Cool!

https://projects.csail.mit.edu/jeeves/

It is increasingly important for applications to protect the privacy and security of data. Unfortunately, it is often non-trivial for programmers to enforce privacy policies. We have developed Jeeves to make it easier for programmers to enforce information flow policies: policies that describe who can see what information flows through a program. Jeeves allows the programmer to write policy-agnostic programs, separately implementing policies on sensitive values from other functionality.

To implement programs adhering to information flow policies in state-of-the art systems, programmers must write checks and filters across the program. Jeeves is the first language that aims to factor these checks and filters out of the program, allowing the programmer to write them once alongside the program. While there exist approaches for checking that programs do not leak information, they do not automatically manage these policy checks. To use an analogy to memory management, the other approaches do something like what valgrind does for finding memory leaks, while Jeeves is the equivalent of a memory-managed language, but for information flow policies.

Just like Wooster's clever valet Jeeves in Wodehouse's stories, the Jeeves runtime does the hard work, automatically enforcing the policies to show the appropriate output to each viewer. We have implementations of Jeeves as embedded domain-specific languages in Scala, Python, and Haskell. We are looking at using Jeeves for web frameworks and other applications. Try it out!





评论
添加红包

请填写红包祝福语或标题

红包个数最小为10个

红包金额最低5元

当前余额3.43前往充值 >
需支付:10.00
成就一亿技术人!
领取后你会自动成为博主和红包主的粉丝 规则
hope_wisdom
发出的红包
实付
使用余额支付
点击重新获取
扫码支付
钱包余额 0

抵扣说明:

1.余额是钱包充值的虚拟货币,按照1:1的比例进行支付金额的抵扣。
2.余额无法直接购买下载,可以购买VIP、付费专栏及课程。

余额充值