] , “Detecting Hidden Storage Side Channel Vulnerabilities in Networked Applications”, in Proceedings of the 26th International Information Security Conference (IFIP/SEC 2011), 2011.
, “Join-Lock-Sensitive Forward Reachability Analysis for Concurrent Programs with Dynamic Process Creation”, in Proceedings of the 12th International Conference on Verification, Model Checking, and Abstract Interpretation (VMCAI 2011), 2011.
, “Service Automata”, in Proceedings of the 8th International Workshop on Formal Aspects of Security and Trust (FAST 2011), 2012.
, “A New Algorithm for Low-Deterministic Security”, International Journal on Information Security, 2014.
, “Lock-sensitive Interference Analysis for Java: Combining Program Dependence Graphs with Dynamic Pushdown Networks”, in 1st International Workshop on Interference and Dependence (ID 2013), 2013.
, “Using JOANA for Information Flow Control in Java Programs - A Practical Guide”, in Proceedings of the 6th Working Conference on Programming Languages (ATPS 2013), 2013.
, “Modular Verification of Information-Flow Security in Component-Based Systems”, in Proceedings of the 15th International Conference on Software Engineering and Formal Methods (SEFM), 2017.
, “A Formalization of Assumptions and Guarantees for Compositional Noninterference”, Archive of Formal Proofs, 2014.
, “A Formalization of Strong Security”, Archive of Formal Proofs, 2014.
, “A Formalization of Declassification with WHAT-and-WHERE-Security”, Archive of Formal Proofs, 2014.
, “Leaking Confidential Information by Non-Malicious User Behaviour in Enterprise Systems - Design of an Empirical Study”, in Proceedings of the 6th Mediterranean Conference on Information Systems (MCIS 2011), 2011.
, “Exploring Antecedent Environmental and Organizational Factors to User-Caused Information Leaks: A Qualitative Study”, in Proceedings of the 20th European Conference on Information Systems (ECIS 2012), Barcelona, Spain, 2012.
, “Experiences with PDG-based IFC”, in Proceedings of the 2nd International Symposium on Engineering Secure Software and Systems (ESSoS 2010), 2010.
, “Efficient Algorithms for Control Closures”, in 1st International Workshop on Interference and Dependence (ID 2013), 2013.
, “Bleichenbacher's Attack Strikes Again: Breaking PKCS\#1 v1.5 in XML Encryption”, in Proceedings of the 17th European Symposium on Research in Computer Security (ESORICS 2012), 2012.
, “A Conference Management System with Verified Document Confidentiality”, in Proceedings of the 26th International Conference on Computer Aided Verification (CAV 2014), 2014.
, “Model-Driven Development of Information Flow-Secure Systems with IFlow”, in Proceedings of 5th ASE/IEEE International Conference on Information Privacy, Security, Risk and Trust (PASSAT 2013), 2013.
, “Model-Driven Development of Information Flow-Secure Systems with IFlow”, ASE Science Journal, vol. 2, 2013.
, “Evaluation of Jif and Joana as information flow analyzers in a model-driven approach”, in Proceedings of 7th International Workshop on Data Privacy Management (DPM 2012), 2012.
, “Efficient Dynamic Access Analysis Using JavaScript Proxies”, in Proceedings of the 9th Symposium on Dynamic Languages (DLS 2013), 2013.
, “Type-based Dependency Analysis for JavaScript”, in Proceedings of the 8th ACM SIGPLAN Workshop on Programming Languages and Analysis for Security (PLAS 2013), 2013.
, “Towards a Policy Enforcement Infrastructure for Distributed Usage Control”, in Proceedings of the 17th ACM Symposium on Access Control Models and Technologies (SACMAT 2012), 2012.
, “Decentralized Distributed Data Usage Control”, in Proceedings of the 13th International Conference on Cryptology and Network Security (CANS 2014), 2014.
, “A Fully Decentralized Data Usage Control Enforcement Infrastructure”, in Proceedings of the 13th International Conference on Applied Cryptography and Network Security, 2015.
, “SAT-based Analysis and Quantification of Information Flow in Programs”, in Proceedings of the 10th International Conference on Quantitative Evaluation of Systems (QEST 2013), 2013.