I am an Assistant Professor at Carnegie Mellon University with appointments in the Electrical and Computer Engineering Department and the Computer Science Department. I am interested in all areas of computer security, applied cryptography, program analysis, compilers, and verification. Take a look at my research page for some of my recent work.
Bio: I graduated from Carnegie Mellon University with a PhD in Computer Science in 2008, from Stanford with an MS in Computer Science in 2003, and from the University of Northern Colorado with a BA in Mathematics in 1998. I served as a Computer Security Officer for Stanford University from 1998-2002, and handled many thousand real life incidents. I have received the USENIX Security best paper awards in 2003 and 2007, selected for the 2010 DARPA CSSP program, a 2010 NSF CAREER award, the 2010 United States Presidential Early Career Award for Scientists and Engineers (PECASE) from President Obama, and a 2013 Sloan Fellow. I currently hold the Gerard G. Elia Career Development Professor Chair.
ContactCarnegie Mellon University
5000 Forbes Avenue
Pittsburgh, PA 15213
*Link describing how to get to CIC
My email via reCAPTCHA
Administrative Assistant: Tonya Bordonaro
CIC 2125, 412-268-3729 (phone) 412-268-1124 (fax)
- I am the faculty sponsor for the CMU "Capture the Flag" (CTF) team. I am proud of their many recent victories. Check out the PPP scoreboard. If you are interested in participating, the website also has a mailing list. Any student can participate with the team.
- This list of rejection notices is awesome. I had to share.
Students and Postdocs
I am very fortunate to advise several great students and postdocs:
- Sang Kil Cha (PhD)
- Jiyong Jang (PhD)
- Thanassis Avgerinos (PhD)
- Edward Schwartz (PhD)
- Matt Maurer (PhD)
- Tiffany (Youzhi) Bao (PhD)
- Samantha Gottlieb (PhD)
- Matthew Maurer (PhD)
- Alex Rebert (PhD)
- Maverick Woo (Postdoc)
- Manuel Egele (Postdoc)
- Tyler Nighswander (Undergrad)
Moved on, and will be dearly missed:
- JongHyup Lee (Postdoc, now faculty)
- Brian Pak (Undergrad)
- Andrew Wesie (Undergrad)
- David Kohlbrenner (Undergrad)
- Brent Lim (Undergrad)
- Abeer Agrawal (Undergrad)
- Joseph Ceriante (MS 2010)
- Jonathan Cooke (MS 2010)
- Fall 2012: 18487: Introduction to Computer Security
- Spring 2012: 18732: Software Security
- Fall 2011: 18732: Software Security
- Spring 2011: 18739c: Vulnerability, Defense Systems, and Malware Analysis
- Fall 2010: 18487: Introduction to Computer Security
- Fall 2009: 18732: Software Security
- Spring 2009: 18739c Special Topics in Security: Vulnerability, Defense Systems, and Malware Analysis.
I serve (or have served) on the program committee for several excellent conferences. Please consider submitting your best work to the conferences below.
- IEEE Security and Privacy Symposium, 2010, 2011, 2012, 2013
- USENIX Security 2012
- USENIX Large-Scale Exploits and Emergent Threats (LEET), 2012
- ACM Symposium on Principles of Programming Languages (POPL), 2012
- Symposium on Recent Advances in Intrusion Detection (RAID), 2008, 2009, 2010
- Network and Distributed System Security Symposium (NDSS), 2008, 2009, 2010
- AsiaCCS, 2011, 2010.
- Fifth International Conference on Information Security Systems, Calcultta, India. 2009.
- USENIX Workshop on Offensive Technologies (WOOT), Montreal, Canada, 2009, 2010.
- First European Workshop on System Security (EUROSEC), 2008.
- Fifth Conference on Detection and Malware and Vulnerability Assessment (DIMVA), 2008.
- Second Workshop on Security Network Protocols (NPSEC), 2005, 2006.
- Applied Cryptography and Network Security (ACNS), New York, New York, 2005.