Comparison between Object Capabilities and Information Flow

2011/05/03 · by erich · in Information Flow

Augmenting the Capability Model with Information Flows I’ve already convinced myself that labels are best implemented as tags on primitive values and references. In JavaScript, it is sometimes useful to view an object as a heterogeneous hash table, mapping field…

Approaches to JavaScript Security

2011/04/28 · by erich · in Information Flow

This is, as best as I can give right now, an exhaustive enumeration of all the different approaches to JavaScript security. Source Translation. Does a source-to-source translation of JS into a secure subset. The technique is used to jail an…

Security Typing for JavaScript

2011/04/26 · by erich · in Information Flow

Devil in the details. I’d like to repeat an example (given my Mark Miller in his work on E), of two different ways to copy a file, and the security implications of each. First, shell$ cp foo.txt bar.txt This command…

The Wrapper Conundrum

2011/04/21 · by erich · in Information Flow

In my information flow research, we have the objective of attaching a security label to every object/value within the running system of a JavaScript VM. Two approaches are immediately evident: Fat Values. We can extend the native encoding of values…

Arrow’s voting theorem of Economics

2011/03/08 · by erich · in Economics, Fun, Ideas, People

I was in the dining hall, and the TV there had some talking heads babbling about the stock market. I couldn’t really make out what they were saying, but it set the stage in my mind for some other thoughts….

Const-correctness

2011/02/16 · by erich · in code, Comp*, Information Flow, Tech*

One of my fellow lab-mates has already posted about const-correctness, because of some similar issues. My work today, takes it a tiny bit further into sheer insanity. If you don’t start your program off using a const-correctness discipline, it’s very…

Type-dispatch with Exceptions

2011/01/08 · by erich · in code, Comp*, Fun, Ideas

I’m one of those Object Oriented programmers that consider type-inspection to be a design flaw. Much to my chagrin, I’ve found myself making occasional use of the Java instanceof keyword. In my most recent class lecture, we discussed Exceptions, and…

Method Extensions

2010/12/24 · by erich · in Comp*, Ideas, Language

I’ve come across another programming language feature that I would like to have. The last one was a bit outlandish, and I’d really like to refine it a bit. Dress it up a little. Supposing you were asked to perform…

The Future of the Web should be Lisp

2010/12/21 · by erich · in Ideas, Language, Punditry, Tech*

I was reading Steve Yegge’s drunken rant on The Emacs Problem. It wasn’t able to convince me that Lisp was a great language for text processing, but it did convince me that Lisp is a fantastic language for data interchange….

Meaningless is Meaningful

2010/12/14 · by erich · in Philosophy, Strange Loop

Today I had a long and philosophical discussion with one of my friends. He started the conversation with a baited question: “Have you ever met a Solipsist?”. How could I avoid that one? Of course the conversation delved into the…

March 2025
M	T	W	T	F	S	S
« Jan
	1	2
3	4	5	6	7	8	9
10	11	12	13	14	15	16
17	18	19	20	21	22	23
24	25	26	27	28	29	30
31

Bio (12)
Books (3)
Business (9)
code (14)
Comp* (89)
Culture (2)
Design (5)
Economics (33)
Education (62)
Engineering (8)
Events (7)
Finance (6)
Fun (20)
Ideas (107)
Idiocracy (36)
Information Flow (13)
Investment (3)
Language (50)
Liberty (8)
Literature (10)
Math (18)
Mech* (3)
Mind/Cognition (13)
Music (1)
Observations (24)
People (42)
Philosophy (27)
Physics (8)
Politics (29)
Productivity (2)
Projects (2)
Punditry (36)
Religion (38)
Science Fiction (3)
Self (105)
Software (2)
Strange Loop (15)
Teaching (3)
Tech* (38)
Uncategorized (5)