Does Hails suffer from the external timing channel? If so, explain the attack. If not, explain why this is not a concern. Consider the scenario where an attacker is able to execute code server-side (e.g., as part of a VC).
Why did Hails eventually move from policies as pure functions (
Document -> Label) to side-effecting ones (
Document -> LIO Label)? What is a negative trade-offs due to this?