Stephen E McLaughlin Stephen E McLaughlin
Penn State University
344 IST Building
University Park, PA 16802


Vitae: [ html | pdf ]

Graduating Spring 2014!

Patrick McDaniel ⊢ Me = PhD CandidateCSEPSU

My research takes a systems security approach to reasoning about the behavior of Cyber-Physical Systems (CPSs) that are under attack. My work goes beyond the traditional approaches in CPS security that are based on either control theory or hands-on penetration testing. Instead, I connect these two domains using novel model checking and symbolic execution techniques that enable us to reason about CPS behavior in new ways.


I have defended my dissertation!
Our paper "A Trusted Safety Verifier for Process Controller Code" has been accepted to the ISOC Network and Distributed Systems Security Symposium (NDSS 2014).
Our paper "Stateful Policy Enforcement for Control System Device Usage" has been accepted to the 29th Annual Computer Security Applications Conference (ACSAC 2013).
I received one of three Outstanding Research Assistant awards from the CSE Department.
I received a student travel grant to ACM CCS 2012.
I received a Diefenderfer Graduate Fellowship in the College of Engineering through the 2014 academic year.
Our paper "SABOT: Specification-based Payload Generation for Programmable Logic Controllers" has been accepted to the 19th ACM Conference on Computer and Communications Security.
I received a student travel grant to ACM CCS 2011.
I gave the presentation "Multi-vendor Penetration Testing in the Advanced Metering Infrastructure: Challenges for Regulation" at the Carnegie Mellon Electricity Industry Center.
Our paper "Protecting Consumer Privacy from Electric Load Monitoring" has been accepted to the 18th ACM Conference on Computer and Communications Security (CCS 2011).
I gave the presentation "Why We Need Standards for Breaking the Smart Grid" at the 2011 Technology Management and Policy Graduate Consortium at Penn State.
Our paper "On Dynamic Malware Payloads Aimed at Programmable Logic Controllers" was accepted to the 6th USENIX Workshop on Hot Topics in Security (HOTSEC 2011).