[ The Types Forum (announcements only), http://lists.seas.upenn.edu/mailman/listinfo/types-announce ]
ACM SIGPLAN Workshop on Programming Languages and Analysis for Security San Diego, California, June 14, 2007 Sponsored by ACM SIGPLAN with support from IBM Research Co-located with PLDI'07 as part of FCRC. http://www.cs.umd.edu/~mwh/PLAS07/index.html Call For Participation PLAS aims to provide a forum for exploring and evaluating ideas on the use of PROGRAMMING LANGUAGE and PROGRAM ANALYSIS TECHNIQUES to improve the SECURITY of SOFTWARE SYSTEMS. We have a strong program consisting of 13 technical papers and one informal presentation, on a variety of topics, including: * Language-based techniques for security, including new accounts of declassification, new proof techniques, new application domains, and practical implementations * Program analysis techniques for discovering security vulnerabilities * New host-based intrusion techniques, based on static analysis and application frameworks The conference hotel registration deadline is May 9; early registration deadline is May 11. Generous support from IBM Research has made it possible for us to offer travel grants for students attending PLAS. See Application form on the PLAS web page for further instructions. Preliminary Program Jifclipse: Development Tools for Security-Typed Applications - Boniface Hicks, Dave King and Patrick McDaniel Towards Usable Information Flow Security in Java - Mark Thober and Scott F. Smith A Domain-Specific Programming Language for Secure Multiparty Computation - Janus Dam Nielsen and Michael I. Schwartzbach Quantitative Analysis of Leakage for Multi-threaded Programs - Pasquale Malacaria and Han Chen A Simulation-based Proof Technique for Dynamic Information Flow - Stephen McCamant and Michael Ernst Cautious Virus Detection in the Extreme (Short Paper) - John Case and Samuel Moelius Localized Delimited Release: Combining the What and Where Dimensions of Information Release - Aslan Askarov and Andrei Sabelfeld Towards a Logical Account of Declassification (Short Paper) - Anindya Banerjee, David Naumann and Stan Rosenberg Fast Probabilistic Simulation, Nontermination, and Secure Information Flow (Short Paper) - Geoffrey Smith and Rafael Alpizar Informal Presentation: A Trust Management Perspective on Managing Policy Updates in Security-Typed Languages - Sruthi Bandhakavi, William Winsborough and Marianne Winslett Large-scale analysis of format string vulnerabilities in Debian Linux - Karl Chen, David Wagner and Daniel Wilkerson Guarded Models For Intrusion Detection - Hassen Saidi Using Web Application Construction Frameworks To Protect Against Code Injection Attacks - Benjamin Livshits Abash: Finding Bugs in Bash Scripts - Karl Mazurak and Steve Zdancewic Program Committee Michael Hicks, University of Maryland, College Park (Chair) Martin Abadi, Microsoft Research and University of California, Santa Cruz Steve Chong, Cornell University Adriana Compagnoni, Stevens Institute of Technology Jeff Foster, University of Maryland, College Park K. Rustan M. Leino, Microsoft Research, Redmond Marco Pistoia, IBM T. J. Watson Research Center Andrei Sabelfeld, Chalmers University of Technology Dawn Xiaodong Song, Carnegie-Mellon University Eijiro Sumii, Tohoku University Jan Vitek, Purdue University David Walker, Princeton University Xialolan (Catherine) Zhang, IBM T. J. Watson Research Center