My research is focused on the following areas:

• Large Systems Security & Survivability
  
• Secure Peer-to-peer and overlay networking
  
• Distributed Systems Reliability, Fairness and Statistical Inference
  
• Privacy and Anonymity
  

Teaching:

    Fall 2008: ISA 656, Network Security
    Spring 2008: IT 862, Models for Computer Security (29 students Ev: 4.38/5.0)
    Spring 2008: ISA 656, Network Security (32 students Ev: 4.64/5.0)

Recent Publications:

• A Security Architecture for Information Assurance and Availability in MANETs.
  Angelos Stavrou, and Anup K. Ghosh.
  To appear in IEEE Conference on Military Communications (MILCOM '08), November 2008, San Diego, CA.
  
  
• Universal Multi-Factor Authentication Using Graphical Passwords
  Alireza Pirayesh Sabzevar, and Angelos Stavrou.
  To appear in the Proceedings of the 2nd IEEE/ACM Workshop on Security and Privacy in Telecommunications and Information Systems (SePTIS). December 2008, Bali, Indonesia.
  
  
• Identifying Proxy Nodes in a Tor Anonymization Circuit
  Sambuddho Chakravarty, Angelos Stavrou, and Angelos D. Keromytis.
  To appear in the Proceedings of the 2nd IEEE/ACM Workshop on Security and Privacy in Telecommunications and Information Systems (SePTIS). December 2008, Bali, Indonesia.
  
  
• A multi-path approach for k-anonymity in mobile hybrid networks
  Claudio Agostino Ardagna, Angelos Stavrou, Sushil Jajodia, Pierangela Samarati and Rhandi Martin.
  To appear International Workshop on Privacy in Location-Based Applications (PiLBA '08),
  October 2008, Malaga, Spain.
  
  
• Efficiently Tracking Application Interactions using Lightweight Virtualization
  Yih Huang, Angelos Stavrou, Anup K. Ghosh and Sushil Jajodia.
  To appear in the Proceedings of the 1st Workshop on Virtualization Security (VMSec), in conjunction
  with ACM CCS 2008, October 2008.
  
  
• Return Value Predictability for Self-Healing
  Michael E. Locasto, Angelos Stavrou, Gabriela F. Cretu, Angelos D. Keromytis, and Salvatore J. Stolfo.
  To appear in the Proceedings of the 3rd International Workshop on Security (IWSEC), November 2008, Kagawa, Japan.
  
  
• PAR: Payment for Anonymous Routing
  Elli Androulaki, Mariana Raykova, Shreyas Srivatsan, Angelos Stavrou, and Steven M. Bellovin.
  To appear in 8th Privacy Enhancing Technologies Symposium, Leuven, Belgium July 23 - July 25, 2008.
  
  
• The Hidden Difficulties of Watching and Rebuilding Networks
  Michael Locasto and Angelos Stavrou.
  IEEE Security and Privacy, vol. 6, no. 2, pp. 79-82, Mar/Apr, 2008.
  
  
• Pushback for Overlay Networks: Protecting against Malicious Insiders
  Angelos Stavrou, Michael E. Locasto, and Angelos D. Keromytis. To appear in the Proceedings of the 6th International Conference on Applied Cryptography and Network Security (ACNS). June 2008, New York, NY.(Acceptance Rate: 21.1%)
  
  
• Casting out Demons: Sanitizing Training Data for Anomaly Sensors
  Gabriela F. Cretu, Angelos Stavrou, Michael E. Locasto, Salvatore J. Stolfo, and Angelos D. Keromytis. To appear in the Proceedings of the IEEE Symposium on Security & Privacy. May 2008, Oakland, CA. (Acceptance Rate: 11.2%)
  
  
• On the Infeasibility of Modeling Polymorphic Shellcode
  Yingbo Song, Michael E. Locasto, Angelos Stavrou , Angelos D. Keromytis, and Salvatore J. Stolfo. In Proceedings of the 13th ACM Conference on Computer and Communications Security (CCS), pp. 541 - 551. October/November 2007, Alexandria, VA. Also available as Columbia University Computer Science Department Technical Report CUCS-007-07. (Acceptance rate: 18.1%)
  
  

Professional Activities:

    Program Organization:

    Program co-Chair, 1st Workshop on Virtual Machine Security (VMSec): 2008

    Program Committee Member:

    Network and Distributed System Security Symposium (NDSS): 2009
    Int’l Conference on Distributed Computing Systems (ICDCS): 2009
    USENIX Security Symposium: 2007, 2008, 2009
    European Workshop on System Security (EUROSEC): 2008, 2009
    2nd USENIX Workshop on Large-Scale Exploits and Emergent Threats (LEET): 2009
    European Conference on Computer Network Defense (EC2ND): 2008
    Annual Computer Security Applications Conference (ACSAC): 2008
    Applied Cryptography and Network Security (ACNS) Conference: 2008
    Information Security Conference (ISC): 2008
    European Symposium on Research in Computer Security (ESORICS): 2008
    Workshop on Cyber Security Experimentation and Test : 2008
    International Workshop on Security and Privacy in Wireless and Mobile Computing
    Networking and Communications: 2008

Thesis:

    "An Overlay Architecture for End-to-End Service Availability" (awarded with distinction)[Slides