Compositional Analysis for Verification of Parameterized Systems,
[Abstract]
Samik Basu and C. R. Ramakrishnan,
Theoretical Computer Science, 2006.
Dataflow Anomaly Detection,
[PDF]
Sandeep Bhatkar, Abhishek Chaturvedi, and R. Sekar,
IEEE Symposium on Security and Privacy, 2006.
Operating System Profiling via Latency Analysis,
N. Joukov, A. Traeger, R. Iyer, C. P. Wright, and E. Zadok,
To appear in 7th Symposium on Operating Systems Design and Implementation, 2006.
Type-Safe Disks,
G. Sivathanu, S. Sundararaman, and E. Zadok,
To appear in 7th Symposium on Operating Systems Design and Implementation, 2006.
Uncheatable Reputation for Distributed Computation Markets,
[PDF]
Bogdan Carbunar and Radu Sion, Financial Cryptography and Data Security Conference
, 2006.
Spoof Detection for Preventing DoS Attacks against DNS Servers,
[PDF]
Fanglu Guo, Jiawu Chen and Tzi-cker Chiueh, 26th International Conference on Distributed Computing Systems , 2006.
Efficient Type Inference for Secure Information Flow,
[Abstract]
Katia Hristova, Tom Rothamel, Yanhong A. Liu, and Scott D. Stoller, ACM SIGPLAN Workshop on Programming Languages and Analysis for
Security (PLAS) , 2006.
Accurate and Automated System Call Policy-Based Intrusion Prevention,
[PDF]
Lap-Chung Lam, Wei Li, and Tzi-cker Chiueh, International Conference on Dependable Systems and Networks, 2006.
BIRD: Binary Interpretation using Runtime Disassembly,
[PDF]
Susanta Nanda, Wei Li, Lap-chung Lam and Tzi-cker Chiueh, IEEE/ACM Conference on Code Generation and Optimization, 2006.
UnionFS: User- and Community-oriented Development of a Unification Filesystem,
D. Quigley and J. Sipek and C. P. Wright and E. Zadok,
To appear in 2006 Linux Symposium, 2006.
Policy Analysis for Administrative Role Based Access Control,
[PDF]
Amit Sasturkar, Ping Yang, Scott D. Stoller, and C.R. Ramakrishnan, 19th Computer Security Foundations Workshop, 2006.
Rights Protection for Discrete Numeric Streams,
[PDF]
Radu Sion, Mikhail Atallah, and Sunil Prabhakar, IEEE Journal of Transactions on Knowledge and Data Engineering IEEE TKDE, 2006.
Runtime Analysis of Atomicity for Multi-Threaded Programs,
[PDF]
Liqiang Wang and Scott D. Stoller, IEEE Transactions on Software Engineering, 2006.
Accurate and Efficient Runtime Detection of Atomicity Errors in Concurrent Programs,
[PDF]
Liqiang Wang and Scott D. Stoller, Proc. ACM SIGPLAN 2006 Symposium on Principles and Practice of Parallel Programming (PPoPP), 2006.
Parameterized Verification of Pi-Calculus Systems,
[Abstract]
Ping Yang, Samik Basu, and C. R. Ramakrishnan,
12th International Conference on Tools and Algorithms for the Construction and Analysis of Systems (TACAS), 2006.
Taint-Enhanced Policy Enforcement: A Practical Approach to Defeat a Wide Range of Attacks,
[PDF]
Wei Xu, Sandeep Bhatkar, and R. Sekar,
To appear in 15th USENIX Security Symposium, 2006.
Optimized Run-Time Race Detection And Atomicity Checking Using Partial Discovered Types,
[PDF]
Rahul Agarwal, Amit Sasturkar, Liqiang Wang, and Scott D. Stoller, Proc. 20th IEEE/ACM International Conference on Automated Software Engineering (ASE)
, 2005.
Fixing Races for Fun and Profit: How to abuse atime,
[PDF]
Nikita Borisov, Rob Johnson, Naveen Sastry, and David Wagner, 14th USENIX Security Symposium
, 2005.
Efficient Techniques for Comprehensive Protection from Memory Error Exploits,
[PDF]
Sandeep Bhatkar, R. Sekar, and Daniel C. DuVarney, 14th USENIX Security Symposium, 2005.
Monte Carlo Model Checking,
[PDF]
R. Grosu and S.A. Smolka, 11th International Conference on Tools and Algorithms for the Construction and Analysis of Systems (TACAS)
, 2005.
Sequence Number-Based MAC Address Spoof Detection,
[PDF]
Fanglu Guo and Tzi-cker Chiueh, 8th International Symposium on Recent Advances in Intrusion Detection (RAID 2005), 2005.
Automated and Safe Vulnerability Assessment,
[PDF]
Fanglu Guo, Yang Yu and Tzi-cker Chiueh, 21st Annual Computer Security Applications Conference (ACSAC 2005), 2005.
Accurate and Efficient Replaying of File System Traces,
[PDF]
N. Joukov, T. Wong, and E. Zadok, Proceedings of the Fourth USENIX Conference on File and Storage Technologies (FAST '05)
, 2005.
V-NetLab: A Cost-Effective Platform to Support Course Projects in Computer Security,
[PDF]
Kumar Krishna, Weiqing Sun, Pratik Rana, Tianning Li, and R.Sekar, 9th Annual Colloquium for Information Systems Security Education (CISSE 05), 2005.
Checking Array Bound Violation Using Segmentation Hardware,
[PDF]
Lap-chung Lam and Tzi-cker Chiueh, International Conference on Dependable Systems and Networks (DSN 2005), 2005.
Fast and Automated Generation of Attack Signatures: A Basis for Building Self-Protecting Servers,
[PDF]
Zhenkai Liang and R. Sekar, 12th ACM Conference on Computer and Communications Security (CCS), 2005.
Automatic Generation of Buffer Overflow Attack Signatures: An Approach Based on Program Behavior Models,
[PDF]
Zhenkai Liang and R. Sekar, 21st Annual Computer Security Applications Conference (ACSAC), 2005.
Automatic Synthesis of Filters to Discard Buffer Overflow Attacks: A Step Towards Realizing Self-Healing Systems,
[PDF]
Zhenkai Liang, R. Sekar, and Daniel C. DuVarney, USENIX Annual Technical Conference, (Short paper), 2005.
WShare: An Instant Secure Collaboration Workspace over Ad hoc Wireless LAN ,
[PS]
Ashish Raniwala, Gefan Zhang, Ashwini Sridhar, Jian Ping Zheng, and Tzi-cker Chiueh, Intl Journal of Wireless and Mobile Computing (IJWMC): Special Issue on Group Communications in Ad hoc Networks, Issue 3, 2005.
Incremental and Demand-Driven Points-To Analysis using Logic Programming,
[PDF]
Diptikalyan Saha and C. R. Ramakrishnan, Principles and Practice of Declarative Programming
, 2005.
Automated Type-Based Analysis of Data Races and Atomicity,
[PDF]
Amit Sasturkar, Rahul Agarwal, Liqiang Wang, and Scott D. Stoller, Proc. ACM SIGPLAN 2005 Symposium on Principles and Practice of Parallel Programming (PPoPP)
, 2005.
Ownership Proofs for Categorical Data,
[PDF]
Radu Sion, Mikhail Atallah, and Sunil Prabhakar, IEEE Journal of Transactions on Knowledge and Data Engineering IEEE TKDE
, 2005.
DIRA: Automatic Detection, Identification, and Repair of Control-Hijacking Attacks,
[PS]
Alexey Smirnov and Tzi-cker Chiueh, Network and Distributed Systems Security (NDSS 2005), 2005.
One-way Isolation: An Effective Approach for Realizing Safe Execution Environments,
[PDF]
Weiqing Sun, Zhenkai Liang, V.N. Venkatakrishnan, and R. Sekar, ISOC Network and Distributed Systems Symposium
, 2005.
A Provably Correct Compiler for Efficient Model Checking of Mobile Processes,
Ping Yang, C. R. Ramakrishnan, and Scott A. Smolka, Practical Aspects of Declarative Languages (PADL)
, 2005.
(abstract)
Auto-pilot: A Platform for System Software Benchmarking,
[PDF]
C. P. Wright and N. Joukov and D. Kulkarni and Y. Miretskiy and E. Zadok, Proceedings of the Annual USENIX Technical Conference, FREENIX Track
, 2005.
TBBT: Scalable and Accurate Trace Replay for File Server Evaluation,
[PDF]
Ningning Zhu, Jiawu Chen, Tzi-cker Chiueh, USENIX Conference on File and Storage Technology (FAST 2005), 2005.
Type Inference for Parameterized Race-Free Java,
[PDF]
Rahul Agarwal and Scott D. Stoller, Fifth International Conference on Verification, Model Checking and Abstract Interpretation (VMCAI)
, 2004.
Tracefs: A File System to Trace Them All,
[PDF]
Akshat Aranya, Charles P. Wright and Erez Zadok, Third USENIX Conference on File and Storage Technologies (FAST 2004)
, April 2004.
Using Predators to Combat Worms and Viruses: A Simulation-Based Study,
Ajay Gupta and Daniel C. Duvarney, Annual Computer Security Applications Conference
, Arizona, December 2004.
CTCP: A Transparent Centralized TCP/IP Architecture for Network Security,
[PS]
Fu-Hau Hsu and Tzi-cker Chiueh, Annual Computer Security Applications Conference
, Tucson, Arizona, December 2004.
Finding User/Kernel Pointer Bugs With Type Inference,
[PS]
Rob Johnson and David Wagner, 13th USENIX Security Symposium
, 2004.
Automatic Extraction of Accurate Application-Specific Sandboxing Policy,
[PDF]
Lap Chung Lam and Tzi-cker Chiueh, 7th International Symposium on Recent Advances in Intrusion Detection
, Sophia Antipolis, French Riviera, France, September 15-17, 2004.
Immunizing Servers from Buffer-Overflow Attacks,
[PDF]
Zhenkai Liang, R. Sekar and Daniel C. DuVarney, Adaptive and Resilient Computing Security Workshop
, New Mexico, November 2004.
Parametric Regular Path Queries,
[PDF]
Yanhong A. Liu, Tom Rothamel, Fuxiang Yu, Scott D. Stoller and Nanjun Hu, ACM SIGPLAN Conference on Programming Language Design and Implementation (PLDI)
, 2004.
Avfs: An On-Access Anti-Virus File System,
[PDF]
Yevgeniy Miretskiy, Abhijith Das, Charles P. Wright and Erez Zadok, 13th USENIX Security Symposium (Security 2004)
, August 2004.
I3FS: An In-Kernel Integrity Checker and Intrusion Detection File System,
[PDF]
Swapnil Patil, Anand Kashyap, Gopalan Sivathanu and Erez Zadok,
Usenix Large Installation Systems Administration Conference (LISA 18)
, November 2004.
Tracing the Root of Rootable Processes,
[PDF]
Amit Purohit, Vishnu Navda and Tzi-cker Chiueh, Annual Computer Security Applications Conference
, Tucson, Arizona, December 2004.
Unfold/Fold Transformations for Automated Verification of Parameterized Concurrent Systems.
Abhik Roychoudhury and C. R. Ramakrishnan, Program Development in Computational Logic 2004
, pages 261-290, 2004.
(abstract)
An unfold/fold transformation framework for definite logic programs,
Abhik Roychoudhury, K. Narayan Kumar, C. R. Ramakrishnan and I. V. Ramakrishnan, ACM Transactions on Programming Languages and Systems (TOPLAS)
, pages 464--509, 2004.
(abstract)
Policy Analysis for Security-Enhanced Linux,
[PDF]
Beata Sarna-Starosta and Scott D. Stoller, Workshop on Issues in the Theory of Security (WITS)
, 2004.
Resilient Rights Protection for Sensor Streams,
[PDF]
Radu Sion, Mikhail Atallah and Sunil Prabhakar, Very Large Databases Conference (VLDB)
, 2004.
Protecting Rights over Relational Data using Watermarking,
[PDF]
Radu Sion, Mikhail Atallah and Sunil Prabhakar, IEEE Journal of Transactions on Knowledge and Data Engineering IEEE TKDE, Vol. 16, No. 6
, 2004.
Proving Ownership over Categorical Data,
[PDF]
Radu Sion, IEEE International Conference on Data Engineering (ICDE)
, Boston 2004.
Rights Protection for Relational Data through Watermarking,
[PDF]
Radu Sion, Mikhail Atallah and Sunil Prabhakar, IEEE International Conference on Data Engineering (ICDE)
, Boston 2004.
A Portable Implementation Framework for Intrusion-Resilient Database Management Systems,
[PDF]
Alexey Smirnov and Tzi-cker Chiueh, The International Conference on Dependable Systems and Networks
, 2004.
An Efficient and Backwards-Compatible Transformation to Ensure Memory Safety of C Programs,
[PDF]
Wei Xu, Daniel C. Duvarney and R. Sekar, 12th ACM SIGSOFT International Symposium on the Foundations of Software Engineering , California, November 2004.
A Logical Encoding of the pi-Calculus: Model Checking Mobile Processes Using Tabled Resolution,
Ping Yang, C. R. Ramakrishnan and Scott A. Smolka, International Journal on Software Tools for Technology Transfer (STTT)
, 2004.
(abstract)
Display-Only File Server: A Solution against Information Theft Due to Insider Attack,
[PDF]
Yang Yu and Tzi-cker Chiueh, 4th ACM Workshop on Digital Rights Management
, Washington, DC, October 25, 2004.
Compositional Analysis for Verification of
Parameterized Systems,
[PDF]
S. Basu, C. R. Ramakrishnan, Tools and Algorithms for the
Construction and Analysis of Systems (TACAS), 2003.
Counter-Example Generation for Push-Down Systems,
[PDF]
S. Basu, D. Saha, Y.-J. Lin, and S.A. Smolka, 23rd IFIP International
Conference on Formal Techniques for Networked and Distributed Systems
(FORTE 2003), 2003.
Address Obfuscation: An Efficient Approach to Combat a Broad
Range of Memory Error Exploits,
[PS]
[PDF]
Sandeep Bhatkar, Daniel C. DuVarney, and R. Sekar, 12th USENIX Security Symposium,
Washington, DC, August 2003.
VirtualWire: A Fault Injection and Analysis Tool for
Network Protocols,
[GZ]
P. De, A. Neogi and T. Chiueh, IEEE International
Conference on Distributed Computing Systems (ICDCS), 2003.
Model Checking and Evidence Exploration,
[PDF]
Y. Dong, C. R. Ramakrisnan and Scott A. Smolka, IEEE Symposium on
Engineering Computer Based Systems (ECBS), 2003.
SELF: a Transparent Security Extension for ELF Binaries,
[PS]
[PDF]
Daniel C. DuVarney, V.N. Venkatakrishnan and Sandeep Bhatkar, New Security Pardigms Workshop,
Ascona, Switzerland, August 2003.
An Approach for Detecting Self-Propagating Email Using
Anomaly Detection,
[PS]
[PDF]
A. Gupta and R. Sekar, Recent Advances in Intrusion
Detection, September 2003.
A Path Information Caching and Aggregation Approach to
Traffic Source Identification,
[PS]
F. Hsu and T. Chiueh, IEEE International
Conference on Distributed Computing Systems (ICDCS), 2003.
Performance Guarantee for Cluster-Based Internet
Services,
[GZ]
Chang Li, Gang Peng, Kartik Gopalan and Tzi-cker Chiueh, 23rd IEEE International
Conference on Distributed Computing Systems (ICDCS), 2003.
Isolated program execution: An application transparent
approach for executing untrusted programs,
[PS]
[PDF]
Z. Liang, V.N. Venkatakrishnan and R. Sekar, Best paper award Annual Computer Security
Applications Conference, Las Vegas, December 2003.
A Binary Rewriting Defense against Stack based Buffer
Overflow Attacks,
[PS]
M. Prasad and T. Chiueh, USENIX Technical Conference,
2003.
Cosy: Develop in User-Land, Run in Kernel-Mode,
[PS]
[PDF]
Amit Purohit, Charles P. Wright, Joseph Spadavecchia, and Erez Zadok, 9th Workshop in Hot Topics
in Operating Systems (HotOS IX), 2003.
Model-Carrying Code: A Practical Approach for Safe Execution
of Untrusted Applications,
[PS]
[PDF]
R. Sekar, V.N. Venkatakrishnan, Samik Basu, Sandeep Bhatkar and Dan
DuVarney, 19th ACM Symposium on Operating
Systems Principles, New York, October 2003.
Duplex: A Reusable Fault Tolerance Extension Framework
for Network Access Devices,
[PDF]
Srikant Sharma, Jiawu, Chen, Wei Li, Kartik Gopalan, and Tzi-cker
Chiueh, International Conference on
Dependable Systems and Networks (DSN 2003), 2003.
Optimistic Synchronization-Based State-Space Reduction,
[PDF]
S. Stoller and E. Cohen, Tools and Algorithms for the
Construction and Analysis of Systems (TACAS), 2003.
NCryptfs: A Secure and Convenient Cryptographic File
System,
[PS]
[PDF]
C. P. Wright, M. Martino and E. Zadok, USENIX Technical Conference,
2003.
A Logical Encoding of the pi-Calculus: Model Checking
Mobile Processes Using Tabled Resolution,
[PDF]
P. Yang, C.R. Ramakrishnan, and S.A. Smolka, Fourth International
Conference on Verification, Model Checking, and Abstract Interpretation
(VMCAI), 2003.
Design, Implementation, and Evaluation of Repairable
File Service,
[PS]
Ningning Zhu and Tzi-cker Chiueh, International Conference on
Dependable Systems and Networks, 2003.
Resource Constrained Model Checking for Push-down
Systems,
[PDF]
K. Narayan Kumar, Robert L. Pokorny, C.R. Ramakrishan, Int'l Conference on Tools
and Algorithms for Construction and Analysis of Systems (TACAS),
April 2002.
Toward Cost-Sensitive Modeling for Intrusion Detection
and Response,
[PS]
[PDF]
W. Lee, W. Fan, M. Miller, S. Stolfo and E. Zadok, Journal of Computer Security.
Model-Based Analysis of Configuration Vulnerabilities,
[PS]
[PDF]
C.R. Ramakrishnan and R. Sekar, Journal of Computer Security.
Specification-based anomaly detection: a new approach for
detecting network intrusions,
[PS]
[PDF]
R. Sekar, A. Gupta et al., ACM Computer and Communication
Security Conference, 2002.
Enhancing NFS Cross-Administrative Domain Access,
[PS]
[PDF]
J. Spadavecchia and E. Zadok, Annual USENIX Technical
Conference (FreeNIX Track), June 2002.
Empowering mobile code using expressive security
policies,
[PS]
[PDF]
V.N. Venkatakrishnan, Peri Ram and R. Sekar, 10th New Security Pardigms Workshop,
Virginia Beach, September 2002.
An approach for Secure Software Installation,
[PS]
[PDF]
V.N. Venkatakrishnan, R. Sekar, S. Tsipa, T. Kamat and Z. Liang, 16th USENIX LISA conference,
Philadelphia, November 2002.
A Model Checker for Value-Passing Mu-Calculus using
Logic Programming,
[PDF]
C.R. Ramakrishnan, Practical Applications of
Declarative Languages (PADL), Las Vegas, Nevada, March 2001.
Data Mining Methods for Detection of New Malicious
Executables,
[PS]
[PDF]
M Schultz, E. Eskin, E. Zadok and S. Stolfo, IEEE Symposium on Security
and Privacy, May 2001.
MEF, Malicious Email Filter--A UNIX Mail Filter That
Detects Malicious Windows Executables,
[PS]
[PDF]
M Schultz, E. Eskin, E. Zadok, M. Bhattacharya and S. Stolfo, FreeNIX Technical Conference,
June 2001.
A Fast Automaton-Based~Method for Detecting Anomalous Program
Behaviors,
[PS]
[PDF]
R. Sekar, M. Bendre, P. Bollineni and D. Dhurjati, IEEE Symposium on Security and
Privacy, 2001.
Model-Carrying Code (MCC): A New Paradigm for Mobile-Code
Security,
[PS]
[PDF]
R. Sekar, C.R. Ramakrishnan, I.V. Ramakrishnan, Scott A. Smolka, New Security Paradigms Workshop(NSPW), Cloudcroft, New Mexico,
September 2001.
A Bound on Attacks on Payment Protocols,
[PDF]
[PS]
Scott D. Stoller, 16th Annual IEEE Symposium
on Logic in Computer Science (LICS), 2001.
Experiences with Specification Based Intrusion Detection
System,
[PS]
[PDF]
P. Uppuluri and R. Sekar, Recent Advances in Intrusion
Detection (RAID), October 2001.
Building Survivable Systems: An Integrated Approach based on
Intrusion Detection and Damage Containment,
[PS]
[PDF]
T. Bowen, D. Chee, M. Segal, R. Sekar, T. Shanbhag and P. Uppuluri, DISCEX, 2000.
RAD: A Compile-time Solution to Buffer Overflow Attacks,
[PS]
Tzi-Cker Chiueh and Fu-Hau Hsu, International Conference on
Distributed Computing Systems (ICDCS), Phoenix, Arizona,
USA, April 2001.
Spout: A Distributed Engine for Safe Execution of Java
Applets,
[ZIP]
Tzi-cker Chiueh, Harish Sankaran, Anindya Neogi, International Conference on
Distributed Computing Systems (ICDCS), April 2000.
User-Level Infrastructure for System Call Interposition: A
Platform for Intrusion Detection and Confinement,
[PS]
[PDF]
K. Jain and R. Sekar, ISOC Network and Distributed
Systems Symposium, 2000.
Verification using Tabled Logic Programming,
[PDF]
C.R. Ramakrishnan, Invited Tutorial in
Concurrency Theory (CONCUR), State College, Pennsylvania, August
2000.
XMC: A Logic-Programming-Based Verification Toolset,
[PDF]
C.R. Ramakrishnan, I.V. Ramakrishnan, Scott A. Smolka, Yifei Dong,
Xiaoqun Du, Abhik Roychoudhury, and V.N. Venkatakrishnan, Computer Aided Verification
(CAV), Chicago, Illinois, June 2000.
Model-Based Analysis of Configuration Vulnerabilities,
[PS]
[PDF]
C.R. Ramakrishnan and R. Sekar, ACM CCS Workshop on Intrusion
Detection Systems, 2000.
Toward Cost-Sensitive Modeling for Intrusion Detection
and Response,
[PS]
[PDF]
M Schultz, E. Eskin, E. Zadok and S. Stolfo, ACM CCS Workshop on
Intrusion Detection Systems, 2000.
Integrating segmentation and paging protection for
safe, efficient and transparent software extensions,
[ZIP]
Tzi-cker Chiueh, Ganesh Venkitachalam, and Prashant Pradhan, Symposium on Operating
Systems Principles, December 1999.
Intra-address Space Protection using Segmentation
Hardware,
[ZIP]
Tzi-cker Chiueh, Ganesh Venkitachalam,Prashant Pradhan, Proceedings of HosOS VI,
February 1999.
A High-Performance Network Intrusion Detection System,
[PS]
[PDF]
R. Sekar, Y. Guang, S. Verma and T. Shanbhag, ACM Symposium on Computer and
Communication Security, 1999.
On Preventing Intrusions by Process Behavior Monitoring,
[PS]
[PDF]
R. Sekar, T. Bowen and M. Segal, USENIX Intrusion Detection Workshop,
1999.
Synthesizing Fast Intrusion Detection/Prevention Systems from
High-Level Specifications,
[PS]
[PDF]
R. Sekar and P. Uppuluri, USENIX Security Symposium,
1999.
A Reduction for Automated Verification of
Authentication Protocols,
[PDF]
Scott D. Stoller, Workshop on Formal Methods
and Security Protocols, July 1999.
Automatic Fault Detection and Recovery in Real-Time Switched
Ethernet Networks,
[GZ]
Srinidhi Varadarajan, Tzi-cker Chiueh, IEEE INFOCOM, New
York City, April 1999.
Model-Based Vulnerability Analysis of Computer Systems,
[PS]
[PDF]
C.R. Ramakrishnan and R. Sekar, Second International Workshop on
Verification, Model Checking, and Abstract Interpretation (VMCAI),
Pisa, Italy, September 1998.
A Specification-Based Approach for Building Survivable Systems,
[PS]
[PDF]
R. Sekar and P. Uppuluri, National Information Systems
Security Conference, 1998.
Automated Stream-Based Analysis of Fault-Tolerance,
[PS]
Scott D. Stoller and Fred B. Schneider,
5th International Symposium
on Formal Techniques in Real-Time and Fault-Tolerant Systems
(FTRTFT), September 1998.
Justifying Finite Resources for Adversaries in
Automated Analysis of Authentication Protocols,
[PS]
Scott D. Stoller, Workshop on Formal Methods
and Security Protocols, June 1998.
Last updated: November 26, 2001.
Suggestions, comments or questions: contact R. Sekar (sekar@cs.sunysb.edu)
