Also at DBLP and HAL INRIA

Selected Conferences and Workshops

  • Impossibility of Precise and Sound Termination Sensitive Security Enforcements with Minh Ngo and Frank Piessens
    S&P'18

  • A Better Facet of Dynamic Information Flow Control with Minh Ngo, Nataliia Bielova, Cormac Flanagan, Alejandro Russo, and Thomas Schmitz
    WWW'18

  • Type Abstraction for Relaxed Noninterference with Raimil Cruz, Bernard Serpette, and Éric Tanter
    ECOOP'17

  • On the Content Security Policy Violations due to the Same-Origin Policy with Francis Some and Nataliia Bielova
    WWW'17

  • On access control, capabilities, their equivalence, and confused deputy attacks with Vineet Rajani and Deepak Garg
    CSF'16

  • Spot the Difference: Secure Multi-Execution and Multiple Facets with Nataliia Bielova
    ESORICS'16

  • A Taxonomy of Information Flow Monitors with Nataliia Bielova
    POST'16

  • Stateful Declassification Policies for Event-Driven Programs with Mathy Vanhoef, Willem De Groef, Dominique Devriese, Frank Piessens
    CSF'14

  • Mashic Compiler: Mashup Sandboxing using Inter-frame Communication with Zhengqin Luo
    CSF'12, see also journal version where we propose an optimization for the compiler based on future batches

  • Information-flow types for homomorphic encryptions with Cedric Fournet and Jeremy Planul
    CCS'11

  • Automated Code Injection Prevention for Web Applications with Zhengqin Luo, and Manuel Serrano
    TOSCA'11

  • Towards Reasoning for Web Applications: An Operational Semantics for Hop with Gerard Boudol, Zhengqin Luo, and Manuel Serrano
    APLWACA 2010, see also the journal version where we model the same origin policy

  • Robustness Guarantees for Anonymity with Gilles Barthe, Alejandro Hevia, Zhengqin Luo, and Bogdan Warinschi
    CSF 2010

  • Session Types for Access and Information Flow Control with Sara Capecchi, Ilaria Castellani, and Mariangiola Dezani-Ciancaglini
    CONCUR 2010

  • A Security-Preserving Compiler for Distributed Programs with Cedric Fournet and Gurvan Le Guernic
    CCS 2009

  • Tractable Enforcement of Declassification Policies with Gilles Barthe and Salvador Cavadini
    CSF 2008

  • Cryptographically sound implementations for typed information-flow security with Cedric Fournet
    POPL 2008

  • Deriving an Information Flow Checker and Certifying Compiler for Java with Gilles Barthe and David Naumann
    S&P (Oakland) 2006


    Journals

  • Mashic Compiler: Mashup Sandboxing using Inter-frame Communication In Journal of Computer Security
    @article{mashicJCS,  
    author    = {Zhengqin Luo and Jos{\'e} Fragoso Santos and Ana Almeida Matos and Tamara Rezk},
      title     = {Mashic Compiler: Mashup Sandboxing using Inter-frame Communication},
      journal   = {Journal of Computer Security},
      year      = {2016}
      }
    
  • Reasoning about Web Applications: An Operational Semantics for Hop In ACM TOPLAS, June 2012
    @article{hopsemantics,  
    author    = {Gerard Boudol and Zhengqin Luo and Tamara Rezk and Manuel Serrano},
      title     = {Reasoning about Web Applications: An Operational Semantics for Hop},
      journal   = {ACM Transanctions on Programming  Languages and Systems},
      volume    = {34},
      number    = {2},
      year      = {2012}
      }
    
  • A Certified Lightweight Non-Interference Java Bytecode Verifier In MSCS, 2013
    @article{jvmlong,  
    author    = {Gilles Barthe and David Pichardie and Tamara Rezk},
      title     = {A Certified Lightweight Non-Interference Java Bytecode Verifier},
      journal   = {Mathematical Structures in Computer Science (MSCS)},
      volume    = {23},
      number    = {5},
      year      = {2013}
      }
    
  • Secure Information Flow by Self Composition In the Special Issue of MSCS of PLID, December 2011
    @article{selfcomposition,
      author    = {Gilles Barthe and Pedro R. D'Argenio and Tamara Rezk},
      title     = {Secure information flow by self-composition},
      journal   = {Mathematical Structures in Computer Science},
      volume    = {21},
      number    = {6},
      year      = {2011},
      pages     = {1207-1252}
    }
    
  • Security of Multithreaded Programs by Compilation In ACM TISSEC, July 2010
    @article{securemultithreaded,
      author    = {Gilles Barthe and Tamara Rezk and Alejandro Russo and Andrei Sabelfeld},
      title     = {Security of multithreaded programs by compilation},
      journal   = {ACM Transactions on Information and System Security},
      volume    = {13},
      number    = {3},
      year      = {2010}
    }
    
  • Certificate Translation for Optimizing Compilers In ACM TOPLAS, June 2009
    @article{certificatetranslation,  
    author    = {Gilles Barthe and Benjamin Gr{\'e}goire and C{\'e}sar Kunz and Tamara Rezk},
      title     = {Certificate Translation for Optimizing Compilers},
      journal   = {ACM Transanctions on Programming  Languages and Systems},
      volume    = {31},
      number    = {5},
      year      = {2009}
      }
    
  • Security Types Preserving Compilation In the International Journal of Computer Languages, Systems and Structures, September 2007
    @ARTICLE{preservingtypes,
      AUTHOR = {Gilles Barthe and Tamara Rezk and Amitabh Basu},
      TITLE = {Security Types Preserving Compilation},
      YEAR = {2005},
      journal   = {Computer Languages, Systems {\&} Structures},
      volume    = {33},
      number    = {2},
      year      = {2007},
      pages     = {35-59}
    }