Sekar, R. - Department of Computer Science, SUNY at Stony Brook

• Specification-based Anomaly Detection: A New Approach for Detecting Network Intrusions
• Taint-Enhanced Policy Enforcement: A Practical Approach to Defeat a Wide Range of Attacks
• One-way Isolation: An Effective Approach for Realizing Safe Execution Environments
• A High-Performance Network Intrusion Detection System R. Sekar Y. Guang S. Verma T. Shanbhag
• Model-Carrying Code (MCC): A New Paradigm for Mobile-Code Security
• An Efficient and Backwards-Compatible Transformation to Ensure Memory Safety of C Programs
• Inferring Higher Level Policies from Firewall Rules Alok Tongaonkar, Niranjan Inamdar, and R. Sekar
• PAriCheck: An Efficient Pointer Arithmetic Checker for C Yves Younan
• Practical Proactive Integrity Preservation: A Basis for Malware Defense
• Generation of All Counter-Examples for Push-Down Systems
• Isolated Program Execution: An Application Transparent Approach for Executing Untrusted Programs
• An Approach for Secure Software Installation
• On Preventing Intrusions by Process Behavior Monitoring Department of Computer Science
• Fast Packet Classification for Snort by Native Compilation of Rules
• Online Signature Generation for Windows Systems Lixin Li and James E. Just
• A Secure Composition Framework for Trustworthy Personal Information Assistants
• Practical Techniques for Regeneration and Immunization of COTS Applications Lixin Li Mark R. Cornwell E. Hultman James E. Just
• Fast Packet Classification using Condition Factorization
• Anomalous Taint Detection (Extended Abstract) Lorenzo Cavallaro1
• V-NetLab: An Approach for Realizing Logically Isolated Networks for Security Experiments
• Expanding Malware Defense by Securing Software Installations
• On the Limits of Information Flow Techniques for Malware Analysis and Containment
• Efficient Fine-Grained Binary Instrumentation with Applications to Taint-Tracking
• A Practical Mimicry Attack Against Powerful System-Call Monitors
• A Practical Mimicry Attack Against Powerful System-Call Monitors Chetan Parampalli, R. Sekar and Rob Johnson
• A Framework for Building Privacy-Conscious Composite Web Services V.N. Venkatakrishnan
• Practical Dynamic Taint Analysis for Countering Input Validation Attacks on Web Applications
• MCC End-User Management Framework Secure Systems Laboratory
• Dataflow Anomaly Detection Sandeep Bhatkar Abhishek Chaturvedi R. Sekar
• Fast and Automated Generation of Attack Signatures: A Basis for Building Self-Protecting Servers
• Efficient Techniques for Comprehensive Protection from Memory Error Exploits
• An Approach for Realizing Privacy-Preserving Web-Based Services
• Automatic Synthesis of Filters to Discard Buffer Overflow Attacks: A Step Towards Realizing Self-Healing Systems
• Using Predators to Combat Worms and Viruses: A Simulation-Based Study
• Model-Carrying Code: A Practical Approach for Safe Execution of Untrusted Applications
• An Approach for Detecting Self-Propagating Email Using Anomaly Detection
• Empowering Mobile Code Using Expressive Security Policies
• Model-Based Analysis of Configuration Vulnerabilities C.R. Ramakrishnan and R. Sekar
• A Fast Automaton-Based Method for Detecting Anomalous Program Behaviors R. Sekar M. Bendre D. Dhurjati P. Bollineni
• Building Survivable Systems: An Integrated Approach based on Intrusion Detection and Damage Containment
• Anomalous Taint Detection Lorenzo Cavallaro1
• On Supporting Active User Feedback in P3P V.N. Venkatakrishnan
• Provably Correct Runtime Enforcement of Non-Interference Properties
• Anti-Taint-Analysis: Practical Evasion Techniques Against Information Flow Based Malware Defense
• Experiences with Specification-based Intrusion Detection
• Automatic Generation of Buffer Overflow Attack Signatures: An Approach Based on Program Behavior Models
• SELF: a Transparent Security Extension for ELF Binaries
• Alcatraz: An Isolated Environment for Experimenting with Untrusted Software
• An Efficient Black-box Technique for Defeating Web Application Attacks Stony Brook University, Stony Brook, NY, USA
• Address Obfuscation: an Efficient Approach to Combat a Broad Range of Memory Error Exploits
• V-NetLab: A Cost-Effective Platform to Support Course Projects in Computer Security
• Address-Space Randomization for Windows Systems Lixin Li and James E. Just R. Sekar
• Data Space Randomization Sandeep Bhatkar1
• A Practical Technique for Containment of Untrusted Plug-ins Prateek Saxena
• Static Binary Analysis And Transformation For Sandboxing Untrusted Plugins A Thesis Presented
• Taint-Enhanced Anomaly Detection Lorenzo Cavallaro1
• A Server-and Browser-Transparent CSRF Defense for Web 2.0 Applications