Research interests

It is too hard to build trustworthy software systems using conventional systems APIs. I work on higher-level, language-based abstractions for programming that better address important cross-cutting concerns: security, extensibility, persistence, distribution.

Selected recent publications

A new architecture for secure mobile code, supporting secure use, publication, and sharing of code across trust domains.

A non-restrictive type system in which programs provably leak only a bounded amount of information through timing.

A general way to formalize language-based policies for the controlled release and endorsement of information.

Generalizing predictive timing channel mitigation and applying it to Internet services.

A powerful, lighter-weight language mechanism for type-safe, modular software evolution.

Awards

Current Projects

• Fabric: A federated system for securely storing, sharing, and computing information.
• General methods for controlling timing channels.
• Swift: Making web applications secure by construction.
• Jif: an extended version of Java that protects privacy by controlling information flow
• Jx/J&: language features for extensible, composable, adaptable software
• Civitas: A practical, secure, remote voting system.
• JMatch: a Java extension with pattern matching and interruptible iterators
• Polyglot: a widely used, extensible Java compiler front end framework for rapid experimentation with new language extensions.
• Program committees: ACM Symposium on Principles of Programming Languages (POPL 2012), IEEE Security and Privacy (Oakland 2012),
• Editorial Boards: Journal of Computer Security (JCS), ACM Transactions on Computer Systems (TOCS)
• [Show older projects]