{"id":"https://openalex.org/W4388857644","doi":"https://doi.org/10.1145/3576915.3623141","title":"Assume but Verify: Deductive Verification of Leaked Information in Concurrent Applications","display_name":"Assume but Verify: Deductive Verification of Leaked Information in Concurrent Applications","publication_year":2023,"publication_date":"2023-11-15","ids":{"openalex":"https://openalex.org/W4388857644","doi":"https://doi.org/10.1145/3576915.3623141"},"language":"en","primary_location":{"id":"doi:10.1145/3576915.3623141","is_oa":false,"landing_page_url":"https://doi.org/10.1145/3576915.3623141","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 2023 ACM SIGSAC Conference on Computer and Communications Security","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5043210393","display_name":"Toby Murray","orcid":"https://orcid.org/0000-0002-8271-0289"},"institutions":[{"id":"https://openalex.org/I165779595","display_name":"The University of Melbourne","ror":"https://ror.org/01ej9dk98","country_code":"AU","type":"education","lineage":["https://openalex.org/I165779595"]}],"countries":["AU"],"is_corresponding":false,"raw_author_name":"Toby Murray","raw_affiliation_strings":["University of Melbourne, Melbourne, VIC, Australia"],"raw_orcid":"https://orcid.org/0000-0002-8271-0289","affiliations":[{"raw_affiliation_string":"University of Melbourne, Melbourne, VIC, Australia","institution_ids":["https://openalex.org/I165779595"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5044149424","display_name":"Mukesh Tiwari","orcid":"https://orcid.org/0000-0001-5373-9659"},"institutions":[{"id":"https://openalex.org/I241749","display_name":"University of Cambridge","ror":"https://ror.org/013meh722","country_code":"GB","type":"education","lineage":["https://openalex.org/I241749"]}],"countries":["GB"],"is_corresponding":false,"raw_author_name":"Mukesh Tiwari","raw_affiliation_strings":["University of Cambridge, Cambridge, United Kingdom"],"raw_orcid":"https://orcid.org/0000-0001-5373-9659","affiliations":[{"raw_affiliation_string":"University of Cambridge, Cambridge, United Kingdom","institution_ids":["https://openalex.org/I241749"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5049068584","display_name":"Gidon Ernst","orcid":"https://orcid.org/0000-0002-3289-5764"},"institutions":[{"id":"https://openalex.org/I3018771216","display_name":"LMU Klinikum","ror":"https://ror.org/02jet3w32","country_code":"DE","type":"healthcare","lineage":["https://openalex.org/I3018771216","https://openalex.org/I8204097"]},{"id":"https://openalex.org/I8204097","display_name":"Ludwig-Maximilians-Universit\u00e4t M\u00fcnchen","ror":"https://ror.org/05591te55","country_code":"DE","type":"education","lineage":["https://openalex.org/I8204097"]}],"countries":["DE"],"is_corresponding":false,"raw_author_name":"Gidon Ernst","raw_affiliation_strings":["LMU Munich, Munich, Germany"],"raw_orcid":"https://orcid.org/0000-0002-3289-5764","affiliations":[{"raw_affiliation_string":"LMU Munich, Munich, Germany","institution_ids":["https://openalex.org/I3018771216","https://openalex.org/I8204097"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5009739199","display_name":"David A. Naumann","orcid":"https://orcid.org/0000-0002-7634-6150"},"institutions":[{"id":"https://openalex.org/I108468826","display_name":"Stevens Institute of Technology","ror":"https://ror.org/02z43xh36","country_code":"US","type":"education","lineage":["https://openalex.org/I108468826"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"David A. Naumann","raw_affiliation_strings":["Stevens Institute of Technology, Hoboken, NJ, USA"],"raw_orcid":"https://orcid.org/0000-0002-7634-6150","affiliations":[{"raw_affiliation_string":"Stevens Institute of Technology, Hoboken, NJ, USA","institution_ids":["https://openalex.org/I108468826"]}]}],"institutions":[],"countries_distinct_count":4,"institutions_distinct_count":4,"corresponding_author_ids":[],"corresponding_institution_ids":[],"apc_list":null,"apc_paid":null,"fwci":0.0,"has_fulltext":false,"cited_by_count":0,"citation_normalized_percentile":{"value":0.15145595,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":null,"biblio":{"volume":null,"issue":null,"first_page":"1746","last_page":"1760"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T11424","display_name":"Security and Verification in Computing","score":0.9998999834060669,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T11424","display_name":"Security and Verification in Computing","score":0.9998999834060669,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10927","display_name":"Access Control and Trust","score":0.9962999820709229,"subfield":{"id":"https://openalex.org/subfields/3312","display_name":"Sociology and Political Science"},"field":{"id":"https://openalex.org/fields/33","display_name":"Social Sciences"},"domain":{"id":"https://openalex.org/domains/2","display_name":"Social Sciences"}},{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":0.9947999715805054,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/soundness","display_name":"Soundness","score":0.9026483297348022},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.853123664855957},{"id":"https://openalex.org/keywords/programming-language","display_name":"Programming language","score":0.6394280195236206},{"id":"https://openalex.org/keywords/implementation","display_name":"Implementation","score":0.5765776038169861},{"id":"https://openalex.org/keywords/extension","display_name":"Extension (predicate logic)","score":0.5530246496200562},{"id":"https://openalex.org/keywords/audit","display_name":"Audit","score":0.5471614003181458},{"id":"https://openalex.org/keywords/set","display_name":"Set (abstract data type)","score":0.5272516012191772},{"id":"https://openalex.org/keywords/security-policy","display_name":"Security policy","score":0.47399675846099854},{"id":"https://openalex.org/keywords/theoretical-computer-science","display_name":"Theoretical computer science","score":0.3450636863708496},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.28894731402397156}],"concepts":[{"id":"https://openalex.org/C39920170","wikidata":"https://www.wikidata.org/wiki/Q693083","display_name":"Soundness","level":2,"score":0.9026483297348022},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.853123664855957},{"id":"https://openalex.org/C199360897","wikidata":"https://www.wikidata.org/wiki/Q9143","display_name":"Programming language","level":1,"score":0.6394280195236206},{"id":"https://openalex.org/C26713055","wikidata":"https://www.wikidata.org/wiki/Q245962","display_name":"Implementation","level":2,"score":0.5765776038169861},{"id":"https://openalex.org/C2778029271","wikidata":"https://www.wikidata.org/wiki/Q5421931","display_name":"Extension (predicate logic)","level":2,"score":0.5530246496200562},{"id":"https://openalex.org/C199521495","wikidata":"https://www.wikidata.org/wiki/Q181487","display_name":"Audit","level":2,"score":0.5471614003181458},{"id":"https://openalex.org/C177264268","wikidata":"https://www.wikidata.org/wiki/Q1514741","display_name":"Set (abstract data type)","level":2,"score":0.5272516012191772},{"id":"https://openalex.org/C154908896","wikidata":"https://www.wikidata.org/wiki/Q2167404","display_name":"Security policy","level":2,"score":0.47399675846099854},{"id":"https://openalex.org/C80444323","wikidata":"https://www.wikidata.org/wiki/Q2878974","display_name":"Theoretical computer science","level":1,"score":0.3450636863708496},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.28894731402397156},{"id":"https://openalex.org/C187736073","wikidata":"https://www.wikidata.org/wiki/Q2920921","display_name":"Management","level":1,"score":0.0},{"id":"https://openalex.org/C162324750","wikidata":"https://www.wikidata.org/wiki/Q8134","display_name":"Economics","level":0,"score":0.0}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1145/3576915.3623141","is_oa":false,"landing_page_url":"https://doi.org/10.1145/3576915.3623141","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 2023 ACM SIGSAC Conference on Computer and Communications Security","raw_type":"proceedings-article"}],"best_oa_location":null,"sustainable_development_goals":[{"id":"https://metadata.un.org/sdg/16","score":0.7799999713897705,"display_name":"Peace, Justice and strong institutions"}],"awards":[{"id":"https://openalex.org/G4217265075","display_name":null,"funder_award_id":"CNS-1718713","funder_id":"https://openalex.org/F4320306076","funder_display_name":"National Science Foundation"},{"id":"https://openalex.org/G7927336563","display_name":null,"funder_award_id":"N62909-18-1-2049","funder_id":"https://openalex.org/F4320338298","funder_display_name":"Office of Naval Research Global"}],"funders":[{"id":"https://openalex.org/F4320306076","display_name":"National Science Foundation","ror":"https://ror.org/021nxhr62"},{"id":"https://openalex.org/F4320335334","display_name":"Defence Science and Technology Group","ror":null},{"id":"https://openalex.org/F4320338298","display_name":"Office of Naval Research Global","ror":"https://ror.org/00rk2pe57"}],"has_content":{"grobid_xml":false,"pdf":false},"content_urls":null,"referenced_works_count":50,"referenced_works":["https://openalex.org/W92627029","https://openalex.org/W1553622521","https://openalex.org/W1565541828","https://openalex.org/W1688565790","https://openalex.org/W1817610252","https://openalex.org/W1820726602","https://openalex.org/W1849004785","https://openalex.org/W1977764760","https://openalex.org/W1988079752","https://openalex.org/W1999056706","https://openalex.org/W2036463966","https://openalex.org/W2048172473","https://openalex.org/W2082894754","https://openalex.org/W2097365905","https://openalex.org/W2105584013","https://openalex.org/W2108887121","https://openalex.org/W2126469755","https://openalex.org/W2137628566","https://openalex.org/W2157109596","https://openalex.org/W2165078378","https://openalex.org/W2165175152","https://openalex.org/W2166666675","https://openalex.org/W2168686464","https://openalex.org/W2295961883","https://openalex.org/W2296228066","https://openalex.org/W2415236938","https://openalex.org/W2473418344","https://openalex.org/W2604789199","https://openalex.org/W2775081510","https://openalex.org/W2798178883","https://openalex.org/W2887377617","https://openalex.org/W2911978475","https://openalex.org/W2921489878","https://openalex.org/W2955155286","https://openalex.org/W2969910354","https://openalex.org/W2995099704","https://openalex.org/W2995573473","https://openalex.org/W3016632787","https://openalex.org/W3024337755","https://openalex.org/W3037209803","https://openalex.org/W3098696637","https://openalex.org/W3155827311","https://openalex.org/W3185412097","https://openalex.org/W3205419748","https://openalex.org/W4288095795","https://openalex.org/W4290442553","https://openalex.org/W4308361262","https://openalex.org/W4312346441","https://openalex.org/W4312803128","https://openalex.org/W7075328764"],"related_works":["https://openalex.org/W1511249877","https://openalex.org/W1578828174","https://openalex.org/W2950376466","https://openalex.org/W2000943029","https://openalex.org/W2621980927","https://openalex.org/W4302559785","https://openalex.org/W2140496290","https://openalex.org/W2949331520","https://openalex.org/W2002878601","https://openalex.org/W2260260573"],"abstract_inverted_index":{"We":[0,18,58,111],"consider":[1],"the":[2,8,24,30,51,70,90,105,125],"problem":[3,25],"of":[4,10,69,85,89,127,135],"specifying":[5],"and":[6,48,75,99,108],"proving":[7,28,82],"security":[9,56],"non-trivial,":[11],"concurrent":[12],"programs":[13,131],"that":[14,22,29],"intentionally":[15],"leak":[16],"information.":[17],"present":[19],"a":[20,54,83,133],"method":[21],"decomposes":[23],"into":[26],"(a)":[27,62],"program":[31,46,72,118],"only":[32],"leaks":[33],"information":[34],"it":[35],"has":[36],"declassified":[37],"via":[38],"assume":[39],"annotations":[40],"already":[41],"widely":[42],"used":[43],"in":[44,115],"deductive":[45],"verification;":[47],"(b)":[49,77],"auditing":[50],"declassifications":[52],"against":[53,132],"declarative":[55],"policy.":[57],"show":[59],"how":[60,76],"condition":[61],"can":[63,78],"be":[64,79],"enforced":[65],"by":[66,81],"an":[67,116],"extension":[68],"existing":[71],"logic":[73,106],"SecCSL,":[74],"checked":[80],"set":[84],"simple":[86],"entailments.":[87],"Part":[88],"challenge":[91],"is":[92],"to":[93,100,104,123],"define":[94],"respective":[95],"semantic":[96],"soundness":[97],"criteria":[98],"formally":[101],"connect":[102],"these":[103],"rules":[107],"policy":[109],"audit.":[110],"support":[112],"our":[113],"methodology":[114],"auto-active":[117],"verifier,":[119],"which":[120],"we":[121],"apply":[122],"verify":[124],"implementations":[126],"various":[128],"case":[129],"study":[130],"range":[134],"declassification":[136],"policies.":[137]},"counts_by_year":[],"updated_date":"2026-06-11T09:08:48.828518","created_date":"2025-10-10T00:00:00"}