Steve Zdancewic's Publications
Copyright Information
|
Journal Articles
|
[1]
|
Peng Li and Steve Zdancewic.
Arrows for Secure Information Flow.
Theoretical Computer Science, 411(19):1974-1994, 2010.
[ PDF
Abstract ]
|
|
[2]
|
Stephen Tse and Steve Zdancewic.
Run-time principals in information-flow type systems.
Transactions on Programming Languages and Systems, 30(1):6,
2008.
[ PDF
Abstract ]
|
|
[3]
|
Jay Ligatti, David Walker, and Steve Zdancewic.
A Type-theoretic Interpretation of Pointcuts and Advice.
Science of Computer Programming: Special Issue on Foundations of
Aspect-Oriented Programming, pages 240-266, 2006.
[ PDF
Abstract ]
|
|
[4]
|
Andrew C. Myers, Andrei Sabelfeld, and Steve Zdancewic.
Enforcing Robust Declassification and Qualified Robustness.
Journal of Computer Security, 14(2):157-196, 2006.
[ PDF
Abstract ]
|
|
[5]
|
Steve Zdancewic and Andrew C. Myers.
Secure Information Flow via Linear Continuations.
Higher Order and Symbolic Computation, 15(2/3):209-234, 2002.
[ PDF
PS
Abstract ]
|
|
[6]
|
Steve Zdancewic, Lantian Zheng, Nathaniel Nystrom, and Andrew C. Myers.
Secure Program Partitioning.
Transactions on Computer Systems, 20(3):283-328, 2002.
[ PDF
PS
Abstract ]
|
|
[7]
|
Dan Grossman, Greg Morrisett, and Steve Zdancewic.
Syntactic Type Abstraction.
Transactions on Programming Languages and Systems,
22(6):1037-1080, November 2000.
[ PDF
PS
Abstract ]
|
|
Invited Papers
|
[1]
|
Steve Zdancewic.
Challenges for Information-flow Security.
In Proceedings of the 1st International Workshop on the
Programming Language Interference and Dependence (PLID'04), 2004.
(5 pages).
[ PDF ]
|
|
[2]
|
Steve Zdancewic.
A Type System for Robust Declassification.
In Proceedings of the Nineteenth Conference on the Mathematical
Foundations of Programming Semantics (MFPS). Electronic Notes in Theoretical
Computer Science, March 2003.
(16 pages).
[ PDF
PS
Abstract ]
|
|
Conference and Selective Workshop Papers
|
[1]
|
Santosh Nagarakatte, Milo M. K. Martin, and Steve Zdancewic.
Watchdog: Hardware for Safe and Secure Manual Memory Management
and Full Memory Safety.
In Proceedings of the 39th International Symposium on Computer
Architecture (ISCA), June 2012.
[ PDF
Abstract ]
|
|
[2]
|
Jianzhou Zhao and Steve Zdancewic.
Mechanized Verification of Computing Dominators for Formalizing
Compilers.
In The Second International Conference on Certified Programs and
Proofs (CPP), 2012.
[ PDF
Abstract ]
|
|
[3]
|
Jianzhou Zhao, Santosh Nagarakatte, Milo M. K. Martin, and Steve Zdancewic.
Formalizing the LLVM Intermediate Representation for Verified
Program Transformations.
In Proc. of the ACM Symposium on Principles of Programming
Languages (POPL), 2012.
[ PDF
Abstract ]
|
|
[4]
|
Stephanie Weirich, Dimitrios Vytiniotis, Simon Peyton Jones, and Steve
Zdancewic.
Generative Type Abstraction and Type-level Computation.
In Proc. of the ACM Symposium on Principles of Programming
Languages (POPL), 2011.
[ PDF
Abstract ]
|
|
[5]
|
Jianzhou Zhao, Qi Zhang, and Steve Zdancewic.
Relational Parametricity for Polymorphic Linear Lambda
Calculus.
In Proceedings of the Eighth ASIAN Symposium on Programming
Languages and Systems (APLAS), 2010.
[ PDF
Abstract ]
|
|
[6]
|
Santosh Nagarakatte, Jianzhou Zhao, Milo M. K. Martin, and Steve Zdancewic.
CETS: Compiler-Enforced Temporal Safety for C.
In Proceedings of the ACM International Symposium on Memory
Management (ISMM), 2010.
[ PDF
Abstract ]
|
|
[7]
|
Karl Mazurak and Steve Zdancewic.
Lolliproc: to Concurrency from Classical Linear Logic via
Curry-Howard and Control.
In Proc. of the 15th ACM SIGPLAN International Conference on
Functional Programming (ICFP), 2010.
[ PDF
Abstract ]
|
|
[8]
|
Aaron Bohannon, Benjamin C. Pierce, Vilhelm Sjöberg, Stephanie Weirich, and
Steve Zdancewic.
Reactive Noninterference.
In ACM Computer and Communications Security Conference (CCS),
2009.
[ PDF
Abstract ]
|
|
[9]
|
J. Nathan Foster, Benjamin C. Pierce, and Steve Zdancewic.
Updatable Security Views.
In Proc. of 22nd IEEE Computer Security Foundations Symposium
(CSF), 2009.
[ PDF
Abstract ]
|
|
[10]
|
Santosh Nagarakatte, Jianzhou Zhao, Milo M. K. Martin, and Steve Zdancewic.
SoftBound: Highly Compatible and Complete Spatial Memory
Safety for C.
In Proc. 2009 ACM SIGPLAN Conference on Programming Languages
Design and Implementation (PLDI), 2009.
[ PDF
Abstract ]
|
|
[11]
|
Limin Jia, Jeffrey A. Vaughan, Karl Mazurak, Jianzhou Zhao, Luke Zarko, Joseph
Schorr, and Steve Zdancewic.
AURA: A Programming Language for Authorization and Audit.
In Proc. of the 13th ACM SIGPLAN International Conference on
Functional Programming (ICFP), Victoria, British Columbia, Canada, September
2008.
[ PDF
Abstract ]
|
|
[12]
|
Joe Devietti, Colin Blundell, Milo M.K. Martin, and Steve Zdancewic.
HardBound: Architectural Support for Spatial Safety of the C
Programming Language.
In International Conference on Architectural Support for
Programming Languages and Operating Systems (ASPLOS), March 2008.
[ PDF
Abstract ]
|
|
[13]
|
Jeffrey A. Vaughan, Limin Jia, Karl Mazurak, and Steve Zdancewic.
Evidence-based Audit.
In Proc. of 21st IEEE Computer Security Foundations Symposium
(CSF), pages 177-191. IEEE Computer Society Press, 2008.
[ PDF
Abstract ]
|
|
[14]
|
Jeffrey A. Vaughan and Steve Zdancewic.
A Cryptographic Decentralized Label Model.
In IEEE 2007 Symposium on Security and Privacy (Oakland),
pages 192-206, 2007.
[ PDF
PS
Abstract ]
|
|
[15]
|
Peng Li and Steve Zdancewic.
Combining Events And Threads For Scalable Network Services.
In Proc. 2007 ACM SIGPLAN Conference on Programming Languages
Design and Implementation (PLDI), pages 189-199, 2007.
[ PS
Abstract ]
|
|
[16]
|
Rajeev Alur, Pavol Černý, and Steve Zdancewic.
Preserving Secrecy under Refinement.
In Proc. of 33rd International Colloquium on Automata, Languages
and Programming (ICALP), pages 107-118, 2006.
[ PDF
Abstract ]
|
|
[17]
|
Peng Li and Steve Zdancewic.
Encoding Information Flow in Haskell.
In Proc. of 19th IEEE Computer Security Foundations Workshop
(CSFW), pages 16-27. IEEE Computer Society Press, 2006.
[ PDF
Abstract ]
|
|
[18]
|
Nikhil Swamy, Michael Hicks, Stephen Tse, and Steve Zdancewic.
Managing Policy Updates in Security-Typed Languages.
In Proc. of 19th IEEE Computer Security Foundations Workshop
(CSFW), pages 202-216. IEEE Computer Society Press, 2006.
[ PDF
Abstract ]
|
|
[19]
|
Brian E. Aydemir, Aaron Bohannon, Matthew Fairbairn, J. Nathan Foster,
Benjamin C. Pierce, Peter Sewell, Dimitrios Vytiniotis, Geoffrey Washburn,
Stephanie Weirich, and Steve Zdancewic.
Mechanized Metatheory for the Masses: The POPLMark Challenge.
In International Conference on Theorem Proving in Higher Order
Logics (TPHOLs), pages 50-65, 2005.
[ PDF
Abstract ]
|
|
[20]
|
Stephen Tse and Steve Zdancewic.
Designing a Security-typed Language with Certificate-based
Declassification.
In Proc. of the 14th European Symposium on Programming (ESOP),
volume 3444, pages 279-294, 2005.
[ PDF
Abstract ]
|
|
[21]
|
Peng Li and Steve Zdancewic.
Practical Information-flow Control in Web-based Information
Systems.
In Proc. of 18th IEEE Computer Security Foundations Workshop
(CSFW), pages 2-15, 2005.
[ PDF
Abstract ]
|
|
[22]
|
Peng Li and Steve Zdancewic.
Downgrading Policies and Relaxed Noninterference.
In Proc. 32nd ACM Symp. on Principles of Programming Languages
(POPL), pages 158-170, January 2005.
[ PDF
Abstract ]
|
|
[23]
|
Peng Li and Steve Zdancewic.
Advanced Control Flow in Java Card Programming.
In Proceedings of the 2004 ACM SIGPLAN/SIGBED Conference on
Languages, Compilers, and Tools for Embedded Systems (LCTES), pages
165-174, June 2004.
[ PDF
Abstract ]
|
|
[24]
|
Stephen Tse and Steve Zdancewic.
Run-time Principals in Information-flow Type Systems.
In IEEE 2004 Symposium on Security and Privacy (Oakland), pages
179-193. IEEE Computer Society Press, May 2004.
[ PDF
PS
Abstract ]
|
|
[25]
|
Andrew C. Myers, Andrei Sabelfeld, and Steve Zdancewic.
Enforcing Robust Declassification.
In Proc. of 17th IEEE Computer Security Foundations Workshop
(CSFW), pages 172-186, 2004.
[ PDF
Abstract ]
|
|
[26]
|
David Walker, Steve Zdancewic, and Jay Ligatti.
A Theory of Aspects.
In Proc. of the 8th ACM SIGPLAN International Conference on
Functional Programming (ICFP), pages 127-139, Upsala, Sweden, August 2003.
[ PDF
PS
Abstract ]
|
|
[27]
|
Steve Zdancewic and Andrew C. Myers.
Observational Determinism for Concurrent Program Security.
In Proc. of 16th IEEE Computer Security Foundations Workshop
(CSFW), pages 29-45, Asilomar, CA, July 2003.
[ PDF
PS
Abstract ]
|
|
[28]
|
Lantian Zheng, Stephen Chong, Steve Zdancewic, and Andrew C. Myers.
Building Secure Distributed Systems Using Replication and
Partitioning.
In IEEE 2003 Symposium on Security and Privacy (Oakland),
pages 236-250. IEEE Computer Society Press, 2003.
[ PDF
PS
Abstract ]
|
|
[29]
|
Steve Zdancewic, Lantian Zheng, Nathaniel Nystrom, and Andrew C. Myers.
Untrusted Hosts and Confidentiality: Secure Program
Partitioning.
In Proc. 18th ACM Symp. on Operating System Principles
(SOSP), volume 35(5) of Operating Systems Review, pages 1-14, Banff,
Canada, October 2001.
[ PDF
PS
Abstract ]
|
|
[30]
|
Steve Zdancewic and Andrew C. Myers.
Robust Declassification.
In Proc. of 14th IEEE Computer Security Foundations Workshop
(CSFW), pages 15-23, Cape Breton, Canada, June 2001.
[ PDF
PS
Abstract ]
|
|
[31]
|
Steve Zdancewic and Andrew C. Myers.
Secure Information Flow and CPS.
In Proc. of the 10th European Symposium on Programming (ESOP),
volume 2028 of Lecture Notes in Computer Science, pages 46-61, April
2001.
[ PDF
PS
Abstract ]
|
|
[32]
|
Steve Zdancewic, Dan Grossman, and Greg Morrisett.
Principals in Programming Languages: A Syntactic Proof
Technique.
In Proc. of the 4th ACM SIGPLAN International Conference on
Functional Programming (ICFP), pages 197-207, Paris, France, September
1999.
[ PDF
PS
Abstract ]
|
|
Workshop Papers
|
[1]
|
Peter-Michael Osera, Vilhelm Sjöberg, and Steve Zdancewic.
Dependent Ineroperability.
In The Sixth ACM SIGPLAN Workshop on Programming Languages meets
Program Verification (PLPV), 2012.
[ PDF
Abstract ]
|
|
[2]
|
Karl Mazurak, Jianzhou Zhao, and Steve Zdancewic.
Lightweight linear types in System Fo.
In ACM SIGPLAN International Workshop on Types in Languages
Design and Implementation (TLDI), pages 77-88, 2010.
[ PDF
Abstract ]
|
|
[3]
|
Michael J. May, Carl A. Gunter, Insup Lee, and Steve Zdancewic.
Strong and Weak Policy Relations.
In POLICY 2009, IEEE International Symposium on Policies for
Distributed Systems and Networks, pages 33-36, 2009.
|
|
[4]
|
Limin Jia and Steve Zdancewic.
Encoding information flow in Aura.
In Proceedings of the 2009 Workshop on Programming Languages and
Analysis for Security (PLAS), pages 17-29, 2009.
[ PDF
Abstract ]
|
|
[5]
|
Karl Mazurak and Steve Zdancewic.
ABash: Finding Bugs in Bash Scripts.
In ACM SIGPLAN Workshop on Programming Languages and Analysis
for Security (PLAS), June 2007.
[ PDF
Abstract ]
|
|
[6]
|
Michael Hicks, Stephen Tse, Boniface Hicks, and Steve Zdancewic.
Dynamic updating of information-flow policies.
In Proc. of Foundations of Computer Security Workshop (FCS),
2005.
[ PDF
Abstract ]
|
|
[7]
|
Peng Li and Steve Zdancewic.
Unifying Confidentiality and Integrity in Downgrading
Policies.
In Proc. of Foundations of Computer Security Workshop (FCS),
2005.
[ PDF
Abstract ]
|
|
[8]
|
Peng Li, Yun Mao, and Steve Zdancewic.
Information Integrity Policies.
In Proceedings of the Workshop on Formal Aspects in Security &
Trust (FAST), September 2003.
[ PDF
PS
Abstract ]
|
|
[9]
|
Usa Sammapun, Raman Sharykin, Margaret Delap, Myong Kim, and Steve Zdancewic.
Formalizing Java-MaC.
In Proceedings of the Third Runtime Verification Workshop,
pages 171-190. Electronic Notes in Theoretical Computer Science, July 2003.
[ PDF
PS
Abstract ]
|
|
[10]
|
Michael Greenwald, Carl A. Gunter, Björn Knutsson, Andre Scedrov,
Jonathan M. Smith, and Steve Zdancewic.
Computer Security is Not a Science (but it should be).
In Proceedings of the Large-Scale Network Security Workshop,
March 2003.
[ PDF
PS ]
|
|
[11]
|
Greg Morrisett, Karl Crary, Neal Glew, Dan Grossman, Richard Samuels, Frederick
Smith, David Walker, Stephanie Weirich, and Steve Zdancewic.
TALx86: A Realistic Typed Assembly Language.
In 2nd ACM SIGPLAN Workshop on Compiler Support for System
Software, pages 25-35, 1999.
[ PDF
PS
Abstract ]
|
|
Edited Volumes
|
[1]
|
Pierpaolo Degano, Ralf Küsters, Luca Viganò, and Steve Zdancewic,
editors.
Joint workshop on foundations of computer security and automated
reasoning for security protocol analysis (FCS-ARSPA '06), volume 206 of
Information and Computation.
Elsevier, 2008.
|
|
[2]
|
Vugranam C. Shreedhar and Steve Zdancewic, editors.
Proceedings of the 2006 Workshop on Programming Languages and
Analysis for Security (PLAS).
ACM, 2006.
|
|
Technical Reports, Work in Progress, and Unpublished Papers
|
[1]
|
Brian Aydemir, Stephanie Weirich, and Steve Zdancewic.
Abstracting Syntax.
(15 pages), 2008.
|
|
[2]
|
Stephen Tse and Steve Zdancewic.
Concise Concrete Syntax.
Technical Report MS-CIS-08-11, University of Pennsylvania, 2008.
[ PDF ]
|
|
[3]
|
Limin Jia, Jeffrey A. Vaughan, Karl Mazurak, Jianzhou Zhao, Luke Zarko, Joseph
Schorr, and Steve Zdancewic.
AURA:Preliminary Technical Results.
Technical Report MS-CIS-08-10, University of Pennsylvania, 2008.
[ PDF ]
|
|
[4]
|
Jeffrey C. Vaughan, Limin Jia, Karl Mazurak, and Steve Zdancewic.
Evidence-based Audit, Technical Appendix.
Technical Report MS-CIS-08-09, University of Pennsylvania, 2008.
[ PDF ]
|
|
[5]
|
Stephen Tse and Steve Zdancewic.
Translating Dependency into Parametricity.
(33 pages) Accepted to Journal of Functional Programming,
pending revisions, 2006.
|
|
[6]
|
Stephen Tse and Steve Zdancewic.
Designing a Security-typed Language with Certificate-based
Declassification.
Technical Report MIS-CIS-04-16, University of Pennsylvania, 2004.
[ PDF
Abstract ]
|
|
[7]
|
Stephen Tse and Steve Zdancewic.
Translating Dependency into Parametricity.
Technical Report MIS-CIS-04-01, University of Pennsylvania, 2004.
[ PDF
Abstract ]
|
|
[8]
|
Stephen Tse and Steve Zdancewic.
Run-time Principals in Information-flow Type Systems.
Technical Report MS-CIS-03-39, University of Pennsylvania, 2003.
The conference version appears in IEEE Security and Privacy 2004.
[ PDF
PS
Abstract ]
|
|
[9]
|
Stephan A. Zdancewic.
Programming Languages for Information Security.
PhD thesis, Cornell University, August 2002.
[ PDF
PS
Abstract ]
|
|
[10]
|
Steve Zdancewic, Lantian Zheng, Nathaniel Nystrom, and Andrew C. Myers.
Secure Program Partitioning.
Technical Report 2001-1846, Computer Science Dept., Cornell
University, 2001.
[ PDF
PS
Abstract ]
|
|
[11]
|
Steve Zdancewic and Andrew C. Myers.
Confidentiality and Integrity with Untrusted Hosts.
Technical Report 2000-1810, Computer Science Dept., Cornell
University, 2000.
[ PDF
PS
Abstract ]
|
|
[12]
|
Steve Zdancewic and Dan Grossman.
Principals in Programming Languages: Technical Results.
Technical Report TR99-1752, Computer Science Dept., Cornell
University, June 1999.
[ PDF
PS
Abstract ]
|
|
Copyright Information
The documents contained in these directories are included by the
contributing authors as a means to ensure timely dissemination of
scholarly and technical work on a non-commercial basis. Copyright and
all rights therein are maintained by the authors or by other copyright
holders, notwithstanding that they have offered their works here
electronically. It is understood that all persons copying this
information will adhere to the terms and constraints invoked by each
author's copyright. These works may not be reposted without the
explicit permission of the copyright holder.
|
|
Parts of this page were generated by
bibtex2html
|
Last modified:
Mon Oct 15 15:24:45 EDT 2012
| |