David Teller

Web applications and services have critical needs in terms of safety, security and privacy: they need to remain available constantly and may at any time be the object of attacks by malicious and anonymous distant users attempting to take control, alter or steal data, or cause unwanted behaviors. Unfortunately, recent history shows numerous cases of popular web applications falling victim to such attacks, despite considerable efforts to secure them.

In this paper, we introduce OPA (One… Voir plus

Web applications and services have critical needs in terms of safety, security and privacy: they need to remain available constantly and may at any time be the object of attacks by malicious and anonymous distant users attempting to take control, alter or steal data, or cause unwanted behaviors. Unfortunately, recent history shows numerous cases of popular web applications falling victim to such attacks, despite considerable efforts to secure them.

In this paper, we introduce OPA (One Pot Application), a new platform designed to make web development sane, safe and secure. OPA provides an integrated methodology where the complete application is written with one simple language with consistent semantics and enforces safe use of the infrastructure through compile-time static checking. OPA provides a novel programming paradigm suited to the web that encourages correct-by-construction development.
Voir moins

This is the year 2008 and ML-style exceptions are everywhere. Most modern languages, whether academic or industrial, feature some variant of this mechanism. Languages such as Java even have a degree of out-of-the-box static coverage-checking for such exceptions, which is currently not available for ML languages, at least not without resorting to external tools.
In this document, we demonstrate a design principle and a tiny library for managing errors in a functional manner, with static… Voir plus

This is the year 2008 and ML-style exceptions are everywhere. Most modern languages, whether academic or industrial, feature some variant of this mechanism. Languages such as Java even have a degree of out-of-the-box static coverage-checking for such exceptions, which is currently not available for ML languages, at least not without resorting to external tools.
In this document, we demonstrate a design principle and a tiny library for managing errors in a functional manner, with static coverage-checking, automatically-inferred, structurally typed and hierarchical exceptional cases, all of this for what we believe is a reasonable run-time cost. Our work is based on OCaml and fea- tures simple uses of higher-order programming, low-level excep- tions, phantom types, polymorphic variants and compile-time code rewriting. Voir moins

(best paper award)

Slowly but surely, the language industry is discovering the need for programming languages, runtime supports and methodologies adapted to distributed computing platforms. However, current distributed platforms, whether industrial or academic, are generally fragile with respect to resource exhaustion, and can provide, at best, ad hoc solutions to counter accidents or Denial of Service attacks. In this paper, we examine the problem of resource management in Erlang. Using… Voir plus

(best paper award)

Slowly but surely, the language industry is discovering the need for programming languages, runtime supports and methodologies adapted to distributed computing platforms. However, current distributed platforms, whether industrial or academic, are generally fragile with respect to resource exhaustion, and can provide, at best, ad hoc solutions to counter accidents or Denial of Service attacks. In this paper, we examine the problem of resource management in Erlang. Using Tepic, an applied variant of the pi-calculus, we provide a formal semantics for a subset of Core Erlang and a sample of its library, with a formal notion of resource usage, resource exhaustion and robustness. We then complete these definitions by a type system whose judgements guarantee robustness of a program with respect to Denial of Service attacks. Voir moins