A copy of this work was available on the public web and has been preserved in the Wayback Machine. The capture dates from 2012; you can also visit the original URL.
The file type is
The idea of building secure systems by plugging together "secure" components is appealing, but this requires a definition of security which, in addition to taking care of toplevel security goals, is strengthened appropriately in order to be compositional. This approach has been previously studied for information-flow security of shared-variable concurrent programs, but the price for compositionality is very high: a thread must be extremely pessimistic about what an environment might do withdoi:10.1109/csf.2011.22 dblp:conf/csfw/MantelSS11 fatcat:ldr7p73czzcl5egspa5nxcdnom