Positions

• August 2008 - present
     I3P Fellow (2008-2009) and Visiting Professor: Department of Computer Science, George Mason University
• January 2008 - August 2008
     ISTS Research Fellow: Institute for Security, Technology, and Society, Dartmouth College
• September 2002 - December 2007
     Graduate Student Research Assistant: Computer Science Department, Columbia University

Education

Teaching Experience

• Project Lead and Instructor, SISMAT Security Seminar. ISTS, Dartmouth College (Summer 2009, 8 students)
• Instructor for ISA 563: Fundamentals of Systems Programming. George Mason University (Fall 2008, 22 students, 4.75 (out of 5.00) Instructor Rating)
• Project Lead and Instructor, SISMAT Security Seminar. ISTS, Dartmouth College (Summer 2008, 7 students)
• Instructor for COMS W1001: Introduction To Computers. Columbia University (Spring 2006, 25 students)
• Instructor for COMS W1003: Introduction To Computer Programming In C. Columbia University (Fall 2005, 46 students)
• Instructor for COMS W1001: Introduction to Computers. Columbia University (Summer 2004, 8 students)
• Instructor for COMS W1001: Introduction to Computers. Columbia University (Summer 2003, 6 students)
• TA for COMS W4180: Network Security. Columbia University (Fall 2003, 61 students)
• TA for COMS W4115: Programming Languages & Translators. Columbia University (Spring 2003, 61 students)
• TA for CSC 340: Programming in the Large. Computer Science Department, The College of New Jersey (Fall 2000, 24 students)
• Academic Tutor: The Center for Academic Enhancement, The College of New Jersey (1999 - 2002)

Program Committee Service

• Program Committee, ACM Conference on Computer and Communications Security (CCS 2010)
• Program Committee, The 2^nd International Conference on Trusted Computing, 2010
• Program Committee, USENIX Security Symposium, 2010
• Program Committee, IEEE Security & Privacy Symposium, 2010
• Program Committee, The 2^nd Workshop on Virtual Machine Security (VMSec 2009)
• Program Committee, The 17^th Network and Distributed System Security Symposium (NDSS 2010)
• Program Committee, The 10^th International Workshop on Information Security and Applications (WISA 2009)
• Program Committee, 14^th European Symposium on Research in Computer Security (ESORICS 2009)
• Program Committee, The 18^th New Security Paradigms Workshop (NSPW 2009)
• Program Committee, Security and Privacy Track, the 18^th World Wide Web Conference (WWW 2009)
• Program Committee, The 5^th Information Security Practice and Experience Conference (ISPEC 2009)
• Program Committee, The 16^th Network and Distributed System Security Symposium (NDSS 2009)
• Program Committee, The 17^th New Security Paradigms Workshop (NSPW 2008)
• Program Committee, The 15^th Network and Distributed System Security Symposium (NDSS 2008)
• Program Committee, The 8^th International Workshop on Information Security and Applications (WISA 2007)
• Program Committee, The 3^rd International SKLOIS Conference on Information Security and Cryptology (Inscrypt 2007)
• Program Committee, The 16^th New Security Paradigms Workshop (NSPW 2007)
• Program Committee, Communications and Multimedia Security (CMS 2006)
• Program Committee, The 15^th New Security Paradigms Workshop (NSPW 2006)
• Associate Editor, ACM Crossroads (January 2006 - June 2006)

Other Service and Activities

• Organizer, OSD Invitational Workshop on Software Issues in Advanced Computing, GMU, September 17 and 18, 2009
• USENIX Campus Rep, George Mason University
• MS-ISA Admissions & Policy Committee, CS Dept., GMU
• Publicity Co-Chair, 13^th ACM Conference on Computer and Communications Security CCS 2006.
• Submissions, Workshop on Rapid Malcode (WORM) 2005
• Webmaster, ACNS 2005 Conference
• Webmaster, OpenSig 2003 Workshop

Grants and Support

• PI (co-PIs Angelos Stavrou and Duminda Wijesekera, GMU & Max Pala, Dartmouth College), "Securing the Railway IT Infrastructure", I3P Planning Project Grant, November 2009 - March 2010. ($90,000)
• PI (co-PI Sushil Jajodia and Angelos Stavrou), "Workshop on Software Issues in Advanced Computing", OSD/ARO Workshop Grant, July 2009 - September 2009. ($24,654.81).
• IASP award for Dartmouth ISTS (with Sean Smith and Sergey Bratus), "Strengthening Dartmouth's Information Security Education and Outreach Initiatives" NSA CAE IASP Capacity Building Program. August 2009 - August 2010. ($32,000).
• PI, "SISMAT 2009: Secure Information Systems Mentoring and Training", subcontract from the Institute for Security, Technology, and Society, Dartmouth College. March 2009 - July 2009. ($21,963).
• Co-PI (with Duminda Wijesekera and Angelos Stavrou), "Secure, Patient-Specified Policy-Based Dissemination of Health Records", Bioengineering Seed Grant, Volgenau School of Information Technology and Engineering, GMU. January 2009 - January 2010. ($42,500).
• Cisco Equipment Gift (with Sean Smith). Institute for Security, Technology, and Society, Dartmouth College. November 2008. ($201,000).
• I3P Fellow. "Flexible and Automatic Dataflow Tagging and Control for User--Level Programs", Institute for Information Infrastructure Protection (I3P), August 2008 - August 2009. ($150,000).
• Co-PI (with David August at Princeton, and Sal Stolfo and Simha Sethumadhavan at Columbia), "Automatically Parallelizing Legacy Binary Code for Multi-Core Architectures via Extraction of Self-Similarity" DARPA, June 2008 - May 2009 ($300,000)
• USENIX Student Stipend, USENIX Security 2006
• USENIX Student Stipend, USENIX Annual Technical Conference 2005
• Charles H. Goldberg Award for Academic Excellence and Graduate Study in Computer Science, May 2002

Journal Publications and Articles

1. Bickering-in-Depth: Rethinking the Composition of Competing Security Systems.

   Michael E. Locasto, Sergey Bratus, and Brian Schulte. IEEE Security and Privacy, vol. 7, no. 6, Nov/Dec, 2009.

2. On the Infeasibility of Modeling Polymorphic Shellcode: Re-thinking the Role of Learning in Intrusion Detection Systems.

   Yingbo Song, Michael E. Locasto, Angelos Stavrou, Angelos D. Keromytis, and Salvatore J. Stolfo. To appear in the Machine Learning Journal (MLJ).

3. Helping Students 0wn Their Own Code.

   Michael E. Locasto. IEEE Security and Privacy, vol. 7, no. 3, pp. 53-56, May/June 2009.

4. The Hidden Difficulties of Watching and Rebuilding Networks.

   Michael E. Locasto and Angelos Stavrou. IEEE Security and Privacy, vol. 6, no. 2, pp. 79-82, Mar/Apr, 2008.

5. On The General Applicability of Instruction-Set Randomization.

   Stephen W. Boyd, Gaurav S. Kc, Michael E. Locasto, Angelos D. Keromytis, and Vassilis Prevelakis. In the IEEE Transactions on Dependable and Secure Computing (TDSC).

6. Hardware Support For Self-Healing Software Services.

   Stelios Sidiroglou, Michael E. Locasto, and Angelos D. Keromytis. In ACM SIGARCH Computer Architecture News, vol. 33, no. 1, pp. 42--47. March 2005. Also appeared in the Proceedings of the Workshop on Architectural Support for Security and Anti-Virus (WASSA), held in conjunction with the 11^th International Conference on Architectural Support for Programming Languages and Operating Systems (ASPLOS-XI), pp. 37--43. October 2004. Boston, MA.

Conference Publications

1. Teaching the Principles of the Hacker Curriculum to Undergraduates.

   Sergey Bratus, Anya Shubina, and Michael E. Locasto. To appear in Proceedings of the 41^st ACM Technical Symposium on Computer Science Education (SIGCSE 2010). Milwaukee, WI, USA. March 10--14, 2010.
   (Acceptance Rate: 34%)

2. Pushing Boulders Uphill: The Difficulty of Network Intrusion Recovery.

   Michael E. Locasto, Matthew Burnside, and Darrell Bethea. The 23^rd Large Installation System Administration Conference (LISA 2009). Baltimore, MD, USA. November 1--6, 2009.
   

3. Adaptive Anomaly Detection via Self-Calibration and Dynamic Updating.

   Gabriela F. Cretu-Ciocarlie, Angelos Stavrou, Michael E. Locasto, and Salvatore J. Stolfo. The 12^th International Symposium on Recent Advances in Intrusion Detection (RAID 2009). Saint-Malo, Brittany, France. September 23-25, 2009.
   

4. An Experience Report on Undergraduate Cyber-Security Education and Outreach.

   Michael E. Locasto and Sara Sinclair. The Second Annual Conference on Education in Information Security (ACEIS 2009). February 2009. Ames, IA, USA.
   (best paper award)

5. New Directions for Hardware-assisted Trusted Computing Policies.

   Sergey Bratus, Michael E. Locasto, Ashwin Ramaswamy, and Sean W. Smith. Conference on the Future of Trust in Computing (FTC 2008). June 2008. Berlin, Germany.
   

6. Pushback for Overlay Networks: Protecting against Malicious Insiders.

   Angelos Stavrou, Michael E. Locasto, and Angelos D. Keromytis. In the Proceedings of the 6^th Applied Cryptography and Network Security Conference (ACNS 2008). June 3--6, 2008. New York, NY.

7. Casting Out Demons: Sanitizing Training Data for Anomaly Sensors.

   Gabriela F. Cretu, Angelos Stavrou, Michael E. Locasto, Salvatore J. Stolfo, and Angelos D. Keromytis. In the Proceedings of the IEEE Symposium on Security and Privacy. May 2008, Oakland, California, USA.
   (Acceptance Rate: 11.2%)

8. SSARES: Secure Searchable Automated Remote Email Storage.

   Adam J. Aviv, Michael E. Locasto, Shaya Potter, and Angelos D. Keromytis. In the Proceedings of the 23^rd Annual Computer Security Applications Conference (ACSAC 2007). December 2007, Miami Beach, FL.
   (Acceptance rate: 22%)

9. Defending Against Next Generation Attacks Through Network/Endpoint Collaboration and Interaction.

   Spiros Antonatos, Michael E. Locasto, Stelios Sidiroglou, Angelos D. Keromytis, and Evangelos Markatos. In the Proceedings of the 3^rd European Conference on Computer Network Defense (EC2ND). October 2007, Heraclion, Greece.
   (invited paper)

10. On the Infeasibility of Modeling Polymorphic Shellcode.

    Yingbo Song, Michael E. Locasto, Angelos Stavrou, Angelos D. Keromytis, and Salvatore J. Stolfo. In the Proceedings of the 14^th ACM Conference on Computer and Communications Security (CCS 2007). pp. 541--551. October 2007, Alexandria, VA. A portion of the material in this paper appears in an exploratory form in the Columbia University CS Tech Report CUCS-007-07.
    (Acceptance rate: 18.15%)

11. From STEM to SEAD: Speculative Execution for Automated Defense.

    Michael E. Locasto, Angelos Stavrou, Gabriela F. Cretu, and Angelos D. Keromytis. In Proceedings of the USENIX Annual Technical Conference (USENIX ATC 2007). pp. 219--232. June 2007, Santa Clara, CA. An early draft of this work is available as Columbia University CS Tech Report CUCS-004-07.
    (Acceptance rate: 18.75%)

12. ShieldGen: Automated Data Patch Generation for Unknown Vulnerabilities with Informed Probing.

    Weidong Cui, Marcus Peinado, Helen J. Wang, and Michael E. Locasto. In Proceedings of the IEEE Symposium on Security and Privacy. May 2007, Oakland, California, USA.
    (Acceptance Rate: 11.7%)

13. W3Bcrypt: Encryption as a Stylesheet.

    Angelos Stavrou, Michael E. Locasto, and Angelos D. Keromytis. In Proceedings of the 4^th Applied Cryptography and Network Security Conference (ACNS 2006). pp. 349--364. June 6--9, 2006, Singapore. An earlier draft of this work is available as Columbia University CS Tech Report CUCS-003-06.
    (Acceptance Rate: 15.1%)

14. Software Self-Healing Using Collaborative Application Communities.

    Michael E. Locasto, Stelios Sidiroglou, and Angelos D. Keromytis. In the Proceedings of the Internet Society (ISOC) Symposium on Network and Distributed Systems Security (NDSS 2006). pp. 95--106. February 2006, San Diego, CA.
    (Acceptance Rate: 13.6%)

15. FLIPS: Hybrid Adaptive Intrusion Prevention.

    Michael E. Locasto, Ke Wang, Angelos D. Keromytis, and Salvatore J. Stolfo. In Proceedings of the 8^th International Symposium on Recent Advances in Intrusion Detection (RAID 2005). pp. 82--101. Sept. 7-9, 2005. Seattle, WA.
    (Acceptance rate: 20.4%)

16. Building A Reactive Immune System for Software Services.

    Stelios Sidiroglou, Michael E. Locasto, Stephen W. Boyd, and Angelos D. Keromytis. In Proceedings of the USENIX Annual Technical Conference, pp. 149--161. April 2005. An earlier version of this paper is available as Columbia University CS Tech Report CUCS-038-04.
    (Acceptance rate: 20.3%)

17. CamouflageFS: Increasing the Effective Key Length in Cryptographic Filesystems on the Cheap.

    Michael E. Locasto and Angelos D. Keromytis. In Proceedings of the 2^nd Applied Cryptography and Network Security Conference (ACNS 2004), pp. 1--15. June 2004. Yellow Mountain, China.
    (Acceptance rate: 12.1%)

18. Using the Web to Enhance and Transform Education.

    Michael J. Hulme and Michael E. Locasto. ACM Crossroads 10.1. Fall 2003.

Workshop Publications

1. Katana: A Hot Patching Framework for ELF Executables.

   Ashwin Ramaswamy, Sergey Bratus, Michael E. Locasto, and Sean W. Smith. In Proceedings of the 4^th International Workshop on Secure Software Engineering (SecSE 2010), held in conjunction with ARES 2010. February, 15-18, 2010. Andrzej Frycz Modrzewski Cracow College, Krakow, Poland.
   

2. The Cake is a Lie: Privilege Rings as a Policy Resource.

   Sergey Bratus, Peter Johnson, Michael E. Locasto, Ashwin Ramaswamy, and Sean W. Smith. In Proceedings of the 2^nd Workshop on Virtual Machine Security (VMSec 2009), held in conjunction with ACM CCS 2009.
   (position paper)

3. Keep Your Friends Close: The Necessity for Updating an Anomaly Sensor with Legitimate Environment Changes.

   Angelos Stavrou, Gabriela F. Cretu-Ciocarlie, Michael E. Locasto, and Salvatore J. Stolfo. In Proceedings of the 2^nd Workshop on Artificial Intelligence and Security (AISec 2009), held in conjunction with ACM CCS 2009.
   (position paper)

4. Dartmouth Internet Security Testbed (DIST): Building a Campus-wide Wireless Testbed.

   Sergey Bratus, David Kotz, Michael E. Locasto, Keren Tan, William Taylor, Anna Shubina, and Bennet Vance. In Proceedings of the 2^nd Workshop on Cyber-Security Experimentation and Test (CSET 2009), held in conjunction with USENIX Security 2009. October 31, 2009. Montreal, CA.
   

5. Traps, Events, Emulation, and Enforcement: Managing the Yin and Yang of Virtualization-based Security.

   Sergey Bratus, Michael E. Locasto, Ashwin Ramaswamy, and Sean W. Smith. In Proceedings of the 1^st Workshop on Virtual Machine Security (VMSec 2008), held in conjunction with ACM CCS 2008. October 31, 2008. Alexandria, VA.

6. Online Network Forensics for Automatic Repair Validation.

   Michael E. Locasto, Matthew Burnside, and Angelos D. Keromytis. In Proceedings of the 3^rd International Workshop on Security (IWSEC 2008), pp. 136-151. November 25-27, 2008, Kagawa, Japan.

7. Return Value Predictability Profiles for Self-Healing.

   Michael E. Locasto, Angelos Stavrou, Gabriela F. Cretu, Angelos D. Keromytis, and Salvatore J. Stolfo. In Proceedings of the 3^rd International Workshop on Security (IWSEC 2008), pp. 152-166. November 25-27, 2008, Kagawa, Japan.

8. Research Directions for Network Intrusion Recovery.

   Michael E. Locasto, Matthew Burnside, and Darrell Bethea. SOUPS Workshop on Usable IT Security Management (USM) 2008. July 23, 2008, Pittsburgh, PA USA.
   (invited position paper)

9. Online Training and Sanitization of AD Systems (poster/extended abstract).

   Gabriela F. Cretu, Angelos Stavrou, Michael E. Locasto, and Salvatore J. Stolfo. NIPS 2007 Workshop on Machine Learning in Adversarial Environments for Computer Security. December 2007. Whistler, B.C., Canada.

10. Panel: The Future of Biologically-Inspired Security: Is There Anything Left to Learn?.

    Anil Somayaji, Michael Locasto, and Jan Feyereisl. In Proceedings of the 16^th New Security Paradigms Workshop (NSPW 2007). September 2007, White Mountain Hotel and Resort, New Hampshire, USA.
    (invited panel)

11. Self-Healing: Science, Engineering, and Fiction.

    Michael E. Locasto. In proceedings of the 16^th New Security Paradigms Workshop (NSPW 2007). September 2007, White Mountain Hotel and Resort, New Hampshire, USA.

12. Dark Application Communities.

    Michael E. Locasto, Angelos Stavrou, and Angelos D. Keromytis. In the proceedings of the 15^th New Security Paradigms Workshop (NSPW 2006). September 2006, Schloss Dagstuhl, Germany.

13. PalProtect: A Collaborative Security Approach to Comment Spam.

    Benny Wong, Michael E. Locasto, and Angelos D. Keromytis. In Proceedings of the IEEE Information Assurance Workshop (IAW 2006). June 2006, West Point, NY. An earlier draft of this work is available as Columbia University CS Tech Report CUCS-014-06.

14. Speculative Virtual Verification: Policy-Constrained Speculative Execution.

    Michael E. Locasto, Stelios Sidiroglou, and Angelos D. Keromytis. In Proceedings of the 14^th New Security Paradigms Workshop (NSPW 2005). pp. 119--124. Sept. 20-23, 2005. Lake Arrowhead, CA.

15. Application Communities: Using Monoculture for Dependability.

    Michael E. Locasto, Stelios Sidiroglou, and Angelos D. Keromytis. In Proceedings of the 1^st Workshop on Hot Topics in System Dependability (HotDep-05), held in conjunction with the International Conference on Dependable Systems and Networks (DSN 2005). pp. 288--292. June 30, 2005. Yokohama, Japan.

16. Towards Collaborative Security and P2P Intrusion Detection.

    Michael E. Locasto, Janak Parekh, Angelos D. Keromytis, and Salvatore J. Stolfo. In Proceedings of the IEEE Information Assurance Workshop (IAW). pp. 333--339. June 15-17, 2005. West Point, NY. An earlier form of this paper appeared as Columbia University CS Tech Report CUCS-012-04.

Patents

1. US patent 7,490,268. "Methods and systems for repairing applications." Angelos D. Keromytis, Michael E. Locasto, and Stylianos Sidiroglou. Assigned to The Trustees of Columbia University in the City of New York. Filed June 2004 and June 2005. Granted 10 February 2009.

Books/Chapters

1. CPU Exhaustion Denial-of-Service

   Michael E. Locasto. In Henk C.A. van Tilborg and Sushil Jajodia, editors, Encyclopedia of Cryptography and Security, 2nd Edition. Springer, 2010.
   

2. Catch, Clean, and Release: A Survey of Obstacles and Opportunities for Network Trace Sanitization.

   Keren Tan, Jihwang Yeo, Michael E. Locasto and David Kotz. In Francesco Bonchi and Elena Ferrari, editors, Privacy-Aware Knowledge Discovery: Novel Applications and New Techniques, Chapman and Hall/CRC Press, February, 2009. Copyright © 2009 by Chapman and Hall/CRC Press.
   

3. Integrity Postures for Software Self-Defense.

   Michael Locasto. PhD Thesis. Columbia University. 2008.

Technical Reports & Work In Progress

1. Life After Self-Healing: Assessing Post-Repair Program Behavior.

   Michael E. Locasto, Angelos Stavrou, and Grabriela F. Cretu. Tech Report GMU-CS-TR-2008-3. Department of Computer Science, George Mason University. Septemeber 2008.

2. Building a Better Mousetrap: Scriptable and Semantically Expressive Hardware-assisted Memory Trapping.

   Sergey Bratus, Michael E. Locasto, Ashwin Ramaswamy, and Sean W. Smith. Tech Report TR2008-627. Department of Computer Science, Dartmouth College. July 2008.

3. Post-Patch Retraining for Host-Based Anomaly Detection.

   Michael E. Locasto, Gabriela F. Cretu, Shlomo Hershkop, and Angelos Stavrou. Tech Report CUCS-035-07. Department of Computer Science, Columbia University. October 2007.

4. Speculative Execution as an Operating System Service.

   Michael E. Locasto and Angelos D. Keromytis. Tech Report CUCS-024-06. Department of Computer Science, Columbia University. May 2006.

5. Quantifying Application Behavior Space for Detection and Self-Healing.

   Michael E. Locasto, Angelos Stavrou, Gabriela F. Cretu, Angelos D. Keromytis and Salvatore J. Stolfo. Tech Report CUCS-017-06. Department of Computer Science, Columbia University. April 2006.

6. Bloodhound: Searching Out Malicious Input in Network Flows for Automatic Repair Validation.

   Michael E. Locasto, Matthew Burnside, and Angelos D. Keromytis. Tech Report CUCS-016-06. Department of Computer Science, Columbia University. April 2006.

7. PachyRand: SQL Randomization for the PostgreSQL JDBC Driver.

   Michael E. Locasto and Angelos D. Keromytis. Tech Report CUCS-033-05. Department of Computer Science, Columbia University. October 2004.

8. AIMEncrypt: A Case Study of the Dangers of Cryptographic Urban Legends.

   Michael E. Locasto. Technical Report CUCS-030-03. Department of Computer Science, Columbia University, Fall 2003.

9. SPCL: Structured Policy Command Language

   Michael E. Locasto, M. Burnside, C. Li, A. Wahl. Spring 2003.

10. PCXSES: Protocol for Code Exchange in Survivable Embedded Systems

    Michael E. Locasto. Fall 2002.

Selected Talks

• "Trust ^ Verify: How to Avoid Bickering-in-Depth", BAE-GMU Seminar, November 6, 2009. Reston, VA.
• "Trust ^ Verify: How to Avoid Bickering-in-Depth", CSIS Seminar, July 9, 2009. Fairfax, VA.
• "Working Group: Hacker Curriculum", The 13^th Colloquium for Information Systems Security Education (CISSE) June 1-3, 2009. Seattle, Washington.
• "Data-Oriented Debugging", I3P Meeting. University of Tulsa, 6-7 April 2009.
• "On Reviewing", NDSS 2009 Works-in-Progress Session. Feburuary 2009.
• "SISMAT: Secure Information Systems Mentoring and Training", Panel Moderator, Securing the eCampus 2008. Dartmouth College, 12 November 2008.
• "Virtualization Security Panel Discussion", ACM VMSec 2008 Workshop.
• "Preparing the Agile Cyber Defender at Dartmouth", SAFTAS Workshop on Preparing the Agile Cyber Defender, 28 & 29 May 2008.
• "Research Directions for Network Intrusion Recovery", UBC LERSSE Group, 7 May 2008
• "ARV: Automatic Repair Validation", USENIX Security Work-in-Progress (WIP) Report, 4 August 2006
• "W3Bcrypt: Encryption as a Stylesheet", Stony Brook University SecLab seminar, 14 December 2005
• "SVV: Policy-Constrained Speculative Execution", ACSAC 2005, NSPW Panel, 8 December 2005
• "Host and Network Defense Systems for Intrusion Reaction", PhD Candidacy Exam. 30 November 2004, Columbia University.
• "Collaborative Security: P2P Intrusion Detection", 23 September 2004, TCNJ FACTS Seminar
• "Code Red Worm Propagation Modeling and Analysis", 21 March 2003, TCNJ FACTS Seminar

Students

• Research Project: Is This Patch Poison? Personalized Patch Testing, Danny Walker, GMU (2009)
• Research Project: ActiveMemory, Nelson Nazzicari, Postdoctoral Researcher
• Research Project: A Framework for Cooperative Security Systems, Brian Schulte, TCNJ/GMU (2009)
• Research Project: Automated Parallelization with Pin, Paul Seymer, GMU (2009, with Angelos Stavrou)
• Independent Study: Active Caching, Matt Davis, GMU (2009)
• Independent Study: ResourceScramble: Parallel Resource Allocation, Venkatesh Laxminarayanan, GMU (2009)
• Master's Thesis Committee: Detecting Kernel Rootkits, Ashwin Ramaswamy, Dartmouth College (2008-2009)
• Supervised Research Project: OpenBLT: An Open Source Binary-Level Tainted Dataflow Analyzer, Hassan Ajmal, Columbia University (2007)
• Supervised Research Project: Mapping the x86 Decoder Space, Yingbo Song, Columbia University (2006)
• Co-supervised Research Project: Automatic Repair Validation Library, Mack Lu, Columbia University (2006, with Matt Burnside)
• Independent Study: Programming in C, Reneé Stroebel, Columbia University (2006)
• Supervised Research Project: PalProtect, Benny Wong, Columbia University (2006)
• Co-supervised Research Project: STEM, Marc Eisenbarth, Adam Marczyk, Columbia University (2005, with Stelios Sidiroglou)
• Co-supervised Research Project: SMFS, Somdutt Patnaik, Columbia University (2005-2006, with Angelos Stavrou)
• Supervised Research Project: PayL-inline, Ron Alleyne, Columbia University (2005)
• Supervised Research Project: P2P Intrusion Detection Software (PIDS), Aditi Jhaveri, Srivathsan Venkat, Prashant Puri, Columbia University (2004)
• Supervised Research Project: Survivable JVM, Kristina Holst, Columbia University (2004)
• Supervised Research Project: Java ARM Assembler, R. Ordonez, Columbia University (2004)

Honors, Awards, Professional Memberships

• I3P Fellow, August 2008 - August 2009
• Member of the Association for Computing Machinery (ACM)
• Member of USENIX
• Phi Kappa Phi National Honor Society
• Upsilon Pi Epsilon (UPE) CS Honor Society
• 1^st Place in Student Poster competition, Consortium for Computing in Small Colleges Northeast (CCSCNE), April 2002
• TCNJ Merit Scholarship, Fall 1998 - Spring 2002
• Edward J. Blounstein Distinguished Scholar (Garden State Scholar), Fall 1998 - Spring 2002
• Finalist, National Merit Scholarship Competition