SASI enforcement of security policies: a retrospective

Enforcing trace properties by program transformation

Proceedings of the 27th ACM SIGPLAN-SIGACT symposium on Principles of programming languages

A type system for expressive security policies

Proceedings of the 27th ACM SIGPLAN-SIGACT symposium on Principles of programming languages

Enforceable security policies

ACM Transactions on Information and System Security (TISSEC)

Separating access control policy, enforcement, and functionality in extensible systems

ACM Transactions on Computer Systems (TOCS)

Systematic design of program transformation frameworks by abstract interpretation

POPL '02 Proceedings of the 29th ACM SIGPLAN-SIGACT symposium on Principles of programming languages

Termination in language-based systems

ACM Transactions on Information and System Security (TISSEC)

An access control language for web services

SACMAT '02 Proceedings of the seventh ACM symposium on Access control models and technologies

Secure calling contexts for stack inspection

Proceedings of the 4th ACM SIGPLAN international conference on Principles and practice of declarative programming

Using internal sensors and embedded detectors for intrusion detection

Journal of Computer Security

Attacking Malicious Code: A Report to the Infosec Research Council

IEEE Software

Enforcing Safety Properties Using Type Specialization

ESOP '01 Proceedings of the 10th European Symposium on Programming Languages and Systems

Language-Based Security

MFCS '99 Proceedings of the 24th International Symposium on Mathematical Foundations of Computer Science

A Language-Based Approach to Security

Informatics - 10 Years Back. 10 Years Ahead.

Garbage Collector Memory Accounting in Language-Based Systems

SP '03 Proceedings of the 2003 IEEE Symposium on Security and Privacy

Using Replication and Partitioning to Build Secure Distributed Systems

SP '03 Proceedings of the 2003 IEEE Symposium on Security and Privacy

Empowering mobile code using expressive security policies

Proceedings of the 2002 workshop on New security paradigms

Model-carrying code: a practical approach for safe execution of untrusted applications

SOSP '03 Proceedings of the nineteenth ACM symposium on Operating systems principles

Program specialization for execution monitoring

Journal of Functional Programming

Controlling data movement in global computing applications

Proceedings of the 2004 ACM symposium on Applied computing

SELF: a transparent security extension for ELF binaries

Proceedings of the 2003 workshop on New security paradigms

Dynamic label binding at run-time

Proceedings of the 2003 workshop on New security paradigms

Supervisory Control of Software Systems

IEEE Transactions on Computers

A Hybrid Security Framework of Mobile Code

COMPSAC '04 Proceedings of the 28th Annual International Computer Software and Applications Conference - Volume 01

Stack-based access control and secure information flow

Journal of Functional Programming

Interfaces for stack inspection

Journal of Functional Programming

Energy-security tradeoff in a secure cache architecture against buffer overflow attacks

ACM SIGARCH Computer Architecture News - Special issue: Workshop on architectural support for security and anti-virus (WASSA)

A systematic approach to static access control

ACM Transactions on Programming Languages and Systems (TOPLAS)

PolyAML: a polymorphic aspect-oriented functional programming language

Proceedings of the tenth ACM SIGPLAN international conference on Functional programming

Control-flow integrity

Proceedings of the 12th ACM conference on Computer and communications security

Computability classes for enforcement mechanisms

ACM Transactions on Programming Languages and Systems (TOPLAS)

Towards trusted systems from the ground up

EW 10 Proceedings of the 10th workshop on ACM SIGOPS European workshop

Certified In-lined Reference Monitoring on .NET

Proceedings of the 2006 workshop on Programming languages and analysis for security

System Call Monitoring Using Authenticated System Calls

IEEE Transactions on Dependable and Secure Computing

Adaptiveness in well-typed Java bytecode verification

CASCON '06 Proceedings of the 2006 conference of the Center for Advanced Studies on Collaborative research

JavaScript instrumentation for browser security

Proceedings of the 34th annual ACM SIGPLAN-SIGACT symposium on Principles of programming languages

Confining data and processes in global computing applications

Science of Computer Programming - Special issue on security issues in coordination models, languages, and systems

Requirement enforcement by transformation automata

Proceedings of the 6th workshop on Foundations of aspect-oriented languages

Decentralized enforcement of security policies for distributed computational systems

Proceedings of the 2007 ACM symposium on Applied computing

Statically detecting likely buffer overflow vulnerabilities

SSYM'01 Proceedings of the 10th conference on USENIX Security Symposium - Volume 10

Semantic remote attestation: a virtual machine directed approach to trusted computing

VM'04 Proceedings of the 3rd conference on Virtual Machine Research And Technology Symposium - Volume 3

Evaluating SFI for a CISC architecture

USENIX-SS'06 Proceedings of the 15th conference on USENIX Security Symposium - Volume 15

Statically detecting likely buffer overflow vulnerabilities

SSYM'01 Proceedings of the 10th conference on USENIX Security Symposium - Volume 10

Enforcing resource bounds via static verification of dynamic checks

ACM Transactions on Programming Languages and Systems (TOPLAS) - Special Issue ESOP'05

BrowserShield: Vulnerability-driven filtering of dynamic HTML

ACM Transactions on the Web (TWEB)

BrowserShield: vulnerability-driven filtering of dynamic HTML

OSDI '06 Proceedings of the 7th symposium on Operating systems design and implementation

XFI: software guards for system address spaces

OSDI '06 Proceedings of the 7th symposium on Operating systems design and implementation

Utilizing Binary Rewriting for Improving End-Host Security

IEEE Transactions on Parallel and Distributed Systems

Weaving rewrite-based access control policies

Proceedings of the 2007 ACM workshop on Formal methods in security engineering

Automated detection of persistent kernel control-flow attacks

Proceedings of the 14th ACM conference on Computer and communications security

ConSpec -- A Formal Language for Policy Specification

Electronic Notes in Theoretical Computer Science (ENTCS)

Types and trace effects of higher order programs

Journal of Functional Programming

AspectML: A polymorphic aspect-oriented functional programming language

ACM Transactions on Programming Languages and Systems (TOPLAS)

Aspect-oriented in-lined reference monitors

Proceedings of the third ACM SIGPLAN workshop on Programming languages and analysis for security

A Caller-Side Inline Reference Monitor for an Object-Oriented Intermediate Language

FMOODS '08 Proceedings of the 10th IFIP WG 6.1 international conference on Formal Methods for Open Object-Based Distributed Systems

Run-Time Enforcement of Nonsafety Policies

ACM Transactions on Information and System Security (TISSEC)

Enforcing authorization policies using transactional memory introspection

Proceedings of the 15th ACM conference on Computer and communications security

JavaScript Instrumentation in Practice

APLAS '08 Proceedings of the 6th Asian Symposium on Programming Languages and Systems

Execution monitoring enforcement for limited-memory systems

Proceedings of the 2006 International Conference on Privacy, Security and Trust: Bridge the Gap Between PST Technologies and Business Services

Composing expressive runtime security policies

ACM Transactions on Software Engineering and Methodology (TOSEM)

Enforcement monitoring wrt. the safety-progress classification of properties: NOTE: ACM has found that the authors of this paper failed to cite a work they previously published with much identical content entitled Synthesizing Enforcement Monitors wrt. the Safety-Progress Classification of Properties. Published in December 2008 in the Springer LNCS series for the ICISS 2008 conference DOI= http://dx.doi.org/10.1007/978-3-540-89862-7_3

Proceedings of the 2009 ACM symposium on Applied Computing

Security-By-Contract for the Future Internet

Future Internet --- FIS 2008

Efficient IRM enforcement of history-based access control policies

Proceedings of the 4th International Symposium on Information, Computer, and Communications Security

Model Checking Usage Policies

Trustworthy Global Computing

Security enforcement aware software development

Information and Software Technology

Local policies for resource usage analysis

ACM Transactions on Programming Languages and Systems (TOPLAS)

ActionScript bytecode verification with co-logic programming

Proceedings of the ACM SIGPLAN Fourth Workshop on Programming Languages and Analysis for Security

Enforcing Security Policies on Programs

Proceedings of the 2006 conference on New Trends in Software Methodologies, Tools and Techniques: Proceedings of the fifth SoMeT_06

Using Edit Automata for Rewriting-Based Security Enforcement

Proceedings of the 23rd Annual IFIP WG 11.3 Working Conference on Data and Applications Security XXIII

Control-flow integrity principles, implementations, and applications

ACM Transactions on Information and System Security (TISSEC)

Security Monitor Inlining for Multithreaded Java

Genoa Proceedings of the 23rd European Conference on ECOOP 2009 --- Object-Oriented Programming

Generating In-Line Monitors for Rabin Automata

NordSec '09 Proceedings of the 14th Nordic Conference on Secure IT Systems: Identity and Privacy in the Internet Age

Guaranteeing Correctness Properties of a Java Card Applet

Electronic Notes in Theoretical Computer Science (ENTCS)

Security Policies as Membranes in Systems for Global Computing

Electronic Notes in Theoretical Computer Science (ENTCS)

Enforcing IRM security policies: two case studies

ISI'09 Proceedings of the 2009 IEEE international conference on Intelligence and security informatics

Disambiguating aspect-oriented security policies

Proceedings of the 9th International Conference on Aspect-Oriented Software Development

A permission system for secure AOP

Proceedings of the 9th International Conference on Aspect-Oriented Software Development

Types and Effects for resource usage analysis

FOSSACS'07 Proceedings of the 10th international conference on Foundations of software science and computational structures

Types and effects for non-interfering program monitors

ISSS'02 Proceedings of the 2002 Mext-NSF-JSPS international conference on Software security: theories and systems

Enforcement of integrated security policy in trusted operating systems

IWSEC'07 Proceedings of the Security 2nd international conference on Advances in information and computer security

Automata-based confidentiality monitoring

ASIAN'06 Proceedings of the 11th Asian computing science conference on Advances in computer science: secure software and related issues

Enhancing Java security with history based access control

Foundations of security analysis and design IV

Device driver safety through a reference validation mechanism

OSDI'08 Proceedings of the 8th USENIX conference on Operating systems design and implementation

Robusta: taming the native beast of the JVM

Proceedings of the 17th ACM conference on Computer and communications security

Flexible in-lined reference monitor certification: challenges and future directions

Proceedings of the 5th ACM workshop on Programming languages meets program verification

You should better enforce than verify

RV'10 Proceedings of the First international conference on Runtime verification

Distributed data usage control for web applications: a social network implementation

Proceedings of the first ACM conference on Data and application security and privacy

Nexus authorization logic (NAL): Design rationale and applications

ACM Transactions on Information and System Security (TISSEC)

Language-independent sandboxing of just-in-time compilation and self-modifying code

Proceedings of the 32nd ACM SIGPLAN conference on Programming language design and implementation

Runtime enforcement monitors: composition, synthesis, and enforcement abilities

Formal Methods in System Design

Combining control-flow integrity and static analysis for efficient and validated data sandboxing

Proceedings of the 18th ACM conference on Computer and communications security

A theory of secure control flow

ICFEM'05 Proceedings of the 7th international conference on Formal Methods and Software Engineering

Access permission contracts for scripting languages

POPL '12 Proceedings of the 39th annual ACM SIGPLAN-SIGACT symposium on Principles of programming languages

Model-checking in-lined reference monitors

VMCAI'10 Proceedings of the 11th international conference on Verification, Model Checking, and Abstract Interpretation

Design and implementation of an extended reference monitor for trusted operating systems

ISPEC'06 Proceedings of the Second international conference on Information Security Practice and Experience

Enforcing resource bounds via static verification of dynamic checks

ESOP'05 Proceedings of the 14th European conference on Programming Languages and Systems

Enforcing non-safety security policies with program monitors

ESORICS'05 Proceedings of the 10th European conference on Research in Computer Security

Policy-driven memory protection for reconfigurable hardware

ESORICS'06 Proceedings of the 11th European conference on Research in Computer Security

RDyMASS: reliable and dynamic enforcement of security policies for mobile agent systems

DPM'09/SETOP'09 Proceedings of the 4th international workshop, and Second international conference on Data Privacy Management and Autonomous Spontaneous Security

Runtime countermeasures for code injection attacks against C and C++ programs

ACM Computing Surveys (CSUR)

Representation-Independent data usage control

DPM'11 Proceedings of the 6th international conference, and 4th international conference on Data Privacy Management and Autonomous Spontaneus Security

Aspect-Oriented runtime monitor certification

TACAS'12 Proceedings of the 18th international conference on Tools and Algorithms for the Construction and Analysis of Systems

Enforceable security policies revisited

POST'12 Proceedings of the First international conference on Principles of Security and Trust

Optimized inlining of runtime monitors

NordSec'11 Proceedings of the 16th Nordic conference on Information Security Technology for Applications

Efficient runtime policy enforcement using counterexample-guided abstraction refinement

CAV'12 Proceedings of the 24th international conference on Computer Aided Verification

Service automata

FAST'11 Proceedings of the 8th international conference on Formal Aspects of Security and Trust

Binary stirring: self-randomizing instruction addresses of legacy x86 binary code

Proceedings of the 2012 ACM conference on Computer and communications security

Enforcing user-space privilege separation with declarative architectures

Proceedings of the seventh ACM workshop on Scalable trusted computing

Usage control in service-oriented architectures

TrustBus'07 Proceedings of the 4th international conference on Trust, Privacy and Security in Digital Business

Securing untrusted code via compiler-agnostic binary rewriting

Proceedings of the 28th Annual Computer Security Applications Conference

Towards Security Assurance in Round-Trip Engineering: A Type-Based Approach

Electronic Notes in Theoretical Computer Science (ENTCS)

Model-Based usage control policy derivation

ESSoS'13 Proceedings of the 5th international conference on Engineering Secure Software and Systems

Enforceable Security Policies Revisited

ACM Transactions on Information and System Security (TISSEC)

Monitor integrity protection with space efficiency and separate compilation

Proceedings of the 2013 ACM SIGSAC conference on Computer & communications security

Strato: a retargetable framework for low-level inlined-reference monitors

SEC'13 Proceedings of the 22nd USENIX conference on Security

Bringing java's wild native world under control

ACM Transactions on Information and System Security (TISSEC)

Control-flow integrity principles, implementations, and applications

ACM Transactions on Information and System Security (TISSEC)