressed problems with information flow analysis and intermediary output.
New model for analyzing these types of applications.
Questions
:
This model is deterministic. Would non-determinism break the model?
Cross site scripting prevention with dynamic data tainting and static analysis
. Vogt et al. 2007.
Contributions:
Approached XSS attacks from the client-side (previous XSS defenses have focused on the server side).
Applied information flow techniques to XSS prevention (though data tainting seems to have been used here before).
Heavy-duty, real-world information flow analysis case.
Questions:
Is this approach more broadly applicable to client-side information flow analysis?
April 16
Aspect-Oriented Programming
. Gregor Kiczales et al. ACM Comput. Surv. 28(4es): 154 (1996).
April 23
A Generic Type-and-Effect System
. Marino and Millstein. TLDI 2009.
April 30
JFlow: Practical Mostly-Static Information Flow Control
. Andrew Myers. POPL 1999.
May 7
tba
May 14
tba
May 21
tba
May 28
tba
June 4
tba
June 11
tba
readinggroup/spring09.txt
· Last modified: 2014/03/04 03:32 by
cschuster
Page Tools
Show pagesource
Old revisions
Backlinks
Back to top