Security Type Error Diagnosis for Higher-Order, Polymorphic Languages

Jeroen Weijers • Jurriaan Hage • Stefan Holdermans

Proceedings of ACM SIGPLAN 2013 Workshop on Partial Evaluation and Program Manipulation (PEPM 2013), Rome, Italy. ACM, January 2013. Best Paper Award at PEPM'13

We combine the type error slicing and heuristics based approaches to type error diagnostic improvement within the context of type based security analysis on a let-polymorphic call by value lambda calculus exteded by lists, pairs and the security specific constructs declassify and protect. We define and motivate four classes of heuristics that help diagnose inconsistencies among the constraints, and show their effect on a selection of security incorrect programs.