Abstract
LIO is a decentralized information flow control (DIFC) system, implemented in Haskell. In this demo proposal, we give an overview of the LIO library and show how LIO can be used to build secure systems. In particular, we show how to specify high-level security policies in the context of web applications, and describe how LIO automatically enforces these policies even in the presence of untrusted code.
- D. B. Giffin, A. Levy, D. Stefan, D. Terei, D. Mazi'eres, J. Mitchell, and A. Russo. Hails: Protecting data privacy in untrusted web applications. In Proc. of the 10th OSDI, pages 47--60. USENIX, 2012. Google Scholar
Digital Library
- C. Hriţcu, M. Greenberg, B. Karel, B. C. Pierce, and G. Morrisett. All your ifcexception are belong to us. In Proc. of the IEEE Symp. on Security and Privacy, 2013. Google Scholar
Digital Library
- A. C. Myers and B. Liskov. A decentralized model for information flow control. In Proc. of the 16th SOSP, pages 129--142, 1997. Google Scholar
Digital Library
- A. Sabelfeld and A. C. Myers. Language-based information-flow security. IEEE Journal on Selected Areas in Communications, 21(1), 2003. Google Scholar
Digital Library
- D. Stefan, A. Russo, D. Mazi'eres, and J. C. Mitchell. Disjunction category labels. In NordSec 2011, LNCS. Springer, 2011. Google Scholar
Digital Library
- D. Stefan, A. Russo, J. C. Mitchell, and D. Mazi'eres. Flexible dynamic information flow control in Haskell. In Haskell Symposium, pages 95--106. ACM SIGPLAN, 2011. Google Scholar
Digital Library
- D. Stefan, A. Russo, P. Buiras, A. Levy, J. C.Mitchell, and D.Mazi'eres. Addressing covert termination and timing channels in concurrent information flow systems. In Proc. of the 17th ICFP, 2012. Google Scholar
Digital Library
- D. Stefan, A. Russo, J. C. Mitchell, and D. Mazi'eres. Flexible dynamic information flow control in the presence of exceptions. Arxiv preprint arXiv:1207.1457, 2012.Google Scholar
- D. Terei, S.Marlow, S. Peyton Jones, and D. Mazi'eres. Safe Haskell. In ACM SIGPLAN Notices, volume 47, pages 137--148. ACM, 2012. Google Scholar
Digital Library
Index Terms
Building secure systems with LIO (demo)
Recommendations
Building secure systems with LIO (demo)
Haskell '14: Proceedings of the 2014 ACM SIGPLAN symposium on HaskellLIO is a decentralized information flow control (DIFC) system, implemented in Haskell. In this demo proposal, we give an overview of the LIO library and show how LIO can be used to build secure systems. In particular, we show how to specify high-level ...
Building Secure Systems with LIO (Demo)
PLAS'14: Proceedings of the Ninth Workshop on Programming Languages and Analysis for SecurityLIO is an information flow control (IFC) system. In this demo, we give an overview of the Haskell LIO library and show how LIO can be used to build secure systems. In particular, we show how to build secure web applications with high-level data-security ...
Demo proposal: making web applications -XSafe
Haskell '14: Proceedings of the 2014 ACM SIGPLAN symposium on HaskellSimple is a web framework for Haskell. Simple came out of our work on Hails, a platform for secure web applications. For Hails, we needed a flexible web framework that uses no unsafe language features and can be used to build apps outside the IO monad. ...







Comments