R. Sekar

Research Teaching Publications C.V. Secure Systems Lab Center for Cybersecurity

             R. Sekar
      Professor of Computer Science
      Director, Center for Cybersecurity
      sekar@cs.sunysb.edu

2006-- Professor, Stony Brook University.
2001--06 Associate Professor, Stony Brook University.
1999--01 Assistant Professor, Stony Brook University.
1996--99 Assistant Professor, Iowa State University.
1991--96 Research Scientist, Bellcore.
1986--91 Ph.D., Computer Science, Stony Brook University.
1982--86 B. Tech, Electrical Engineering, Indian Institute of Technology, Madras.

Teaching

Stony Brook is an NSA-certified Center of Excellence in Information Assurance (IA) education. We offer specializations in Information Assurance at the graduate and undergraduate levels. For more information on our IA curriculum, please visit the education page of the Center for Cybersecurity.

Scholarships are available for graduate and undergraduates specializing in Information Assurance!
These scholarships include a $8K to $12K stipend, full tuition, room and board expenses and so on. The scholarships are open to U.S. citizens and are awarded on a competitive basis.

Here is a list of courses that I have offered recently. In addition, I offer a seminar in security almost every semester.

CSE 504 Compiler Design: Fall 2000, Spring 2002, Spring 2005-06
CSE 408 Network Security: Fall 2004-05
CSE 508 Network Security: Fall 2000-04
CSE 307 Principles of Programming Languages: Spring 2000, 2004
CSE 608 Advanced Computer Security: Spring 2001, 2003
CSE 533 Network Programming: Fall 1999

At Iowa state, I taught undergraduate courses on compilers and programming Languages, and graduate courses on compilers, programming languages, computer networks, and network programming.

Research

My main research focus is on building secure software, and retro-fitting security on existing large-scale software.

Language-based security
- Security policies/behaviors
  - Specification languages and efficient enforcement algorithms
  - Compilers and runtime environments
  - Tools for security policy development
- Program analysis/transformation
  - Security-related programming errors
  - Privacy and information flow
Operating system enhancements and related tools for security
- Secure installation/execution of (untrusted) code
- System call interposition based techniques
Intrusion detection
- Extraction of security behavior models for large-scale software
- Policy/behavior based intrusion detection
- Anomaly detection and machine-learning
Applications of formal methods in security
- Vulnerability analysis
- Verification of security properties

Some of my recent research projects are listed below, and the rest can be found at Secure Systems Laboratory.

Model-Carrying Code for mobile code security
Isolated program execution technique and the Alcatraz toolset for "trying out" potentially malicious or faulty software, software updates, etc.
Efficient detection of all memory errors in C programs
Automated code diversity to limit large-scale attacks such as worms, and the address obfuscation technique,
Extracting security behavior models from large programs, and their use in intrusion detection and security policy development,
Immune-system inspired approaches for developing automated responses to network-based attacks.

My recent publications are available from the Secure Systems Lab publications page. Earlier publications can be found here. Here is my C.V.

Other

Maintained by Sekar, sekar@cs.sunysb.edu
Last Modified 12/10/04