Controlling data flow with a policy-based programming language for the web

Thierry Sans, Iliano Cervesato, Soha Hussein

Research output: Chapter in Book/Report/Conference proceedingConference contribution


It has become increasingly easy to write Web applications and other distributed programs by orchestrating invocations to remote third-party services. Increasingly, these third-party services themselves invoke other services and so on, making it difficult for the original application developer to anticipate where his/her data will end up. This may lead to privacy breaches or contractual violations. In this paper, we explore a simple distributed programming language that allows a web service provider to infer automatically where user data will travel to, and the developer to impose statically-checkable constraints on acceptable routes. For example, this may provide confidence that company data will not flow to a competitor, or that privacy-sensitive data goes through an anonymizer before being sent further out.

Original languageEnglish (US)
Title of host publicationSecure IT Systems - 18th Nordic Conference, NordSec 2013, Proceedings
Number of pages16
ISBN (Print)9783642414879
StatePublished - 2013
Externally publishedYes
Event18th Nordic Conference on Secure IT Systems, NordSec 2013 - Ilulissat, Greenland
Duration: Oct 18 2013Oct 21 2013

Publication series

NameLecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
Volume8208 LNCS
ISSN (Print)0302-9743
ISSN (Electronic)1611-3349


Conference18th Nordic Conference on Secure IT Systems, NordSec 2013


Dive into the research topics of 'Controlling data flow with a policy-based programming language for the web'. Together they form a unique fingerprint.

Cite this