{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,6,18]],"date-time":"2025-06-18T04:34:29Z","timestamp":1750221269304,"version":"3.41.0"},"publisher-location":"New York, NY, USA","reference-count":65,"publisher":"ACM","license":[{"start":{"date-parts":[[2017,10,30]],"date-time":"2017-10-30T00:00:00Z","timestamp":1509321600000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/creativecommons.org\/licenses\/by\/4.0\/"}],"funder":[{"DOI":"10.13039\/501100004359","name":"Vetenskapsr\u00e5det","doi-asserted-by":"publisher","id":[{"id":"10.13039\/501100004359","id-type":"DOI","asserted-by":"publisher"}]},{"DOI":"10.13039\/100000001","name":"National Science Foundation","doi-asserted-by":"publisher","award":["1421770, 1524052"],"award-info":[{"award-number":["1421770, 1524052"]}],"id":[{"id":"10.13039\/100000001","id-type":"DOI","asserted-by":"publisher"}]},{"DOI":"10.13039\/501100001728","name":"Swedish Foundation for International Cooperation in Research and Higher Education","doi-asserted-by":"publisher","id":[{"id":"10.13039\/501100001728","id-type":"DOI","asserted-by":"publisher"}]}],"content-domain":{"domain":["dl.acm.org"],"crossmark-restriction":true},"short-container-title":[],"published-print":{"date-parts":[[2017,10,30]]},"DOI":"10.1145\/3133956.3134036","type":"proceedings-article","created":{"date-parts":[[2017,10,27]],"date-time":"2017-10-27T12:48:18Z","timestamp":1509108498000},"page":"1893-1907","update-policy":"https:\/\/doi.org\/10.1145\/crossmark-policy","source":"Crossref","is-referenced-by-count":4,"title":["Cryptographically Secure Information Flow Control on Key-Value Stores"],"prefix":"10.1145","author":[{"given":"Lucas","family":"Waye","sequence":"first","affiliation":[{"name":"Harvard University, Cambridge, MA, USA"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Pablo","family":"Buiras","sequence":"additional","affiliation":[{"name":"Harvard University, Cambridge, MA, USA"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Owen","family":"Arden","sequence":"additional","affiliation":[{"name":"University of California, Santa Cruz, Santa Cruz, CA, USA"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Alejandro","family":"Russo","sequence":"additional","affiliation":[{"name":"Chalmers University of Technology, Gothenburg, Sweden"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Stephen","family":"Chong","sequence":"additional","affiliation":[{"name":"Harvard University, Cambridge, MA, USA"}],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"320","published-online":{"date-parts":[[2017,10,30]]},"reference":[{"key":"e_1_3_2_2_1_1","doi-asserted-by":"publisher","DOI":"10.1007\/3-540-44750-4_19"},{"volume-title":"Sharing Mobile Code Securely with Information Flow Control Proceedings of the 2012 IEEE Symposium on Security and Privacy. 191--205","author":"Arden Owen","key":"e_1_3_2_2_2_1","unstructured":"Owen Arden, Michael D. George, Jed Liu, K. Vikram, Aslan Askarov, and Andrew C. Myers. 2012. Sharing Mobile Code Securely with Information Flow Control Proceedings of the 2012 IEEE Symposium on Security and Privacy. 191--205."},{"key":"e_1_3_2_2_3_1","doi-asserted-by":"publisher","DOI":"10.1109\/CSF.2015.42"},{"key":"e_1_3_2_2_4_1","doi-asserted-by":"crossref","unstructured":"Aslan Askarov and Stephen Chong 2012. Learning is Change in Knowledge: Knowledge-based Security for Dynamic Policies Proceedings of the IEEE Computer Security Foundations Symposium.","DOI":"10.1109\/CSF.2012.31"},{"key":"e_1_3_2_2_5_1","doi-asserted-by":"publisher","DOI":"10.1007\/11823230_23"},{"volume-title":"Termination-Insensitive Noninterference Leaks More Than Just a Bit Proceedings of the 13th European Symposium on Research in Computer Security: Computer Security","author":"Askarov Aslan","key":"e_1_3_2_2_6_1","unstructured":"Aslan Askarov, Sebastian Hunt, Andrei Sabelfeld, and David Sands 2008. Termination-Insensitive Noninterference Leaks More Than Just a Bit Proceedings of the 13th European Symposium on Research in Computer Security: Computer Security."},{"key":"e_1_3_2_2_7_1","volume-title":"Encryption and Key Release Policies Proceedings of the IEEE Symposium on Security and Privacy. 207--221","author":"Askarov Aslan","year":"2007","unstructured":"Aslan Askarov and Andrei Sabelfeld 2007. Gradual Release: Unifying Declassification, Encryption and Key Release Policies Proceedings of the IEEE Symposium on Security and Privacy. 207--221."},{"key":"e_1_3_2_2_8_1","volume-title":"Myers","author":"Askarov Aslan","year":"2010","unstructured":"Aslan Askarov, Danfeng Zhang, and Andrew C. Myers. 2010. Predictive black-box mitigation of timing channels Proceedings of the 17th ACM Conference on Computer and Communications Security."},{"key":"e_1_3_2_2_9_1","volume-title":"Springer. LCCN2004094685","author":"Asonov D.","year":"2005","unstructured":"D. Asonov. 2005. Querying Databases Privately: A New Approach to Private Information Retrieval. Springer. LCCN2004094685"},{"key":"e_1_3_2_2_10_1","doi-asserted-by":"publisher","DOI":"10.1145\/1653662.1653672"},{"key":"e_1_3_2_2_11_1","volume-title":"ObliviAd: Provably Secure and Practical Online Behavioral Advertising Proceedings of the 2012 IEEE Symposium on Security and Privacy.","author":"Backes Michael","year":"2012","unstructured":"Michael Backes, Aniket Kate, Matteo Maffei, and Kim Pecina. 2012. ObliviAd: Provably Secure and Practical Online Behavioral Advertising Proceedings of the 2012 IEEE Symposium on Security and Privacy."},{"key":"e_1_3_2_2_12_1","doi-asserted-by":"publisher","DOI":"10.1109\/SP.2007.11"},{"key":"e_1_3_2_2_13_1","doi-asserted-by":"publisher","DOI":"10.1145\/1706299.1706349"},{"key":"e_1_3_2_2_14_1","volume-title":"Abstractions for Usable Information Flow Control in Aeolus Proceedings of the 2012 USENIX Annual Technical Conference. 139--151","author":"Cheng Winnie","year":"2012","unstructured":"Winnie Cheng, Dan R.K. Ports, David Schultz, Victoria Popic, Aaron Blankstein, James Cowling, Dorothy Curtis, Liuba Shrira, and Barbara Liskov 2012. Abstractions for Usable Information Flow Control in Aeolus Proceedings of the 2012 USENIX Annual Technical Conference. 139--151."},{"key":"e_1_3_2_2_15_1","doi-asserted-by":"publisher","DOI":"10.1109\/CSFW.2006.11"},{"key":"e_1_3_2_2_16_1","doi-asserted-by":"publisher","DOI":"10.1109\/SFCS.1995.492461"},{"key":"e_1_3_2_2_17_1","doi-asserted-by":"publisher","DOI":"10.1109\/CSFW.2003.1212712"},{"key":"e_1_3_2_2_18_1","doi-asserted-by":"crossref","unstructured":"Willem De Groef Dominique Devriese Nick Nikiforakis and Frank Piessens 2012. FlowFox: a web browser with flexible and precise information flow control Proceedings of the 2012 ACM Conference on Computer and communications security.","DOI":"10.1145\/2382196.2382275"},{"key":"e_1_3_2_2_19_1","doi-asserted-by":"crossref","unstructured":"Tim Dierks. 2008. The Transport Layer Security (TLS) Protocol Version 1.2. RFC 5246. (2008). https:\/\/rfc-editor.org\/rfc\/rfc5246.txt","DOI":"10.17487\/rfc5246"},{"key":"e_1_3_2_2_20_1","doi-asserted-by":"publisher","DOI":"10.1007\/s10207-010-0105-2"},{"key":"e_1_3_2_2_21_1","volume-title":"Cryptographically Sound Implementations for Typed Information-flow Security Proceedings of the 35th Annual ACM SIGPLAN-SIGACT Symposium on Principles of Programming Languages. 323--335","author":"Fournet C\u00e9dric","year":"2008","unstructured":"C\u00e9dric Fournet and Tamara Rezk 2008. Cryptographically Sound Implementations for Typed Information-flow Security Proceedings of the 35th Annual ACM SIGPLAN-SIGACT Symposium on Principles of Programming Languages. 323--335."},{"key":"e_1_3_2_2_22_1","volume-title":"Types for Location and Data Security in Cloud Environments Proceedings of the IEEE Computer Sec. Foundations Symposium.","author":"Gazeau Ivan","year":"2017","unstructured":"Ivan Gazeau, Tom Chothia, and Dominic Duggan 2017. Types for Location and Data Security in Cloud Environments Proceedings of the IEEE Computer Sec. Foundations Symposium."},{"key":"e_1_3_2_2_23_1","volume-title":"Hails: Protecting Data Privacy in Untrusted Web Applications Proceedings of the Symposium on Operating Systems Design and Implementation.","author":"Giffin Daniel B.","year":"2012","unstructured":"Daniel B. Giffin, Amit Levy, Deian Stefan, David Terei, David Mazi\u00e8res, John Mitchell, and Alejandro Russo 2012. Hails: Protecting Data Privacy in Untrusted Web Applications Proceedings of the Symposium on Operating Systems Design and Implementation."},{"key":"e_1_3_2_2_24_1","doi-asserted-by":"publisher","DOI":"10.1109\/SP.1982.10014"},{"key":"e_1_3_2_2_25_1","unstructured":"Shafi Goldwasser and Mihir Bellare 2001. Lecture Notes on Cryptography. Chapter 10."},{"key":"e_1_3_2_2_26_1","doi-asserted-by":"crossref","unstructured":"Shafi Goldwasser and Silvio Micali 1982. Probabilistic Encryption & How to Play Mental Poker Keeping Secret All Partial Information Proceedings of the 14th Annual ACM Symposium on Theory of Computing. 365--377.","DOI":"10.1145\/800070.802212"},{"key":"e_1_3_2_2_27_1","unstructured":"Vincent Hanquez. 2017. The cryptonite library. http:\/\/hackage.haskell.org\/package\/cryptonite. (2017)."},{"volume-title":"JSFlow: Tracking information flow in JavaScript and its APIs Proceedings of the 29th ACM Symposium on Applied Computing","author":"Hedin Daniel","key":"e_1_3_2_2_28_1","unstructured":"Daniel Hedin, Arnar Birgisson, Luciano Bello, and Andrei Sabelfeld 2014. JSFlow: Tracking information flow in JavaScript and its APIs Proceedings of the 29th ACM Symposium on Applied Computing."},{"key":"e_1_3_2_2_29_1","unstructured":"Redis Labs. 2015. Redis. http:\/\/redis.io\/. (2015)."},{"key":"e_1_3_2_2_30_1","volume-title":"Semantics and Program Analysis of Computationally Secure Information Flow Proceedings of the 10th European Symposium on Programming Languages and Systems.","author":"Laud Peeter","year":"2001","unstructured":"Peeter Laud. 2001. Semantics and Program Analysis of Computationally Secure Information Flow Proceedings of the 10th European Symposium on Programming Languages and Systems."},{"key":"e_1_3_2_2_31_1","volume-title":"On the Computational Soundness of Cryptographically Masked Flows Proceedings of the 35th Annual ACM SIGPLAN-SIGACT Symposium on Principles of Programming Languages. 337--348","author":"Laud Peeter","year":"2008","unstructured":"Peeter Laud. 2008. On the Computational Soundness of Cryptographically Masked Flows Proceedings of the 35th Annual ACM SIGPLAN-SIGACT Symposium on Principles of Programming Languages. 337--348."},{"key":"e_1_3_2_2_32_1","volume-title":"Proceedings of the Workshop on Formal Aspects in Security and Trust.","author":"Li Peng","year":"2003","unstructured":"Peng Li, Yun Mao, and Steve Zdancewic 2003. Information integrity policies. In Proceedings of the Workshop on Formal Aspects in Security and Trust."},{"volume-title":"Fabric: A Platform for Secure Distributed Computation and Storage Proceedings of the ACM SIGOPS Symposium on Operating Systems Principles.","author":"Liu Jed","key":"e_1_3_2_2_33_1","unstructured":"Jed Liu, Michael D. George, K. Vikram, Xin Qi, Lucas Waye, and Andrew C. Myers. 2009. Fabric: A Platform for Secure Distributed Computation and Storage Proceedings of the ACM SIGOPS Symposium on Operating Systems Principles."},{"volume-title":"Fabric: A Platform for Secure Distributed Computation and Storage Proceedings of the ACM SIGOPS 22nd Symposium on Operating Systems Principles. 321--334","author":"Liu Jed","key":"e_1_3_2_2_34_1","unstructured":"Jed Liu, Michael D. George, K. Vikram, Xin Qi, Lucas Waye, and Andrew C. Myers. 2009. Fabric: A Platform for Secure Distributed Computation and Storage Proceedings of the ACM SIGOPS 22nd Symposium on Operating Systems Principles. 321--334."},{"key":"e_1_3_2_2_35_1","doi-asserted-by":"publisher","DOI":"10.1145\/2508859.2516692"},{"key":"e_1_3_2_2_36_1","doi-asserted-by":"publisher","DOI":"10.21236\/ADA462529"},{"key":"e_1_3_2_2_37_1","volume-title":"D-Link Accidentally Leaks Private Code-Signing Keys. https:\/\/threatpost.com\/d-link-accidentally-leaks-private-code-signing-keys\/114727\/. (Sept","author":"Mimoso Michael","year":"2015","unstructured":"Michael Mimoso. 2015. D-Link Accidentally Leaks Private Code-Signing Keys. https:\/\/threatpost.com\/d-link-accidentally-leaks-private-code-signing-keys\/114727\/. (Sept. 2015)."},{"key":"e_1_3_2_2_38_1","doi-asserted-by":"publisher","DOI":"10.14722\/ndss.2015.23284"},{"key":"e_1_3_2_2_39_1","doi-asserted-by":"publisher","DOI":"10.1109\/SECPRI.1998.674834"},{"key":"e_1_3_2_2_40_1","doi-asserted-by":"publisher","DOI":"10.3233\/JCS-2006-14203"},{"key":"e_1_3_2_2_41_1","volume-title":"Nystrom 2001--","author":"Myers A. C.","year":"2001","unstructured":"A. C. Myers, L. Zheng, S. Zdancewic, S. Chong, and N. Nystrom 2001--. Jif: Java Information Flow. (2001--). shownoteSoftware release. http:\/\/www.cs.cornell.edu\/jif."},{"volume-title":"Olumofin and Ian Goldberg 2Revisiting the Computational Practicality of Private Information Retrieval Proceedings of the 15th International Conference on Financial Cryptography and Data Security","author":"Femi","key":"e_1_3_2_2_42_1","unstructured":"Femi G. Olumofin and Ian Goldberg 2Revisiting the Computational Practicality of Private Information Retrieval Proceedings of the 15th International Conference on Financial Cryptography and Data Security."},{"key":"e_1_3_2_2_43_1","volume-title":"A Course in Cryptography (edition","author":"Pass Rafael","unstructured":"Rafael Pass and Abhi Shelat 2010. A Course in Cryptography (edition 3rd ed.). Chapter 7.","edition":"3"},{"key":"e_1_3_2_2_44_1","unstructured":"Falko Peters. 2017. The hedis library. http:\/\/hackage.haskell.org\/package\/hedis. (2017)."},{"key":"e_1_3_2_2_45_1","doi-asserted-by":"crossref","unstructured":"Ronald L Rivest Adi Shamir and Yael Tauman. 2006. How to leak a secret: Theory and applications of ring signatures. Theoretical Computer Science. 164--186.","DOI":"10.1007\/11685654_7"},{"key":"e_1_3_2_2_46_1","doi-asserted-by":"publisher","DOI":"10.1145\/1542476.1542484"},{"key":"e_1_3_2_2_47_1","volume-title":"Functional Pearl: Two Can Keep a Secret, if One of Them Uses Haskell Proceedings of the 20th ACM SIGPLAN International Conference on Functional Programming. 280--288.","author":"Russo Alejandro","year":"2015","unstructured":"Alejandro Russo. 2015. Functional Pearl: Two Can Keep a Secret, if One of Them Uses Haskell Proceedings of the 20th ACM SIGPLAN International Conference on Functional Programming. 280--288."},{"key":"e_1_3_2_2_48_1","unstructured":"Rafia Shaikh. 2015. Microsoft Accidentally Leaks Xbox Live Keys User Data at Risk of Man-in-the-Middle Attacks. http:\/\/wccftech.com\/microsoft-accidentally-leaks-xbox-live-keys\/. (Dec. 2015)."},{"key":"e_1_3_2_2_49_1","volume-title":"The Flow Caml System. (July","author":"Simonet V.","year":"2003","unstructured":"V. Simonet. 2003. The Flow Caml System. (July 2003). Software release at http:\/\/cristal.inria.fr\/ simonet\/soft\/flowcaml\/."},{"key":"e_1_3_2_2_51_1","volume-title":"Secure Information Flow with Random Assignment and Encryption Proceedings of the 4th ACM Workshop on Formal Methods in Security. 33--44","author":"Smith Geoffrey","year":"2006","unstructured":"Geoffrey Smith and Rafael Alp'zar 2006. Secure Information Flow with Random Assignment and Encryption Proceedings of the 4th ACM Workshop on Formal Methods in Security. 33--44."},{"key":"e_1_3_2_2_52_1","doi-asserted-by":"publisher","DOI":"10.1147\/sj.403.0683"},{"volume-title":"Proceedings of the 16th Nordic Conference on Security IT Systems. 223--239","author":"Stefan Deian","key":"e_1_3_2_2_53_1","unstructured":"Deian Stefan, Alejandro Russo, David Mazi\u00e8res, and John C. Mitchell 2011. Disjunction Category Labels. In Proceedings of the 16th Nordic Conference on Security IT Systems. 223--239."},{"key":"e_1_3_2_2_54_1","volume-title":"Flexible Dynamic Information Flow Control in Haskell Proceedings of the 4th ACM symposium on Haskell. 95--106","author":"Stefan Deian","year":"2011","unstructured":"Deian Stefan, Alejandro Russo, John C. Mitchell, and David Mazi\u00e8res 2011. Flexible Dynamic Information Flow Control in Haskell Proceedings of the 4th ACM symposium on Haskell. 95--106."},{"volume-title":"Protecting Users by Confining JavaScript with COWL Proceedings of the 11th Symposium on Operating Systems Design and Implementation","author":"Stefan Deian","key":"e_1_3_2_2_55_1","unstructured":"Deian Stefan, Edward Z. Yang, Petr Marchenko, Alejandro Russo, Dave Herman, Brad Karp, and David Mazi\u00e8res 2014. Protecting Users by Confining JavaScript with COWL Proceedings of the 11th Symposium on Operating Systems Design and Implementation."},{"key":"e_1_3_2_2_56_1","doi-asserted-by":"publisher","DOI":"10.1109\/SP.2007.5"},{"volume-title":"State of Software Security","author":"Veracode","key":"e_1_3_2_2_57_1","unstructured":"Veracode 2015. State of Software Security. Vol. Vol. 6."},{"key":"e_1_3_2_2_58_1","volume-title":"Private Information Retrieval Using Trusted Hardware Proceedings of the 11th European Symposium on Research in Computer Security. 49--64","author":"Wang Shuhong","year":"2006","unstructured":"Shuhong Wang, Xuhua Ding, Robert H. Deng, and Feng Bao. 2006. Private Information Retrieval Using Trusted Hardware Proceedings of the 11th European Symposium on Research in Computer Security. 49--64."},{"key":"e_1_3_2_2_59_1","volume-title":"Cryptographically Secure Information Flow Control on Key-Value Stores. ArXiv e-prints (Aug","author":"Waye Lucas","year":"2017","unstructured":"Lucas Waye, Pablo Buiras, Owen Arden, Alejandro Russo, and Stephen Chong 2017. Cryptographically Secure Information Flow Control on Key-Value Stores. ArXiv e-prints (Aug. 2017). [arxiv]1708.08895"},{"volume-title":"It's My Privilege: Controlling Downgrading in DC-Labels Proceedings of the 11th International Workshop on Security and Trust Management","author":"Waye Lucas","key":"e_1_3_2_2_60_1","unstructured":"Lucas Waye, Pablo Buiras, Dan King, Stephen Chong, and Alejandro Russo 2015. It's My Privilege: Controlling Downgrading in DC-Labels Proceedings of the 11th International Workshop on Security and Trust Management."},{"volume-title":"Why Johnny Can't Encrypt: A Usability Evaluation of PGP 5.0 Proceedings of the 8th Conference on USENIX Security Symposium","author":"Whitten Alma","key":"e_1_3_2_2_61_1","unstructured":"Alma Whitten and J. D. Tygar 1999. Why Johnny Can't Encrypt: A Usability Evaluation of PGP 5.0 Proceedings of the 8th Conference on USENIX Security Symposium."},{"key":"e_1_3_2_2_62_1","volume-title":"Usable PIR Proceedings of the Network and Distributed System Security Symposium.","author":"Williams Peter","year":"2008","unstructured":"Peter Williams and Radu Sion 2008. Usable PIR Proceedings of the Network and Distributed System Security Symposium."},{"key":"e_1_3_2_2_63_1","unstructured":"Alexander Yip Neha Narula Maxwell Krohn and Robert Morris 2009. Privacy-preserving browser-side scripting with BFlow EuroSys."},{"key":"e_1_3_2_2_64_1","doi-asserted-by":"publisher","DOI":"10.1109\/CSFW.2001.930133"},{"key":"e_1_3_2_2_65_1","volume-title":"Securing Distributed Systems with Information Flow Control Proceedings of the 5th USENIX Symposium on Networked Systems Design and Implementation. 293--308","author":"Zeldovich Nickolai","year":"2008","unstructured":"Nickolai Zeldovich, Silas Boyd-Wickizer, and David Mazi\u00e8res. 2008. Securing Distributed Systems with Information Flow Control Proceedings of the 5th USENIX Symposium on Networked Systems Design and Implementation. 293--308."},{"volume-title":"End-to-End Availability Policies and Noninterference Proceedings of the 18th IEEE Computer Security Foundations Workshop. 272--286","author":"Zheng Lantian","key":"e_1_3_2_2_66_1","unstructured":"Lantian Zheng and Andrew C. Myers 2005. End-to-End Availability Policies and Noninterference Proceedings of the 18th IEEE Computer Security Foundations Workshop. 272--286."}],"event":{"name":"CCS '17: 2017 ACM SIGSAC Conference on Computer and Communications Security","sponsor":["SIGSAC ACM Special Interest Group on Security, Audit, and Control"],"location":"Dallas Texas USA","acronym":"CCS '17"},"container-title":["Proceedings of the 2017 ACM SIGSAC Conference on Computer and Communications Security"],"original-title":[],"link":[{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3133956.3134036","content-type":"unspecified","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/dl.acm.org\/doi\/pdf\/10.1145\/3133956.3134036","content-type":"application\/pdf","content-version":"vor","intended-application":"syndication"},{"URL":"https:\/\/dl.acm.org\/doi\/pdf\/10.1145\/3133956.3134036","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,6,18]],"date-time":"2025-06-18T02:11:03Z","timestamp":1750212663000},"score":1,"resource":{"primary":{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3133956.3134036"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2017,10,30]]},"references-count":65,"alternative-id":["10.1145\/3133956.3134036","10.1145\/3133956"],"URL":"https:\/\/doi.org\/10.1145\/3133956.3134036","relation":{},"subject":[],"published":{"date-parts":[[2017,10,30]]},"assertion":[{"value":"2017-10-30","order":2,"name":"published","label":"Published","group":{"name":"publication_history","label":"Publication History"}}]}}