CS 595C
Domain Specific Languages and Analyses for Web Applications
Spring 2010


Description:

Web application development is an error prone process. Many web applications handle unexpected user requests inappropriately and are vulnerable to exploits by malicious users. One approach to improving dependability of Web applications is the creation of domain specific languages that target and address specific dependability concerns. In this seminar we will discuss novel research in domain specific languages and the associated analysis techniques that focus on web application development.

Instructors: Ben Hardekopf and Tevfik Bultan
Meeting time: Monday 3:00-4:00pm
Location: Computer Science Meeting Room (HFH 1152)
Enrollment Code: TBA
Units: This will be a 2 unit seminar

Paper Reviews

Each week, each student is required to write a review of the paper that will be presented and submit the review to the instructors before the class. Paper reviewing is an essential part of academic life and it is a great way to understand the concepts presented in a paper. Here is a paper review template and here are two example reviews (example 1, example 2) written by one of the instructors based on this template. In each review you are asked to 1) summarize the results presented in the paper, 2) identify the novelty of the proposed approach, 3) discuss any flaws that you see in the proposed approach and, 4) discuss how the proposed approach fits with other results and how it can be extended or improved.

Presentations


Papers

  1. When and How to Develop Domain-Specific Languages Marjan Mernik, Jan Heering and Anthony M. Sloane
  2. The bigwig Project Claus Brabrand, Anders Moller, and Michael I. Schwartzbach.
  3. Automatically Restructuring Programs for the Web. Jacob Matthews, Robert Bruce Findler, Paul T. Graunke, Shriram Krishnamurthi, Matthias Felleisen. Autom. Softw. Eng. 11(4): 337-364 (2004)
  4. Links:Web Programming Without Tiers Ezra Cooper, Sam Lindley, Philip Wadler, and Jeremy Yallop
  5. Flapjax: A Programming Language for Ajax Applications Leo A. Meyerovich, Arjun Guha, Jacob Baskin, Gregory H. Cooper, Michael Greenberg, Aleks Bromfield, Shriram Krishnamurthi. ACM SIGPLAN Conference on Object-Oriented Programming Systems, Languages \& Applications, 2009
  6. An Embedded Domain-Specific Language for Type-Safe Server-Side Web Scripting Peter Thiemann
  7. Better Abstractions for Secure Server-Side Scripting Dachuan Yu, Ajay Chander, Hiroshi Inamura and Igor Serikov
  8. Interprocedural Query Extraction for Transparent Persistence Ben Wiedermann, Ali Ibrahim, and William R. Cook
  9. Abstract parsing: static analysis of dynamically generated string output using LR-parsing technology Kyung-Goo Doh, Hyunha Kim, and David A. Schmidt
  10. Ur: Statically-Typed Metaprogramming with Type-Level Record Computation Adam Chlipala