Recently, automatic moving target defense (AMTD) is recognized as a promising proactive defense technique against cyber attacks. In particular, NTO (Network Topology Obfuscation) is an emerging AMTD approach for dynamic reconfiguration of network infrastructure/configuration. In our new research that will appear in USENIX Security’24, we introduce a new CrossPoint attack that can escape the security protections of state-of-the-art NTO defenses. Congratulations, Xuanbo!
News
Reputation scores for Web3 are coming! (New research to appear in ICDCS’24)
Our paper “WIRE: Web3 Integrated Reputation Engine” is accepted to ICDCS’24. Inspired by the FICO score system in traditional finance, we introduce WIRE, a new reputation engine designed to evaluate the trustworthiness of deployed DApps in the Web3 (blockchain/cryptocurrency/etc.) world! We’re releasing our prototype here! Congratulations to Suraj & Huancheng!
Test of Time Paper Award at ACSAC’23
Our ACSAC’07 paper “A Taxonomy of Botnet Structures” (by David Dagon, Guofei Gu, Christopher P. Lee, and Wenke Lee) received the Test of Time Paper Award at this year’s ACSAC conference (2023)! We are so honored and humbled to receive this recognition for our botnet research in 2007!
Some background on the award from ACSAC: “These awards provide an opportunity to honor papers that have been published at ACSAC that have had enduring significance and impact to the security community. The committee considered papers published more than 15 years ago, and discussed their impact on academia, industry, and government. “
New software-defined programmable security research “Cerberus” will appear in IEEE S&P’24
Our new research work “Cerberus” in the area of SPS (Software-defined Programmable Security) is accepted by IEEE S&P’24. This work shows that even with limited resources on existing programmable switches, we can now run multiple concurrent in-network security monitoring tasks so we can defend against diverse, high-volume, and dynamic attacks previous solutions could not handle. Cerberus can actually enhance the concurrency and capacity of programmable switches by an order of magnitude! We’ll release our prototype very soon. Congratulations again for the amazing work, Huancheng!
We are releasing SysFlow: the first programmable zero trust (ZT) framework for system security!
Our SysFlow work will appear in IEEE Transactions on Information Forensics and Security (TIFS) 2023. SysFlow is the first programmable zero trust (ZT) framework for system security! It presents a novel system security development framework for programmable ZT security control of host system activities at runtime. It offers unprecedented and unified programmability for users to achieve their dynamic security needs. Read our paper (here) and try to use our prototype system here. Now you can build your own security applications on top of that!
New awards from the College of Engineering
We are thrilled and honored to have been recognized by the College of Engineering with TEES Faculty Fellow Award and Engineering Genesis Award. Thanks to all our collaborators, and in particular our SUCCESS Lab students. I feel privileged to have had the opportunity to work with such talented individuals, and I am proud of what we have accomplished together. I look forward to our continued success together.
Our new software-defined programmable security research “Mew” will appear in IEEE S&P’23
Our new research work “Mew” in the area of SPS (Software-defined Programmable Security) is accepted by IEEE S&P. This work shows how we can enable large-scale and dynamic link-flooding defenses on programmable switches. Congratulations, Huancheng!
Patrick has successfully defended his PhD thesis!
Patrick has successfully defended his PhD thesis “THE SERVICE WORKER HIDING IN YOUR BROWSER: NOVEL ATTACKS AND DEFENSES IN APPIFIED WEBSITES”! He will go back to his home country (Thailand) and be an assistant professor at Sisaket Rajabhat University! Congratulations, Patrick!
Our IoT malware analysis/detection paper won the Best Paper Award at ASIACCS’22!
Our paper “Understanding and Detecting Remote Infection on Linux-based IoT Devices” just won the Best Paper Award at ASIACCS’22! Congratulations to all collaborators!
SWAPP paper (programmable web security platform) is accepted to USENIX Security’22!
Our SWAPP paper is accepted to USENIX Security’22! In this work, we build a new programmable playground/platform for web application security. Source code will be released soon. Congratulations, Patrick & Jianwei!