His general research interests are in systems and network security, and cryptography. His current interests revolve around software hardening, system self-healing, network denial of service, information accountability, and privacy.
In the past, he was an active participant in the IETF (Internet Engineering Task Force), and in particular the IPsec and IPSP Working Groups. He occasionally contributed to the OpenBSD operating system: he was the primary author of the IPsec stack and the OpenBSD Cryptographic Framework (OCF), which was later ported to FreeBSD and NetBSD.
Other large projects he worked on in the past include the KeyNote trust-management system and the STRONGMAN access control management system, the AEGIS secure bootstrap architecture and the SwitchWare Active Network architecture.
An up to date CV, including a complete list of publications, can be found here.
Contact InformationDepartment of Computer Science
1214 Amsterdam Avenue, M.C. 0401
New York, NY 10027-7003
+1 212 939 7095 (voice)
+1 212 666 0140 (fax)
Current Department/Teaching Activities
COMS W4180 - Network Security
Office hours: Tuesday/Thursday 3:00-4:00pm
Current/Recent Professional ActivitiesMember, Scientific Advisory Board, Center for Research and Technology Hellas (CERTH), 2008 - 2011
Steering Committee, New Security Paradigms Workshop (NSPW)
Program Chair, 16th International Conference on Financial Cryptography and Data Security (FC), 2012
Program Chair, 8th International ICST Conference on Security and Privacy in Communication Networks, 2012
Program Committee, International Workshop on Security (IWSEC), 2011
Program Committee, 27th Annual Computer Security Applications Conference (ACSAC), 2011
Program Committee, 19th Annual Symposium on Network and Distributed System Security (SNDSS), 2012
Program Committee, 10th Internation Conference on Applied Cryptography and Network Security (ACNS), 2012
Program Committee, 6th Workshop on Information Security Theory and Practice (WISTP), 2012
Program Committee, European Workshop on Systems Security (EuroSec), 2012
on the network"