ARIA -- UMASS

Related Links: UMass Amherst | Computer Science Dept |

Department of Computer Science
Academics and Research in Information Assurance


About | Research | Info for Students | Invited Speakers | Our Funding | Scholarships | Contact | Mission Statement | Helpful Links

Research
Selected published works.
  • Absence makes the heart grow fonder: New directions for implantable medical device security. Tamara Denning, Kevin Fu, and Tadayoshi Kohno. In Proceedings of USENIX Workshop on Hot Topics in Security (HotSec), July 2008.
  • Passive-Logging Attacks Against Anonymous Communications Systems. Matthew Wright, Micah Adler, Brian Neil Levine, and Clay Shields. ACM Transactions on Information and System Security (TISSEC), 11(2), May 2008.
  • Archipelago: Trading Address Space for Reliability and Security, V. Lvin, G. Novark, E. Berger, and B. Zorn. In Proceedings of the Thirteenth International Conference on Architectural Support for PrograOperating Systems-XIII (ASPLOS 2008), 10 pages, March 2008
  • Pacemakers and implantable cardiac defibrillators: Software radio attacks and zero-power defenses. Daniel Halperin, Thomas S. Heydt-Benjamin, Benjamin Ransford, Shane S. Clark, Benessa Defend, Will Morgan, Kevin Fu, Tadayoshi Kohno, and William H. Maisel. In Proceedings of the 29th Annual IEEE Symposium on Security and Privacy, May 2008. Outstanding Paper Award.
  • Leakage-based differential power analysis (LDPA) on sub-90nm CMOS cryptosystems Lang Lin; Burleson, W. Circuits and Systems, 2008. ISCAS 2008. IEEE International Symposium on Volume , Issue , 18-21 May 2008 Page(s):252 - 255
  • Designing Property Specification to Improve the Safety of the Blood Transfusion Process, Henneman, E. A., Cobleigh, Avrunin, G. S., Clarke L. A., Osterweil, L. J., Henneman, P. L., to appear in Transfusion Medicine Reviews, October 2008.
  • Process Programming to Support Medical Safety: A Case Study on Blood Transfusion Lori A. Clarke, Yao Chen, George S. Avrunin, Bin Chen, Rachel Cobleigh, Kim Frederick, Elizabeth A. Henneman, Leon J. Osterweil, Software Process Workshop (SPW2005), Beijing, China, May 25-27, 2005, Springer-Verlag Lecture Notes in Computer Science, Vol. 3840, pp. 347-359.
  • Formally Defining Medical Processes, Christov, S. Chen, B. Avrunin, G.S., Clarke, L. A., Osterweil, L.J., Brown, D., Cassells, L., Mertens, W., accepted to appear in Methods of Information in Medicine, Special Issue from the Workshop on Model-Based Design of Trustworthy Health Information Systems, Guest Editors: Janos Sztipanovits, Ruth Breu, Elske Ammenwerth.
  • Analyzing privacy in enterprise trace anonymization. Bruno Ribiero, Weifeng Chen, Gerome Miklau, and Don Towsley. In Network and Distributed System Security Symposium (NDSS), February 2008.
  • Quantifying Resistance to the Sybil Attack. N. Boris Margolin and Brian Neil Levine. In Proc. Financial Cryptography (FC), January 2008.
  • Security and privacy for implantable medical devices. Daniel Halperin, Thomas S. Heydt-Benjamin, Kevin Fu, Tadayoshi Kohno, and William H. Maisel. IEEE Pervasive Computing, Special Issue on Implantable Electronics, January 2008.
  • "Finding Tribes: Identifying close-knit individuals from employment patterns." Friedland and D. Jensen. In Proceedings of the 13th ACM SIGKDD International Conference on Knowledge Discovery and Data Mining, pp. 290-299. (2007)
  • A formal analysis of information disclosure in data exchange. Gerome Miklau and Dan Suciu. J. Comput. Syst. Sci., 73(3):507-534, 2007.
  • Surviving Attacks on Disruption-Tolerant Networks without Authentication. John Burgess, George Bissias, Mark D. Corner, and Brian Neil Levine. In Proceedings of The ACM International Symposium on Mobile Ad hoc Networking and Computing (MobiHoc), pages 61-70, Montreal, Quebec, Canada, September 2007.
  • Maximalist cryptography and computation on the WISP UHF RFID tag. Hee-Jin Chae, Daniel J. Yeager, Joshua R. Smith, and Kevin Fu. In Proceedings of the Conference on RFID Security, July 2007.
  • Initial SRAM state as a fingerprint and source of true random numbers for RFID tags. Daniel E. Holcomb, Wayne P. Burleson, and Kevin Fu. In Proceedings of the Conference on RFID Security, July 2007.
  • Bounding Damage From Link Destruction with Application to the Internet (extended abstract). George Bissias, Brian Neil Levine, and Arnold L. Rosenberg. In Proc. ACM SIGMETRICS, June 2007.
  • Exterminator: Automatically Correcting Memory Errors with High Probability, Gene Novark, Emery Berger and Ben Zorn. In Proc. ACM PLDI, June 2007
  • Bounding Damage From Link Destruction with Application to the Internet (extended abstract). by George Bissias, Brian Neil Levine, and Arnold Rosenberg. In Proc. ACM SIGMETRICS, June 2007.
  • Threats to Privacy in the Forensic Analysis of Database Systems. by Patrick Stahlberg, Gerome Miklau, and Brian Neil Levine. In Proc. ACM Intl Conf. on Management of Data (SIGMOD/PODS), June 2007.
  • Informant: Detecting Sybils Using Incentives. by N. Boris Margolin and Brian Neil Levine. In Proc. Financial Cryptography (FC), February 2007.
  • Securing History: Privacy and Accountability in Database Systems. by Gerome Miklau, Brian Neil Levine, and Patrick Stahlberg. In Biennial ACM/VLDB Conference on Innovative Data Systems Research (CIDR), January 2007.
  • Inferring the Source of Encrypted HTTP Connections. by Marc Liberatore and Brian Neil Levine. In Proc. ACM conference on Computer and Communications Security (CCS), October 2006.
  • Reconfigurable Security Architecture for Embedded Systems. Guy Gogniat, Tilman Wolf, and Wayne Burleson Mobile Computing Hardware Architectures: Design and Implementation Design Symposium (MOCHA 2006) Proceedings of the 39th Hawaii International Conference on System Sciences, HICSS 2006 / MOCHA 2006 January 2006 Systems
  • DieHard: Probabilistic Memory Safety for Unsafe Languages. by Emery Berger and Ben Zorn. In Proc. ACM PLDI, June 2006.
  • Nonesuch: a mix network with sender unobservability. by Thomas S. Heydt-Benjamin, Andrei Serjantov, and Benessa Defend. In 2006 Workshop on Privacy in the Electronic Society. ACM Press, October 2006.
  • Benessa Defend, Kevin Fu, Ari Juels, "Cryptanalysis of two lightweight RFID authentication schemes". In Fourth IEEE International Workshop on Pervasive Computing and Communication Security (PerSec) Workshop, March 2007.
  • Thomas S. Heydt-Benjamin, Daniel V. Bailey, Kevin Fu, Ari Juels, Tom O'Hare, "Vulnerabilities in first-generation RFID-enabled credit cards". In Proceedings of Eleventh International Conference on Financial Cryptography and Data Security, February 2007.
  • Chris Piro, Clay Shields, Brian Neil Levine, "Detecting the Sybil Attack in Ad hoc Networks". In Proc. IEEE/ACM International Conference on Security and Privacy in Communication Networks (SecureComm), August 2006.
  • Anthony Bellissimo, John Burgess, Kevin Fu, "Secure Software Updates: Disappointments and New Challenges". In Proc. USENIX Hot Topics in Security Workshop (HotSec), July 2006.
  • Thomas S. Heydt-Benjamin, Hee-Jin Chae, Benessa Defend, Kevin Fu, "Privacy for Public Transportation" In Proc. Workshop on Privacy Enhancing Technologies (PET), June 2006.
  • Kevin Fu, Seny Kamara, Tadayoshi Kohno, "Key Regression: Enabling Efficient Key Distribution for Secure Distributed Storage" In Proc. ISOC Network and Distributed System Security Symposium (NDSS) February 2006
  • Using relational knowledge discovery to prevent securities fraud. J. Neville, O. Simsek, D. Jensen, J. Komoroske, K. Palmer, and H. Goldberg. Proceedings of the Eleventh ACM SIInternational Conference on Knowledge Discovery and Data Mining. 449-458. (2005). .
  • L. Bossuet, G. Gogniat, W. Burleson, Dynamically Configurable Security for SRAM FPGA Bitstreams, International Journal of Embedded Systems, IJES, From Inderscience Publishers issue 5/6, 2005
  • Guy Gogniat, Tilman Wolf, and Wayne Burleson, Reconfigurable Security Architecture for Embedded Systems, Mobile Computing Hardware Architectures: Design and Implementation Design Symposium (MOCHA 2006) Proceedings of the 39th Hawaii International Conference on System Sciences, HICSS 2006 / MOCHA 2006, January 4, 2006, Kauai, Hawaii, USA
  • Guy Gogniat, Lilian Bossuet, and Wayne Burleson, Configurable computing for high-security/high-performance ambient systems Embedded Computer Systems: Architectures, MOdeling, and Simulation (SAMOS V) July 18-20, 2005, Samos, Greece
  • Guy Gogniat, Tilman Wolf, and Wayne Burleson, Reconfigurable Security Primitive for Embedded Systems, The IEEE International Symposium on System-on-Chip (SOC 2005) November 15-17, 2005, Tampere, Finland
  • D. Figueiredo, J. Shapiro, D. Towsley. "Incentives to Promote Availability in Peer-to-Peer Anonymity Systems", to appear in IEEE Intl Conf on Network Protocols (ICNP) November 2005.
  • Samuel Evain and Jean Philippe Diguet, From NoC Security Analysis To Design Solutions, The IEEE 2005 Workshop on Signal Processing Systems (SIPS 2005) November 2-4, 2005, Athens, Greece
  • Y. Gu, A. McCallum, D. Towsley. "Detecting Anomalies in Network Traffic Using Maximum Entropy Estimation", to appear in ACM Internet Measurement Conference (IMC). October 2005
  • Matt Yurkewych, B.N. Levine, and Arnold Rosenberg, "On the Cost-Ineffectiveness of Redundancy in Commercial P2P Computing." In Proc. ACM conference on Computers & Communications Security (CCS) October 2005.
  • Nathaniel E. Baughman, Marc Liberatore, and Brian Neil Levine, "Cheat-Proof Playout for Centralized and Serverless Online Games." To appear in IEEE/ACM Transactions on Networking.
  • C.C. Zou, N. Duffield, D. Towsley, W. Gong. "Adaptive Defense Against Various Network Attacks," SRUTI Workshop: Steps to Reducing Unwanted Traffic on the Internet, July 2005.
  • C.C. Zou, D. Towsley, W. Gong, S. Cai. "Routing Worm: A Fast, Selective Attack Worm based on IP Address Information," 19th ACM/IEEE/SCS Workshop on Principles of Advanced and Distributed Simulation (PADS'05), June 2005
  • George Bissias, Marc Liberatore, David Jensen, and B.N. Levine, Privacy Vulnerabilities in Encrypted HTTP Streams. in Proc. Privacy Enhancing Technologies Workshop (PET) June 2005.
  • Kimaya Sanzgiri, Bridget Dahill, Daniel LaFlamme, Brian Neil Levine, Clay Shields, and Elizabeth Belding-Royer, A Secure Routing Protocol for Ad Hoc Networks. Journal of Selected Areas of Communications (JSAC) Special Issue on Ad hoc Networks. March 2005.
  • A. Ganesh, L. Massouli, D. Towsley. The effect of network topology on the spread of epidemics", Proc. INFOCOM March 2005.
  • W. Chen, L. Clarke, J.F. Kurose, D. Towsley. "Optimizing Cost-sensitive Trust-negotiation Protocols", Proc. INFOCOM March 2005.
  • W. Chen, Z. Ge, C. Zhang, J. Kurose, and D. Towsley "On Dynamics Subset Difference Revocation Scheme" Proceedings of Networking 2004
  • Matt Wright, Micah Adler, Brian Neil Levine, and Clay Shields, The Predecessor Attack: An Analysis of a Threat to Anonymous Communications Systems. ACM Transactions on Information and Systems Security (TISSEC). Vol 7. Num 4. (Nov 2004)
  • N. Boris Margolin, Matthew Wright, Brian Levine, Analysis of an Incentives-based Protection System, Proc. ACM Digital Rights Management Workshop. October 2004.
  • C.C. Zou, W. Gong, D. Towsley. "Email Worm Modeling and Defense," 13th International Conference on Computer Communications and Networks (ICCCN'04), Oct. 2004.
  • L. Bossuet, G. Gogniat, W. Burleson, Dynamically Configurable Security for SRAM FPGA Bitstreams, The 11th Reconfigurable Architectures Workshop (RAW 2004) April 26-27, 2004, Santa Fé, New Mexico, USA
  • Brian Neil Levine, Michael Reiter, Chenxi Wang, Matthew Wright Stopping Timing Attacks in Low-Latency Mix-Based Systems. in Proc. Financial Cryptography. February 2004. Nominee for the 2004 PET award
  • Cliff Changchun Zou, Weibo Gong, and Don Towsley. "Worm Propagation Modeling and Analysis under Dynamic Quarantine Defense", Proc. ACM CCS Workshop on Rapid Malcode (WORM'03), Oct. 2003.
  • Cliff Changchun Zou, Lixin Gao, Weibo Gong and Don Towsley. "Monitoring and Early Warning for Internet Worms, Proc. 10th ACM Conference on Computer and Communication Security (CCS'03), Oct. 2003
  • Matthew Wright, Micah Adler, Brian Neil Levine, and Clay Shields, "Defending Anonymous Communication Against Passive Logging Attacks". IEEE Symposium on Security and Privacy, Oakland, CA. May 2003.
  • Hanping Feng, Oleg Kolesnikov, Prahlad Fogla, Wenke Lee, Weibo Gong. "Anomaly Detection using Call Stack Information", Proc. of the IEEE Security and Privacy, May 2003, Oakland, CA.
  • Michele Garetto, Weibo Gong and Don Towsley "Modeling Malware Spreading Dynamics" Proceedings of INFOCOM 2003