Syllabus

Below, the list of topics to covert in the course. For each subject, there is a link to the corresponding slides.

Module 1 (slides)

Topics

• Introduction
• Access Control and Information-Flow Control
• Organization of the course
• Introduction to Haskell
• The IO Monad
• Why Haskell? Why Monads?
• Running example
  • Source code
• The security monad MAC
  • Source code
• The join operator
  • Source code
• Dynamic vs. Static enforcement

Module 2 (slides)

• Classifying dangerous flows
• Exceptions
  • Source code
• Covert channels
  • Source code
• Concurrency
  • Termination covert channel
  • Source code
• Internal timing covert channel
• Cache attacks
  • Source code
• Instruction-based scheduling
  • Source code
• Attacks via lazy evaluation

Module 3

• Dependency Code Calculus (DCC)
• An implementation in Haskell
  • Source code
• Adding effects as derived operations in DCC
  • Source code
• Label creep
• Introduction of primitive cast
  • Source code
• DCC and the IO monad
  • Source code
• A new approach to design IFC libraries
  • Source code

---