log in  |  register  |  feedback?  |  help  |  web accessibility
Logo
PhD Defense: Language-Based Techniques for Secure Programming
Ian Sweet
5105 Brendan Iribe Center for Computer Science and Engineering (IRB)
Wednesday, June 8, 2022, 10:00 am-12:00 pm Calendar
  • You are subscribed to this talk through .
  • You are watching this talk through .
  • You are subscribed to this talk. (unsubscribe, watch)
  • You are watching this talk. (unwatch, subscribe)
  • You are not subscribed to this talk. (watch, subscribe)
Abstract
Secure Multiparty Computation (MPC) enables multiple parties to jointly compute a function over their secret inputs. MPC languages offer programmers a familiar environment in which to express their programs, but fall short when confronted with problems that require flexible coordination. Additionally, they do not protect non-expert programmers from violating obliviousness or expected bounds on information leakage. We aim to show that secure programming can be made safer through language-based techniques for expressive, coordinated MPC; probabilistically oblivious execution; and quantitative analysis of information flow. We begin by presenting Symphony, an expressive MPC language that provides flexible coordination of many parties, which has been used to implement the secure shuffle of Laur, Willemson, and Zhang. Next, we present Lambda-Obliv, a core language guaranteeing that well-typed programs are probabilistically oblivious, which has been used to type check tree-based, nonrecursive ORAM (NORAM). Finally, we present a novel application of dynamic analysis techniques to an existing system for enforcing bounds on information leakage, providing a better balance of precision and performance.

Examining Committee:
Chair:
Dean's Representative:
Members:
Dr. Michael Hicks    
Dr. Lawrence Washington    
Dr. Jonathan Katz    
Dr. David Van Horn    
Dr. David Darais (Galois Inc.)
 
Bio

Ian Sweet is a PhD student in the Computer Science Department at the University of Maryland, College Park, advised by Dr. Mike Hicks. He is a member of the Programming Languages at University of Maryland (PLUM) group. His research focuses on the design, implementation, and verification of secure programming languages.

This talk is organized by Tom Hurst