Steve Zdancewic's Publications
Copyright Information
|
Journal Articles
|
[1]
|
Stephen Tse and Steve Zdancewic.
Run-time principals in information-flow type systems.
Transactions on Programming Languages and Systems, 30(1):6,
2008.
[ PDF
Abstract ]
|
|
[2]
|
Jay Ligatti, David Walker, and Steve Zdancewic.
A Type-theoretic Interpretation of Pointcuts and Advice.
Science of Computer Programming: Special Issue on Foundations of
Aspect-Oriented Programming, pages 240-266, 2006.
[ PDF
Abstract ]
|
|
[3]
|
Andrew C. Myers, Andrei Sabelfeld, and Steve Zdancewic.
Enforcing Robust Declassification and Qualified Robustness.
Journal of Computer Security, 14(2):157-196, 2006.
[ PDF
Abstract ]
|
|
[4]
|
Steve Zdancewic and Andrew C. Myers.
Secure Information Flow via Linear Continuations.
Higher Order and Symbolic Computation, 15(2/3):209-234, 2002.
[ PDF
PS
Abstract ]
|
|
[5]
|
Steve Zdancewic, Lantian Zheng, Nathaniel Nystrom, and Andrew C. Myers.
Secure Program Partitioning.
Transactions on Computer Systems, 20(3):283-328, 2002.
[ PDF
PS
Abstract ]
|
|
[6]
|
Dan Grossman, Greg Morrisett, and Steve Zdancewic.
Syntactic Type Abstraction.
Transactions on Programming Languages and Systems,
22(6):1037-1080, November 2000.
[ PDF
PS
Abstract ]
|
|
Invited Papers
|
[1]
|
Steve Zdancewic.
Challenges for Information-flow Security.
In Proceedings of the 1st International Workshop on the
Programming Language Interference and Dependence (PLID'04), 2004.
(5 pages).
[ PDF ]
|
|
[2]
|
Steve Zdancewic.
A Type System for Robust Declassification.
In Proceedings of the Nineteenth Conference on the Mathematical
Foundations of Programming Semantics (MFPS). Electronic Notes in Theoretical
Computer Science, March 2003.
(16 pages).
[ PDF
PS
Abstract ]
|
|
Conference and Selective Workshop Papers
|
[1]
|
Joe Devietti, Colin Blundell, Milo M.K. Martin, and Steve Zdancewic.
HardBound: Architectural Support for Spatial Safety of the C
Programming Language.
In International Conference on Architectural Support for
Programming Languages and Operating Systems (ASPLOS), March 2008.
[ PDF
Abstract ]
|
|
[2]
|
Jeffrey A. Vaughan and Steve Zdancewic.
A Cryptographic Decentralized Label Model.
In IEEE 2007 Symposium on Security and Privacy (Oakland),
pages 192-206, 2007.
[ PDF
PS
Abstract ]
|
|
[3]
|
Peng Li and Steve Zdancewic.
Combining Events And Threads For Scalable Network Services.
In Proc. 2007 ACM SIGPLAN Conference on Programming Languages
Design and Implementation (PLDI), pages 189-199, 2007.
[ PS
Abstract ]
|
|
[4]
|
Rajeev Alur, Pavol Černý, and Steve Zdancewic.
Preserving Secrecy under Refinement.
In Proc. of 33rd International Colloquium on Automata, Languages
and Programming (ICALP), pages 107-118, 2006.
[ PDF
Abstract ]
|
|
[5]
|
Peng Li and Steve Zdancewic.
Encoding Information Flow in Haskell.
In Proc. of 19th IEEE Computer Security Foundations Workshop
(CSFW), pages 16-27. IEEE Computer Society Press, 2006.
[ PDF
Abstract ]
|
|
[6]
|
Nikhil Swamy, Michael Hicks, Stephen Tse, and Steve Zdancewic.
Managing Policy Updates in Security-Typed Languages.
In Proc. of 19th IEEE Computer Security Foundations Workshop
(CSFW), pages 202-216. IEEE Computer Society Press, 2006.
[ PDF
Abstract ]
|
|
[7]
|
Brian E. Aydemir, Aaron Bohannon, Matthew Fairbairn, J. Nathan Foster,
Benjamin C. Pierce, Peter Sewell, Dimitrios Vytiniotis, Geoffrey Washburn,
Stephanie Weirich, and Steve Zdancewic.
Mechanized Metatheory for the Masses: The POPLMark Challenge.
In International Conference on Theorem Proving in Higher Order
Logics (TPHOLs), pages 50-65, 2005.
[ PDF
Abstract ]
|
|
[8]
|
Stephen Tse and Steve Zdancewic.
Designing a Security-typed Language with Certificate-based
Declassification.
In Proc. of the 14th European Symposium on Programming (ESOP),
volume 3444, pages 279-294, 2005.
[ PDF
Abstract ]
|
|
[9]
|
Peng Li and Steve Zdancewic.
Practical Information-flow Control in Web-based Information
Systems.
In Proc. of 18th IEEE Computer Security Foundations Workshop
(CSFW), pages 2-15, 2005.
[ PDF
Abstract ]
|
|
[10]
|
Peng Li and Steve Zdancewic.
Downgrading Policies and Relaxed Noninterference.
In Proc. 32nd ACM Symp. on Principles of Programming Languages
(POPL), pages 158-170, January 2005.
[ PDF
Abstract ]
|
|
[11]
|
Peng Li and Steve Zdancewic.
Advanced Control Flow in Java Card Programming.
In Proceedings of the 2004 ACM SIGPLAN/SIGBED Conference on
Languages, Compilers, and Tools for Embedded Systems (LCTES), pages
165-174, June 2004.
[ PDF
Abstract ]
|
|
[12]
|
Stephen Tse and Steve Zdancewic.
Run-time Principals in Information-flow Type Systems.
In IEEE 2004 Symposium on Security and Privacy (Oakland), pages
179-193. IEEE Computer Society Press, May 2004.
[ PDF
PS
Abstract ]
|
|
[13]
|
Andrew C. Myers, Andrei Sabelfeld, and Steve Zdancewic.
Enforcing Robust Declassification.
In Proc. of 17th IEEE Computer Security Foundations Workshop
(CSFW), pages 172-186, 2004.
[ PDF
Abstract ]
|
|
[14]
|
David Walker, Steve Zdancewic, and Jay Ligatti.
A Theory of Aspects.
In Proc. of the 8th ACM SIGPLAN International Conference on
Functional Programming (ICFP), pages 127-139, Upsala, Sweden, August 2003.
[ PDF
PS
Abstract ]
|
|
[15]
|
Steve Zdancewic and Andrew C. Myers.
Observational Determinism for Concurrent Program Security.
In Proc. of 16th IEEE Computer Security Foundations Workshop
(CSFW), pages 29-45, Asilomar, CA, July 2003.
[ PDF
PS
Abstract ]
|
|
[16]
|
Lantian Zheng, Stephen Chong, Steve Zdancewic, and Andrew C. Myers.
Building Secure Distributed Systems Using Replication and
Partitioning.
In IEEE 2003 Symposium on Security and Privacy (Oakland),
pages 236-250. IEEE Computer Society Press, 2003.
[ PDF
PS
Abstract ]
|
|
[17]
|
Steve Zdancewic, Lantian Zheng, Nathaniel Nystrom, and Andrew C. Myers.
Untrusted Hosts and Confidentiality: Secure Program
Partitioning.
In Proc. 18th ACM Symp. on Operating System Principles
(SOSP), volume 35(5) of Operating Systems Review, pages 1-14, Banff,
Canada, October 2001.
[ PDF
PS
Abstract ]
|
|
[18]
|
Steve Zdancewic and Andrew C. Myers.
Robust Declassification.
In Proc. of 14th IEEE Computer Security Foundations Workshop
(CSFW), pages 15-23, Cape Breton, Canada, June 2001.
[ PDF
PS
Abstract ]
|
|
[19]
|
Steve Zdancewic and Andrew C. Myers.
Secure Information Flow and CPS.
In Proc. of the 10th European Symposium on Programming (ESOP),
volume 2028 of Lecture Notes in Computer Science, pages 46-61, April
2001.
[ PDF
PS
Abstract ]
|
|
[20]
|
Steve Zdancewic, Dan Grossman, and Greg Morrisett.
Principals in Programming Languages: A Syntactic Proof
Technique.
In Proc. of the 4th ACM SIGPLAN International Conference on
Functional Programming (ICFP), pages 197-207, Paris, France, September
1999.
[ PDF
PS
Abstract ]
|
|
Workshop Papers
|
[1]
|
Karl Mazurak and Steve Zdancewic.
ABash: Finding Bugs in Bash Scripts.
In ACM SIGPLAN Workshop on Programming Languages and Analysis
for Security (PLAS), June 2007.
[ PDF
Abstract ]
|
|
[2]
|
Michael Hicks, Stephen Tse, Boniface Hicks, and Steve Zdancewic.
Dynamic updating of information-flow policies.
In Proc. of Foundations of Computer Security Workshop (FCS),
2005.
[ PDF
Abstract ]
|
|
[3]
|
Peng Li and Steve Zdancewic.
Unifying Confidentiality and Integrity in Downgrading
Policies.
In Proc. of Foundations of Computer Security Workshop (FCS),
2005.
[ PDF
Abstract ]
|
|
[4]
|
Peng Li, Yun Mao, and Steve Zdancewic.
Information Integrity Policies.
In Proceedings of the Workshop on Formal Aspects in Security &
Trust (FAST), September 2003.
[ PDF
PS
Abstract ]
|
|
[5]
|
Usa Sammapun, Raman Sharykin, Margaret Delap, Myong Kim, and Steve Zdancewic.
Formalizing Java-MaC.
In Proceedings of the Third Runtime Verification Workshop,
pages 171-190. Electronic Notes in Theoretical Computer Science, July 2003.
[ PDF
PS
Abstract ]
|
|
[6]
|
Michael Greenwald, Carl A. Gunter, Björn Knutsson, Andre Scedrov,
Jonathan M. Smith, and Steve Zdancewic.
Computer Security is Not a Science (but it should be).
In Proceedings of the Large-Scale Network Security Workshop,
March 2003.
[ PDF
PS ]
|
|
[7]
|
Greg Morrisett, Karl Crary, Neal Glew, Dan Grossman, Richard Samuels, Frederick
Smith, David Walker, Stephanie Weirich, and Steve Zdancewic.
TALx86: A Realistic Typed Assembly Language.
In 2nd ACM SIGPLAN Workshop on Compiler Support for System
Software, pages 25-35, 1999.
[ PDF
PS
Abstract ]
|
|
Technical Reports
|
[1]
|
Stephen Tse and Steve Zdancewic.
Concise Concrete Syntax.
Technical Report MS-CIS-08-11, University of Pennsylvania, 2008.
[ PDF ]
|
|
[2]
|
Limin Jia, Jeffrey A. Vaughan, Karl Mazurak, Jianzhou Zhao, Luke Zarko, Joseph
Schorr, and Steve Zdancewic.
AURA:Preliminary Technical Results.
Technical Report MS-CIS-08-10, University of Pennsylvania, 2008.
[ PDF ]
|
|
[3]
|
Jeffrey C. Vaughan, Limin Jia, Karl Mazurak, and Steve Zdancewic.
Evidence-based Audit, Technical Appendix.
Technical Report MS-CIS-08-09, University of Pennsylvania, 2008.
[ PDF ]
|
|
[4]
|
Peng Li and Steve Zdancewic.
Arrows for Secure Information FLow.
(38 pages) Submitted to Theoretical Computer Science, 2006.
|
|
[5]
|
Stephen Tse and Steve Zdancewic.
Translating Dependency into Parametricity.
(33 pages) Accepted to Journal of Functional Programming,
pending revisions, 2006.
|
|
[6]
|
Stephen Tse and Steve Zdancewic.
Designing a Security-typed Language with Certificate-based
Declassification.
Technical Report MIS-CIS-04-16, University of Pennsylvania, 2004.
[ PDF
Abstract ]
|
|
[7]
|
Stephen Tse and Steve Zdancewic.
Translating Dependency into Parametricity.
Technical Report MIS-CIS-04-01, University of Pennsylvania, 2004.
[ PDF
Abstract ]
|
|
[8]
|
Stephen Tse and Steve Zdancewic.
Run-time Principals in Information-flow Type Systems.
Technical Report MS-CIS-03-39, University of Pennsylvania, 2003.
The conference version appears in IEEE Security and Privacy 2004.
[ PDF
PS
Abstract ]
|
|
[9]
|
Stephan A. Zdancewic.
Programming Languages for Information Security.
PhD thesis, Cornell University, August 2002.
[ PDF
PS
Abstract ]
|
|
[10]
|
Steve Zdancewic, Lantian Zheng, Nathaniel Nystrom, and Andrew C. Myers.
Secure Program Partitioning.
Technical Report 2001-1846, Computer Science Dept., Cornell
University, 2001.
[ PDF
PS
Abstract ]
|
|
[11]
|
Steve Zdancewic and Andrew C. Myers.
Confidentiality and Integrity with Untrusted Hosts.
Technical Report 2000-1810, Computer Science Dept., Cornell
University, 2000.
[ PDF
PS
Abstract ]
|
|
[12]
|
Steve Zdancewic and Dan Grossman.
Principals in Programming Languages: Technical Results.
Technical Report TR99-1752, Computer Science Dept., Cornell
University, June 1999.
[ PDF
PS
Abstract ]
|
|
Copyright Information
The documents contained in these directories are included by the
contributing authors as a means to ensure timely dissemination of
scholarly and technical work on a non-commercial basis. Copyright and
all rights therein are maintained by the authors or by other copyright
holders, notwithstanding that they have offered their works here
electronically. It is understood that all persons copying this
information will adhere to the terms and constraints invoked by each
author's copyright. These works may not be reposted without the
explicit permission of the copyright holder.
|
|
Parts of this page were generated by
bibtex2html
|
Last modified:
Wed Apr 9 11:00:08 EDT 2008
| |