Category: security

Est-ce que mon programme est bien protégé contre les cyberattaques?

Article from Tamara Rezk on cyberattacks published in Le Monde binaire blog: here

Paper on type abstraction for relaxed noninterference accepted at ECOOP 2017

A paper that shows how we can exploit the familiar notion of type abstraction to support expressive declassification policies in a simpler, yet expressive manner, is accepted at ECOOP 2017! Type Abstraction for Relaxed Noninterference. Raimil Cruz, Tamara Rezk, Bernard P. Serpette and Éric Tanter

Paper on CSP-SOP violations accepted at WWW 2017

A paper that shows how the Content Security Policy (CSP), a mechanism designed to mitigate popular web vulnerabilities, can be violated due to the Same Origin Policy (SOP) got accepted at WWW 2017: On the Content Security Policy Violations due to the Same-Origin Policy Francis Some, Nataliia Bielova and Tamara Rezk

Paper on dynamic leakage accepted to PLAS’16

A paper that states the need for a new quantitative information flow measure in case of dynamic program analysis is accepted to the ACM SIGPLAN Workshop on Programming Languages and Analysis for Security (PLAS’16): Dynamic leakage – a need for a new quantitative information flow measure Nataliia Bielova

Paper on information flow monitors accepted to ESORICS’16

A paper that formally compares the Secure Multi-Execution (SME) and Multiple Facets (MF) monitors for information flow control is accepted to the European Symposium on Research in Computer Security (ESORICS’16) Spot the Difference: Secure Multi-Execution and Multiple Facets Nataliia Bielova and Tamara Rezk.

Paper on hybrid monitoring of attacker knowledge accepted to CSF’16

A paper on hybrid information flow monitoring of attacker knowledge is accepted to the IEEE Computer Security Foundations Symposium (CSF’16): Hybrid Monitoring of Attacker Knowledge Frederic Besson, Nataliia Bielova and Thomas Jensen