Research Projects:

Sensor Source Location Privacy:

• Y. Yang, S. Zhu, G. Cao, and T. LaPorta. 
  An Active Global Attack Model for Sensor Source Location Privacy: Analysis and Countermeasures.
  Proceeds of International Conference on Security and Privacy in Communication Networks (Securecomm), 2009.
• M. Shao, W. Hu, S. Zhu, G. Cao, S. Krishnamurthy, T. La Porta.
  Cross-layer Enhanced Source Location Privacy in Sensor Networks
  Proceedings of he 6th IEEE Communications Society Conference on Sensor, Mesh and Ad Hoc Communications and Networks (SECON 2009).
• M. Shao, S. Zhu, W. Zhang, G. Cao, Y. Yang.
  pDCS: Security and Privacy Support for Data-Centric Sensor Networks.
  IEEE Transactions on Mobile Computing, To appear.  (A preliminary version appeared in Proceedings of Infocom 2007).
• Y. Yang, M. Shao, S. Zhu, B. Urgaonkar, and G. Cao. 
  Towards Event Source Unobservability with Minimum Network Traffic in Sensor Networks.
  Proceedings of The ACM Conference on Wireless Network Security (WiSec), Mar. 2008.
• M. Shao, Y. Yang, S. Zhu, and G. Cao. 
  Towards Statistically Strong Source Anonymity for Sensor Networks.
  Proceedings of IEEE Infocom, Mar. 2008.

            Funded by NSF CyberTrust.

Sensor Network Security:

• Y. Yang, S. Zhu, and G. Cao. 
  Improving Sensor Network Immunity under Worm Attacks: A Software Diversity Approach.
  Proceedings of ACM Mobihoc, May 2008.
• Y. Yang, X. Wang, S. Zhu, and G. Cao. 
  Distributed Software-based Attestation for Node Compromise Detection in Sensor Networks
  Proceedings of  26^th IEEE International Symposium on Reliable Distributed Systems (SRDS), Oct. 2007.
• H. Song, L. Xie, S. Zhu, and G. Cao. 
  Sensor Node Compromise Detection: The Location Perspective.
  in Proc. of International Wireless Communications and Mobile Computing Conference (IWCMC), Aug. 2007.
• H. Choi, S. Zhu, and T. Laporta. 
  SET: Detecting node clones in Sensor Networks.
  Proceedings of  International Conference on Security and Privacy in Communication Networks (SecureComm), Sept. 2007.
• Y. Yang, X. Wang, S. Zhu, and G. Cao. 
  SDAP: A Secure Hop-by-Hop Data Aggregation Protocol for Sensor Networks. 
  In Proc. of  ACM MOBIHOC'06, May 2006. (Full version appeared in ACM TISSEC)
• Wensheng Zhang, Hui Song, Sencun Zhu, and Guohong Cao. 
  Least Privilege and Privilege Deprivation: Towards Tolerating Mobile Sink Compromises in Wireless Sensor Networks. 
  In Proc. of  ACM Mobihoc'05,  May 2005.  (Full version appeared in ACM TOSN)
• Sencun Zhu, Sanjeev Setia, Sushil Jajodia, and Peng Ning
  An Interleaved Hop-by-Hop Authentication Scheme for Filtering of Injected False Data in Sensor Networks.
  In Proc. of IEEE Symposium on Security and Privacy, Oakland, California, May 2004.  (Full version appeared in ACM TOSN)
• Sencun Zhu, Sanjeev Setia, and Sushil Jajodia. 
  LEAP: Efficient Security Mechanisms for Large-Scale Distributed Sensor Networks.
  In Proc. of the 10th ACM Conference on Computer and Communications Security (CCS '03), Washington D.C., October, 2003. (Full version appeared in ACM TOSN)
• D. Liu, P. Ning, S. Zhu, and S. Jajodia.
  Practical Broadcast Authentication in Sensor Networks.
  In Proc. of the 2nd International Conference on Mobile and Ubiquitous Systems (Mobiquitous'05), San Diego, Jul, 2005. 
  Funded by NSF CyberTrust       and Army Research Office  

Software Security and Worm Containment:

• L. Xie, X. Zhang, A. Chaugule, T. Jaeger and S. Zhu
  Designing System-level Defenses against Cellphone Malware.
  Proceedings of 28th International Symposium on Reliable Distributed Systems (SRDS), 2009.
• Z. Zhu, G. Cao, S. Zhu, S. Ranjan, A. Nucci.
  A Social Network Based Patching Scheme for Worm Containment in Cellular Networks.
  Proceedings of IEEE INFOCOM, 2009.
• Liang Xie, Hui Song, and Sencun Zhu
  On the Effectiveness of Internal Patch Dissemination against File-sharing Worms
  Proceedings of Applied Cryptography and Network Security (ACNS), June, 2008.
• Y. Yang, S. Zhu, and G. Cao. 
  Improving Sensor Network Immunity under Worm Attacks: A Software Diversity Approach.
  Proceedings of ACM Mobihoc, May 2008.
• X. Wang, C. Pan, P. Liu, S. Zhu.
  SigFree: A Signature-free Buffer Overflow Attack Blocker. 
  Proceedings of  USENIX Security'06, Aug. 2006.  (Full version appeared in IEEE TDSC)
• M. Masud, L. Khan, B. Thuraisingham, X. Wang, P. Liu and S. Zhu
  A Data Mining Technique to Detect Remote Exploits
  The Fourth IFIP WG 11.9 International Conference on Digital Forensics, 2008.
• X. Wang, Y-C Jhi, S. Zhu, P. Liu.
  STILL: Exploit Code Detection via Static Taint and Initialization Analyses
  Proceedings of 24th Annual Computer Security Applications Conference (ACSAC), Dec., 2008.

• X. Wang, Y. Jhi, S. Zhu, P. Liu.
  Protecting Web Services from Remote Exploit code: A Static Analysis Approach
  Poster paper, Proc. 17th International World Wide Web Conference (WWW 2008), Beijing, China, April 2008.

• Liang Xie and Sencun Zhu
  A Feasibility Study on Defending Against Ultra-Fast Topological Worms
  Proceedings of The Seventh IEEE International Conference on Peer-to-Peer Computing (P2P'07), Galway, Ireland, Sep. 2007.

  　

            Funded by NSF CyberTrust      and TTC