I am Associate Director of the Florida Institute for Cybersecurity Research and a University Term Professor. I joined the University of Florida in 2014 as part of the UF Rising to National Preeminence Hiring Program. My research focuses on the security of computer systems and networks. Recent work in my group has included securing embedded systems and protocols, establishing the trustworthiness of data and maintaing its provenance, mobile device security, protection of Internet traffic and the SSL infrastructure, and attacks and defenses against the cloud infrastructure. Some of my other research areas of interest include securing Internet routing, malware propagation, applied cryptosystems, adversarial machine learning, cyber-physical systems, and trustworthy computing. I received a National Science Foundation CAREER award in 2013, and was named International Educator of the Year within the Herbert Wertheim College of Engineering in 2017 for my work on developing global standards for securing digital financial services in the developing world. I am co-chair of the International Telecommunication Union's Security, Infrastructure, and Trust Working Group as part of the Financial Inclusion Global Initiative. I am a Senior Member of the IEEE and ACM, and co-founder of CryptoDrop.
Note: We have built a world-class security research group at the University of Florida. I am looking for talented and motivated students students with an interest in systems security and doing inspiring work with real-world impact. The most important quality is intellectual curiousity and the ability to be a self-starter, but skills such as binary analysis, embedded systems, trustworthy computing, mobile security, or machine learning would be particularly useful. If you are not at student at the University of Florida and you are interested in my research, please apply to the program.
Congratulations to Dr. Dave Tian, who graduated with his PhD. Dave is joining Purdue University as an Assistant Professor of Computer Science.
I am extremely honored to be named the Arnold and Lisa Goldberg Rising Star Associate Professor in Computer Science. Thank you to Arnold and Lisa Goldberg for generously endowing this professorship and supporting computer science at the University of Florida.
Our paper "LBM: A Security Framework for Peripherals within the Linux Kernel" was accepted for publication at the 2019 IEEE Symposium on Security and Privacy (Oakland).
Our papers "Digital Healthcare-Associated Infection Analysis of a Major Multi-Campus Hospital System" and "Practical Hidden Voice Attacks against Speech and Speaker Recognition Systems" were accepted for publication at the 2019 ISOC Symposium on Network and Distibuted Systems Security (NDSS).
I am honored to be named a University of Florida Term Professor.
Our paper "Mitigating Risk while Complying with Data Retention Laws" was accepted for publication at the 2018 ACM Conference on Computer and Communications Security (CCS).
Our paper "ATtention Spanned: Comprehensive Vulnerability Analysis of AT Commands within the Android Ecosystem" was accepted for publication at the 2018 USENIX Security Symposium. Read more about this work, which was widely covered by media outlets including Wired.
Congraulations to my PhD students Grant Hernandez and Dave Tian for winning first and second place at the SEC Academic Conference's poster competition.
Congraulations to my former PhD student, Adam Bates, who won an NSF CAREER award. Adam also received the ACM SIGSAC Doctoral Dissertation Runner-Up Award in October for his outstanding thesis.
Our papers "SOK: ``Plug and Pray'' Today -- Understanding USB Insecurity in Versions 1 through C" and "Sonar: Detecting SS7 Redirection Attacks With Audio-Based Distance Bounding" were accepted for publication at the 2018 IEEE Symposium on Security and Privacy.
I am delighted to be serving as technical program co-chair of ACM WiSec 2018. Please send your excellent work in securing wireless and mobile networks and applications to WiSec: the deadline for submissions is March 1, 2018.
Our paper "FirmUSB: Vetting USB Device Firmware using Domain Informed Symbolic Execution Storage Devices" was accepted for publication at the 2017 ACM Conference on Computer and Communications Security (CCS).More News
"You must be the change you wish to see in the world."
— Mohandas Gandhi