Publications, Computer Security

Rafnsson, Willard; Nakata, K.; Sabelfeld, Andrei: Securing Class Initialization in Java-like Languages. IEEE Transactions on Dependable and Secure Computing, 10 (1) pp. 1-13.

Zanarini, Dante; Jaskelioff, Mauro; Russo, Alejandro: Precise Enforcement of Confidentiality for Reactive Systems. IEEE Computer Security Foundations Symposium,

Bello, Luciano; Russo, Alejandro: Towards a Taint Mode for Cloud Computing Web Application. 7th Workshop on Programming Languages and Analysis for Security , pp. 7:1--7:12. ISBN/ISSN: 978-1-4503-1441-1

Birgisson, Arnar; Hedin, Daniel; Sabelfeld, Andrei: Boosting the Permissiveness of Dynamic Information-Flow Tracking by Testing. LNCS Computer Security -- ESORICS 2012, 7459 pp. 55-72.

Burden, Håkan; Heldal, Rogardt; Lundqvist, Martin: Industrial Experiences from Multi-Paradigmatic Modelling of Signal Processing. 6th International Workshop on Multi-Paradigm Modeling MPM'12,

Burden, Håkan; Heldal, Rogardt; Adawi, Tom: Pair Lecturing - Catching that teachable moment. Lärande i LTH,

Burden, Håkan; Heldal, Rogardt; Adawi, Tom: Pair lecturing to enhance reflective practice and teacher development. Proceedings of LTHs 7:e Pedagogiska Inspirationskonferens, Lund, 30 August 2012.,

Burden, Håkan; Heldal, Rogardt; Adawi, Tom: Pair lecturing to model modeling and encourage active learning. Proceedings of the ALE conference, Copenhagen, 20-22 June 2012,

Costache, Mihai; Tudor, Valentin; Almgren, Magnus; Papatriantafilou, Marina; Saunders, Christopher: Remote control of smart meters: friend or foe?. Proceedings - 2011 7th European Conference on Computer Network Defense, EC2ND 2011, Gothenburg, 6-7 September 2011, pp. 49-56. ISBN/ISSN: 978-076954762-6

Giffin, Daniel B.; Levy, Amit; Stefan, Deian; Terei, David; Mazières, David; Mitchell, John; Russo, Alejandro: Hails: Protecting Data Privacy in Untrusted Web Applications. Symposium on Operating Systems Design and Implementation,

Hedin, Daniel; Sabelfeld, Andrei: Information-flow security for a core of JavaScript. Proceedings of the Computer Security Foundations Symposium, pp. 3-18. ISBN/ISSN: 978-076954718-3

Heldal, Rogardt; Burden, Håkan; Lundqvist, Martin: Limits of Model Transformations for Embedded Software. SEW-35, The 35th Annual IEEE Software Engineering Workshop,

Heldal, Rogardt; Arvidsson, Daniel; Persson, F.: Modeling executable test actors: Exploratory study done in executable and translatable UML. Proceedings - Asia-Pacific Software Engineering Conference, APSEC, 1 pp. 784-789. ISBN/ISSN: 978-076954922-4

Kleberger, Pierre; Olovsson, Tomas; Jonsson, Erland: An In-Depth Analysis of the Security of the Connected Repair Shop. The Seventh International Conference on Systems and Networks Communications (ICSNC), Proceedings. Lisbon, 18-23 November, 2012. IARIA., pp. 99-107. ISBN/ISSN: 978-1-61208-231-8

Lind, K.; Heldal, Rogardt: A Practical Approach to Size Estimation of Embedded Software Components. IEEE Transactions on Software Engineering, 38 (5) pp. 993-1007.

Lind, K.; Heldal, Rogardt: Automotive system development using reference architectures. Proceedings of the 2012 IEEE 35th Software Engineering Workshop, SEW 2012, Heraklion, Greece, 12-13 October 2012, pp. 42-51. ISBN/ISSN: 978-076954947-7

Lind, K.; Heldal, Rogardt: CompSize: A Model-Based and Automated Approach to Size Estimation of Embedded Software Components. IEICE Transactions on Information and Systems, E95D (9) pp. 2183-2192.

Magazinius, Jonas; Russo, Alejandro; Sabelfeld, Andrei: On-The-Fly Inlining Of Dynamic Security Monitors. Computers & security, 31 (7) pp. 827-843.

Moradi, Farnaz; Olovsson, Tomas; Tsigas, Philippas: An Evaluation of Community Detection Algorithms on Large-Scale Email Traffic. Proceedings of the 11th International Symposium on Experimental Algorithms,, SEA 2012, Bordeaux, France, June 7-9, 2012. , pp. 283-294.

Moradi, Farnaz; Olovsson, Tomas; Tsigas, Philippas: The anti-social behavior of spam. Proceedings - 2011 7th European Conference on Computer Network Defense, EC2ND 2011, Gothenburg, 6-7 September 2011, pp. 57. ISBN/ISSN: 978-076954762-6

Moradi, Farnaz; Olovsson, Tomas; Tsigas, Philippas: Towards Modeling Legitimate and Unsolicited Email Traffic Using Social Network Properties. Proceedings of the Fifth Workshop on Social Network Systems, SNS'12. 5th Workshop on Social Network Systems, Bern,10 April 2012, ISBN/ISSN: 978-1-4503-1164-9

Rafnsson, Willard; Hedin, Daniel; Sabelfeld, Andrei: Securing interactive programs. Proceedings of the Computer Security Foundations Symposium, pp. 293-307. ISBN/ISSN: 978-076954718-3

Sangchoolie, Behrooz; Nasab, Mazdak Rajabi; Olovsson, Tomas; John, Wolfgang: Assessing the Quality of Packet-Level Traces Collected on Internet Backbone Links. Secure IT Systems, Audun Jøsang & Bengt Carlsson, NordSec, Karlskrona, Sweden, October/November 2012, 7617 pp. 184-198. ISBN/ISSN: 978-3-642-34209-7

Stefan, Deian; Russo, Alejandro; Buiras, Pablo; Levy, Amit; Mitchell, John C.; Mazières, David: Addressing Covert Termination and Timing Channels in Concurrent Information Flow Systems. 17th ACM SIGPLAN International Conference on Functional Programming, ICFP 2012. Copenhagen, 9 - 15 September 2012, pp. 201-213. ISBN/ISSN: 978-1-4503-1054-3

Almgren, Magnus; Fu, Zhang; Jonsson, Erland; Kleberger, Pierre; Larsson, Andreas; Moradi, Farnaz; Olovsson, Tomas; Papatriantafilou, Marina; Pirzadeh, Laleh; Tsigas, Philippas: Mapping Systems Security Research at Chalmers. First SysSec Workshop (SysSec 2011), pp. 67-70. ISBN/ISSN: 978-0-7695-4530-1

Almgren, Magnus; Almgren, Magnus; Maggi, Federico; Maggi, Federico; Stamatogiannakis, Manolis; Stamatogiannakis, Manolis; Zanero, Stefano; Zanero, Stefano: Pre-proceedings of EC2ND 2011. Magnus Almgren, Magnus Almgren, Federico Maggi, Federico Maggi, Manolis Stamatogiannakis, Manolis Stamatogiannakis, Stefano Zanero, Stefano Zanero [editor(s)]. Göteborg : Chalmers University of Technology.

Birgisson, Arnar; Russo, Alejandro; Sabelfeld, Andrei: Capabilities for information flow. ACM SIGPLAN Workshop on Programming Languages and Analysis for Security, pp. article no. 5. ISBN/ISSN: 978-145030830-4

Birgisson, Arnar; Sabelfeld, Andrei: Multi-run security. Lecture Notes in Computer Science, Proceedings of the European Symposium on Research in Computer Security (ESORICS), ISBN/ISSN: 978-364223821-5

Broberg, Niklas: Practical, Flexible programming with Information Flow Control. Göteborg : University of Gothenburg. Diss.

Burden, Håkan; Heldal, Rogardt; Adawi, Tom: Assessing individuals in team projects: A case study from computer science. Conference on Teaching and Learning - KUL,

Burden, Håkan; Heldal, Rogardt; Siljamäki, Toni: Executable and Translatable UML - How Difficult Can It Be?. APSEC 2011, 18th Asia-Pacific Software Engineering Conference. Ho Chi Minh, 5-8 Dec. 2011, pp. 114-121. ISBN/ISSN: 978-1-4577-2199-1

Burden, Håkan; Heldal, Rogardt: Natural Language Generation from Class Diagrams. MoDeVVa 2011, MoDELS Workshop on Model-Driven Engineering, Verification and Validation,

Burden, Håkan; Heldal, Rogardt; Adawi, Tom: Students’ and Teachers’ Views on Fair Grades - Is it Possible to Reach a Shared Understanding?. Proceedings, 3:e Utvecklingskonferensen för Sveriges ingenjörsutbildningar,

Del Tedesco, Filippo; Hunt, Sebastian; Sands, David: A Semantic Hierarchy for Erasure Policies. Lecture Notes in Computer Science, Seventh International Conference on Information Systems Security, December 2011, Kolkata (India), 7093 pp. 352-369 . ISBN/ISSN: 978-364225559-5

Djambazova, Edita; Almgren, Magnus; Dimitrov, Kiril; Jonsson, Erland: Emerging and Future Cyber Threats to Critical Systems. Lecture Notes in Computer Science. IFIP WG 11.4 International Workshop on Open Research Problems in Network Security, iNetSec 2010, Sofia, 5-6 March 2010, 6555 pp. 29-46. ISBN/ISSN: 978-364219227-2

Hedin, Daniel; Sabelfeld, Andrei: A Perspective on Information-Flow Control. Proceedings of the 2011 Marktoberdorf Summer School,

Hunt, S.; Sands, David: From Exponential to Polynomial-time Security Typing via Principal Types. Lecture Notes in Computer Science. 20th European Symposium on Programming, ESOP 2011, 6602 pp. 297-316. ISBN/ISSN: 978-364219717-8

Jaskelioff, Mauro; Russo, Alejandro: Secure Multi-Execution in Haskell. Andrei Ershov International Conference on Perspectives of System Informatics,

Jonsson, Erland; Pirzadeh, Laleh: A Framework for Security Metrics Based on Operational System Attributes. International workshop on Security Measurements and Metrics - MetriSec2011, Banff, Alberta, Canada, 2011-09-21. , pp. 58-65. ISBN/ISSN: 978-076954680-3

Kleberger, Pierre; Javaheri, Asrin; Olovsson, Tomas; Jonsson, Erland: A Framework for Assessing the Security of the Connected Car Infrastructure. The Sixth International Conference on Systems and Networks Communications (ICSNC), Proceedings. Barcelona, 23-29 October 2011. IARIA., pp. 236-241. ISBN/ISSN: 978-1-61208-166-3

Kleberger, Pierre; Olovsson, Tomas; Jonsson, Erland: Security aspects of the in-vehicle network in the connected car. IEEE Intelligent Vehicles Symposium, Proceedings. Baden-Baden, 5-9 June 2011, pp. 528-533. ISBN/ISSN: 978-145770890-9

Larson, Ulf; Jonsson, Erland; Lindskog, Stefan: A Structured Approach to Selecting Data Collection Mechanisms for Intrusion Detection. Privacy, Intrusion Detection, and Response: Technologies for Protecting Networks, pp. 1-39. ISBN/ISSN: 9781609608361

Lind, Kenneth; Heldal, Rogardt: A Model-Based and Automated Approach to Size Estimation of Embedded Software Components. Lecture Notes in Computer Science. 14th International Conference on Model Driven Engineering Languages and Systems, MODELS 2011, Wellington, 16-21 October 2011, 6981 pp. 334-348. ISBN/ISSN: 978-364224484-1

Lind, Kenneth; Heldal, Rogardt: CompSize: Automated Size Estimation of Embedded Software Components. The Joint Conf. of 21st Intl Workshop on Software Measurement (IWSM) and 6th Intl Conf on Software Process and Product Measurement (Mensura), pp. 86-95 .

Magazinius, Jonas; Askarov, Aslan; Sabelfeld, Andrei: Decentralized Delimited Release. Lecture Notes in Computer Science. 9th Asian Symposium on Programming Languages and Systems (APLAS), 7078 pp. 220-237. ISBN/ISSN: 978-364225317-1

Mantel, A.; Sands, David; Sudbrock, H.: Assumptions and guarantees for compositional noninterference. 24th Computer Security Foundations Symposium, CSF 2011; Cernay-la-Ville; 27 June 2011 through 29 June 2011, pp. 218-232 . ISBN/ISSN: 978-076954365-9

Moradi, Farnaz; Almgren, Magnus; John, Wolfgang; Olovsson, Tomas; Tsigas, Philippas: On Collection of Large-Scale Multi-Purpose Datasets on Internet Backbone Links. The First Workshop on Building Analysis Datasets and Gathering Experience Returns for Security, BADGERS 2011, Salzburg, Austria, 10 April 2011, pp. 62-69. ISBN/ISSN: 978-145030768-0

Moradi, Farnaz; Olovsson, Tomas; Tsigas, Philippas: Structural and Temporal Properties of Email and Spam Networks. Göteborg : Chalmers University of Technology.

Palka, Michal H.; Claessen, Koen; Russo, Alejandro; Hughes, John: Testing an Optimising Compiler by Generating Random Lambda Terms. International Workshop on Automation of Software Test,

Pirzadeh, Laleh; Jonsson, Erland: A Cause and Effect Approach Towards Risk Analysis. International workshop on Security Measurements and Metrics - MetriSec2011, Banff, Alberta, Canada, 2011-09-21, pp. 80-83. ISBN/ISSN: 9780769546803

Rafnsson, Willard; Sabelfeld, Andrei: Limiting Information Leakage in Event-based Communication. ACM SIGPLAN Workshop on Programming Languages and Analysis for Security, pp. (Article no. 4). ISBN/ISSN: 978-145030830-4

Stefan, D.; Russo, Alejandro; Mitchell, J. C.; Mazieres, D.: Flexible Dynamic Information Flow Control in Haskell. ACM Sigplan Notices, 46 (12) pp. 95-106.

Stefan, Deian; Russo, Alejandro; Mazieres, David; Mitchell, John C.: Disjunction Category Labels. Nordic Conference in Secure IT Systems,

Stefan, Deian; Russo, Alejandro; Mitchell, John; Mazieres, David: Flexible Dynamic Information Flow Control in Haskell. ACM SIGPLAN Haskell Symposium 2011, ISBN/ISSN: 978-145030860-1

Almgren, Magnus; John, Wolfgang: Tracking Malicious Hosts on a 10Gbps Backbone Link. 15th Nordic Conference in Secure IT Systems (NordSec 2010),

Barthe, G.; Rezk, T.; Russo, Alejandro; Sabelfeld, Andrei: Security of Multithreaded Programs by Compilation. ACM TRANSACTIONS ON INFORMATION AND SYSTEM SECURITY , 13 (3)

Birgisson, Arnar; Russo, Alejandro; Sabelfeld, Andrei: Unifying Facets of Information Integrity. Springer LNCS Proceedings of Sixth International Conference on Information Systems Security, 6503 pp. 48-65. ISBN/ISSN: 978-364217713-2

Broberg, N.; Sands, David: Paralocks - Role-Based Information Flow Control and Beyond. ACM Sigplan Notices, 45 (1) pp. 431-444.

Conti, Juan Jóse; Russo, Alejandro: A Taint Mode for Python via a Library. OWASP AppSec Research 2010,

Del Tedesco, Filippo; Russo, Alejandro; Sands, David: Implementing Erasure Policies Using Taint Analysis. Nordic Conference in Secure IT Systems (NORDSEC 2010), 2010, Espoo, Finland,

John, Wolfgang; Tafvelin, Sven; Olovsson, Tomas: Passive Internet Measurement: Overview and Guidelines based on Experiences. Computer Communications, 33 (5) pp. 533-550.

Kruegel, Christoffer; Almgren, Magnus; Bos, Herbert; Dimitrov, Kiril; Djambazova, Edita; Ioannidis, Sotiris; Jonsson, Erland; Kirda, Engin; Markatos, Evangelos: Forward White Book: Emerging ICT Threats.

Larson, Ulf; Nilsson, Dennis K.; Jonsson, Erland; Lindskog, S.: Using system call information to reveal hidden attack manifestations. Proceedings of the 1st International Workshop on Security and Communication Networks, IWSCN 2009, ISBN/ISSN: 978-829971051-0

Lind, Kenneth; Heldal, Rogardt: Categorization of Real-Time Software Components for Code Size Estimation. International Symposium on Empirical Software Engineering and Measurement (ESEM 2010), ISBN/ISSN: 978-145030039-1

Lind, Kenneth; Heldal, Rogardt: On the Relationship between Functional Size and Software Code Size. International Workshop on Emerging Trends in Software Metrics (WETSoM 2010), May 4, 2010, Cape Town, South Africa., ISBN/ISSN: 978-1-60558-976-3

Magazinius, Jonas; Askarov, Aslan; Sabelfeld, Andrei: A lattice-based approach to mashup security. 5th ACM Symposium on Information, Computer and Communication Security, ASIACCS 2010; Beijing; 13 April 2010 through 16 April 2010, pp. 15-23 . ISBN/ISSN: 978-160558936-7

Magazinius, Jonas; Russo, Alejandro; Sabelfeld, Andrei: On-the-fly inlining of dynamic security monitors. In Proc. IFIP International Information Security Conference (SEC 2010),

Magazinius, Jonas; Phung, Phu H.; Sands, David: Safe Wrappers and Sane Policies for Self Protecting JavaScript. The 15th Nordic Conference in Secure IT Systems (Nordsec'10), LNCS,

Moradi, Farnaz; Olovsson, Tomas; Tsigas, Philippas: Analyzing the Social Structure and Dynamics of E-mail and Spam in Massive Backbone Internet Traffic. Göteborg : Chalmers University of Technology.

Nakata, Keiko; Sabelfeld, Andrei: Securing Class Initialization. Proceedings of the IFIP International Conference on Trust Management (IFIPTM),

Norrhem, Bosse; Almgren, Magnus; Andreasson, Torbjörn; Axelsson, Leif; Fredin, Mikael; Jonsson, Erland; Lagerman, Mikael; Rinaldo, Ann: Security Arena, årsrapport 2009. Göteborg :

Phung, Phu H.; Nilsson, Dennis K.: A Model for Safe and Secure Execution of Downloaded Vehicle Applications. Proceedings of Road Transport Information and Control - RTIC 2010, IET, ISBN/ISSN: 978 1 84919 242 2

Russo, Alejandro; Sabelfeld, Andrei: Dynamic vs. Static Flow-Sensitive Security Analysis. Proceedings of the IEEE Computer Security Foundations Symposium, pp. 186-199. ISBN/ISSN: 978-076954082-5

Svenningsson, Josef; Sands, David: Specification and Verification of Side Channel Declassification. Lecture Notes in Computer Science. 6th International Workshop on Formal Aspects in Security and Trust, FAST 2009, Eindhoven, 5-6 November 2009, 5983 pp. 111-125. ISBN/ISSN: 978-364212458-7

Askarov, Aslan; Sabelfeld, Andrei: Catch Me If You Can: Permissive Yet Secure Error Handling. ACM SIGPLAN Workshop on Programming Languages and Analysis for Security,

Askarov, Aslan: Policies and Mechanisms for Securing Information Release. Göteborg : Chalmers University of Technology. Diss. ISBN/ISSN: 978-91-7385-232-6

Askarov, Aslan; Sabelfeld, Andrei: Tight Enforcement of Information-Release Policies for Dynamic Languages. Proceedings of the IEEE Computer Security Foundations Symposium,

Barthe, Gilles; Rezk, Tamara; Russo, Alejandro; Sabelfeld, Andrei: Secuirty of Multithreaded Programs by Compilation. Special Issue of ACM Transactions on Information and System Security (TISSEC) ,

Bos, Herbert; Jonsson, Erland; Djambazova, Edita; Ioannidis, Sotiris; Dimitrov, Kiril; Kirda, Engin; Kruegel, Christoffer: Anticipating Security Threats to a Future Internet. EU/FP7 FORWARD ,

Broberg, Niklas; Sands, David: Flow-Sensitive Semantics for Dynamic Information Flow Policies. ACM SIGPLAN Fourth Workshop on Programming Languages and Analysis for Security (PLAS 2009), ISBN/ISSN: 9781605586458

Del Tedesco, Filippo; Sands, David: A user model for information erasure.. Proceedings 7th International Workshop on Security Issues in Concurrency, Bologna (Italy), 5th September 2009, EPTCS 7

Demange, D.; Sands, David: All Secrets Great and Small. Programming Languages and Systems. 18th European Symposium on Programming, ESOP 2009, (5502) pp. 207-221.

Habib, Sheikh Mahbub; Cyril, Jacob; Olovsson, Tomas: An Analysis of the Robustness and Stability of the Network Stack in Symbian-based Smartphones. Journal of Networks, Vol 4 (No. 10, 2009) pp. 968-975.

Heldal, Rogardt; Lind, Kenneth: Estimation of Real-Time Software Code Size using COSMIC FSM. 12th IEEE International Symposium on Object/Component/sevice-oriented Real-time distributed Computing, pp. 244-248. ISBN/ISSN: 978-0-7695-3573-9

Heldal, Rogardt; Lind, Kenneth: On the Relationship between Different Size Measures in the Software Life Cycle . 16th Asia Pacific Software Engineering Conference (APSEC), pp. 19-26. ISBN/ISSN: 978-0-7695-3909-6

Katori, Tomohiro; Sun, Lei; Nilsson, Dennis K.; Nakajima, Tatsuo: Building a Self-Healing Embedded System in a Multi-OS Environment. Proceedings of the 24th Annual ACM Symposium on Applied Computing (SAC), March 9-12, 2009, Honolulu, HI, USA,

Kruegel, Christoffer; Almgren, Magnus; Bos, Herbert; Dimitrov, Kiril; Djambazova, Edita; Ioannidis, Sotiris; Jonsson, Erland; Kirda, Engin; Markatos, Evangelos: FORWARD -- Second Workshop Report.

Kruegel, Christoffer; Almgren, Magnus; Bos, Herbert; Dimitrov, Kiril; Djambazova, Edita; Ioannidis, Sotiris; Jonsson, Erland; Kirda, Engin; Marakomihelaki, K; Markatos, Evangelos: FORWARD Threat Report.

Larson, Ulf: On Adapting Data Collection to Intrusion Detection. Göteborg : Chalmers University of Technology. Diss. ISBN/ISSN: 978-91-7385-235-7

Nilsson, Dennis K.; Larson, Ulf: A Defense-in-Depth Approach to Securing the Wireless Vehicle Infrastructure. Journal of Networks (JWN), Special Issue on Security of Wireless Communication Systems,

Nilsson, Dennis K.; Larson, Ulf: Conducting Forensic Investigations of Cyber Attacks on Automobile In-Vehicle Networks. International Journal of Digital Crime and Forensics, 1 (2) pp. 28-41.

Nilsson, Dennis K.: How to Secure the Connected Car. Göteborg : Chalmers University of Technology. Diss. ISBN/ISSN: 978-91-7385-245-6

Norrhem, Bosse; Almgren, Magnus; Andreasson, Torbjörn; Axelsson, Leif; Fredin, Mikael; Jonsson, Erland; Lagerman, Mikael: Security Arena, årsrapport 2008. Göteborg :

Olovsson, Tomas: Access management evolves over 20 years. Secure Computing Magazine, 2009 (November) pp. 4-5.

Phung, Phu H.; Sands, David; Chudnov, Andrey: Lightweight Self-Protecting JavaScript. Proceedings of ACM Symposium on Information, Computer and Communications Security (ASIACCS 2009), pp. 47-60. ISBN/ISSN: 978-1-60558-394-5

Russo, Alejandro; Claessen, Koen; Hughes, John: A Library for Light-Weight Information-Flow Security in Haskell. ACM Sigplan Notices, 44 (2) pp. 13-24.

Russo, Alejandro; Sabelfeld, Andrei; Keqin, Li: Implicit flows in malicious and nonmalicious code. Proceedings of the 2009 Marktoberdorf Summer School, IOS Press,

Russo, Alejandro; Sabelfeld, Andrei: Securing Interaction between Threads and the Scheduler in the Presence of Synchronization. Journal of Logic and Algebraic Programming, 78 (7) pp. 593-618.

Russo, Alejandro; Sabelfeld, Andrei: Securing Timeout Instructions in Web Applications. Proceedings of the 22th IEEE Computer Security Foundations Symposium,

Russo, Alejandro; Sabelfeld, Andrei; Chudnov, Andrey: Tracking Information Flow in Dynamic Tree Structures . Proceedings of the European Symposium on Research in Computer Security (ESORICS),