Jean Yang
Carnegie Mellon University
28 Papers
102 Citations
Jean Yang is an academic researcher from Carnegie Mellon University. The author has contributed to research in topics: Computer science & Programming paradigm. The author has an hindex of 9, co-authored 27 publications. Previous affiliations of Jean Yang include Massachusetts Institute of Technology & Microsoft.
Chat about Author
Papers
Secure distributed programming with value-dependent types
TL;DR: F*, a full-fledged design and implementation of a new dependently typed language for secure distributed programming, provides arbitrary recursion while maintaining a logically consistent core; it enables modular reasoning about state and other effects using affine types; and it supports proofs of refinement properties using a mixture of cryptographic evidence and logical proof terms.
Safe to the last instruction: automated verification of a type-safe operating system
Jean Yang,Chris Hawblitzel +1 more
TL;DR: Verve is the first operating system mechanically verified to guarantee both type and memory safety, and its approach demonstrates a practical way to mix high-level typed code with low-level untyped code in a verifiably safe manner.
63
Precise, dynamic information flow for database-backed applications
Jean Yang,Travis Hance,Thomas H. Austin,Armando Solar-Lezama,Cormac Flanagan,Stephen Chong +5 more
- 02 Jun 2016
TL;DR: In this paper, the authors present a programming model that factors out information flow policies from application code and database queries, a dynamic semantics for the underlying $^JDB$ core language, and proofs of termination-insensitive noninterference and policy compliance for the semantics.
46
•Posted Content
End-To-End Policy-Agnostic Security for Database-Backed Applications.
Jean Yang,Travis Hance,Thomas H. Austin,Armando Solar-Lezama,Cormac Flanagan,Stephen Chong +5 more
- 13 Jul 2015
TL;DR: Jacque line, a web framework that automatically enforces policies that restrict where sensitive data may flow, is presented, showing that not only does Jacqueline reduce lines of policy code, but also that the Jacqueline runtime has reasonable, and often negligible, overheads.
29
Liquid information flow control
Nadia Polikarpova,Deian Stefan,Jean Yang,Shachar Itzhaky,Travis Hance,Armando Solar-Lezama +5 more
- 02 Aug 2020
TL;DR: Lifty as discussed by the authors is a domain-specific language for data-centric applications that manipulate sensitive data, where a programmer annotates the sources of sensitive data with declarative security policies, and the language statically and automatically verifies that the application handles the data according to the policies.