INVITED LECTURE
organised by the Master of Science program of the School of Informatics on Interactive Hardware and Software Technologies.
Professor Cinzia Bernardeschi (Universita’ di Pisa) is going to lecture on
Secure Information Flow in programs
at the amphitheatre D22 of the Faculty of Sciences, Aristotle University of Thessaloniki (old building of Faculty of Sciences) on Friday May 10, 2019 at 15:00.
ABSTRACT
Data leakage is considered an emerging security threat to organizations and companies. This makes the problem of secure information flow in programs of great importance. This talk introduces the Secure Information Flow (SIF), then focuses on static analysis to realize effective checking of SIF. The analysis is based on the theory of abstract interpretation and on a multi-level security policy assignment. The talk first presents the abstract semantics for a simple imperative language, then it considers different languages. It finally concludes by discussing SIF in Java card applications and in security annotated AUTOSAR models of automotive software.
About the Speaker:
Cinzia Bernardeschi
Associate Professor
Dipartimento di Ingegneria dell’Informazione
Universita’ di Pisa
Italy
email: cinzia.bernardeschi@ing.unipi.it
www: http://www.iet.unipi.it/c.bernardeschi/
Cinzia Bernardeschi is an Associate Professor with the Department of Information Engineering at Pisa University, Italy. She graduated in Computer Science in 1987 and received her Ph.D. degree in Information Engineering in 1996. Her main research interests are in the area of software engineering, dependable systems and application of formal methods for specification and verification of safety-critical systems. Recent work includes reliability and security issues of cyber-physical systems. She is member of the ERCIM Working Group on Formal Methods for Industrial Critical Systems (FMICS) and of the IEEE SMC (Systems, Man, and CyberneticsSociety) Technical Committee on Homeland Security. Editorial Board: Journal of Computer Virology and Hacking Techniques; Journal of Critical Computer-Based Systems.