Cautious virus detection in the extreme

摘要

It is my pleasure to present this proceedings of the 2nd ACM SIGPLAN Workshop on Programming Languages and Analysis for Security (PLAS 2007), which took place on June 14, 2007 in San Diego, California, USA. The workshop was held as part of ACM's Federated Computing Research Conference (FCRC), as a satellite event of the ACM SIGPLAN Conference on Programming Language Design and Implementation (PLDI 2007). >The call for papers solicited submissions of three kinds: full-length technical papers for relatively mature work; short papers for less detailed or more preliminary work; and proposals for informal presentations to be given at the workshop but not to appear in the proceedings. The last category was designed to support the discussion of important and promising ideas at the workshop, even if the ideas were not yet ready for formal publication. Papers submitted to one category could be accepted in a different category at the program committee's discretion >We received 28 submissions from researchers at locations around the world. The submissions were comprised of 19 full-length papers, 6 short papers, and 3 informal presentations. One full paper was withdrawn prior to being reviewed. The committee ultimately accepted 10 full-length papers, 3 short papers, and 1 informal presentation. The submitted papers encompassed a variety of topics, including: inferring and enforcing information flow properties in programming languages, statically analyzing software for security vulnerabilities, specifying and enforcing security policies in software, intrusion detection, and models of declassification. Many committee members commented to me on the high quality of the papers we received. I am confident you will be impressed with the strength of the final program contained within these pages