Karl Crary, Robert Harper, Frank Pfenning, Benjamin C. Pierce, Stephanie Weirich, Stephan Zdancewic. Manifest Security. White Paper. 2007. [pdf]

Technical Publications and Drafts


Avijit Kumar and Robert Harper. A Language For Access Control. Carnegie Mellon University Technical Report CMU-CS-07-140. 2007. [pdf]

Tom Murphy VII, Karl Crary, and Robert Harper. Type-Safe Distributed Programming with ML5. Trustworthy Global Computing, 2007. [pdf]


Aaron Bohannon. Building Secure Web Mashups. 2008. [pdf]

Limin Jia, Jeffrey A. Vaughan, Karl Mazurak, Jianzhou Zhao, Luke Zarko, Joseph Schorr, and Steve Zdancewic. Aura: A programming language for authorization and audit. To appear in International Conference on Functional Programming, 2008. [draft-pdf]

Daniel R. Licata and Noam Zeilberger and Robert Harper. Focusing on Binding and Computation. IEEE Symposium on Logic in Computer Science, 2008. [pdf]
(Long version Carnegie Mellon University Technical Report CMU-CS-08-101 [pdf])

Tom Murphy VII. Modal Types for Mobile Code. Ph.D. Dissertation, 2008. [pdf]
(Also available as Carnegie Mellon University Technical Report CMU-CS-08-126.)

Jeffery A. Vaughan, Limin Jia, Karl Mazurak, and Steve Zdancewic. Evidence Based Audit. IEEE Computer Security Foundations, 2008. [pdf]
(Long version U. Pennsylvania Technical Report MS-CIS-08-09 [pdf])


This research was sponsored by the National Science Foundation under grant number CNS-0716469. The views and conclusions contained in this document are those of the author and should not be interpreted as representing the official policies, either expressed or implied, of any sponsoring institution, the U.S. government or any other entity.