Home : Research : Projects : Computer Programming Language Based Security

As massively increasing amounts of sensitive information are stored in electronic media, the concerns for electronic data security have become ever more vital. Currently, the only way to ensure confidentiality and integrity of data for significant applications, however, is by manually inspecting the code. For some very large applications this is impractical---we need the help of automated tools. For other, high-assurance applications, this is too imprecise---we need mathematical precision. Our goal is to show that it is possible, in a general-purpose and easy manner, to develop robust, efficient distributed applications which exhibit automated, provable security guarantees. We will demonstrate this thesis by using security-typed languages to develop two significant applications: a mediation policy enforcement mechanism and a distributed file system. In order to develop these applications, security-typed languages and distributed systems must meet in the middle. The language-based tools must be extended to better handle distributed applications. Furthermore, developer tools are needed to aid in visualization and inference of information flows. At the same time, distributed systems must be extended through policy management and enforcement mechanisms which can accommodate security-typed applications.

Securing private and confidential information.

• Security-typed language design and implementation, including automation and visualization developer tool.
• Policy management and enforcement mechanisms for security-typed applications in distributed systems.

• pending

Patrick McDaniel, Computer Science and Engineering

Your Name (First Last)*

Your Company

Your Email*

Confirm Email*

Your Message:

*required fields