Positions

Education

Teaching Experience

• Project Lead and Instructor, SISMAT Security Seminar. ISTS, Dartmouth College (Summer 2008, 7 students)
• Instructor for COMS W1001: Introduction To Computers (Spring 2006, 25 students)
• Instructor for COMS W1003: Introduction To Computer Programming In C (Fall 2005, 46 students)
• Instructor for COMS W1001: Introduction to Computers (Summer 2004, 8 students)
• Instructor for COMS W1001: Introduction to Computers (Summer 2003, 6 students)
• TA for COMS W4180: Network Security (Fall 2003, 61 students)
• TA for COMS W4115: Programming Languages & Translators (Spring 2003, 61 students)
• TA for CSC 340: Programming in the Large. Computer Science Department, The College of New Jersey (Fall 2000, 24 students)
• Academic Tutor: The Center for Academic Enhancement, The College of New Jersey (1999 - 2002)

Program Committee Service

• Program Committee, Security and Privacy Track, the 18^th World Wide Web Conference (WWW 2009)
• Program Committee, The 5^th Information Security Practice and Experience Conference (ISPEC 2009)
• Program Committee, The 16^th Network and Distributed System Security Symposium (NDSS 2009)
• Program Committee, The 17^th New Security Paradigms Workshop (NSPW 2008).
• Program Committee, The 15^th Network and Distributed System Security Symposium (NDSS 2008)
• Program Committee, The 8^th International Workshop on Information Security Applications (WISA 2007).
• Program Committee, The 3^rd International SKLOIS Conference on Information Security and Cryptology (Inscrypt 2007).
• Program Committee, The 16^th New Security Paradigms Workshop (NSPW 2007).
• Program Committee, Communications and Multimedia Security (CMS 2006).
• Program Committee, The 15^th New Security Paradigms Workshop (NSPW 2006).
• Associate Editor, ACM Crossroads (January 2006 - June 2006).

Conference Organization

• Publicity Co-Chair, 13^th ACM Conference on Computer and Communications Security CCS 2006.
• Submissions, Workshop on Rapid Malcode (WORM) 2005
• Webmaster, ACNS 2005 Conference
• Webmaster, OpenSig 2003 Workshop

Awards and Support

• I3P Fellow. "Flexible and Automatic Dataflow Tagging and Control for User--Level Programs", Institute for Information Infrastructure Protection (I3P), September 2008 - August 2009. ($150,000).
• Co-PI (with David August, Sal Stolfo, and Simha Sethumadhavan), "Automatically Parallelizing Legacy Binary Code for Multi-Core Architectures via Extraction of Self-Similarity" DARPA, May 2008 - June 2009 ($300,000)
• USENIX Student Stipend, USENIX Security 2006
• USENIX Student Stipend, USENIX Annual Technical Conference 2005
• Charles H. Goldberg Award for Academic Excellence and Graduate Study in Computer Science, May 2002

Conference Publications and Articles

1. New Directions for Hardware-assisted Trusted Computing Policies.

   Sergey Bratus, Michael E. Locasto, Ashwin Ramaswamy, and Sean W. Smith. Conference on the Future of Trust in Computing (FTC 2008). June 2008. Berlin, Germany.
   [slides]

2. The Hidden Difficulties of Watching and Rebuilding Networks.

   Michael E. Locasto and Angelos Stavrou. IEEE Security and Privacy, vol. 6, no. 2, pp. 79-82, Mar/Apr, 2008.

3. Pushback for Overlay Networks: Protecting against Malicious Insiders.

   Angelos Stavrou, Michael E. Locasto, and Angelos D. Keromytis. In the Proceedings of the 6^th Applied Cryptography and Network Security Conference (ACNS 2008). June 3--6, 2008. New York, NY.

4. Casting Out Demons: Sanitizing Training Data for Anomaly Sensors.

   Gabriela F. Cretu, Angelos Stavrou, Michael E. Locasto, Salvatore J. Stolfo, and Angelos D. Keromytis. In the Proceedings of the IEEE Symposium on Security and Privacy. May 2008, Oakland, California, USA.
   (Acceptance Rate: 11.2%)

5. SSARES: Secure Searchable Automated Remote Email Storage.

   Adam J. Aviv, Michael E. Locasto, Shaya Potter, and Angelos D. Keromytis. In the Proceedings of the 23^rd Annual Computer Security Applications Conference (ACSAC 2007). December 2007, Miami Beach, FL.
   (Acceptance rate: 22%)

6. Defending Against Next Generation Attacks Through Network/Endpoint Collaboration and Interaction.

   Spiros Antonatos, Michael E. Locasto, Stelios Sidiroglou, Angelos D. Keromytis, and Evangelos Markatos. In the Proceedings of the 3^rd European Conference on Computer Network Defense (EC2ND). October 2007, Heraclion, Greece.
   (invited paper)

7. On the Infeasibility of Modeling Polymorphic Shellcode.

   Yingbo Song, Michael E. Locasto, Angelos Stavrou, Angelos D. Keromytis, and Salvatore J. Stolfo. In the Proceedings of the 14^th ACM Conference on Computer and Communications Security (CCS 2007). pp. 541--551. October 2007, Alexandria, VA. A portion of the material in this paper appears in an exploratory form in the Columbia University CS Tech Report CUCS-007-07.
   (Acceptance rate: 18.15%)

8. From STEM to SEAD: Speculative Execution for Automated Defense.

   Michael E. Locasto, Angelos Stavrou, Gabriela F. Cretu, and Angelos D. Keromytis. In Proceedings of the USENIX Annual Technical Conference (USENIX ATC 2007). pp. 219--232. June 2007, Santa Clara, CA. An early draft of this work is available as Columbia University CS Tech Report CUCS-004-07.
   (Acceptance rate: 18.75%)

9. ShieldGen: Automated Data Patch Generation for Unknown Vulnerabilities with Informed Probing.

   Weidong Cui, Marcus Peinado, Helen J. Wang, and Michael E. Locasto. In Proceedings of the IEEE Symposium on Security and Privacy. May 2007, Oakland, California, USA.
   (Acceptance Rate: 11.7%)

10. W3Bcrypt: Encryption as a Stylesheet.

    Angelos Stavrou, Michael E. Locasto, and Angelos D. Keromytis. In Proceedings of the 4^th Applied Cryptography and Network Security Conference (ACNS 2006). pp. 349--364. June 6--9, 2006, Singapore. An earlier draft of this work is available as Columbia University CS Tech Report CUCS-003-06.
    (Acceptance Rate: 15.1%)

11. Software Self-Healing Using Collaborative Application Communities.

    Michael E. Locasto, Stelios Sidiroglou, and Angelos D. Keromytis. In the Proceedings of the Internet Society (ISOC) Symposium on Network and Distributed Systems Security (NDSS 2006). pp. 95--106. February 2006, San Diego, CA.
    (Acceptance Rate: 13.6%)

12. FLIPS: Hybrid Adaptive Intrusion Prevention.

    Michael E. Locasto, Ke Wang, Angelos D. Keromytis, and Salvatore J. Stolfo. In Proceedings of the 8^th International Symposium on Recent Advances in Intrusion Detection (RAID 2005). pp. 82--101. Sept. 7-9, 2005. Seattle, WA.
    (Acceptance rate: 20.4%)

13. Building A Reactive Immune System for Software Services.

    Stelios Sidiroglou, Michael E. Locasto, Stephen W. Boyd, and Angelos D. Keromytis. In Proceedings of the USENIX Annual Technical Conference, pp. 149--161. April 2005. An earlier version of this paper is available as Columbia University CS Tech Report CUCS-038-04.
    (Acceptance rate: 20.3%)

14. CamouflageFS: Increasing the Effective Key Length in Cryptographic Filesystems on the Cheap.

    Michael E. Locasto and Angelos D. Keromytis. In Proceedings of the 2^nd Applied Cryptography and Network Security Conference (ACNS 2004), pp. 1--15. June 2004. Yellow Mountain, China.
    (Acceptance rate: 12.1%)

15. Using the Web to Enhance and Transform Education.

    Michael J. Hulme and Michael E. Locasto. ACM Crossroads 10.1. Fall 2003.

Workshops

1. Online Network Forensics for Automatic Repair Validation.

   Michael E. Locasto, Matthew Burnside, and Angelos D. Keromytis. To appear in Proceedings of the 3^rd International Workshop on Security (IWSEC 2008). November 25-27, 2008, Kagawa, Japan.

2. Return Value Predictability Profiles for Self-Healing.

   Michael E. Locasto, Angelos Stavrou, Gabriela F. Cretu, Angelos D. Keromytis, and Salvatore J. Stolfo. To appear in Proceedings of the 3^rd International Workshop on Security (IWSEC 2008). November 25-27, 2008, Kagawa, Japan.

3. Research Directions for Network Intrusion Recovery.

   Michael E. Locasto, Matthew Burnside, and Darrell Bethea. SOUPS Workshop on Usable IT Security Management (USM) 2008. July 23, 2008, Pittsburgh, PA USA.
   (invited paper)

4. Online Training and Sanitization of AD Systems (poster/extended abstract).

   Gabriela F. Cretu, Angelos Stavrou, Michael E. Locasto, and Salvatore J. Stolfo. NIPS 2007 Workshop on Machine Learning in Adversarial Environments for Computer Security. December 2007. Whistler, B.C., Canada.

5. Panel: The Future of Biologically-Inspired Security: Is There Anything Left to Learn?.

   Anil Somayaji, Michael Locasto, and Jan Feyereisl. In Proceedings of the 16^th New Security Paradigms Workshop (NSPW 2007). September 2007, White Mountain Hotel and Resort, New Hampshire, USA.
   (invited panel)

6. Self-Healing: Science, Engineering, and Fiction.

   Michael E. Locasto. In proceedings of the 16^th New Security Paradigms Workshop (NSPW 2007). September 2007, White Mountain Hotel and Resort, New Hampshire, USA.

7. Dark Application Communities.

   Michael E. Locasto, Angelos Stavrou, and Angelos D. Keromytis. In the proceedings of the 15^th New Security Paradigms Workshop (NSPW 2006). September 2006, Schloss Dagstuhl, Germany.

8. PalProtect: A Collaborative Security Approach to Comment Spam.

   Benny Wong, Michael E. Locasto, and Angelos D. Keromytis. In Proceedings of the IEEE Information Assurance Workshop (IAW 2006). June 2006, West Point, NY. An earlier draft of this work is available as Columbia University CS Tech Report CUCS-014-06.

9. Speculative Virtual Verification: Policy-Constrained Speculative Execution.

   Michael E. Locasto, Stelios Sidiroglou, and Angelos D. Keromytis. In Proceedings of the 14^th New Security Paradigms Workshop (NSPW 2005). pp. 119--124. Sept. 20-23, 2005. Lake Arrowhead, CA.

10. Application Communities: Using Monoculture for Dependability.

    Michael E. Locasto, Stelios Sidiroglou, and Angelos D. Keromytis. In Proceedings of the 1^st Workshop on Hot Topics in System Dependability (HotDep-05), held in conjunction with the International Conference on Dependable Systems and Networks (DSN 2005). pp. 288--292. June 30, 2005. Yokohama, Japan.

11. Towards Collaborative Security and P2P Intrusion Detection.

    Michael E. Locasto, Janak Parekh, Angelos D. Keromytis, and Salvatore J. Stolfo. In Proceedings of the IEEE Information Assurance Workshop (IAW). pp. 333--339. June 15-17, 2005. West Point, NY. An earlier form of this paper appeared as Columbia University CS Tech Report CUCS-012-04.

Journal Publications

1. On The General Applicability of Instruction-Set Randomization.

   Stephen W. Boyd, Gaurav S. Kc, Michael E. Locasto, Angelos D. Keromytis, and Vassilis Prevelakis. (Accepted, under revision) in the IEEE Transactions on Dependable and Secure Computing (TDSC).

2. Hardware Support For Self-Healing Software Services.

   Stelios Sidiroglou, Michael E. Locasto, and Angelos D. Keromytis. In ACM SIGARCH Computer Architecture News, vol. 33, no. 1, pp. 42--47. March 2005. Also appeared in the Proceedings of the Workshop on Architectural Support for Security and Anti-Virus (WASSA), held in conjunction with the 11^th International Conference on Architectural Support for Programming Languages and Operating Systems (ASPLOS-XI), pp. 37--43. October 2004. Boston, MA.

Technical Reports & Work In Progress

1. Building a Better Mousetrap: Scritable and Semantically Expressive Hardware-assisted Memory Trapping.

   Sergey Bratus, Michael E. Locasto, Ashwin Ramaswamy, and Sean W. Smith. Tech Report TR2008-627. Department of Computer Science, Dartmouth College. July 2008.

2. Post-Patch Retraining for Host-Based Anomaly Detection.

   Michael E. Locasto, Gabriela F. Cretu, Shlomo Hershkop, and Angelos Stavrou. Tech Report CUCS-035-07. Department of Computer Science, Columbia University. October 2007.

3. Speculative Execution as an Operating System Service.

   Michael E. Locasto and Angelos D. Keromytis. Tech Report CUCS-024-06. Department of Computer Science, Columbia University. May 2006.

4. Quantifying Application Behavior Space for Detection and Self-Healing.

   Michael E. Locasto, Angelos Stavrou, Gabriela F. Cretu, Angelos D. Keromytis and Salvatore J. Stolfo. Tech Report CUCS-017-06. Department of Computer Science, Columbia University. April 2006.

5. Bloodhound: Searching Out Malicious Input in Network Flows for Automatic Repair Validation.

   Michael E. Locasto, Matthew Burnside, and Angelos D. Keromytis. Tech Report CUCS-016-06. Department of Computer Science, Columbia University. April 2006.

6. PachyRand: SQL Randomization for the PostgreSQL JDBC Driver.

   Michael E. Locasto and Angelos D. Keromytis. Tech Report CUCS-033-05. Department of Computer Science, Columbia University. October 2004.

7. AIMEncrypt: A Case Study of the Dangers of Cryptographic Urban Legends.

   Michael E. Locasto. Technical Report CUCS-030-03. Department of Computer Science, Columbia University, Fall 2003.

8. SPCL: Structured Policy Command Language

   Michael E. Locasto, M. Burnside, C. Li, A. Wahl. Spring 2003.

9. PCXSES: Protocol for Code Exchange in Survivable Embedded Systems

   Michael E. Locasto. Fall 2002.

Selected Talks

• "Preparing the Agile Cyber Defender at Dartmouth", SAFTAS Workshop on Preparing the Agile Cyber Defender, 28 & 29 May 2008.
• "Research Directions for Network Intrusion Recovery", UBC LERSSE Group, 7 May 2008
• "ARV: Automatic Repair Validation", USENIX Security Work-in-Progress (WIP) Report, 4 August 2006
• "W3Bcrypt: Encryption as a Stylesheet", Stony Brook University SecLab seminar, 14 December 2005
• "SVV: Policy-Constrained Speculative Execution", ACSAC 2005, NSPW Panel, 8 December 2005
• "Host and Network Defense Systems for Intrusion Reaction", PhD Candidacy Exam. 30 November 2004, Columbia University.
• "Collaborative Security: P2P Intrusion Detection", 23 September 2004, TCNJ FACTS Seminar
• "Code Red Worm Propagation Modeling and Analysis", 21 March 2003, TCNJ FACTS Seminar

Supervised Research Projects

• Supervised Research Project: OpenBLT: An Open Source Binary-Level Tainted Dataflow Analyzer, Hassan Ajmal (2007)
• Supervised Research Project: Mapping the x86 Decoder Space, Yingbo Song (2006)
• Co-supervised Research Project: Automatic Repair Validation Library, Mack Lu (2006, with Matt Burnside)
• Supervised Independent Study: Programming in C, Reneé Stroebel (2006)
• Supervised Research Project: PalProtect, Benny Wong (2006)
• Co-supervised Research Project: STEM, Marc Eisenbarth, Adam Marczyk (2005, with Stelios Sidiroglou)
• Co-supervised Research Project: SMFS, Somdutt Patnaik (2005-2006, with Angelos Stavrou)
• Supervised Research Project: PayL-inline, Ron Alleyne (2005)
• Supervised Research Project: P2P Intrusion Detection Software (PIDS), Aditi Jhaveri, Srivathsan Venkat, Prashant Puri (2004)
• Supervised Research Project: Survivable JVM, Kristina Holst (2004)
• Supervised Research Project: Java ARM Assembler, R. Ordonez (2004)

Consulting/Internships

• RSDE Intern: Incubation, Microsoft Corporation (May 2006 - August 2006)
• Consultant: Columbia University STV (for Revive Systems, Inc., now StackSafe, Inc.) (June 2005 - August 2005)
• Consultant: Rapid7, Inc. (May 2004 - September 2004)
• Consultant: PFS Marketing (May 1999 - January 2003)
• Intern: Merck & Co., Inc. (May 2001 - August 2001)
• Intern: Merck & Co., Inc. (May 2000 - August 2000)