| 2009 | A Method for Proving Observational Equivalence. Véronique Cortier, Stéphanie Delaune |
| 2009 | A Provably Secure and Efficient Countermeasure against Timing Attacks. Boris Köpf, Markus Dürmuth |
| 2009 | A Secure Cryptographic Token Interface. Christian Cachin, Nishanth Chandran |
| 2009 | ASPIER: An Automated Framework for Verifying Security Protocol Implementations. Sagar Chaki, Anupam Datta |
| 2009 | Achieving Security Despite Compromise Using Zero-knowledge. Michael Backes, Martin P. Grochulla, Catalin Hritcu, Matteo Maffei |
| 2009 | Advice from Belnap Policies. Chris Hankin, Flemming Nielson, Hanne Riis Nielson |
| 2009 | Authentication without Elision: Partially Specified Protocols, Associated Data, and Cryptographic Models Described by Code. Phillip Rogaway, Till Stegers |
| 2009 | Cryptographic Protocol Synthesis and Verification for Multiparty Sessions. Karthikeyan Bhargavan, Ricardo Corin, Pierre-Malo Deniélou, Cédric Fournet, James J. Leifer |
| 2009 | Decidable Analysis for a Class of Cryptographic Group Protocols with Unbounded Lists. Najah Chridi, Mathieu Turuani, Michaël Rusinowitch |
| 2009 | Expressive Power of Definite Clauses for Verifying Authenticity. Gilberto Filé, Roberto Vigo |
| 2009 | Inputs of Coma: Static Detection of Denial-of-Service Vulnerabilities. Richard M. Chang, Guofei Jiang, Franjo Ivancic, Sriram Sankaranarayanan, Vitaly Shmatikov |
| 2009 | Language-Based Isolation of Untrusted JavaScript. Sergio Maffeis, Ankur Taly |
| 2009 | Minimal Message Complexity of Asynchronous Multi-party Contract Signing. Sjouke Mauw, Sasa Radomirovic, Mohammad Torabi Dashti |
| 2009 | Modeling and Verifying Physical Properties of Security Protocols for Wireless Networks. Patrick Schaller, Benedikt Schmidt, David A. Basin, Srdjan Capkun |
| 2009 | More Anonymous Onion Routing Through Trust. Aaron Johnson, Paul F. Syverson |
| 2009 | Policy Compliance in Collaborative Systems. Max I. Kanovich, Paul D. Rowe, Andre Scedrov |
| 2009 | Proceedings of the 22nd IEEE Computer Security Foundations Symposium, CSF 2009, Port Jefferson, New York, USA, July 8-10, 2009 |
| 2009 | Securing Timeout Instructions in Web Applications. Alejandro Russo, Andrei Sabelfeld |
| 2009 | Specification and Analysis of Dynamic Authorisation Policies. Moritz Y. Becker |
| 2009 | Tight Enforcement of Information-Release Policies for Dynamic Languages. Aslan Askarov, Andrei Sabelfeld |
| 2009 | Universally Composable Symmetric Encryption. Ralf Küsters, Max Tuengerthal |
| 2009 | Updatable Security Views. J. Nathan Foster, Benjamin C. Pierce, Steve Zdancewic |
| 2009 | Using ProVerif to Analyze Protocols with Diffie-Hellman Exponentiation. Ralf Küsters, Tomasz Truderung |