[TYPES/announce] Call for Participation: PLAS 2007

mwh@cs.umd.edu mwh at cs.umd.edu
Wed May 9 11:28:35 EDT 2007 


                     ACM SIGPLAN Workshop on 
          Programming Languages and Analysis for Security

              San Diego, California, June 14, 2007

                   Sponsored by ACM SIGPLAN
                with support from IBM Research
           Co-located with PLDI'07 as part of FCRC.

          http://www.cs.umd.edu/~mwh/PLAS07/index.html


Call For Participation

PLAS aims to provide a forum for exploring and evaluating ideas on the
use of PROGRAMMING LANGUAGE and PROGRAM ANALYSIS TECHNIQUES to improve
the SECURITY of SOFTWARE SYSTEMS.

We have a strong program consisting of 13 technical papers and one
informal presentation, on a variety of topics, including:

  * Language-based techniques for security, including
    new accounts of declassification, new proof techniques, new
    application domains, and practical implementations
  * Program analysis techniques for discovering security
    vulnerabilities
  * New host-based intrusion techniques, based on static analysis and
    application frameworks

The conference hotel registration deadline is May 9; early registration
deadline is May 11.

Generous support from IBM Research has made it possible for us to
offer travel grants for students attending PLAS.  See Application form
on the PLAS web page for further instructions.


Preliminary Program

Jifclipse: Development Tools for Security-Typed Applications
- Boniface Hicks, Dave King and Patrick McDaniel 	

Towards Usable Information Flow Security in Java
- Mark Thober and Scott F. Smith

A Domain-Specific Programming Language for Secure Multiparty
Computation
- Janus Dam Nielsen and Michael I. Schwartzbach

Quantitative Analysis of Leakage for Multi-threaded Programs
- Pasquale Malacaria and Han Chen 	

A Simulation-based Proof Technique for Dynamic Information Flow
- Stephen McCamant and Michael Ernst

Cautious Virus Detection in the Extreme (Short Paper)
- John Case and Samuel Moelius

Localized Delimited Release: Combining the What and Where Dimensions
of Information Release 
- Aslan Askarov and Andrei Sabelfeld

Towards a Logical Account of Declassification (Short Paper)
- Anindya Banerjee, David Naumann and Stan Rosenberg

Fast Probabilistic Simulation, Nontermination, and Secure Information
Flow (Short Paper)
- Geoffrey Smith and Rafael Alpizar

Informal Presentation: A Trust Management Perspective on Managing
Policy Updates in Security-Typed Languages
- Sruthi Bandhakavi, William Winsborough and Marianne Winslett

Large-scale analysis of format string vulnerabilities in Debian Linux
- Karl Chen, David Wagner and Daniel Wilkerson

Guarded Models For Intrusion Detection 
- Hassen Saidi

Using Web Application Construction Frameworks To Protect Against Code
Injection Attacks
- Benjamin Livshits

Abash: Finding Bugs in Bash Scripts
- Karl Mazurak and Steve Zdancewic


Program Committee

Michael Hicks, University of Maryland, College Park (Chair)
Martin Abadi, Microsoft Research and University of California, Santa Cruz
Steve Chong, Cornell University
Adriana Compagnoni, Stevens Institute of Technology
Jeff Foster, University of Maryland, College Park
K. Rustan M. Leino, Microsoft Research, Redmond
Marco Pistoia, IBM T. J. Watson Research Center
Andrei Sabelfeld, Chalmers University of Technology
Dawn Xiaodong Song, Carnegie-Mellon University
Eijiro Sumii, Tohoku University
Jan Vitek, Purdue University
David Walker, Princeton University
Xialolan (Catherine) Zhang, IBM T. J. Watson Research Center

More information about the Types-announce mailing list