Our new research work “Cerberus” in the area of SPS (Software-defined Programmable Security) is accepted by IEEE S&P’24. This work shows that even with limited resources on existing programmable switches, we can now run multiple concurrent in-network security monitoring tasks so we can defend against diverse, high-volume, and dynamic attacks previous solutions could not handle. Cerberus can actually enhance the concurrency and capacity of programmable switches by an order of magnitude! We’ll release our prototype very soon. Congratulations again for the amazing work, Huancheng!
Research
We are releasing SysFlow: the first programmable zero trust (ZT) framework for system security!
Our SysFlow work will appear in IEEE Transactions on Information Forensics and Security (TIFS) 2023. SysFlow is the first programmable zero trust (ZT) framework for system security! It presents a novel system security development framework for programmable ZT security control of host system activities at runtime. It offers unprecedented and unified programmability for users to achieve their dynamic security needs. Read our paper (here) and try to use our prototype system here. Now you can build your own security applications on top of that!
New awards from the College of Engineering
We are thrilled and honored to have been recognized by the College of Engineering with TEES Faculty Fellow Award and Engineering Genesis Award. Thanks to all our collaborators, and in particular our SUCCESS Lab students. I feel privileged to have had the opportunity to work with such talented individuals, and I am proud of what we have accomplished together. I look forward to our continued success together.
Our new software-defined programmable security research “Mew” will appear in IEEE S&P’23
Our new research work “Mew” in the area of SPS (Software-defined Programmable Security) is accepted by IEEE S&P. This work shows how we can enable large-scale and dynamic link-flooding defenses on programmable switches. Congratulations, Huancheng!
Our IoT malware analysis/detection paper won the Best Paper Award at ASIACCS’22!
Our collaborative paper “Understanding and Detecting Remote Infection on Linux-based IoT Devices” just won the Best Paper Award at ASIACCS’22! Congratulations to all collaborators at University of Buffalo and Clemson University!
Dr. Gu co-chaired NSF SPS Visioning Workshop
S2OS project website launched!
Our S2OS position paper will appear in APSys’17. S2OS is a new large multi-institute project funded by NSF/VMware, in which we aim to build a new Security OS with Software Defined Intrastructure. Please check S2OS project website for more details.