The 12th CREST Open Workshop

Security and Code

 

Date: 

Wednesday 6 April 2011

 

Venue: 

Room 106, Gordon House

29 GORDON SQUARE, LONDON, WC1H 0PP

(Directions)

 

Overview: 

Analysis of computer languages is the basis for many security properties. A well developed area of this research  is semantics based analysis of code to provide end to end flow security. Programs can be analysed for confidentiality, integrity, erasure properties, correct declassification and quantity of information flow. Other uses of semantic modelling in the security domain automatically detect vulnerabilities in code via abstract interpretation, model checking and theorem proving. In the last few years malware detection has also begun to benefit from a semantic approach.

 

Programme:

*Keynote will be 30 minutes allowing 30 minutes for discussion and questions.*
*Talks will be 20 minutes allowing 20 minutes for discussion and questions.*

09:00    Arrival, Coffee and Pastries

09:15    Welcome and Introduction (Slides, Video)

              David Clark, CREST Centre, SSE Group, Department of Computer Science, UCL

09:30    Invited talk: Session Types, Typestate, and Security (Abstract, Slides, Video_1, Video_2)

              Simon Gay, University of Glasgow, UK

10:30 - 11:00    Refreshment

11:00   Detecting Malware Variants using Semantic Trace Approach (Slides, Video)

              Khalid Alzarooni, CREST Centre, SSE Group, Department of Computer Science, UCL

11:40   Language-Based Isolation of Untrusted JavaScript (Abstract, Slides)

             Sergio Maffeis, Imperial College London, UK

12:20   On the use of Event-B in Modelling Data Sharing Agreements (Abstract, Slides, Video_1, Video_2)   

              Benjamin Aziz, University of Portsmouth, UK

13:00 - 14:00    Lunch at the venue

14:00   Paragon: Programming with Information Flow Control (Slides, Video)

             Niklas Broberg, University of Gothenburg, Sweden

14:40   Specification and Enforcement of Information Erasure Policies (Slides, Video)

             Sebastian Hunt, City University London, UK

15:20 - 15:50    Refreshment

15:50   Rewrite Speci?cations of Access Control Policies in Distributed Environments (Abstract, Slides,Video)

             Maribel Fernández, King's College London, UK

16:30   What role for static analysis in malware detection? (Slides, Video)

             Laurence Tratt, Middlesex University, UK

17:10    Wrap up and close

 

 

This workshop is supported by the following sponsors:

 

 

 

Registered Attendees: (Get registered Here)

 

1. Nasser Abouzakhar,  University of Hertfordshire, UK
2. Eltayeb Ahmed, Department of Computer Science, UCL
3. Khalid Alzarooni, CREST Centre, SSE Group, Department of Computer Science, UCL
4. Benjamin Aziz, University of Portsmouth, UK
5. Niklas Broberg, University of Gothenburg, Sweden
6. David Clark, CREST Centre, SSE Group, Department of Computer Science, UCL
7. Paolo Falcarin, University of East London, UK
8. Maribel Fernández, King's College London, UK
9. Simon Gay, University of Glasgow, UK
10. Vida Ghanaei, King's College London, UK
11. Sebastian Hunt, City University London, UK
12. Shareeful Islam, University of East London, UK
13. Syed Islam, CREST Centre, SSE Group, Department of Computer Science, UCL, UK
14. Derek M. Jones, Knowledge Software Ltd, UK
15. Jens Krinke, CREST Centre, SSE Group, Department of Computer Science, UCL
16. Sergio Maffeis, Imperial College London, UK
17. John McKechnie, RIBA Enterprises, UK
18. Matthew Moroz, SECReT DTC, Department of Security and Crime Science, UCL, UK
19. Richard Mortier, University of Nottingham, UK
20. Temitope J Onunkun, King's College London, UK
21. Luca Pino, City University London, UK
22. Jian Ren, CREST Centre, SSE Group, Department of Computer Science, UCL
23. Daniele Nantes Sobrinho, King's College London, UK
24. Joseph Spring,  University of Hertfordshire, UK
25. Laurence Tratt, Middlesex University, UK
26. Akadej Udomchaiporn, CREST Centre, SSE Group, Department of Computer Science, UCL