Flame is a library and plugin for the Glasgow Haskell Compiler (GHC) that enforces information security policies in Haskell programs. In Flame, sensitive information is protected by monad-like types that specify how information may flow according to the Flow-Limited Authorization Model. The operations of these Flame monads implement the type system constraints of the Flow-Limited Authorization Calculus (FLAC).

Code and demos

All code for Flame is publically available in our Bitbucket repositories. Pull requests welcome!
We have also built some example applications using Flame.

Related publications

Project members