The 12th CREST Open Workshop
Security and Code
Date:
Wednesday 6 April 2011
Venue:
Room 106, Gordon House
29 GORDON SQUARE, LONDON, WC1H 0PP
Overview:
Analysis of computer languages is the basis for many security properties. A well developed area of this research is semantics based analysis of code to provide end to end flow security. Programs can be analysed for confidentiality, integrity, erasure properties, correct declassification and quantity of information flow. Other uses of semantic modelling in the security domain automatically detect vulnerabilities in code via abstract interpretation, model checking and theorem proving. In the last few years malware detection has also begun to benefit from a semantic approach.
Programme:
*Keynote will be 30 minutes allowing 30 minutes for discussion and questions.*
*Talks will be 20 minutes allowing 20 minutes for discussion and questions.*
09:00 Arrival, Coffee and Pastries
09:15 Welcome and Introduction (Slides, Video)
David Clark, CREST Centre, SSE Group, Department of Computer Science, UCL
09:30 Invited talk: Session Types, Typestate, and Security (Abstract, Slides, Video_1, Video_2)
Simon Gay, University of Glasgow, UK
10:30 - 11:00 Refreshment
11:00 Detecting Malware Variants using Semantic Trace Approach (Slides, Video)
Khalid Alzarooni, CREST Centre, SSE Group, Department of Computer Science, UCL
11:40 Language-Based Isolation of Untrusted JavaScript (Abstract, Slides)
Sergio Maffeis, Imperial College London, UK
12:20 On the use of Event-B in Modelling Data Sharing Agreements (Abstract, Slides, Video_1, Video_2)
Benjamin Aziz, University of Portsmouth, UK
13:00 - 14:00 Lunch at the venue
14:00 Paragon: Programming with Information Flow Control (Slides, Video)
Niklas Broberg, University of Gothenburg, Sweden
14:40 Specification and Enforcement of Information Erasure Policies (Slides, Video)
Sebastian Hunt, City University London, UK
15:20 - 15:50 Refreshment
15:50 Rewrite Speci?cations of Access Control Policies in Distributed Environments (Abstract, Slides,Video)
Maribel Fernández, King's College London, UK
16:30 What role for static analysis in malware detection? (Slides, Video)
Laurence Tratt, Middlesex University, UK
17:10 Wrap up and close
This workshop is supported by the following sponsors:
|
Registered Attendees: (Get registered Here)
- Nasser Abouzakhar, University of Hertfordshire, UK
- Eltayeb Ahmed, Department of Computer Science, UCL
- Khalid Alzarooni, CREST Centre, SSE Group, Department of Computer Science, UCL
- Benjamin Aziz, University of Portsmouth, UK
- Niklas Broberg, University of Gothenburg, Sweden
- David Clark, CREST Centre, SSE Group, Department of Computer Science, UCL
- Paolo Falcarin, University of East London, UK
- Maribel Fernández, King's College London, UK
- Simon Gay, University of Glasgow, UK
- Vida Ghanaei, King's College London, UK
- Sebastian Hunt, City University London, UK
- Shareeful Islam, University of East London, UK
- Syed Islam, CREST Centre, SSE Group, Department of Computer Science, UCL, UK
- Derek M. Jones, Knowledge Software Ltd, UK
- Jens Krinke, CREST Centre, SSE Group, Department of Computer Science, UCL
- Sergio Maffeis, Imperial College London, UK
- John McKechnie, RIBA Enterprises, UK
- Matthew Moroz, SECReT DTC, Department of Security and Crime Science, UCL, UK
- Richard Mortier, University of Nottingham, UK
- Temitope J Onunkun, King's College London, UK
- Luca Pino, City University London, UK
- Jian Ren, CREST Centre, SSE Group, Department of Computer Science, UCL
- Daniele Nantes Sobrinho, King's College London, UK
- Joseph Spring, University of Hertfordshire, UK
- Laurence Tratt, Middlesex University, UK
- Akadej Udomchaiporn, CREST Centre, SSE Group, Department of Computer Science, UCL