2023

  1. Ryan Sheatsley and Blaine Hoak and Eric Pauley and Patrick McDaniel, The Space of Adversarial Strategies, 32nd USENIX Security Symposium (USENIX Security 23), USENIX Association, August, 2023.
  2. Eric Pauley and Patrick McDaniel, Understanding the Ethical Frameworks of Internet Measurement Studies, The 2nd International Workshop on Ethics in Computer Security (EthiCS 2023), February, 2023. San Diego, CA.

2022

  1. Matthew Durbin and Ryan Sheatsley and Patrick McDaniel and Azaree Lintereur, Experimental tests of Gamma-ray Localization Aided with Machine-learning (GLAM) capabilities, Nuclear Instruments and Methods in Physics Research Section A: Accelerators, Spectrometers, Detectors and Associated Equipment, Vol.1038, 2022. [Link]
  2. Amit Kumar Sikder and Leonardo Babun and Z. Berkay Celik and Hidayet Aksu and Patrick McDaniel and Engin Kirda and Selcuk Uluagac, Who’s Controlling My Device? Multi-User Multi-Device-Aware Access Control System for Shared Smart Home Environment, ACM Transactions on Internet of Things, Association for Computing Machinery, May, 2022. [Link]
  3. Michael Norris and Z. Berkay Celik and Prasanna Venkatesh and Shulin Zhao and Patrick McDaniel and Anand Sivasubramaniam and Gang Tan, IoTRepair: Flexible Fault Handling in Diverse IoT Deployments, ACM Transactions on Internet of Things, ACM, 2022.
  4. Tian Xie and Namitha Nambiar and Ting He and Patrick McDaniel, Attack Resilience of Cache Replacement Policies: A Study Based on TTL Approximation, IEEE/ACM Transactions on Networking, 2022.
  5. Quinn Burke and Fidan Mehmeti and Rahul George and Kyle Ostrowski and Trent Jaeger and Thomas La Porta and Patrick Mcdaniel, Enforcing Multilevel Security Policies in Unstable Networks, IEEE Transactions on Network and Service Management, IEEE, June, 2022.
  6. Ryan Sheatsley and Nicolas Papernot and Michael J. Weisman and Gunjan Verma and Patrick McDaniel, Adversarial Examples for Network Intrusion Detection Systems, Journal of Computer Security (JCS), IOS Press, January, 2022.
  7. Eric Pauley and Gang Tan and Danfeng Zhang and Patrick McDaniel, Performant Binary Fuzzing without Source Code using Static Instrumentation, Conference on Communications and Network Security (CNS), IEEE, October, 2022.
  8. Patrick McDaniel, Keynote Address: Sustainability is a Security Problem (extended abstract), Proceedings of the ACM Conference on Computer and Communications Security (CCS), ACM, November, 2022. [Link]
  9. Anshul Gandhi and Kanad Ghose and Kartik Gopalan and Syed Rafiul Hussain and Dongyoon Lee and David Liu and Zhenhua Liu and Patrick McDaniel and Shuai Mu and Erez Zadok, Metrics for Sustainability in Data Centers, Proceedings of the 1st Workshop on Sustainable Computer Systems Design and Implementation (HotCarbon'22), USENIX, July, 2022. San Diego, CA. [Link]
  10. Kyle Domico and Ryan Sheatsley and Yohan Beugin and Quinn Burke and Patrick McDaniel, A Machine Learning and Computer Vision Approach to Geomagnetic Storm Forecasting, Machine Learning in Heliophysics (ML-Helio), AGU, November, 2022.
  11. Tian Xie and Sanchal Thakkar and Ting He and Patrick Mcdaniel and Quinn Burke, Joint Caching and Routing in Cache Networks with Arbitrary Topology, Proceedings of the International Conference on Distributed Computing Systems (ICDCS), July, 2022.
  12. Yohan Beugin and Quinn Burke and Blaine Hoak and Ryan Sheatsley and Eric Pauley and Gang Tan and Syed Rafiul Hussain and Patrick McDaniel, Building a Privacy-Preserving Smart Camera System, Proceedings on Privacy Enhancing Technologies (PETS), July, 2022.
  13. Eric Pauley and Ryan Sheatsley and Blaine Hoak and Quinn Burke and Yohan Beugin and Patrick McDaniel, Measuring and Mitigating the Risk of IP Reuse on Public Clouds, 2022 IEEE Symposium on Security and Privacy (IEEE S&P), IEEE, May, 2022. San Francisco, CA. [Link]

Technical Reports

  • Pauley, Eric and Domico, Kyle and Hoak, Blaine and Sheatsley, Ryan and Burke, Quinn and Beugin, Yohan and McDaniel, Patrick, EIPSIM: Modeling Secure IP Address Allocation at Cloud Scale, Technical Report arXiv:2210.14999, arXiv preprint, 2022.
  • Bolor-Erdene Zolbayarn and Ryan Sheatsley and Patrick McDaniel and Michael J. Weisman and Sencun Zhu and Shitong Zhu and Srikanth V. Krishnamurthy, Generating Practical Adversarial Network Traffic Flows using NIDSGAN, Technical Report arXiv:2203.06694, arXiv preprint, March, 2022.

2021

  1. Bolor-Erdene Zolbayar and Ryan Sheatsley and Patrick McDaniel, Evading Machine Learning based Network Intrusion Detection Systems with GANs, Game Theory and Machine Learning for Cyber Security, John Wiley & Sons, 2021. Eds. Charles A Kamhoua and Christopher D. Kiekintveld and Fei Fang and Quanyan Zhu. Hoboken, New Jersey.
  2. Quinn Burke and Patrick McDaniel and Thomas La Porta and Mingli Yu and Ting He, Misreporting Attacks Against Load Balancers in Software-Defined Networking, Mobile Networks and Applications, Springer, 2021.
  3. Daniel E. Krych and Patrick McDaniel, Exposing Android Social Applications: Linking Data Leakage to Privacy Policies, Journal of Cyber Security Technology, Taylor & Francis, Vol.5, No.3-4, 2021.
  4. Alejandro Andrade Salazar and Ryan Sheatsley and Jonathan Petit and Patrick McDaniel, Physics-based Misbehavior Detection System for V2X Communications, SAE International Journal of Connected and Automated Vehicles, SAE International, June, 2021.
  5. Mingli Yu and Tian Xie and Ting He and Patrick McDaniel and Quinn Burke, Flow Table Security in SDN: Adversarial Reconnaissance and Intelligent Attacks, IEEE/ACM Transactions on Networking, Vol.29, No.6, Pages 1063-6692, December, 2021.
  6. Leonardo Babun and Kyle Denney and Z. Berkay Celik and Patrick McDaniel and Selcuk Uluagac, A Survey on IoT Platforms: Communication, Security, and Privacy Perspectives, Computer Networks, Vol.192, No.19, June, 2021.
  7. Ryan Sheatsley and Matthew Durbin and Azaree Lintereur and Patrick McDaniel, Improving Radioactive Material Localization by Leveraging Cyber-Security Model Optimizations, IEEE Sensors, Vol.21, No.8, April, 2021.
  8. Stefan Achleitner and Quinn Burke and Patrick McDaniel and Trent Jaeger and Thomas La Porta and Srikanth V. Krishnamurthy, MLSNet: A Policy Complying Multilevel Security Framework for Software Defined Networking, IEEE Transactions on Network and Service Management, Vol.18, No.1, March, 2021.
  9. Ahmed Abdou and Ryan Sheatsley and Yohan Beugin and Tyler Shipp and Patrick McDaniel, HoneyModels: Machine Learning Honeypots, Proceedings of the Military Communications Conference (MILCOM), IEE, November, 2021.
  10. Ryan Sheatsley and Blaine Hoak and Eric Pauley and Yohan Beugin and Michael J. Weisman and Patrick McDaniel, On the Robustness of Domain Constraints, Proceedings of the ACM Conference on Computer and Communications Security (CCS), ACM, November, 2021.
  11. Tian Xie and Ting He and Patrick McDaniel and Namitha Nambiar, Attack Resilience of Cache Replacement Policies, IEEE International Conference on Computer Communications (INFOCOM), IEEE, May, 2021.
  12. Adrien Cosson and Amit Kumar Sikder and Leonardo Babun and Z. Berkay Celik and Patrick McDaniel and Selcuk Uluagac, Sentinel: A Robust Intrusion Detection System for IoT Networks Using Kernel-Level System Information, In 6th ACM/IEEE Conference on Internet of Things Design and Implementation (IoTDI), April, 2021.
  13. Leonardo Babun and Z. Berkay Celik and Patrick McDaniel and Selcuk Uluagac, Real-time Analysis of Privacy-(un)aware IoT Applications, Privacy Enhancing Technologies Symposium (PETS), 2021.
  14. Patrick McDaniel and Thorsten Holz and Indra Spiecker and Genannt Dohmann and Christopher Burchard and Ahmad-Reza Sadeghi and Konrad Rieck and Kamalika Chaudhuri and Somesh Jha and Andrea Matwyshyn and David Evans and Felix Freiling and Amy Hasan, Cybersecurity and Machine Learning: Vision Document, Report on the joint NSF/DFG Cybersecurity and Machine Learning Research Workshop, Public Report, National Science Foundation/Deutsche Forschungsgemeinschaf, December, 2021.

Technical Reports

  • Ryan Sheatsley and Blaine Hoak and Eric Pauley and Yohan Beugin and Michael J. Weisman and Patrick McDaniel, On the Robustness of Domain Constraints, Technical Report arXiv:2105.08619, arXiv preprint, 2021.

2020

  1. Dan Boneh and Andrew J. Grotto and Patrick McDaniel and Nicolas Papernot, Preparing for the Age of Deepfakes and Disinformation, Stanford HAI Policy Brief, 2020.
  2. Sayed M. Saghaian and Thomas La Porta and Simone Silvestri and Patrick McDaniel, Improving Robustness of a Popular Probabilistic Clustering Algorithm Against Insider Attacks, International Conference on Security and Privacy in Communication Networks (SecureComm 2020), EAI, October, 2020.
  3. Quinn Burke and Patrick McDaniel and Thomas La Porta and Mingli Yu and Ting He, Misreporting Attacks in Software-Defined Networking, International Conference on Security and Privacy in Communication Networks (SecureComm 2020), EAI, October, 2020.
  4. Amit Kumar Sikder and Leonardo Babun and Z. Berkay Celik and Abbas Acar and Hidayet Aksu and Patrick McDaniel and Engin Kirda and Selcuk Uluagac, KRATOS: Multi-User Multi-Device-Aware Access Control System for the Smart Home, 13th ACM Conference on Security and Privacy in Wireless and Mobile Networks (WiSec '20), ACM, July, 2020.
  5. Mingli Yu and Ting He and Patrick McDaniel and Quinn Burke, Flow Table Security in SDN: Adversarial Reconnaissance and Intelligent Attacks, IEEE INFOCOM, IEEE Conference on Computer Communications, June, 2020. Beijing, China.
  6. Michael Norris and Z. Berkay Celik and Prasanna Venkatesh and Shulin Zhao and Patrick McDaniel and Anand Sivasubramaniam and Gang Tan, IoTRepair: Systematically addressing device faults in commodity IoT, In 5th ACM/IEEE Conference on Internet of Things Design and Implementation (IoTDI), April, 2020.
  7. Sushrut Shringarputale and Patrick McDaniel and Kevin Butler and Thomas La Porta, Co-residency Attacks on Containers are Real, The ACM Cloud Computing Security Workshop (CCSW 2020), 2020.
  8. Patrick McDaniel and John Launchbury, Artificial Intelligence and Cybersecurity: Opportunities and Challenges 2019 Technical Workshop Report, Public Report, Networking and Information Technology Research and Development Subcommittee, Machine Learning and Artificial Intelligence Subcommittee, and the Special Cyber Operations Research and Engineering Subcommittee of the National Science and Technology Council, 2020.

Technical Reports

  • Ryan Sheatsley and Nicolas Papernot and Michael J. Weisman and Gunjan Verma and Patrick McDaniel, Adversarial Examples in Constrained Domains, Technical Report arXiv:2011.01183, arXiv preprint, 2020.
  • Michael Norris and Z. Berkay Celik and Patrick McDaniel and Gang Tan and Prasanna Venkatesh and Shulin Zhao and Anand Sivasubramaniam, IoTRepair: Systematically Addressing Device Faults in Commodity IoT (Extended Paper), Technical Report arXiv:2002.07641, arXiv preprint, 2020.
  • Amit Kumar Sikder and Leonardo Babun and Z. Berkay Celik and Abbas Acar and Hidayet Aksu and Patrick McDaniel and Engin Kirda and Selcuk Uluagac, KRATOS: Multi-User Multi-Device-Aware Access Control System for the Smart Home, Technical Report arXiv:1911.10186, arXiv preprint, 2020.

2019

  1. Dan Boneh and Andrew J. Grotto and Patrick McDaniel and Nicolas Papernot, How Relevant Is the Turing Test in the Age of Sophisbots?, IEEE Security & Privacy Magazine, Vol.17, Pages 64-71, Nov/Dec, 2019.
  2. Z. Berkay Celik and Earlence Fernandes and Eric Pauley and Gang Tan and Patrick McDaniel, Program Analysis of Commodity IoT Applications for Security and Privacy: Opportunities and Challenges, ACM Computing Surveys (CSUR), ACM, Vol.42, No.4, 2019.
  3. Z. Berkay Celik and Patrick McDaniel and Gang Tan and Leonardo Babun and Selcuk Uluagac, Verifying IoT Safety and Security in Physical Spaces, IEEE Security & Privacy Magazine, IEEE, Vol.17, No.5, Pages 30-37, 2019.
  4. Ahmed Atya and Zhiyun Qian and Srikanth V. Krishnamurthy and Thomas La Porta and Patrick McDaniel and Lisa Marvel, Catch Me if You Can: Malicious Co-Residency on the Cloud, IEEE/ACM Transactions on Networking, Vol.27, No.2, April, 2019.
  5. Raquel Alvarez and Jake Levenson and Ryan Sheatsley and Patrick McDaniel, Application Transiency: Towards a Fair Trade of Personal Information for Application Services, Proceedings of the EAI Conference on Security and Privacy in Communication Networks (SecureComm), Octobe, 2019. Orlando, FL.
  6. Giuseppe Petracca and Yuqiong Sun and Ahmad-Atamli Reineh and Jens Grossklags and Patrick McDaniel and Trent Jaeger, EnTrust: Regulating Sensor Access by Cooperating Programs via Delegation Graphs, Proceedings of the 28th USENIX Security Symposium, Augus, 2019. Santa Clara, CA.
  7. Matthew Durbin and Ryan Sheatsley and Christopher Balbier and Tristan Grieve and Patrick McDaniel and Azaree Lintereur, Development of Machine Learning Algorithms for Directional Gamma Ray Detection, Proceedings of the Institute of Nuclear Materials Management Annual Meeting (INMM), July, 2019. Palm Desert, CA. (\bf J. D. Williams student paper award, Nuclear Security and Physical Protection division
  8. Z. Berkay Celik and Abbas Acar and Hidayet Aksu and Abbas Acar and Ryan Sheatsley and Selcuk Uluagac and Patrick McDaniel, Curie: Policy-based Secure Data Exchange, ACM Conference on Data and Applications Security (CODASPY), March, 2019. Dallas, TX.
  9. Z. Berkay Celik and Gang Tan and Patrick McDaniel, IoTGuard: Dynamic Enforcement of Security and Safety Policy in Commodity IoT, Network and Distributed System Security Symposium (NDSS), February, 2019. San Diego, CA.

Technical Reports

  • Stefan Achleitner and Quinn Burke and Patrick McDaniel and Trent Jaeger and Thomas La Porta and Srikanth V. Krishnamurthy, MLSNet: A Policy Complying Multilevel Security Framework for Software Defined Networking, Technical Report INSR-500-TR-0500-2019, Institute of Networking and Security Research, Department of Computer Science and Engineering, Pennsylvania State University, University Park, PA, USA, January, 2019.
  • Leonardo Babun and Z. Berkay Celik and Patrick McDaniel and Selcuk Uluagac, Real-time Analysis of Privacy-(un)aware IoT Applications, Technical Report arXiv:1911.10461, arXiv preprint, 2019.
  • Dan Boneh and Andrew J. Grotto and Patrick McDaniel and Nicolas Papernot, How Relevant is the Turing Test in the Age of Sophisbots?, Technical Report arXiv:1909.00056, arXiv preprint, 2019.

2018

  1. Ian Goodfellow and Patrick McDaniel and Nicolas Papernot, Making machine learning robust against adversarial inputs, Communications of the ACM, ACM, Vol.61, No.7, Pages 56-6, June/July, 2018.
  2. Dang Tu Nguyen and Chengyu Song and Zhiyun Qian and Srikanth V. Krishnamurthy and Edward J. M. Colbert and Patrick McDaniel, IoTSan: Fortifying the Safety of IoT Systems, Proceedings of the 14th International Conference on emerging Networking EXperiments and Technologies (CoNEXT '18), December, 2018.
  3. Z. Berkay Celik and Leonardo Babun and Amit Kumar Sikder and Hidayet Aksu and Gang Tan and Patrick McDaniel and Selcuk Uluagac, Sensitive Information Tracking in Commodity IoT, Proceedings of the 27th USENIX Security Symposium, August, 2018. Baltimore, MD.
  4. Rauf Izmailov and Shridatt Sugrim and Ritu Chadha and Patrick McDaniel and Ananthram Swami, Enablers Of Adversarial Attacks in Machine Learning, Proceedings of the Military Communications Conference (MILCOM), IEEE, October, 2018.
  5. Sayed M. Saghaian and Thomas La Porta and Trent Jaeger and Z. Berkay Celik and Patrick McDaniel, Mission-oriented Security Model, Incorporating Security Risk, Cost and Payout, Proceedings of EAI SECURECOMM 2018, August, 2018. (\bf best paper award
  6. Z. Berkay Celik and Patrick McDaniel and Gang Tan, Soteria: Automated IoT Safety and Security Analysis, USENIX Annual Technical Conference (USENIX ATC), July, 2018. Boston, MA.
  7. Z. Berkay Celik and Patrick McDaniel and Rauf Izmailov and Nicolas Papernot and Ryan Sheatsley and Raquel Alvarez and Ananthram Swami, Detection under Privileged Information, ACM Asia Conference on Computer and Communications Security (ASIACCS), June, 2018.
  8. Florian Tramer and Alexey Kurakin and Nicolas Papernot and Ian Goodfellow and Dan Boneh and Patrick McDaniel, Ensemble Adversarial Training: Attacks and Defenses, International Conference on Learning Representations (ICLR), 2018. Vancouver, Canada. accepted as poster [Link]
  9. Nicolas Papernot and Patrick McDaniel and Arunesh Sinha and Michael Wellman, SoK: Security and Privacy in Machine Learning, Security and Privacy (EuroS&P), 2018 IEEE European Symposium on on Security and Privacy (EuroS&P), IEEE, April, 2018. London, UK.
  10. Z. Berkay Celik and Patrick McDaniel, Extending Detection with Privileged Information via Generalized Distillation, IEEE Security & Privacy Workshop on Deep Learning and Security (IEEE S&P DLS), 2018.

Technical Reports

  • Chun-Ming Lai and Xiaoyun Wang and Jon W. Chapman and Yu-Cheng Lin and Yu-Chang Ho and Felix Wu and Patrick McDaniel and Hasan Cam, More or Less? Predict the Social Influence of Malicious URLs on Social Media, Technical Report arXiv:1812.02978, arXiv preprint, 2018.
  • Dang Tu Nguyen and Chengyu Song and Zhiyun Qian and Srikanth V. Krishnamurthy and Edward J. M. Colbert and Patrick McDaniel, IoTSan: Fortifying the Safety of IoT Systems, Technical Report arXiv:1810.09551, arXiv preprint, 2018.
  • Z. Berkay Celik and Earlence Fernandes and Eric Pauley and Gang Tan and Patrick McDaniel, Program Analysis of Commodity IoT Applications for Security and Privacy: Challenges and Opportunities, Technical Report arXiv:1809.06962, arXiv preprint, 2018.
  • Giuseppe Petracca and Jens Grossklags and Patrick McDaniel and Trent Jaeger, Regulating Access to System Sensors in Cooperating Programs, Technical Report arXiv:1808.05579, arXiv preprint, 2018.
  • Z. Berkay Celik and Patrick McDaniel and Gang Tan, Soteria: Automated IoT Safety and Security Analysis, Technical Report arXiv:1805.08876, arXiv preprint, 2018.
  • Nicolas Papernot and Patrick McDaniel, Deep k-Nearest Neighbors: Towards Confident, Interpretable and Robust Deep Learning, Technical Report arXiv:1803.04765, arXiv preprint, 2018.
  • Z. Berkay Celik and Leonardo Babun and Amit Kumar Sikder and Hidayet Aksu and Gang Tan and Patrick McDaniel and Selcuk Uluagac, Sensitive Information Tracking in Commodity IoT, Technical Report arXiv:1802.08307, arXiv preprint, 2018.

2017

  1. Z. Berkay Celik and Patrick McDaniel and Thomas Bowen, Malware Modeling and Experimentation through Parameterized Behavior, Journal of Defense Modeling and Simulation (JDMS), Vol.15, No.1, Pages 31-48, 2017.
  2. Dave Tian and Kevin Butler and Joseph Choi and Patrick McDaniel and Padma Krishnaswamy, Securing ARP/NDP From the Ground Up, IEEE Transactions on Information Forensics and Security, Vol.12, No.9, Pages 2131-2143, April, 2017.
  3. Stefan Achleitner and Thomas La Porta and Patrick McDaniel and Shridatt Sugrim and Srikanth V. Krishnamurthy and Ritu Chada, Deceiving Network Reconnaissance Unsing SDN-based Virtual Topologies, IEEE Transactions on Network and Service Management, Special Issue on Advances in Management of Softwarized Networks, Vol.14, No.4, July, 2017.
  4. Chaz Lever and Robert Walls and Yacin Nadji and David Dagon and Patrick McDaniel and Manos Antonakakis, Dawn of the Dead Domain: Measuring the Exploitation of Residual Trust in Domains, IEEE Security & Privacy Magazine (Secure Systems issue column), April, 2017. [Link]
  5. Patrick McDaniel and Ananthram Swami, The Cyber Security Collaborative Research Alliance:Unifying Detection, Agility, and Risk in Mission-Oriented Cyber Decision Making, CSIAC Journal, Army Research Laboratory (ARL) Cyber Science and Technology, Vol.5, No.1, January, 2017. [Link]
  6. Chun-Ming Lai and Xiaoyun Wang and Yunfeng Hong and Yu-Cheng Lin and Felix Wu and Patrick McDaniel and Hasan Cam, Attacking Strategies and Temporal Analysis Involving Facebook Discussion Groups, 13th IEEE International Conference on Network and Service Management, November, 2017. Tokyo, Japan
  7. Kathrin Grosse and Nicolas Papernot and Praveen Manoharan and Michael Backes and Patrick McDaniel, Adversarial Examples for Malware Detection, 22nd European Symposium on Research in Computer Security (ESORICS '17), September, 2017. Oslo, Norway [Link]
  8. Z. Berkay Celik and David Lopez-Paz and Patrick McDaniel, Patient-Driven Privacy Control through Generalized Distillation, Proceedings of the Privacy-Aware Computing (PAC), IEEE, 2017.
  9. Abbas Acar and Z. Berkay Celik and Hidayet Aksu and Selcuk Uluagac and Patrick McDaniel, Achieving Secure and Differentially Private Computations in Multiparty Settings, Proceedings of the Privacy-Aware Computing (PAC), IEEE, 2017.
  10. Vaibhav Rastogi and Drew Davidson and Lorenzo De Carli and Somesh Jha and Patrick McDaniel, Cimplifier: Automatically Debloating Containers, 11Th Joint Meeting of the European Software Engineering Conference and the Acm Sigsoft Symposium on the Foundations of Software Engineering, September, 2017. Paderborn, Germany.
  11. Yunfeng Hong and Yongjian Hu and Chun-Ming Lai and Felix Wu and Iulian Neamtiu and Yu Paul and Patrick McDaniel and Hasan Cam and Gail-Joon Ahn, Defining and Detecting Environment Discrimination in Android Apps, The 13th EAI International Conference on Security and Privacy in Communication Networks (SecureComm 17), October, 2017.
  12. Nicolas Papernot and Patrick McDaniel and Ian Goodfellow and Somesh Jha and Z. Berkay Celik and Ananthram Swami, Practical Black-Box Attacks against Machine Learning, ACM Asia Conference on Computer and Communications Security (ASIACCS) 2017, April, 2017. [Link]
  13. Stefan Achleitner and Thomas La Porta and Trent Jaeger and Patrick McDaniel, Adversarial Network Forensics in Software Defined Networking, ACM Symposium on SDN Research (SOSR), ACM, April, 2017. (\bf best student paper award) [Link]
  14. Stefan Achleitner and Thomas La Porta and Patrick McDaniel and Srikanth V. Krishnamurthy and Alexander Poylisher and Constantin Serban, Stealth Migration: Hiding Virtual Machines on the Network, IEEE International Conference on Computer Communications (INFOCOM), IEEE, 2017. [Link]
  15. Ahmed Atya and Zhiyun Qian and Srikanth V. Krishnamurthy and Thomas La Porta and Patrick McDaniel and Lisa Marvel, Malicious Co-Residency on the Cloud: Attacks and Defense, IEEE International Conference on Computer Communications (INFOCOM), IEEE, 2017. [Link]
  16. Alexander Alexeev and Diane Henshel and Karl Levitt and Patrick McDaniel and Brian Rivera and Steve Templeton and Michael J. Weisma, Constructing a Science of Cyber-Resilience for Military Systems, Information Systems and Technology (IST) Panel, IST-153/RWS-21, CEUR Workshop Proceeding, Pages 30-42, Octobe, 2017.
  17. Z. Berkay Celik and Patrick McDaniel and Rauf Izmailov, Feature Cultivation in Privileged Information-augmented Detection, Proceedings of the International Workshop on Security And Privacy Analytics (IWSPA 2017), 2017. \it Invited Paper [Link]

Technical Reports

  • Chun-Ming Lai and Xiaoyun Wang and Yunfeng Hong and Yu-Cheng Lin and Felix Wu and Patrick McDaniel and Hasan Cam, Attacking Strategies and Temporal Analysis Involving Facebook Discussion Groups, Technical Report arXiv:1802.04500, arXiv preprint, 2017.
  • Abbas Acar and Z. Berkay Celik and Hidayet Aksu and Selcuk Uluagac and Patrick McDaniel, Achieving Secure and Differentially Private Computations in Multiparty Settings, Technical Report arXiv:1707.01871, arXiv preprint, 2017.
  • Florian Tramer and Alexey Kurakin and Nicolas Papernot and Ian Goodfellow and Dan Boneh and Patrick McDaniel, Ensemble Adversarial Training: Attacks and Defenses, Technical Report arXiv:1705.07204, arXiv preprint, 2017.
  • Nicolas Papernot and Patrick McDaniel, Extending Defensive Distillation, Technical Report arXiv:1705.05264, arXiv preprint, 2017.
  • Florian Tramer and Nicolas Papernot and Ian Goodfellow and Dan Boneh and Patrick McDaniel, The Space of Transferable Adversarial Examples, Technical Report arXiv:1704.03453, arXiv preprint, 2017.
  • Z. Berkay Celik and Hidayet Aksu and Abbas Acar and Ryan Sheatsley and Selcuk Uluagac and Patrick McDaniel, Curie: Policy-based Secure Data Exchange, Technical Report arXiv:1702.08342, arXiv preprint, 2017.
  • Kathrin Grosse and Praveen Manoharan and Nicolas Papernot and Michael Backes and Patrick McDaniel, On the (Statistical) Detection of Adversarial Examples, Technical Report arXiv:1702.06280, arXiv preprint, 2017.
  • Z. Berkay Celik and David Lopez-Paz and Patrick McDaniel, Patient-Driven Privacy Control through Generalized Distillation, Technical Report arXiv:1611.08648, arXiv preprint, 2017.

2016

  1. Patrick McDaniel and Nicolas Papernot and Z. Berkay Celik, Machine Learning in Adversarial Settings, IEEE Security & Privacy Magazine, Vol.14, No.3, May/June, 2016. [Link]
  2. Damien Octeau and Daniel Luchaup and Somesh Jha and Patrick McDaniel, Composite Constant Propagation and its Application to Android Program Analysis, IEEE Transactions on Software Engineering, Vol.42, No.11, Pages 999-1014, 2016.
  3. Nathaniel Lageman and Eric Kilmer and Robert Walls and Patrick McDaniel, BinDNN: Resilient Function Matching Using Deep Learning, 2016 International Conference on Security and Privacy in Communication Networks (SECURECOMM), October, 2016. [Link]
  4. Z. Berkay Celik and Nan Hu and Yun Li and Nicolas Papernot and Patrick McDaniel and Jeff Rowe and Robert Walls and Karl Levitt and Novella Bartolini and Thomas La Porta and Ritu Chadha, Mapping Sample Scenarios to Operational Models, Proceedings of the Military Communications Conference (MILCOM), IEEE, 2016. [Link]
  5. Nicolas Papernot and Patrick McDaniel and Ananthram Swami and Richard Harang, Crafting Adversarial Input Sequences for Recurrent Neural Networks, Proceedings of the Military Communications Conference (MILCOM), IEEE, 2016. [Link]
  6. Michael Backes and Sven Bugiel and Erik Derr and Patrick McDaniel and Damien Octeau and Sebastian Weisgerber, On Demystifying the Android Application Framework: Re-Visiting Android Permission Specification Analysis, Proceedings of the 25th USENIX Security Symposium, August, 2016. [Link]
  7. Devin Pohly and Patrick McDaniel, Modeling Privacy and Tradeoffs in Multichannel Secret Sharing Protocols, 46th IEEE/IFIP International Conference on Dependable Systems and Networks (DSN), June, 2016. [Link]
  8. Chaz Lever and Robert Walls and Yacin Nadji and David Dagon and Patrick McDaniel and Manos Antonakakis, Domain-Z: 28 Registrations Later, Proceedings of the 37th IEEE Symposium on Security and Privacy, May, 2016. San Francisco, CA. [Link]
  9. Yasemin Acar and Michael Backes and Sven Bugiel and Sascha Fahl and Patrick McDaniel and Matthew Smith, SoK: Lessons Learned From Android Security Research For Appified Software Platforms, Proceedings of the 37th IEEE Symposium on Security and Privacy, May, 2016. San Francisco, C.
  10. Nicolas Papernot and Patrick McDaniel and Xi Wu and Somesh Jha and Ananthram Swami, Distillation as a Defense to Adversarial Perturbations Against Deep Neural Networks, Proceedings of the 37th IEEE Symposium on Security and Privacy, May, 2016. San Francisco, CA. [Link]
  11. Charles Huber and Scott Brown and Patrick McDaniel and Lisa Marvel, Cyber Fighter Associate: A Decision Support System for Cyber Agility, Proceedings of the 50th Annual Conference on Information Sciences and Systems (CISS), March, 2016. Princeton, NJ. [Link]
  12. Nicolas Papernot and Patrick McDaniel and Somesh Jha and Matthew Fredrikson and Z. Berkay Celik and Ananthram Swami, The Limitations of Deep Learning in Adversarial Settings, Proceedings of the 1st IEEE European Symposium on Security and Privacy, IEEE, 2016. Saarbrucken, Germany. [Link]
  13. Damien Octeau and Somesh Jha and Matthew Dering and Patrick McDaniel and Alexandre Bartel and Li Li and Jacques Klein and Yves Le Traon, Combining Static Analysis with Probabilistic Models to Enable Market-Scale Android Inter-Component Analysis, Proceedings of the 43rd ACM SIGPLAN-SIGACT Symposium on Principles of Programming Languages (POPL), January, 2016. St. Petersburg, Florida, USA. [Link]
  14. Stefan Achleitner and Thomas La Porta and Patrick McDaniel and Shridatt Sugrim and Srikanth V. Krishnamurthy and Ritu Chadha, Cyber Deception: Virtual Networks to Defend Insider Reconnaissance, Proceedings of the 8th ACM CCS International Workshop on Managing Insider Security Threats, ACM, 2016. [Link]

Technical Reports

  • Nicolas Papernot and Patrick McDaniel and Arunesh Sinha and Michael Wellman, Towards the Science of Security and Privacy in Machine Learning, Technical Report arXiv:1611.03814, arXiv preprint, 2016.
  • Nicolas Papernot and Ian Goodfellow and Ryan Sheatsley and Reuben Feinman and Patrick McDaniel, cleverhans v1.0.0: an adversarial machine learning library, Technical Report arXiv:1610.0076, arXiv preprint, 2016.
  • Nicolas Papernot and Patrick McDaniel, On the Effectiveness of Defensive Distillation, Technical Report arXiv:1607.05113, arXiv preprint, 2016.
  • Kathrin Grosse and Nicolas Papernot and Praveen Manoharan and Michael Backes and Patrick McDaniel, Adversarial Perturbations Against Deep Neural Networks for Malware Classification, Technical Report arXiv:1606.04435, arXiv preprint, 2016.
  • Nicolas Papernot and Patrick McDaniel and Ian Goodfellow, Transferability in Machine Learning: from Phenomena to Black-Box Attacks using Adversarial Samples, Technical Report arXiv:1605.07277, arXiv preprint, 2016.
  • Nicolas Papernot and Patrick McDaniel and Ananthram Swami and Richard Harang, Crafting Adversarial Input Sequences for Recurrent Neural Networks, Technical Report arXiv:1604.08275, arXiv preprint, 2016.
  • Z. Berkay Celik and Patrick McDaniel and Rauf Izmailov and Nicolas Papernot and Ryan Sheatsley and Raquel Alvarez and Ananthram Swami, Detection under Privileged Information, Technical Report arXiv:1603.09638, arXiv preprint, 2016.
  • Vaibhav Rastogi and Drew Davidson and Lorenzo De Carli and Somesh Jha and Patrick McDaniel, Towards Least Privilege Containers with Cimplifier, Technical Report arXiv:1602.08410, arXiv preprint, 2016.
  • Nicolas Papernot and Patrick McDaniel and Ian Goodfellow and Somesh Jha and Z. Berkay Celik and Ananthram Swami, Practical Black-Box Attacks against Machine Learning, Technical Report arXiv:1602.02697, arXiv preprint, 2016.
  • Devin Pohly and Patrick McDaniel, Modeling Privacy and Tradeoffs in Multichannel Secret Sharing Protocols, Technical Report NAS-TR-0188-2016, Institute of Networking and Security Research, Department of Computer Science and Engineering, Pennsylvania State University, University Park, PA, USA, January, 2016.
  • Nicolas Papernot and Patrick McDaniel and Somesh Jha and Matthew Fredrikson and Z. Berkay Celik and Ananthram Swami, The Limitations of Deep Learning in Adversarial Settings, Technical Report NAS-TR-0172-2014, Network and Security Research Center, Department of Computer Science and Engineering, Pennsylvania State University, University Park, PA, USA, October, 2016.
  • Wenhui Hu and Damien Octeau and Patrick McDaniel and Peng Liu, Duet: Library Integrity Verification for Android Applications, Technical Report NAS-TR-0172-2014, Network and Security Research Center, Department of Computer Science and Engineering, Pennsylvania State University, University Park, PA, USA, February, 2016.
  • Devin Pohly and Stephen McLaughlin and Patrick McDaniel and Kevin Butler, Hi-Fi: Collecting High-Fidelity Whole-System Provenance, Technical Report NAS-TR-0160-2012, Network and Security Research Center, Department of Computer Science and Engineering, Pennsylvania State University, University Park, PA, USA, June, 2016.

2015

  1. Devin Pohly and Patrick McDaniel, MICSS: A Realistic Multichannel Secrecy Protocol, IEEE Global Communications Conference (GLOBECOM), December, 2015. San Diego, CA. [Link]
  2. Robert Walls and Eric Kilmer and Nathaniel Lageman and Patrick McDaniel, Measuring the Impact and Perception of Acceptable Advertisements, Proceedings of the ACM 2015 Internet Measurement Conference (IMC), October, 2015. Tokyo, Japan. [Link]
  3. Nicolas Papernot and Patrick McDaniel and Robert Walls, Enforcing Agile Access Control Policies in Relational Databases using Views, Proceedings of the Military Communications Conference (MILCOM), October, 2015. Tampa, FL. [Link]
  4. Alessandro Oltramari and Lorrie Cranor and Robert Walls and Patrick McDaniel, Computational Ontology of Network Operations, Proceedings of the Military Communications Conference (MILCOM), October, 2015. Tampa, FL. [Link]
  5. Z. Berkay Celik and Robert Walls and Patrick McDaniel and Ananthram Swami, Malware Traffic Detection using Tamper Resistant Features, Proceedings of the Military Communications Conference (MILCOM), October, 2015. Tampa, FL. [Link]
  6. Devin Pohly and Charles Sestito and Patrick McDaniel, Adaptive Protocol Switching Using Dynamically Insertable Bumps in the Stack, Proceedings of the Military Communications Conference (MILCOM), October, 2015. Tampa, FL. [Link]
  7. Azeem Aqil and Ahmed Atya and Trent Jaeger and Srikanth V. Krishnamurthy and Karl Levitt and Patrick McDaniel and Jeff Rowe and Ananthram Swami, Detection of Stealthy TCP-based DoS Attacks, Proceedings of the Military Communications Conference (MILCOM), October, 2015. Tampa, FL. [Link]
  8. Daniel E. Krych and Stephen Lange-Maney and Patrick McDaniel and William Glodek, Investigating Weaknesses in Android Certificate Security, SPIE 9478, Modeling and Simulation for Defense Systems and Applications X, May, 2015. [Link]
  9. Damien Octeau and Daniel Luchaup and Matthew Dering and Somesh Jha and Patrick McDaniel, Composite Constant Propagation: Application to Android Inter-Component Communication Analysis, Proceedings of the 37th International Conference on Software Engineering (ICSE), May, 2015. Florence, Italy. [Link]
  10. Li Li and Alexandre Bartel and Tegawende Bissyande and Jacques Klein and Yves Le Traon and Steven Arzt and Siegfried Rasthofer and Eric Bodden and Damien Octeau and Patrick McDaniel, IccTA: Detecting Inter-Component Privacy Leaks in Android Apps, Proceedings of the 37th International Conference on Software Engineering (ICSE), May, 2015. Florence, Italy. [Link]
  11. Jing Tian and Kevin Butler and Patrick McDaniel and Padma Krishnaswamy, Securing ARP From the Ground Up, CODASPY '15: Proceedings of the 5th ACM Conference on Data Application and Security and Privacy, March, 2015. San Antonio, TX, USA. [Link]

Technical Reports

  • Nicolas Papernot and Patrick McDaniel and Somesh Jha and Matthew Fredrikson and Z. Berkay Celik and Ananthram Swami, The Limitations of Deep Learning in Adversarial Settings, Technical Report arXiv:1511.07528, arXiv preprint, 2015.
  • Nicolas Papernot and Patrick McDaniel and Xi Wu and Somesh Jha and Ananthram Swami, Distillation as a Defense to Adversarial Perturbations against Deep Neural Networks, Technical Report arXiv:1511.04508, arXiv preprint, 2015.
  • Alexander Kott and Ananthram Swami and Patrick McDaniel, Six Potential Game-Changers in Cyber Security: Towards Priorities in Cyber Science and Engineering, Technical Report arXiv:1511.00509, arXiv preprint, 2015.

2014

  1. Alexander Kott and Ananthram Swami and Patrick McDaniel, Security Outlook: Six Cyber Game Changers for the Next 15 Years, IEEE Computer, Vol.47, No.12, Pages 104-106, 2014. [Link]
  2. Zhenfu Cao and Keqiu Li and Xu Li and Patrick McDaniel and Radha Poovendran and Guojun Wang and Yang Xiang, Guest Editors' Introduction: Special Issue on Trust, Security, and Privacy in Parallel and Distributed Systems, IEEE Transactions on Parallel and Distributed Systems, Vol.25, No.2, Pages 279-28, 2014.
  3. Patrick McDaniel and Brian Rivera and Ananthram Swami, Toward a Science of Secure Environments, IEEE Security & Privacy Magazine, Vol.12, No.4, July/August, 2014. [Link]
  4. William Enck and Peter Gilbert and Seungyeop Han and Vasant Tendulkar and Byung-Gon Chun and Landon Cox and Jaeyeon Jung and Patrick McDaniel and Anmol Sheth, TaintDroid: An Information-Flow Tracking System for Realtime Privacy Monitoring on Smartphones, ACM Transactions on Computer Systems (TOCS), Vol.32, No.2, June, 2014. [Link]
  5. William Enck and Peter Gilbert and Byung-Gon Chun and Landon Cox and Jaeyeon Jung and Patrick McDaniel and Anmol Sheth, TaintDroid: An Information-Flow Tracking System for Realtime Privacy Monitoring on Smartphones, Communications of the ACM, Vol.57, No.3, March, 2014.
  6. Alessandro Oltramari and Lorrie Cranor and Robert Walls and Patrick McDaniel, Building an Ontology of Cyber Security, Proc. Intl. Conference on Semantic Technologies for Intelligence, Defense, and Security (STIDS), November, 2014.
  7. Matthew Dering and Patrick McDaniel, Android Market Reconstruction and Analysis, Proceedings of the Military Communications Conference (MILCOM), October, 2014. Baltimore, MD. [Link]
  8. Wenhui Hu and Damien Octeau and Patrick McDaniel and Peng Liu, Duet: Library Integrity Verification for Android Applications, Proceedings of the ACM Conference on Security and Privacy in Wireless and Mobile Networks (WiSec), July, 2014. Oxford, United Kingdom. [Link]
  9. Steven Arzt and Siegfried Rasthofer and Christian Fritz and Eric Bodden and Alexandre Bartel and Jacques Klein and Yves Le Traon and Damien Octeau and Patrick McDaniel, FlowDroid: Precise Context, Flow, Field, Object-sensitive and Lifecycle-aware Taint Analysis for Android Apps, Proceedings of the 35th Conference on Programming Language Design and Implementation (PLDI), June, 2014. Edinburgh, UK. [Link]
  10. Phillip Koshy and Diana Koshy and Patrick McDaniel, An Analysis of Anonymity in Bitcoin Using P2P Network Traffic, Proceedings of Financial Cryptography 2014, International Financial Cryptography Association (IFCA), February, 2014. Christ Church, Barbado.
  11. Stephen McLaughlin and Devin Pohly and Patrick McDaniel and Saman Zonouz, A Trusted Safety Verifier for Process Controller Code, Proc. ISOC Network and Distributed Systems Security Symposium (NDSS), February, 2014. San Diego, CA.
  12. Patrick McDaniel and Trent Jaeger and Thomas La Porta and Nicolas Papernot and Robert Walls and Alexander Kott and Lisa Marvel and Ananthram Swami and Prasant Mohapatra and Srikanth V. Krishnamurthy and Iulian Neamtiu, Security and Science of Agility, First ACM Workshop on Moving Target Defense (MTD 2014), November, 2014. Scottsdale, AZ [Link]
  13. U.S. Patent No. 8,732,293, Patrick McDaniel and Subhabrata Sen and Oliver Spatscheck and Jacobus Van der Merwe, System and method for tracking individuals on a data network using communities of interest, May, 2014.
  14. U.S. Patent No. 8,813,213, William Aiello and Charles Kalmanek and William Leighton III and Patrick McDaniel and Subhabrata Sen and Oliver Spatscheck and Jacobus Van der Merwe, Reverse firewall with self-provisioning, August, 2014.

Technical Reports

  • Li Li and Alexandre Bartel and Jacques Klein and Yves Le Traon and Steven Arzt and Siegfried Rasthofer and Eric Bodden and Damien Octeau and Patrick McDaniel, I know what leaked in your pocket: uncovering privacy leaks on Android Apps with Static Taint Analysis, Technical Report arXiv:1404.7431, arXiv preprint, 2014.

2013

  1. Damien Octeau and Patrick McDaniel and Somesh Jha and Alexandre Bartel and Eric Bodden and Jacques Klein and Yves Le Traon, Effective Inter-Component Communication Mapping in Android with Epicc: An Essential Step Towards Holistic Security Analysis, Proceedings of the 22th USENIX Security Symposium, August, 2013. Washington, DC [Link]
  2. U.S. Patent No. 8,453,227, William Aiello and Charles Kalmanek and William Leighton III and Patrick McDaniel and Subhabrata Sen and Oliver Spatscheck and Jacobus Van der Merwe, Reverse firewall with self-provisioning, May, 2013.

2012

  1. Machigar Ongtang and Stephen McLaughlin and William Enck and Patrick McDaniel, Semantically Rich Application-Centric Security in Android, Security and Communication Networks, Vol.5, No.6, Pages 658-673, 2012. [Link]
  2. Devin J. Pohly and Stephen McLaughlin and Patrick McDaniel and Kevin Butler, Hi-Fi: Collecting High-Fidelity Whole-System Provenance, Proceedings of the 28th Annual Computer Security Applications Conference (ACSAC), December, 2012. Orlando, Florida. [Link]
  3. Stephen McLaughlin and Patrick McDaniel, SABOT: Specification-based Payload Generation for Programmable Logic Controllers, 19th ACM Conference on Computer and Communications Security (CCS), October, 2012. [Link]
  4. Weining Yang and Ninghui Li and Yuan Qi and Wahbeh Qardaji and Stephen McLaughlin and Patrick McDaniel, Minimizing Private Data Disclosures in the Smart Grid, 19th ACM Conference on Computer and Communications Security (CCS), October, 2012. [Link]
  5. Eun Kyoung Kim and Patrick McDaniel and Thomas La Porta, A Detection Mechanism for SMS Flooding Attacks in Cellular Networks, Proceedings of the 8th International Conference on Security and Privacy in Communication Networks (SECURECOMM 2012), September, 2012. Padua, Italy. [Link]
  6. Damien Octeau and Somesh Jha and Patrick McDaniel, Retargeting Android Applications to Java Bytecode, 20th International Symposium on the Foundations of Software Engineering (FSE), November, 2012. Research Triangle Park, NC. (\bf best artifact award) [Link]
  7. Thomas Moyer and Trent Jaeger and Patrick McDaniel, Scalable Integrity-Guaranteed AJAX, Proceedings of the 14th Asia-Pacific Web Conference (APWeb), April, 2012. Kunming, China. \it Invited Paper
  8. Patrick McDaniel and Stephen McLaughlin, Structured Security Testing in the Smartgrid, Proceedings of 5th International Symposium on Communications, Control, and Signal Processing, May, 2012. Rome, Italy. \it Invited Paper [Link]
  9. U.S. Patent No. 8,175,580, Patrick McDaniel and Martin Strauss, End-to-end secure wireless communication for requesting a more secure channel, May, 2012.

2011

  1. Patrick McDaniel, Bloatware Comes to the Smartphone, IEEE Security & Privacy Magazine, Vol.10, No.4, July/August, 2011. [Link]
  2. Thomas Moyer and Kevin Butler and Joshua Schiffman and Patrick McDaniel and Trent Jaeger, Scalable Web Content Attestation, IEEE Transactions on Computers, Vol.61, No.5, Pages 686--699, April, 2011.
  3. Patrick McDaniel, Data Provenance and Security, IEEE Security & Privacy Magazine, Vol.9, No.3, March/April, 2011. [Link]
  4. Joshua Schiffman and Thomas Moyer and Trent Jaeger and Patrick McDaniel, Network-based Root of Trust for Installation, IEEE Security & Privacy Magazine, Pages 40-48, Jan/Feb, 2011. [Link]
  5. Patrick Traynor and Chaitrali Amrutkar and Vikhyath Rao and Trent Jaeger and Patrick McDaniel and Thomas La Porta, From Mobile Phones to Responsible Devices, Journal of Security and Communication Networks (SCN), Vol.4, No.6, Pages 719 -- 726, June, 2011. [Link]
  6. Stephen McLaughlin and Patrick McDaniel and William Aiello, Protecting Consumer Privacy from Electric Load Monitoring, The 18th ACM Conference on Computer and Communications Security (CCS), October, 2011. Chicago, IL. [Link]
  7. William Enck and Damien Octeau and Patrick McDaniel and Swarat Chaudhuri, A Study of Android Application Security, Proceedings of the 20th USENIX Security Symposium, August, 2011. San Francisco, CA [Link]
  8. U.S. Patent No. 7,873,350, Patrick McDaniel and Martin Strauss, End-to-end secure wireless communication for requesting a more secure channel, January, 2011.
  9. U.S. Patent No. 7,875,044, Oliver Spatscheck and Subhabrata Sen and Jacobus Van der Merwe and Patrick McDaniel, Automated disambiguation of fixed-serverport-based applications from ephemeral applications, July, 2011.

Technical Reports

  • Damien Octeau and Somesh Jha and Patrick McDaniel, Retargeting Android Applications to Java Bytecode, Technical Report NAS-TR-0150-2011, Network and Security Research Center, Department of Computer Science and Engineering, Pennsylvania State University, University Park, PA, USA, September, 2011.
  • Stephen McLaughlin and Patrick McDaniel, Protecting Consumer Privacy from Electric Load Monitoring, Technical Report NAS-TR-0147-2011, Network and Security Research Center, Department of Computer Science and Engineering, Pennsylvania State University, University Park, PA, USA, March, 2011.

2010

  1. Kevin Butler and Stephen McLaughlin and Thomas Moyer and Patrick McDaniel, New Security Architectures Based on Emerging Disk Functionality, IEEE Security and Privacy Magazine, Vol.8, No.5, October, 2010.
  2. Patrick McDaniel and William Enck, Not So Great Expectations: Why Application Markets Haven't Failed Security, IEEE Security & Privacy Magazine, Vol.8, No.5, Pages 76--78, September/October, 2010. [Link]
  3. Patrick Traynor and Kevin Butler and William Enck and Kevin Borders and Patrick McDaniel, malnets: Large-Scale Malicious Networks via Compromised Wireless Access Points, Journal of Security and Communication Networks (SCN), Vol.2, No.3, Pages 102-113, March, 2010. [Link]
  4. Matthew Pirretti and Patrick Traynor and Patrick McDaniel and Brent Waters, Secure Attribute-Based Systems, Journal of Computer Security (JCS), Vol.18, No.5, Pages 799--837, 2010.
  5. Boniface Hicks and Sandra Rueda and Luke St. Clair and Trent Jaeger and Patrick McDaniel, A Logical Specification and Analysis for SELinux MLS Policy, ACM Transactions on Information and System Security (TISSEC), Vol.13, No.26, 2010. [Link]
  6. Kevin Butler and Toni Farley and Patrick McDaniel and J. Rexford, A Survey of BGP Security Issues and Solutions, Proceedings of the IEEE, Vol.2010, No.1, Pages 100-122, January, 2010. [Link]
  7. Kevin Butler and Stephen McLaughlin and Patrick McDaniel, Kells: A Protection Framework for Portable Data, Proceedings of the 26th Annual Computer Security Applications Conference (ACSAC), December, 2010. Austin, TX. [Link]
  8. Stephen McLaughlin and Dmitry Podkuiko and Adam Delozier and Sergei Miadzvezhanka and Patrick McDaniel, Multi-vendor Penetration Testing in the Advanced Metering Infrastructure, Proceedings of the 26th Annual Computer Security Applications Conference (ACSAC), December, 2010. Austin, TX. [Link]
  9. Machigar Ongtang and Kevin Butler and Patrick McDaniel, Porscha: Policy Oriented Secure Content Handling in Android, Proceedings of the 26th Annual Computer Security Applications Conference (ACSAC), December, 2010. Austin, TX. [Link]
  10. Patrick Traynor and Joshua Schiffman and Thomas La Porta and Patrick McDaniel and Abhrajit Ghosh and Farooq Anjum, Constructing Secure Localization Systems with Adjustable Granularity, IEEE Global Communications Conference (GLOBECOM), December, 2010. Miami, FL. [Link]
  11. William Enck and Peter Gilbert and Byung-Gon Chun and Landon Cox and Jaeyeon Jung and Patrick McDaniel and Anmol Sheth, TaintDroid: An Information-Flow Tracking System for Realtime Privacy Monitoring on Smartphones, Proceedings of the 9th USENIX Symposium on Operating Systems Design and Implementation (OSDI), October, 2010. Vancouver, BC. [Link]
  12. Toby Ehrenkranz and Jun Li and Patrick McDaniel, Realizing A Source Authentic Internet, Proceedings of the 6th International ICST Conference on Security and Privacy in Communications Networks (Securecomm), September, 2010. Singapore. [Link]
  13. Boniface Hicks and Sandra Rueda and David King and Thomas Moyer and Joshua Schiffman and Yogesh Sreenivasan and Patrick McDaniel and Trent Jaeger, An Architecture for Enforcing End-to-End Access Control over Web Applications, Proceedings of the Fifteenth ACM Symposium on Access Control Models and Technologies (SACMAT 2010), Pages 163-172, June, 2010. Pittsburgh, PA. [Link]
  14. Kevin Butler and Stephen McLaughlin and Patrick McDaniel, Disk-Enabled Authenticated Encryption, Proceedings of the 26th IEEE Symposium on Massive Storage Systems and Technologies (MSST), May, 2010. [Link]
  15. Joshua Schiffman and Thomas Moyer and Hayawardh Vijayakumar and Trent Jaeger and Patrick McDaniel, Seeding Clouds with Trust Anchors, Proccedings of CCSW 2010: The ACM Cloud Computing Security Workshop, October, 2010. Chicago, IL [Link]
  16. Stephen McLaughlin and Dmitry Podkuiko and Adam Delozier and Sergei Miadzvezhanka and Patrick McDaniel, Embedded Firmware Diversity for Smart Electric Meters, Proceedings of the 5th Workshop on Hot Topics in Security (HotSec '10), August, 2010. Washington, DC [Link]
  17. Patrick McDaniel and Kevin Butler and Stephen McLaughlin and Radu Sion and Erez Zadok and Marianne Winslett, Towards a Secure and Efficient System for End-to-End Provenance, the 2nd USENIX Workshop on the Theory and Practice of Provenance, February, 2010. San Jose, CA.

Technical Reports

  • William Enck and Patrick McDaniel, Federated Information Flow Control for Mobile Phones, Technical Report NAS-TR-0136-2010, Network and Security Research Center, Department of Computer Science and Engineering, Pennsylvania State University, University Park, PA, USA, July, 2010.
  • Kevin Butler and Stephen McLaughlin and Patrick McDaniel, Kells: A Protection Framework for Portable Data, Technical Report NAS-TR-0134-2010, Network and Security Research Center, Department of Computer Science and Engineering, Pennsylvania State University, University Park, PA, USA, June, 2010.
  • Stephen McLaughlin and Dmitry Podkuiko and Adam Delozier and Sergei Miadzvezhanka and Patrick McDaniel, Multi-vendor Penetration Testing in the Advanced Metering Infrastructure, Technical Report NAS-TR-0133-2010, Network and Security Research Center, Department of Computer Science and Engineering, Pennsylvania State University, University Park, PA, USA, June, 2010.
  • Machigar Ongtang and Kevin Butler and Patrick McDaniel, Porscha: Policy Oriented Secure Content Handling in Android , Technical Report NAS-TR-0132-2010, Network and Security Research Center, Department of Computer Science and Engineering, Pennsylvania State University, University Park, PA, USA, June, 2010.
  • Joshua Schiffman and Thomas Moyer and Hayawardh Vijayakumar and Trent Jaeger and Patrick McDaniel, Seeding Clouds with Trust Anchors, Technical Report NAS-TR-0127-2010, Network and Security Research Center, Department of Computer Science and Engineering, Pennsylvania State University, University Park, PA, USA, April, 2010.
  • Joshua Schiffman and Thomas Moyer and Christopher Shal and Trent Jaeger and Patrick McDaniel, Justifying Integrity Using a Virtual Machine Verifier, Technical Report NAS-TR-0119-2009, Network and Security Research Center, Department of Computer Science and Engineering, Pennsylvania State University, University Park, PA, USA, August, 2010.
  • Machigar Ongtang and Stephen McLaughlin and William Enck and Patrick McDaniel, Semantically Rich Application-Centric Security in Android, Technical Report NAS-TR-0116-2009, Network and Security Research Center, Department of Computer Science and Engineering, Pennsylvania State University, University Park, PA, USA, June, 2010.
  • Stephen McLaughlin and Dmitry Podkuiko and Patrick McDaniel, Energy Theft in the Advanced Metering Infrastructure, Technical Report NAS-TR-0115-2009, Network and Security Research Center, Department of Computer Science and Engineering, Pennsylvania State University, University Park, PA, USA, June, 2010.
  • Kevin Butler and Stephen McLaughlin and Thomas Moyer and Joshua Schiffman and Patrick McDaniel and Trent Jaeger, Firma: Disk-Based Foundations for Trusted Operating Systems, Technical Report NAS-TR-0114-2009, Network and Security Research Center, Department of Computer Science and Engineering, Pennsylvania State University, University Park, PA, USA, April, 2010.
  • William Enck and Machigar Ongtang and Patrick McDaniel, On Lightweight Mobile Phone App Certification, Technical Report NAS-TR-0113-2009, Network and Security Research Center, Department of Computer Science and Engineering, Pennsylvania State University, University Park, PA, USA, April, 2010.

2009

  1. Kevin Butler and Sunam Ryu and Patrick Traynor and Patrick McDaniel, Leveraging Identity-based Cryptography for Node ID Assignment in Structured P2P Systems, IEEE Transactions on Parallel and Distributed Systems (TPDS), Vol.20, No.12, Pages 1803-1815, December, 2009. [Link]
  2. Patrick McDaniel and Stephen McLaughlin, Security and Privacy Challenges in the Smart Grid, IEEE Security & Privacy Magazine (Secure Systems issue column), Vol.7, No.3, Pages 75-77, May/June, 2009. [Link]
  3. Patrick Traynor and William Enck and Patrick McDaniel and Thomas La Porta, Mitigating Attacks on Open Functionality in SMS-Capable Cellular Networks, IEEE/ACM Transactions on Networking (TON), Vol.17, No.1, Pages 40-53, February, 2009. [Link]
  4. William Enck and Machigar Ongtang and Patrick McDaniel, Understanding Android Security, IEEE Security & Privacy Magazine, Vol.7, No.1, Pages 50--57, January/February, 2009. [Link]
  5. William Enck and Thomas Moyer and Patrick McDaniel and Shubho Sen and Panagiotis Sebos and Sylke Spoerel and Albert Greenberg and Yu-Wei Sung and Sanjay Rao and William Aiello, Configuration Management at Massive Scale: System Design and Experience, IEEE Journal on Selected Areas in Communications (JSAC), Vol.27, No.3, Pages 323-335, 2009. [Link]
  6. Heesook Choi and William Enck and Jaesheung Shin and Patrick McDaniel and Thomas La Porta, ASR: Anonymous and Secure Reporting of Traffic Forwarding Activity in Mobile Ad Hoc Networks, Wireless Networks (WINET), ACM/Kluwer, Vol.15, No.4, Pages 525-539, May, 2009. [Link]
  7. Patrick Traynor and William Enck and Patrick McDaniel and Thomas La Porta, Exploiting Open Functionality in SMS-Capable Cellular Networks, Journal of Computer Security, Vol.16, No.6, Pages 713-742, Febraury, 2009. [Link]
  8. Machigar Ongtang and Stephen McLaughlin and William Enck and Patrick McDaniel, Semantically Rich Application-Centric Security in Android, Proceedings of the 25th Annual Computer Security Applications Conference (ACSAC), Pages 340-349, December, 2009. Honolulu, Hawaii. (\bf best paper [Link]
  9. Thomas Moyer and Kevin Butler and Joshua Schiffman and Patrick McDaniel and Trent Jaeger, Scalable Asynchronous Web Content Attestation, Proceedings of the 25th Annual Computer Security Applications Conference (ACSAC), Pages 95-104, December, 2009. Honolulu, Hawaii. [Link]
  10. Joshua Schiffman and Thomas Moyer and Christopher Shal and Trent Jaeger and Patrick McDaniel, Justifying Integrity Using a Virtual Machine Verifier, Proceedings of the 25th Annual Computer Security Applications Conference (ACSAC), Pages 83-92, December, 2009. Honolulu, Hawai. [Link]
  11. William Enck and Machigar Ongtang and Patrick McDaniel, On Lightweight Mobile Phone App Certification, Proceedings of the 16th ACM Conference on Computer and Communications Security (CCS), Pages 235-245, November, 2009. [Link]
  12. Patrick Traynor and Michael Lin and Machigar Ongtang and Vikhyath Rao and Trent Jaeger and Thomas La Porta and Patrick McDaniel, On Cellular Botnets: Measuring the Impact of Malicious Devices on a Cellular Network Core, Proceedings of the 16th ACM Conference on Computer and Communications Security (CCS), Pages 223-234, November, 2009. [Link]
  13. Thomas La Porta and Patrick McDaniel and Karl Rauscher and Jun Shu, The Impact of Supply Chain on Information and Communications Technology Security, In the 1st Workshop on Workshop on Telecommunications Infrastructure Protection and Security, December, 2009. Honolulu, Hawaii.
  14. Stephen McLaughlin and Dmitry Podkuiko and Patrick McDaniel, Energy Theft in the Advanced Metering Infrastructure, In the 4th International Workshop on Critical Information Infrastructure Security, September, 2009. Bonn, Germany. [Link]
  15. Matthew Blaze and Patrick McDaniel, Below the Salt: The Dangers of Unfulfilled Physical Media Assumptions, In Proceedings of Seventeenth International Workshop on Security Protocols, April, 2009. Cambridge, England.

Technical Reports

  • Boniface Hicks and Sandra Rueda and Yogesh Sreenivasan and Guruprasad Jakka and David King and Trent Jaeger and Patrick McDaniel, An Architecture for Enforcing End-to-End Security Over Web Applications, Technical Report NAS-TR-0104-2009, Network and Security Research Center, Department of Computer Science and Engineering, Pennsylvania State University, University Park, PA, USA, January, 2009.
  • Joshua Schiffman and Thomas Moyer and Christopher Shal and Trent Jaeger and Patrick McDaniel, No Node Is an Island: Shamon Integrity Monitoring Approach, Technical Report NAS-TR-0103-2009, Network and Security Research Center, Department of Computer Science and Engineering, Pennsylvania State University, University Park, PA, USA, February, 2009.

2008

  1. Patrick Traynor and Patrick McDaniel and Thomas La Porta, Security for Telecommunications Networks Springer, Series: Advances in Information Security, July, 2008, ISBN: 978-0-387-72441-6.
  2. Kevin Butler and William Enck and Patrick Traynor and Jennifer Plasterr and Patrick McDaniel, Privacy Preserving Web-Based Email, Algorithms, Architectures and Information Systems Security, Statistical Science and Interdisciplinary Research, World Scientific Computing, Pages349-371, November, 2008. Eds. Bhargab Bhattacharya, Susmita Sur-Kolay, Subhas Nandy and Aditya Bagchi.
  3. Patrick Traynor and Michael Chien and Scott Weaver and Boniface Hicks and Patrick McDaniel, Non-Invasive Methods for Host Certification, ACM Transactions on Information and System Security (TISSEC), Vol.11, No.3, 2008. [Link]
  4. Patrick McDaniel and Bashar Nuseibeh, \it Guest Editorial: Special Issue on Software Engineering for Secure Systems, IEEE Transactions on Software Engineering, Vol.34, No.1, Pages 3--4, 2008. [Link]
  5. William Enck and Patrick McDaniel and Trent Jaeger, PinUP: Pinning User Files to Known Applications, Proceedings of the 24th Annual Computer Security Applications Conference (ACSAC), December, 2008. [Link]
  6. William Enck and Kevin Butler and Thomas Richardson and Patrick McDaniel and Adam Smith, Defending Against Attacks on Main Memory Persistence, Proceedings of the 24th Annual Computer Security Applications Conference (ACSAC), December, 2008. [Link]
  7. Kevin Butler and Stephen McLaughlin and Patrick McDaniel, Rootkit-Resistant Disks, Proceedings of the 15th ACM Conference on Computer and Communications Security (CCS), November, 2008. Alexandria, VA. [Link]
  8. Patrick Traynor and Kevin Butler and William Enck and Patrick McDaniel, Realizing Massive-Scale Conditional Access Systems Through Attribute-Based Cryptosystems, ISOC Network & Distributed System Security Symposium (NDSS), February, 2008. San Diego, CA. [Link]
  9. Kevin Butler and William Enck and Harri Hursti and Stephen McLaughlin and Patrick Traynor and Patrick McDaniel, Systemic Issues in the Hart InterCivic and Premier Voting Systems: Reflections Following Project EVEREST, In Proceedings of the 3rd USENIX/ACCURATE Electronic Voting Technology Workshop (EVT '08), July, 2008.
  10. Patrick McDaniel and Avi Rubin, Conference Proceedings, 2008 IEEE Symposium on Security and Privacy, IEEE, May, 2008. Oakland, C.

Technical Reports

  • Patrick Traynor and Michael Lin and Machigar Ongtang and Vikhyath Rao and Trent Jaeger and Thomas La Porta and Patrick McDaniel, On Cellular Botnets: Measuring the Impact of Malicious Devices on the Network Core, Technical Report NAS-TR-0099-2008, Network and Security Research Center, Department of Computer Science and Engineering, Pennsylvania State University, University Park, PA, USA, Novemeber, 2008.
  • Kevin Butler and Stephen McLaughlin and Thomas Moyer and Patrick McDaniel and Trent Jaeger, SwitchBlade: Policy-Driven Disk Segmentation, Technical Report NAS-TR-0098-2008, Network and Security Research Center, Department of Computer Science and Engineering, Pennsylvania State University, University Park, PA, USA, November, 2008.
  • Thomas Moyer and Kevin Butler and Joshua Schiffman and Patrick McDaniel and Trent Jaeger, Scalable Asynchronous Web Content Attestation, Technical Report NAS-TR-0095-2008, Network and Security Research Center, Department of Computer Science and Engineering, Pennslyvania State University, University Park, PA, USA, September, 2008.
  • William Enck and Machigar Ongtang and Patrick McDaniel, Automated Cellphone Application Certification in Android (or) Mitigating Phone Software Misuse Before It Happens, Technical Report NAS-TR-0094-2008, Network and Security Research Center, Department of Computer Science and Engineering, Pennslyvania State University, University Park, PA, USA, September, 2008.
  • Boniface Hicks and Sandra Rueda and Luke St. Clair and Trent Jaeger and Patrick McDaniel, A Logical Specification and Analysis for SELinux MLS Policy, Technical Report NAS-TR-0091-2008, Network and Security Research Center, Department of Computer Science and Engineering, Pennslyvania State University, University Park, PA, USA, July, 2008.

2007

  1. Patrick McDaniel, Authentication, Handbook of Computer Networks, Volume II, Chapter 171, John Wiley and Sons, May, 2007. Eds. Hossein Bidgoli.
  2. Wesam Lootah and William Enck and Patrick McDaniel, TARP: Ticket-based Address Resolution Protocol, Computer Networks, Elsevier, Vol.51, No.15, Pages 4322--4337, October, 2007. [Link]
  3. Luke St. Clair and Joshua Schiffman and Trent Jaeger and Patrick McDaniel, Establishing and Sustaining System Integrity via Root of Trust Installation, 23rd Annual Computer Security Applications Conference (ACSAC), Pages 19-29, December, 2007. Miami, FL. [Link]
  4. Boniface Hicks and Tim Misiak and Patrick McDaniel, Channels: Runtime System Infrastructure for Security-typed Languages, 23rd Annual Computer Security Applications Conference (ACSAC), Pages 443-452, December, 2007. Miami, FL. [Link]
  5. Dhananjay Bapat and Kevin Butler and Patrick McDaniel, Towards Automated Privilege Separation, Proceedings of 2nd International Conference on Information Systems Security (short paper), December, 2007. Delhi, India. [Link]
  6. Lisa Johansen and Kevin Butler and Michael Rowell and Patrick McDaniel, Email Communities of Interest, Fourth Conference on Email and Anti-Spam (CEAS 2007, August, 2007. Mountain View, California. [Link]
  7. Patrick Traynor and Patrick McDaniel and Thomas La Porta, On Attack Causality in Internet-Connected Cellular Networks, Proceedings of the 16th USENIX Security Symposium, Pages 1--16, August, 2007. Boston, MA [Link]
  8. Boniface Hicks and Sandra Rueda and Trent Jaeger and Patrick McDaniel, From Trusted to Secure: Building and Executing Applications that Enforce System Security, Proceedings of the USENIX Annual Technical Conference, June, 2007. Santa Clara, CA. [Link]
  9. William Enck and Patrick McDaniel and Shubho Sen and Panagiotis Sebos and Sylke Spoerel and Albert Greenberg and Sanjay Rao and William Aiello, Configuration Management at Massive Scale: System Design and Experience, Proceedings of the USENIX Annual Technical Conference, June, 2007. Santa Clara, CA. [Link]
  10. Boniface Hicks and Sandra Rueda and Luke St. Clair and Trent Jaeger and Patrick McDaniel, A Logical Specification and Analysis for SELinux MLS, 12th ACM Symposium on Access Control Models and Technologies (SACMAT), ACM, June, 2007. Sophia Antipolis, France [Link]
  11. Anusha Sriraman and Kevin Butler and Patrick McDaniel and Padma Raghavan, Analysis of IPv4 Address Space Delegation Structure, 12th IEEE Symposium on Computers and Communications (ISCC), July, 2007. Aveiro, Portugal [Link]
  12. Heesook Choi and Thomas La Porta and Patrick McDaniel, Privacy Preserving Communication in MANETs, Proceedings of Fourth Annual IEEE Communications Society Conference on Sensor, Mesh, and Ad Hoc Communications and Networks (SECON 07), June, 2007. San Diego, CA [Link]
  13. Sophie Qiu and Patrick McDaniel and Fabian Monrose, Toward Valley-Free Inter-domain Routing, Proceedings of 2007 IEEE International Conference on Communications (ICC 2007), June, 2007. Glasgow, Scottlan. [Link]
  14. Sunam Ryu and Kevin Butler and Patrick Traynor and Patrick McDaniel, Leveraging Identity-based Cryptography for Node ID Assignment in Structured P2P Systems, Proceedings of the 3rd IEEE International Symposium on Security in Networks and Distributed Systems (SSNDS-07), June, 2007. Niagra Falls, Canada. [Link]
  15. Hosam Rowaihy and William Enck and Patrick McDaniel and Thomas La Porta, Limiting Sybil Attacks in Structured Peer-to-Peer Networks, Proceedings of IEEE INFOCOM 2007 MiniSymposiu, May, 2007. Anchorage, AK. [Link]
  16. Kevin Butler and Stephen McLaughlin and Patrick McDaniel, Non-Volatile Memory and Disks: Avenues for Policy Architectures, Proceedings of the 1st ACM Computer Security Architectures Workshop, November, 2007. Alexandria, VA. [Link]
  17. William Enck and Sandra Rueda and Yogesh Sreenivasan and Joshua Schiffman and Luke St. Clair and Trent Jaeger and Patrick McDaniel, Protecting Users from "Themselves", Proceedings of the 1st ACM Computer Security Architectures Workshop, November, 2007. Alexandria, VA.
  18. Boniface Hicks and David King and Patrick McDaniel, Jifclipse: Development Tools for Security-Typed Applications, Proceedings of the 2nd ACM SIGPLAN Workshop on Programming Languages and Analysis for Security (PLAS '07), ACM Press, June, 2007. San Diego, CA. [Link]
  19. Boniface Hicks and Sandra Rueda and Trent Jaeger and Patrick McDaniel, Integration of SELinux and Security-typed Languages, Proceedings of the 2007 Security-Enhanced Linux Workshop, March, 2007. Baltimore, MD. [Link]
  20. Patrick McDaniel and Kevin Butler and William Enck and Harri Hursti and Stephen McLaughlin and Patrick Traynor and Matthew Blaze and Adam Aviv and Pavol Cerny and Sandy Clark and Eric Cronin and Gaurav Shah and Micah Sherr and Giovanni Vigna and Richard Kemmerer and David Balzarotti and Greg Banks and Marco Cova and Viktoria Felmetsger and William Robertson and Fredrik Valeur and Joseph Lorenzo Hall and Laura Quilter, EVEREST: Evaluation and Validation of Election-Related Equipment, Standards and Testing, Ohio Secretary of State, Public Report, 2007.
  21. Patrick McDaniel and Shyam K. Gupta, Conference Proceedings, The Third International Conference Information Systems Security, Springer, December, 2007. Delhi, Indi.
  22. Birgit Pfitzmann and Patrick McDaniel, Conference Proceedings, 2007 IEEE Symposium on Security and Privacy, IEEE, May, 2007. Oakland, C.

Technical Reports

  • Patrick Traynor and Joshua Schiffman and Thomas La Porta and Patrick McDaniel and Abhrajit Ghosh and Farooq Anjum, Constructing Secure Localization Systems with Adjustable Granularity, Technical Report NAS-TR-0084-2007, Network and Security Research Center, Department of Computer Science and Engineering, Pennslyvania State University, University Park, PA, USA, December, 2007.
  • Stephen McLaughlin and Kevin Butler and William Enck and Patrick McDaniel, Genbd - A Generic Block Device, Technical Report NAS-TR-0082-2007, Network and Security Research Center, Department of Computer Science and Engineering, Pennslyvania State University, University Park, PA, USA, November, 2007.
  • Kevin Butler and Stephen McLaughlin and Patrick McDaniel, Non-Volatile Memory and Disks: Avenues for Policy Architectures, Technical Report NAS-TR-0074-2007, Network and Security Research Center, Department of Computer Science and Engineering, Pennslyvania State University, University Park, PA, USA, June, 2007.
  • William Enck and Sandra Rueda and Joshua Schiffman and Yogesh Sreenivasan and Luke St. Clair and Trent Jaeger and Patrick McDaniel, Protecting Users From ``Themselves'', Technical Report NAS-TR-0073-2007, Network and Security Research Center, Department of Computer Science and Engineering, Pennslyvania State University, University Park, PA, USA, June, 2007.
  • Dhananjay Bapat and Kevin Butler and Patrick McDaniel, Towards Automated Privilege Separation, Technical Report NAS-TR-0071-2007, Network and Security Research Center, Department of Computer Science and Engineering, Pennslyvania State University, University Park, PA, USA, May, 2007.
  • Patrick Traynor and Kevin Butler and William Enck and Patrick McDaniel, Realizing Massive-Scale Conditional Access Systems Through Attribute-Based Cryptosystems, Technical Report NAS-TR-0070-2007, Network and Security Research Center, Department of Computer Science and Engineering, Pennslyvania State University, University Park, PA, USA, May, 2007.
  • Luke St. Clair and Joshua Schiffman and Trent Jaeger and Patrick McDaniel, Establishing and Sustaining System Integrity via Root of Trust Installation, Technical Report NAS-TR-0067-2007, Network and Security Research Center, Department of Computer Science and Engineering, Pennslyvania State University, University Park, PA, USA, April, 2007.
  • Boniface Hicks and David King and Patrick McDaniel, Jifclipse: Development Tools for Security-Typed Language, Technical Report NAS-TR-0065-2007, Network and Security Research Center, Department of Computer Science and Engineering, Pennslyvania State University, University Park, PA, USA, April, 2007.
  • William Enck and Patrick McDaniel and Trent Jaeger, Protecting User Files by Reducing Application Access, Technical Report NAS-TR-0063-2007, Network and Security Research Center, Department of Computer Science and Engineering, Pennsylvania State University, University Park, PA, USA, February, 2007.
  • Lisa Johansen and Kevin Butler and William Enck and Patrick Traynor and Patrick McDaniel, Grains of SANs: Building Storage Area Networks from Memory Spots, Technical Report NAS-TR-0060-2007, Network and Security Research Center, Department of Computer Science and Engineering, Pennsylvania State University, University Park, PA, USA, January, 2007.
  • Patrick Traynor and Vikhyath Rao and Trent Jaeger and Patrick McDaniel and Thomas La Porta, From Mobile Phones to Responsible Devices, Technical Report NAS-TR-0059-2007, Network and Security Research Center, Department of Computer Science and Engineering, Pennsylvania State University, University Park, PA, USA, January, 2007.

2006

  1. Patrick McDaniel and Atul Prakash, Enforcing Provisioning and Authorization Policy in the Antigone System, Journal of Computer Security, Vol.14, No.6, Pages 483--511, November, 2006. [Link]
  2. Patrick McDaniel and Atul Prakash, Methods and Limitations of Security Policy Reconciliation, ACM Transactions on Information and System Security (TISSEC), Association for Computing Machinery, Vol.9, No.3, Pages 259-291, August, 2006. [Link]
  3. Patrick McDaniel and William Aiello and Kevin Butler and John Ioannidis, Origin Authentication in Interdomain Routing, Journal of Communication Networks, Elsevier, Vol.50, No.16, Pages 2953-2980, November, 2006. [Link]
  4. Boniface Hicks and Kiyan Ahmadizadeh and Patrick McDaniel, Understanding Practical Application Development in Security-Typed Languages, 22st Annual Computer Security Applications Conference (ACSAC), Pages 153--164, December, 2006. Miami, Fl. (\bf best student paper [Link]
  5. Luke St. Clair and Lisa Johansen and William Enck and Matthew Pirretti and Patrick Traynor and Patrick McDaniel and Trent Jaeger, Password Exhaustion: Predicting the End of Password Usefulness, Proceedings of 2nd International Conference on Information Systems Security (ICISS), Pages 37--55, December, 2006. Kolkata, India. [Link]
  6. Kevin Butler and William Enck and Jennifer Plasterr and Patrick Traynor and Patrick McDaniel, Privacy-Preserving Web-Based Email, Proceedings of 2nd International Conference on Information Systems Security (ICISS), Pages 116--131, December, 2006. Kolkata, India. [Link]
  7. Matthew Pirretti and Patrick Traynor and Patrick McDaniel and Brent Waters, Secure Attribute-Based Systems, Proceedings of the 13th ACM Conference on Computer and Communications Security (CCS), Pages 99-112, November, 2006. Alexandria, VA. [Link]
  8. Kevin Butler and William Aiello and Patrick McDaniel, Optimizing BGP Security by Exploiting Path Stability, Proceedings of the 13th ACM Conference on Computer and Communications Security (CCS), Pages 298-310, November, 2006. Alexandria, VA. [Link]
  9. Patrick Traynor and William Enck and Patrick McDaniel and Thomas La Porta, Mitigating Attacks on Open Functionality in SMS-Capable Cellular Networks, Proceedings of the Twelfth Annual International Conference on Mobile Computing and Networking (MobiCom), Pages 182-193, September, 2006. Los Angeles, CA. [Link]
  10. Patrick Traynor and Michael Chien and Scott Weaver and Boniface Hicks and Patrick McDaniel, Non-Invasive Methods for Host Certification, Proceedings of the Second IEEE Communications Society/CreateNet International Conference on Security and Privacy in Communication Networks (SecureComm), August, 2006. Baltimore, MD. [Link]
  11. Sophie Qiu and Patrick McDaniel and Fabian Monrose and Avi Rubin, Characterizing Address Use Structure and Stabillity of Origin Advertisement in Interdomain Routing, 11th IEEE Symposium on Computers and Communications, Pages 489-496, June, 2006. Pula-Cagliari, Sardinia, Italy. [Link]
  12. Patrick McDaniel and Shubho Sen and Oliver Spatscheck and Jacobus Van der Merwe and William Aiello and Charles Kalmanek, Enterprise Security: A Community of Interest Based Approach, Proceedings of Network and Distributed Systems Security 2006 (NDSS), February, 2006. San Diego, CA. [Link]
  13. Sophie Qiu and Fabian Monrose and Andreas Terzis and Patrick McDaniel, Efficient Techniques for Detecting False Origin Advertisements in Inter-domain Routing, Proceedings of The Second Workshop on Secure Network Protocols (NPSec), November, 2006. Santa Barbara. [Link]
  14. Shiva Chaitanya and Kevin Butler and Patrick McDaniel and Anand Sivasubramaniam, Design, Implementation and Evaluation of Security in iSCSI-based Network Storage Systems, Proceedings of 2nd International Workshop on Storage Security and Survivability (StorageSS 2006), October, 2006. Alexandria, Virginia. [Link]
  15. Trent Jaeger and Patrick McDaniel and Luke St. Clair and Ramon Caceres and Reiner Sailer, Shame on Trust in Distributed Systems, Proceedings of the First Workshop on Hot Topics in Security (HotSec '06), July, 2006. Vancouver, B.C., Canada. [Link]
  16. Kevin Butler and Patrick McDaniel and Sophie Qiu, BGPRV: A Library for Fast and Efficient Routing Data Manipulation, Proceedings of DETER Community Workshop, June, 2006. Arlington, VA. [Link]
  17. Kevin Butler and Patrick McDaniel, Testing Large Scale BGP Security in Replayable Network Environments, Proceedings of DETER Community Workshop, June, 2006. Arlington, VA. [Link]
  18. Boniface Hicks and David King and Patrick McDaniel and Michael Hicks, Trusted Declassification: High-level Policy for a Security-Typed Language, Proceedings of ACM SIGPLAN Workshop on Programming Languages and Analysis for Security, Pages 65-74, June, 2006. Ottawa, Canada. [Link]

Technical Reports

  • Luke St. Clair and Joshua Schiffman and Trent Jaeger and Patrick McDaniel, Sum of the Parts: Composing Trust from Validation Primitives, Technical Report NAS-TR-0056-2006, Network and Security Research Center, Department of Computer Science and Engineering, Pennsylvania State University, University Park, PA, USA, November, 2006.
  • Boniface Hicks and Sandra Rueda and Trent Jaeger and Patrick McDaniel, Integrating SELinux with Security-typed Languages, Technical Report NAS-TR-0052-2006, Network and Security Research Center, Department of Computer Science and Engineering, Pennsylvania State University, University Park, PA, USA, October, 2006.
  • Patrick Traynor and Kevin Butler and William Enck and Kevin Borders and Patrick McDaniel, \em malnets: Large-Scale Malicious Networks via Compromised Wireless Access Points, Technical Report NAS-TR-0048-2006, Network and Security Research Center, Department of Computer Science and Engineering, Pennsylvania State University, University Park, PA, USA, September, 2006.
  • Sunam Ryu and Kevin Butler and Patrick Traynor and Patrick McDaniel, Leveraging Identity-based Cryptography for Node ID Assignment in Structured P2P Systems, Technical Report NAS-TR-0043-2006, Network and Security Research Center, Department of Computer Science and Engineering, Pennsylvania State University, University Park, PA, USA, August, 2006.
  • Wesam Lootah and William Enck and Patrick McDaniel, TARP: Ticket-based Address Resolution Protocol (\it extended version), Technical Report NAS-TR-0046-2006, Network and Security Research Center, Department of Computer Science and Engineering, Pennsylvania State University, University Park, PA, USA, August, 2006.
  • Patrick McDaniel, Understanding Equivalance in High-Level and Information Flow Policy, Technical Report NAS-TR-0042-2006, Network and Security Research Center, Department of Computer Science and Engineering, Pennsylvania State University, University Park, PA, USA, July, 2006.

2005

  1. Patrick McDaniel and Avi Rubin, \it Guest Editoral: Special Issue on Web Security, Computer Networks, Elsevier, Vol.22, No.2, 2005. [Link]
  2. Matthew Pirretti and Sencun Zhu and Vijaykrishnan Narayanan and Patrick McDaniel and Mahmut Kandemir and Richard Brooks, The Sleep Deprivation Attack in Sensor Networks: Analysis and Methods of Defense, International Journal of Distributed Sensor Networks, Vol.2, No.3, Pages 267-287, June, 2005. [Link]
  3. Kevin Butler and Patrick McDaniel, Understanding Mutable Internet Pathogens, or How I Learned to Stop Worrying and Love Parasitic Behavior, Proceedings of 1st International Conference on Information Systems Security (ICISS), Springer-Verlag Lecture Notes in Computer Science, volume 3803, Pages 36-48, December, 2005. Kolkata, India. \it Invited Paper [Link]
  4. Wesam Lootah and William Enck and Patrick McDaniel, TARP: Ticket-Based Address Resolution Protocol, 21st Annual Computer Security Applications Conference (ACSAC), Pages 95-103, December, 2005. Tuscon, AZ. [Link]
  5. William Enck and Patrick Traynor and Patrick McDaniel and Thomas La Porta, Exploiting Open Functionality in SMS-Capable Cellular Networks, Proceedings of the 12th ACM Conference on Computer and Communications Security (CCS), Pages 393--404, May, 2005. Alexandria, VA. [Link]
  6. Matthew Pirretti and Sencun Zhu and Vijaykrishnan Narayanan and Patrick McDaniel and Mahmut Kandemir and Richard Brooks, The Sleep Deprivation Attack in Sensor Networks: Analysis and Methods of Defense, Proceedings of the Innovations and Commercial Applications of Distributed Sensor Networks Symposi, October, 2005. Bethesda, Maryland. (\bf best paper [Link]
  7. Louis Kruger and Somesh Jha and Patrick McDaniel, Privacy Preserving Clustering, 10th European Symposium on Research in Computer Security (ESORICS '05), September, 2005. Milan, Italy [Link]
  8. Heesook Choi and William Enck and Jaesheung Shin and Patrick McDaniel and Thomas La Porta, Secure Reporting of Traffic Forwarding Activity in Mobile Ad Hoc Networks, MobiQuitous 2005, July, 2005. San Diego, CA [Link]
  9. Ali Al-Lawati and Dongwon Lee and Patrick McDaniel, Blocking in Private Information Matching, Proceedings of Second International ACM SIGMOD Workshop on Information Quality in Information Systems, June, 2005. Baltimore, MD [Link]
  10. William Aiello and Charles Kalmanek and Patrick McDaniel and Shubho Sen and Oliver Spatscheck and Jacobus Van der Merwe, Analysis of Communities Of Interest in Data Networks, Passive and Active Measurement Workshop 2005, March, 2005. Boston, M [Link]
  11. Patrick McDaniel, Conference Proceedings, The 14th USENIX Security Symposium, USENIX, August, 2005. Baltimore, M.

Technical Reports

  • Heesook Choi and Patrick McDaniel and Thomas La Porta, Privacy Preserving Communication in MANETs, Technical Report NAS-TR-0031-2006, Network and Security Research Center, Department of Computer Science and Engineering, Pennsylvania State University, University Park, PA, USA, December, 2005.
  • Matthew Pirretti and Vijaykrishnan Narayanan and Patrick McDaniel and Bharat Madan, SLAT: Secure Localization with Attack Tolerance, Technical Report NAS-TR-0024-2005, Network and Security Research Center, Department of Computer Science and Engineering, Pennsylvania State University, University Park, PA, USA, August, 2005.
  • Hosam Rowaihy and William Enck and Patrick McDaniel and Thomas La Porta, Limiting Sybil Attacks in Structured Peer-to-Peer Networks, Technical Report NAS-TR-0017-2005, Network and Security Research Center, Department of Computer Science and Engineering, Pennsylvania State University, University Park, PA, USA, July, 2005.
  • Boniface Hicks and David King and Patrick McDaniel, Declassification with Cryptographic Functions in a Security-Typed Language, Technical Report NAS-TR-0004-2005, Network and Security Center, Department of Computer Science, Pennsylvania State University, January, 2005.

2004

  1. Patrick McDaniel, Computer and Network Authentication, Handbook of Information Security, John Wiley and Sons, September, 2004. Eds. Hossein Bidgoli.
  2. Simon Byers and Lorrie Cranor and Eric Cronin and Dave Kormann and Patrick McDaniel, Analysis of Security Vulnerabilities in the Movie Production and Distribution Process, Telecommunications Policy, Vol.28, No.8, Pages 619-644, August, 2004. [Link]
    • Supercedes: Simon Byers and Lorrie Cranor and Eric Cronin and Dave Kormann and Patrick McDaniel, Analysis of Security Vulnerabilities in the Movie Production and Distribution Process, Proceedings of 2003 ACM Workshop on Digital Rights Management, ACM, October, 2003. Washington, DC, also appeared in Telecommunications Policy Research Conference -- September 2003 [Link]
  3. Simon Byers and Lorrie Cranor and Eric Cronin and Dave Kormann and Patrick McDanie, Exposing Digital Content Piracy: Approaches, Issues and Experiences, Thirty-Eighth Conference on Signals, Systems, and Computers, Pages 45--50, Nov, 2004. Monterey, CA. \it Invited paper
  4. Simon Byers and Lorrie Cranor and David Kormann and Patrick McDaniel, Searching for Privacy: Design and Implementation of a P3P-Enabled Search Engine, Proceedings of 2004 Workshop on Privacy Enhancing Technologies (PETS), May, 2004. Toronto, Canad [Link]
  5. Hao Wang and Somesh Jha and Patrick McDaniel and Miron Livn, Security Policy Reconciliation in Distributed Computing Environments, Proceedings of 5th International Workshop on Policies for Distributed Systems and Networks (Policy 2004), IEEE Computer Society Press, Pages 137-146, June, 2004. Yorktown Heights, N [Link]
  6. Patrick McDaniel, Policy Evolution: Autonomic Environmental Security, Software Engineering Research Center Showcase, USA, December, 2004.

Technical Reports

  • Dan Pei and William Aiello and Anna Gilbert and Patrick McDaniel, Origin Disturbances in BGP, Technical Report TD-62TJJF8, AT&T Labs - Research, Florham Park, NJ, July, 2004.

2003

  1. Patrick McDaniel, IPsec, Encyclopedia of Information Security, Kluwer, 2003. Eds. Hossein Bidgoli.
  2. Patrick McDaniel, Policy, Encyclopedia of Information Security, Kluwer, 2003. Eds. Hossein Bidgoli.
  3. William Aiello and John Ioannidis and Patrick McDaniel, Origin Authentication in Interdomain Routing, Proceedings of 10th ACM Conference on Computer and Communications Security (CCS), ACM, Pages 165-178, October, 2003. Washington, DC [Link]
  4. Eric Cronin and Sugih Jamin and Tal Malkin and Patrick McDaniel, On the Performance, Feasibility, and Use of Forward Secure Signatures, Proceedings of 10th ACM Conference on Computer and Communications Security (CCS), ACM, Pages 131-144, October, 2003. Washington, DC [Link]
  5. Patrick McDaniel, On Context in Authorization Policy, 8th ACM Symposium on Access Control Models and Technologies (SACMAT), ACM, Pages 80-8, June, 2003. Como, Italy [Link]
  6. Geoff Goodell and William Aiello and Tim Griffin and John Ioannidis and Patrick McDaniel and Avi Rubin, Working Around BGP: An Incremental Approach to Improving Security and Accuracy of Interdomain Routing, Proceedings of Network and Distributed Systems Security 2003 (NDSS), Internet Society, Pages 75-8, February, 2003. San Diego, CA [Link]
  7. Hugh Harney and Uri Meth and Andrea Colegrove and Angela Schuett and Patrick McDaniel and Gavin Kenny and Haitham Cruickshank and Sunil Iyengar, GSAKMP (\it Draft), Internet Research Task Force, August, 2003.
  8. Patrick McDaniel and Atul Prakash, A Flexible Architecture for Security Policy Enforcement, Proceedings of DARPA Information Survivability Conference and Exposition III, Research Summaries, Pages 234-239, April, 2003. [Link]
  9. Jim Irrer and Atul Prakash and Patrick McDaniel, Antigone: Policy-Based Secure Group Communications Systems and AMirD: Antigone-Based Secure File Mirroring System, Proceedings of DARPA Information Survivability Conference and Exposition III, Demo Summaries, Pages 44-4, April, 2003.

2002

  1. Patrick McDaniel, Authentication, The Internet Encyclopedia, John Wiley and Sons, 2002.
  2. Patrick McDaniel and Atul Prakash, Methods and Limitations of Security Policy Reconciliation, 2002 IEEE Symposium on Security and Privacy, IEEE Computer Society Press, Pages 73-87, May, 2002. Oakland, CA [Link]
  3. Patrick McDaniel and Sugih Jamin, Windowed Key Revocation in Public Key Infrastructures, NASA Tech Briefs, Pages 55, August, 2002. [Link]

2001

  1. Patrick McDaniel and Atul Prakash and Jim Irrer and Sharad Mittal and Thai-Chuin Thuang, Flexibly Constructing Secure Groups in Antigone 2.0, Proceedings of DARPA Information Survivability Conference and Exposition II, IEEE Computer Society Press, Pages 55-67, June, 2001. Los Angeles, CA [Link]
  2. Hugh Harney and Andrea Colegrove and Patrick McDaniel, Principles of Policy in Secure Groups, Proceedings of Network and Distributed Systems Security 2001 (NDSS), Internet Society, Pages 125-13, February, 2001. San Diego, CA [Link]
  3. Patrick McDaniel and Atul Prakash, Antigone Secure Group Communication System, NASA Tech Briefs, 2001. [Link]
  4. Patrick McDaniel, Policy Management in Secure Group Communication, PhD Thesis, University of Michigan, Ann Arbor, MI, August, 2001.
  5. Tom Hardjono and Hugh Harney and Patrick McDaniel and Andrea Colegrove and Peter Dinsmore, Group Security Policy Token (\it Draft), Internet Research Task Force, Secure Multicast Research Group (SMuG), November, 2001.

2000

  1. Patrick McDaniel and Sugih Jamin, Windowed Certificate Revocation, Proceedings of IEEE INFOCOM 2000, IEEE, Pages 1406-1414, March, 2000. Tel Aviv, Israel [Link]
  2. Patrick McDaniel and Avi Rubin, A Response to `Can We Eliminate Certificate Revocation Lists?', Proceedings of Financial Cryptography 2000, International Financial Cryptography Association (IFCA), February, 2000. Anguilla, British West Indies [Link]
  3. Patrick McDaniel and Hugh Harney and Andrea Colegrove and Atul Prakash and Peter Dinsmore, Multicast Security Policy Requirements and Building Blocks (\it Draft), Internet Research Task Force, Secure Multicast Research Group (SMuG), November, 2000.
  4. Patrick McDaniel and Hugh Harney and Peter Dinsmore and Atul Prakash, Multicast Security Policy (\it Draft), Internet Research Task Force, Secure Multicast Research Group (SMuG), June, 2000.

Technical Reports

  • Patrick McDaniel and Atul Prakash, Lightweight Failure Detection in Secure Group Communication, Technical Report CSE-TR-428-00, Electrical Engineering and Computer Science, University of Michigan, June, 2000.

1999

  1. Patrick McDaniel, 8th USENIX Security Symposium Conference Summaries, Potpourri Session, USENIX Login Magazine, Pages 9-12, November, 1999. [Link]

Technical Reports

  • Patrick McDaniel and Atul Prakash and Peter Honeyman, Antigone: A Flexible Framework for Secure Group Communication, Technical Report 99-2, Center for Information Technology Integration, September, 1999.
  • Patrick McDaniel and Avi Rubin, A Response to ``Can We Eliminate Certificate Revocation Lists?'', Technical Report 99.8.1, AT&T Labs - Research, Florham Park, NJ, August, 1999.
  • Andrew Adamson and Charles J. Antonelli and Kevin Coffman and Patrick McDaniel and Jim Rees, Secure Distributed Virtual Conferencing: Multicast or Bust, Technical Report 99-1, Center for Information Technology Integration, January, 1999.

Patrick McDaniel - patrickmcdaniel.org