Research

My research area is computer security. Specifically, my interests include systems security, program analysis for security, virtualization, trusted computing, and access control. I have published over 130 peer-reviewed papers on these subjects, some of which are available via DBLP and Google Scholar.

My work has been funded by the National Science Foundation ( CNS-0627551, CNS-0721579, CNS-0905343, CNS-0931914, CNS-1117692, CNS-1408880, CNS-1801534, and CNS-1816282 ), Defense Advanced Research Projects Agency, Air Force Research Lab, Army Research Lab, Office of Naval Research, Air Force Office of Scientific Research, and a number of industrial sponsors, including HP Labs, IBM Research, Samsung, and Applied Communication Sciences. Their support is gratefully acknowledged.

See My Publications

Current Research Highlights

Software Security

Xinyang Ge led work on "execution integrity," which aims to ensure that only approved code is executed and limited to legal control flows system-wide. See how to limit kernels only to approved code, 2014 MoST, enforce fine-grained CFI on kernels, 2016 IEEE Euro S&P, and enforce CFI using Intel PT, 2017 ASPLOS. Xinyang now works at Microsoft Research. See also his papers in 2017 NDSS and 2017 MobiSys and his work at MSR.

Xinyang Ge

Cloud Security

Yuqiong Sun has led work in enhancing the security mechanisms of cloud platforms to prevent tampering of user computing. See work on Linux Security Namespaces for containers, 2018 USENIX Security 2018, and running cloud services under information flow control, 2016 ACSAC, and least privilege, 2015 IEEE Cloud. Yuqiong now works for Symantec Labs. See also his papers, ACM CCSW 2014 and SERVICES 2013.

Yuqiong Sun

Android Security

Giuseppe Petracca has led work on controlling an app's ability to access the sensors on mobile devices to protect user privacy. See his papers in the 2017 USENIX Security Symposium and 2015 ACSAC and recent work controlling voice assistant's use of sensors. He has also participated extensively in our cloud security research program. Giuseppe graduated in 2018 now works at Lyft. See also his papers in 2017 ACM SACMAT and 2016 IEEE MILCOM.

Giuseppe Petracca