My research area is computer security. Specifically, my interests include systems security, program analysis for security, virtualization, trusted computing, and access control. I have published over 100 peer-reviewed papers on these subjects, some of which are available via DBLP and Google Scholar.

My work has been funded by the National Science Foundation ( CNS-0627551, CNS-0721579, CNS-0905343, CNS-0931914, and CNS-1117692 CNS-1408880 ), Defense Advanced Research Projects Agency, Air Force Research Lab, Army Research Lab, Office of Naval Research, Air Force Office of Scientific Research, and a number of industrial sponsors, including HP Labs, IBM Research, Samsung, and Applied Communication Sciences. Their support is gratefully acknowledged.

See My Publications

Current Research Highlights

Android Security

Giuseppe Petracca has led work on controlling app's ability to access the sensors on mobile devices to protect user privacy. See his recent papers in the 2017 USENIX Security Symposium and 2015 ACSAC. Giuseppe is currently interning at Google and has previously interned at Intel Labs and Samsung Research. He has also participated extensively in our cloud security research program. He is scheduled to graduate in the Spring of 2018.

Giuseppe Petracca

Execution Integrity

Xinyang Ge has led work on "execution integrity," which aims to ensure that only approved code is executed according to only legal control flows system-wide. See how to limit kernels to execute approved code only, MoST 2014, enforce CFI on kernel software, IEEE Euro S&P 2016, and enforce CFI on user-space programs using Intel PT, ASPLOS 2017. Xinyang graduated in 2016 in now works at Microsoft Research. See also his papers in NDSS 2017 and MobiSys 2017.

Xinyang Ge

Cloud Security

Yuqiong Sun has led work in enhancing the security mechanisms of cloud platforms to prevent tampering of user's cloud commands using per-request services. See how to run services under information flow control, ACSAC 2016, run services under least privilege, IEEE Cloud 2015, and prevent threats to cloud platforms, ACM CCSW 2014. See also his paper to create channels to VMs bound to trusted computing integrity validation. Yuqiong graduated in 2016 and now works for Symantec Labs.

Yuqiong Sun