imchris.org

Fall 2008

Posted on November 2008 by admin

Fall 08 started a quick and is already half over. I’ve been continuing my project from Microsoft Research, working with a security group there lead by Helen Wang and working on a couple other security projects at school. I’m almost done with the first part of the MSR project and we will be writing a paper soon. Until that’s written other projects are on hold.

It’s looking like I will be graduating sometime in the spring/summer of 2009 but nothing is final yet. I also want to get a little more research published before I get out of Urbana.

Posted in research, school | Tagged research | Comments Off

Illinois Malicious Processor Paper

Posted on April 2008 by admin

The Illinois Malicious Processor (IMP) project I worked on was written up by InfoWorld! Its a great read: Read it here – That is in addition to it being published at LEET and being awarded a Best Paper Award! The title is “Designing and Implementing Malicious Hardware” and its available online in HTML and PDF formats.

Posted in research | Tagged hardware, research | Comments Off

Secure web browsing with the OP web browser

Posted on March 2008 by admin

Sam, Shuo and I have had our paper accepted at the 2008 Symposium on Security and Privacy (Oakland) conference this spring. Here’s the PDF.

It was also written up in the news! “Secure web browsing with the OP web browser”, was featured in an article on eWeek in an article titled “Is There Room for a Security Browser?” By Ryan Naraine and the. The eWeek article was also Slashdotted (slashdot).

Posted in research | Tagged browsers, research, security | Comments Off

Summer 2008 – Seattle and research

Posted on March 2008 by admin

I’m going to Microsoft Research for the summer after I present at the IEEE Symposium on Security and Privacy. I’ll be out in Redmond, WA at the end of May through August. I’m going to be doing some pretty interesting research this summer (and some implementation). Once my slides are done for Oakland they will be up here.

Posted in research | Tagged research | Comments Off

Winter break and spring ’08

Posted on January 2008 by admin

Christmas break was fun, I ended up going to New Hampshire’s White Mountains and staying at an AMC lodge. Did a lot of snowshoeing, survived a blizzard, and generally got to be in lots of snow. I’m looking forward to some camping this spring though I’m not sure where or when yet.

Spring semester started too, I’m taking a course called “Design of 4G WWANs and Their Building Blocks: Intelligent Routers”, its an ECE598 taught by Constantine Polychronopoulos. No other courses, just continuing the web browser research and trying to get going on some new ideas.

Posted in school, vacation | Tagged hiking, school | Comments Off

Fall 2007 school and stuff

Posted on August 2007 by admin

This fall is a little bit different than most semesters – no class. I decided that I could fill my time easily enough with research that I didn’t need any busy work from courses. I’m currently working on web related security research, including client security, finding web exploits, and figuring out what to do with all of the amazing malware online. Once we have finished some of the work we are doing I’ll have links to source and papers online.

I’ve also been forced to participate in TCIP. I won’t put up here what I think of that project, but lets just say that I’m not all that happy about it.

Posted in research, school | Tagged research, school | Comments Off

Spring 2007 almost over

Posted on May 2007 by admin

This semester produced a couple interesting things. First, a project which tries to detect malware (particularly rootkits) and runs outside the OS, in a virtual machine. Second, another paper written by me, this time on botnets and command and control networks which use peer-to-peer protocols (open source and custom). I’m also finally done with all my course work at school.

Summer plans include a little bit of vacation time, DEFCON, and research here at school.

Posted in research, school | Tagged research, school, vacation | Comments Off

Spring 2007

Posted on January 2007 by admin

ECE 598 – Secure Hardware taught by David Nicol and CS 598 – Hot topics in virtualization and security taught by Sam King. Both classes are primarily paper reading courses.

Trying to get lots of research done this spring. I really want to graduate and get out of Champaign-Urbana.

Posted in school | Tagged school | Comments Off

Fall 2006 courses

Posted on October 2006 by admin

Taking: ECE 541 Computer Systems Analysis (Bill Sanders, David Nicol), CS 498 Program Optimization (Maria Garzaran), CS 498 Theoretical Foundations of Cryptography (Manoj Prabhakaran). Apparently intent of the crypto course is to never discuss a real cryptographic algorithm… My recommendation: take Math 595 with Iwan Duursma

Posted in school | Tagged school | Comments Off

Summer 2006 ends

Posted on August 2006 by admin

Summer 2006 was a good summer, definitely a good time, good job, and fun place. I worked in Berkeley, CA and lived right down the street from ICIR where I worked. Berkeley pretty much had everything I wanted and if its wasn’t downtown Berkeley, then its just a short subway (BART) ride to get there. There was a lot of things going on, and lots of crazy people wandering around (like me) at all times of the day.

As for my job, I worked with Vern Paxson on creating anonymization policy for application layer protocols. In my first couple weeks, I ported anonymizers for DNS and HTTP. After I did that I was familiar with the Bro IDS code and BINPAC, and was able to implement a parser for the SMB/CIFS protocol (as well as Netbios, MS Browse, and some RPC/named pipe functionality). The end result is a detailed parser for CIFS that can also rewrite packets in an anonymized form. This is the protocol that does most of the things in Network Neighborhood and allows users to mount network drives and do network file system operations. Its a complicated protocol, with many things going on that make it hard to parse (an anonymize).