Home 

Bottom

College of Computing, Georgia Institute of Technology, 266 Ferst Drive, Atlanta, GA, USA 30332

E-mail :

Kapil Kumar Singh











Research Interests 

 
  • Web Security and Privacy
  • Browser Security
  • Network/Systems Security, in general

    		•
    Current Research 

         		 Browser Security. This project aims in designing a new secure web browser design based on some operating system princ iples. We are currently developing a working prototype of our browser with the goal of providing a balance between security and perf ormance. The browser provides abstraction for supporting flexible security policies that can be developed using the low-level primit ives of the browser. We believe our browser architecture will be well-suited to the emerging web 2.0 application designs.

    Privacy Control in Web Applications. In this work, we present a novel framework for building secure social networks t hat requires no trust in the third party applications. We use information flow models to control what untrusted applications can do with the information they receive. We have implemented a working prototype of our system and made it available as a Facebook applica tion.

    Publications 

     
  • Kapil Singh, Alexander Moshchuk, Helen J. Wang and Wenke Lee, "On the Incoherencies in Web Browser Access Control Policies". Proceedings of 31st IEEE Symposium on Security and Privacy (Oakland), Oakland, CA, May 2010.
  • Kapil Singh, Samrit Sangal, Nehil Jain, Patrick Traynor and Wenke Lee, "Evaluating Bluetooth as a Medium for Botnet Command and Control". Technical Report GT-CS-09-11, Georgia Institute of Technology, Atlanta, 2009. [pdf]
  • Kapil Singh, Sumeer Bhola and Wenke Lee, "xBook: Redesigning Privacy Control in Social Networking Platforms". Proceedings of 18th USENIX Security Symposium, Montreal, Canada, August 2009. [pdf]
  • Kapil Singh and Wenke Lee, "On the Design of a Web Browser: Lessons learned from Operating Systems". Workshop on Web 2.0 Security and Privacy (W2SP), Oakland, USA, May 2008. [pdf]
  • Kapil Singh, Abhinav Srivastava, Jonathon Giffin and Wenke Lee, "Evaluating Email's Feasibility for Botnet Command and Control". Proceedings of 38th Annual IEEE/IFIP International Conference on Dependable Systems and Networks (DSN), Anchorage, USA, June 2008. [pdf]
  • Abhinav Srivastava, Kapil Singh and Jonathon Giffin, "Secure Observation of Kernel Behavior". Technical Report GT-CS-08-01, Georgia Institute of Technology, Atlanta, 2008. [pdf]
  • Monirul Sharif, Kapil Singh, Jonathon Giffin and Wenke Lee, "Understanding Precision in Host-based Intrusion Detection: Formal Analysis and Practical Models". Proceedings of RAID 2007 - Recent Advances in Intrusion Detection, Surfers Paradise, Australia, September 2007. [pdf]
  • Son Vuong and Kapil Singh, Chapter on VoIP Security. Network Security: Current Status and Future Directions, IEEE Press, Wiley Publications, 2007.
  • Kapil Singh and Norman C. Hutchinson, "A Trust-based model for Collaborative Intrusion Response". 6th Symposium on Operating Systems Design and Implementation (OSDI'04), WIP session, San Francisco, USA, December 2004. [pdf]
  • Kapil Singh and Norman C. Hutchinson, "A Trust-based model for Collaborative Intrusion Response". Technical Report TR-2005-16, University of British Columbia, Canada, 2005.
  • Kapil Singh and Son Vuong, "Blaze: A Mobile Agent Paradigm for VoIP Intrusion Detection Systems". Proceedings of ICETE 2004 - First International Conference on E-Business and Telecommunication Networks, Setubal, Portugal, August 2004. [Abstract] [pdf]
  • Ken Deeter, Kapil Singh, Steve Wilson, Luca Fillipozzi and Son Vuong, "Aphids: A Mobile Agent-based Programmable Hybrid Intrusion Detection System". Proceedings of MATA 2004 - Workshop on Mobile Aware Technologies and Applications (Formerly Mobile Agents for Telecommunication Applications), Florianpolis, Brazil, October 2004. [Abstract] [pdf]
  • Kapil Singh and Pawan Agarwal, "Pricing the Internet - An Approach to Relieve Congestion. Analysis of various Pricing Scemes", iNFLUX 2000, Roorkee, India, 2000. [Synopsis]


    		•
    Education 

         		 Georgia Institute of Technology, Atlanta, USA
    Ph.D. (Computer Science) 2005 till date
    Current GPA - 4.0/4.0

    University of British Columbia, Vancouver, Canada
    M.Sc. (Computer Science) 2003 - 2005
    GPA - 4.0/4.0 [Courses]

    Indian Institute of Technology, Roorkee, India
    B.Tech. (Computer Science and Technology) 1997 - 2001
    Aggregate - 82.0% with Honors
    Honors and Awards 

     
  • International Partial Tuition Scholarship, University of British Columbia, 2003-05.
  • University Merit Scholarship for academic excellence, IIT Roorkee, 1997-2001.
  • Gold Medal for highest marks in Economics and Management during undergraduate study.
  • National Talent Search Examination (NTSE) Scholarship awarded by National Council of Educational Research and Training, India to top 1% of approximate 50,000 candidates.

    		•
    Past Projects 

     
  • Anonymous Peer-to-Peer File Sharing System     [Abstract]
  • Hybrid Profiling Strategy for Intrusion Detection     [Abstract]
  • APHIDS: Agent-based Programmable Hybrid Intrusion Detection System     [Abstract]
  • Intrusion Detection and Analysis     [Abstract]
  • An Efficient Implementation of VoIP on Linux Platform (Undergraduate Thesis)     [Abstract]
  • Compact Binary Encoding of a WML document     [Abstract]

    		•
    Professional Experience 

         		 Microsoft Research, Redmond          Research Intern (4th May 2009 to current)
    Mentor: Helen Wang
    Browser Security (details to be added)

         		 IBM Research T. J. Watson          Research Intern (12th May 2008 to 18th August 2008)
    Mentor: Sumeer Bhola      Manager: Suresh Chari
    Designed and implemented a novel framework for building social networks that provides privacy control for data sharing with third party applications. We used information flow models to control what untrusted applications can do with the information they receive. We showed the viability of our design by means of a platform prototype and also developed some sample applications using the platform APIs. We are in the process of patenting and publishing this work.

         		 IBM Research T. J. Watson          Research Intern (14th May 2007 to 21st August 2007)
    Mentor and Manager: Douglas Schales
    Development of heuristics and mechanisms to detect P2P botnets, analyzing their traffic characteristics to differentiate P2P botnets from normal P2P networks. We developed network-based heuristics without relying on packet payload. IBM Research is currently trying to extend this work.

         		 Damball Inc., Atlanta          Research Intern (15th May 2006 to 15th August 2006)
    Development of heuristics and mechanisms to detect IRC-based botnets, analyzing their characteristics and enumerating the victim machines. My responsibilities include development of the detection tool and streamlining the process of botnet detection with victim enumeration. I also developed heuristics for botnet detection in the absence of any bot binary analysis.

         		 Hughes Software Systems, Gurgaon, Haryana, India          Senior Software Engineer (18th June 2001 to 23rd July 2003)
    Project: Spaceway-STEM (January 2002 to July 2003)      Technology: Element Network Management
     SPACEWAY is a next-generation satellite system, whose unique capabilities will enable high speed data networking, enable groundbreaking applications, and unlock a wealth of value-added DIRECWAY services. It is designed by Hughes Network System, USA. It will lead to "one hope" satellite communication between two Satellite Terminals (STs). It has a capability to support 8 million STs at customer end. There will be a NOCC (Network Operational Control Center) at central position that will be responsible for managing all these STs in addition of other prime responsibilities. It involves TMN based network management of network elements. STEM (Satellite Terminal Element Management) subsystem of Spaceway is involved at Element Management layer of TMN model. This subsystem handles Fault, Performance and Accounting Management areas of Network Management. It also handles "Command Response" mechanism for commanding managed agents.

    Project: Spaceway Applications (September 2001 to January 2002)      Technology: Billing Website Framework
     There shall be a variety of applications that would run on Spaceway network.. Billing Website Framework is an application that deals with billing functionality for the various services provided to the user.

    Project: GSNS (July 2001 to September 2001)      Technology: GMM/SM Scripting
     GSNS (GPRS Support Node Simulator) is a simulation tool for testing the GPRS network. GMM/SM (GPRS Mobility Management/ Session Management) deals with the Mobility and Session Management of the GPRS network.

    Details
    Teaching Experience 

         		 Teaching Assistant in the Department of Computer Science, University of British Columbia, Canada
    September 2003 - June 2005
    Details

    Tutor in the Disability Resource Center, University of British Columbia, Canada
    September 2004 - December 2004
    Languages, Softwares and others 
      Languages : C, C++, JAVA
    Development Platform : Unix, Solaris, Linux, Windows
    Scripting : Unix Shell Scripts, Tcl/Tk
    Database : Oracle 8I
    Environment: ACE (Adaptive Communication Environment), Rogue Wave, and DB Tools.
    NM Framework: Solstice Enterprise Manager(SEM), ASN.1
    Tools: Rational ROSE for Designing, Interleaf for Documentation, Dreamweaver, Purify, Pure Coverage, JProbe.
    Designing: Object Oriented Designing in C++, Design Patterns.
    Programming Areas: Multithreaded Programming, Network Programming(TCP/IP), Distributed Programming (using CORBA) 
    Extra Curricular Highlights 

     
  • Member, Graduate Admissions Committee, Department of Computer Science, UBC.
  • Convener of the National Level Technical Conference SYNC-2001 held at IIT, Roorkee.
  • Secretary of the Himalayan Explorers' club, the adventure club of IIT, Roorkee for the year 2000-01 and Joint Secretary for the year 1999-2000.

    		•
    References 

     

    Available on request 

    Top

    Home