Co-located with ACM CCS 2016
October 24, 2016, Vienna, Austria
PLAS aims to provide a forum for exploring and evaluating ideas on the use of programming language and program analysis techniques to improve the security of software systems. Strongly encouraged are proposals of new, speculative ideas, evaluations of new or known techniques in practical settings, and discussions of emerging threats and important problems. We are especially interested in position papers that are radical, forward-looking, and likely to lead to lively and insightful discussions that will influence future research that lies at the intersection of programming languages and security.
The scope of PLAS includes, but is not limited to:
We invite both full papers and short papers. For short papers we especially encourage the submission of position papers that are likely to generate lively discussion.
Submissions should be PDF documents typeset in the ACM proceedings format using 10pt fonts. We recommend using the SIGPLAN-approved template.
Both full and short papers must describe work not published in other refereed venues (see the SIGPLAN republication policy for more details). Accepted papers will appear in workshop proceedings, which will be distributed to the workshop participants and be available in the ACM Digital Library.
All papers must be submitted via the Web submission form.
All camera-ready papers must be prepared according to and submitted via the publisher web site. Note that all papers have a hard page limit.
Thanks to generous support from our sponsors, student attendees of PLAS 2016 can apply for a travel grant. To be eligible for a travel grant, the applicant must be a full-time student. The applicant need not present a paper at PLAS, but must register for, and attend the workshop. The applicant may, in addition, apply for CCS travel grants.
Application deadline: October 7, 2016
Travel grants can be used towards expenses on PLAS registration, travel, and accommodation. All reimbursements will be processed by ACM. Please note that original receipts will be needed for reimbursement and email the chairs for any clarifications.
To apply for a travel grant, please fill out the form below (also available here):
PLAS is an academic workshop that brings together some of the brightest minds working on the intersection of programming languages and security. In previous years, PLAS was co-located with top programming languages conferences; this year, PLAS is co-located with a top security conference (CCS). As such, we anticipate participants from top universities all over the world with broad interests in security and programming languages.
If you are looking to expose your company's brand, logo, and messages to the world's leading researchers on security and programming languages (and potential future employees), PLAS is a great place to start. Your support will allow us to offer travel grants and reduced registration fees to students and underrepresented groups.
We offer several support levels for your consideration. Please contact the chairs at plas2016-chairs@programming.systems for more information on how your organization can participate or with any questions and requests (e.g., if you would like a custom sponsorship level).
Session | Time | Title |
---|---|---|
Opening | 8:50 | Welcome and Opening Remarks |
Session 1: JavaScript (Deian Stefan) | 9:00 | Invited Talk: Flow: Analysis of JavaScript for type checking and beyond Avik Chaudhuri (Facebook) |
10:00 | Static Detection of User-specified Security Vulnerabilities in Client-side JavaScript Jens Nicolay, Valentijn Spruyt, and Coen De Roover (Vrije Universiteit Brussel) | |
Coffee Break | 10:30 | |
Session 2: Information Flow (Tamara Rezk) | 11:00 | On Formalizing Information-Flow Control Libraries Marco Vassena and Alejandro Russo (Chalmers University of Technology) |
11:30 | Future-dependent Flow Policies with Prophetic Variables Ximeng Li, Flemming Nielson, and Hanne Riis Nielson (Technical University of Denmark) | |
12:00 | In-Depth Enforcement of Dynamic Integrity Taint Analysis Sepehr Amir-Mohammadian and Christian Skalka (University of Vermont) | |
Lunch | 12:30 | |
Session 3: Program Analysis and Types (Marco Gaboardi) | 14:00 | JSPChecker: Static Detection of Context-Sensitive Cross-Site Scripting Flaws in Legacy Web Applications Antonin Steinhauser (Oracle Labs) and Francois Gauthier (Charles University in Prague) |
14:30 | Rusty Types for Solid Safety Sergio Benitez (Stanford University) | |
14:50 | Bounding Information Leakage Using Implication Graph Ziyuan Meng (University of Central Missouri) | |
15:10 | Dynamic Leakage - A Need for a New Quantitative Information Flow Measure Nataliia Bielova (INRIA) | |
Coffee Break | 15:30 | |
Session 4: Novel Applications (Toby Murray) | 16:00 | Invited Talk: Verified Secure Implementations for the HTTPS Ecosystem Cédric Fournet (Microsoft Research) |
17:00 | Formal Verification of Smart Contracts Karthikeyan Bhargavan (INRIA), Antoine Delignat-Lavaud (Microsoft Research), Cédric Fournet (Microsoft Research), Anitha Gollamudi (Harvard University), Georges Gonthier (Microsoft Research), Nadim Kobeissi (INRIA), Natalia Kulatova (INRIA), Aseem Rastogi (Harvard University), Thomas Sibut-Pinote (INRIA), Nikhil Swamy (Microsoft Research), and Santiago Zanella-Béguelin (Microsoft Research) | |
17:20 | Automatic Trigger Generation for Rule-based Smart Homes Chandrakana Nandi and Michael D. Ernst (University of Washington) | |
17:40 | Superhacks: Exploring and Preventing Vulnerabilities in Browser Binding Code Fraser Brown (Stanford University) | |
Closing | 18:00 |
2015 | ACM SIGPLAN 10th Workshop on Programming Languages and Analysis for Security | Prague, Czech Republic |
2014 | ACM SIGPLAN 9th Workshop on Programming Languages and Analysis for Security | Uppsala, Sweden |
2013 | ACM SIGPLAN 8th Workshop on Programming Languages and Analysis for Security | Seattle, Washington |
2012 | ACM SIGPLAN 7th Workshop on Programming Languages and Analysis for Security | Beijing, China |
2011 | ACM SIGPLAN 6th Workshop on Programming Languages and Analysis for Security | San Jose, California |
2010 | ACM SIGPLAN 5th Workshop on Programming Languages and Analysis for Security | Toronto, Canada |
2009 | ACM SIGPLAN 4th Workshop on Programming Languages and Analysis for Security | Dublin, Ireland |
2008 | ACM SIGPLAN 3rd Workshop on Programming Languages and Analysis for Security | Tucson, Arizona |
2007 | ACM SIGPLAN 2nd Workshop on Programming Languages and Analysis for Security | San Diego, California |
2006 | ACM SIGPLAN 1th Workshop on Programming Languages and Analysis for Security | Ottawa, Canada |