NYU-Poly Contest Unearths Cyber Security Research
American universities are stepping up to the urgent work of educating the cyber security elites desperately needed to protect the increasingly digital world, judging by entries to Polytechnic Institute of New York University's Cyber Security Awareness Week (CSAW).
Forty-six students, representing all the top university cyber security research groups, competed for the AT&T Award for Best Applied Security Research Paper in NYU-Poly's Seventh Annual CSAW challenges. To enter, every one had been accepted by a scholarly conference or journal.
"Cyber security is a relatively new academic field, in which many of the top experts taught themselves," said Nasir Memon, who heads NYU-Poly's cyber security program. "This year's CSAW contestants illustrate the way the field has matured since our first challenge in 2004. Rigorous research is the only way to keep pace with the skyrocketing security needs of our digital society, and the quality and number of entries for the AT&T Award for Best Applied Security Research Paper demonstrate that university students are today among the leaders in the field of cyber security."
Experts estimate that America has only 1,000 cyber security elites but that it needs 20,000 to 30,000.
Judges chose 10 finalists, all of whom are doctoral candidates. They will compete Oct. 29 in the CSAW challenges at NYU-Poly's Brooklyn campus by presenting their papers to a panel of cyber security professionals.
The finalists were chosen from among teams representing 25 different schools:
- Prithvi Bisht, University of Illinois at Chicago – "No Tamper: Automated Blackbox Detection of Parameter Tampering Opportunities in Web Applications;"
- Xin Hu, University of Michigan – "Large-Scale Malware Indexing Using Function-Call Graphs;"
- Lin-Shung Huang, Carnegie Mellon University – "Protecting Browsers from Cross-Origin CSS Attacks;"
- Nathaniel Husted, Indiana University – "Mobile Location Tracking in Metropolitan Areas: Malnets and Others;"
- Justin Sameul, University of California, Berkeley – "Survivable Key Compromise in Software Update Systems;"
- Prateek Saxena, University of California, Berkeley – "A Symbolic Execution Framework for JavaScript;"
- Abhinav Srivastava, Georgia Institute of Technology – "Automatic Discovery of Parasitic Malware;"
- Adam Waksman, Columbia University – "Tamper Evident Microprocessors;"
- Zhi Wang, North Carolina State University – "HyperSafe: A Lightweight Approach to Provide Lifetime Hypervisor Control-Flow Integrity," and
- Chao Zhang, NYU-Poly – "I Know Where You Are: Tracking IP mobility on a Massive Scale."
Judges are Michael J. Geller, vice president of products and technology, LGS; Markus Jakobsson, security researcher; Shari Lawrence Pfleeger, director of research for the Institute for Information Infrastructure Protection, Dartmouth College; Gus de los Reyes, executive director, AT&T Security R&D Center, and Cristina Serban, lead member of Technical Staff, AT&T Security R&D Center.