Daisuke MASHIMA

I am currently a Ph.D. candidate in the College of Computing, Georgia Tech, working with Professor Mustaque Ahamad and am a member of Georgia Tech Information Security Center (GTISC). My research interests is Network Security, especially Identity Management and Privacy in cyberspace. I am also a part of MedVault project, led by Professor Douglas Blough.

    My Resume : ( Aug. 16, 09 Modified )
    E-mail : d.mashima@gatech.edu
    Office: Klaus Advanced Computing Building Room#3208

Recent News

 
My motto is ... "The Integration of theory and Practice"   
  
 
 

   RESEARCH INTERESTS

    
   PUBLICATIONS      EDUCATION  
   PRESENTATIONS / TALKS      PROFESSIONAL EXPERIENCE
   COURSE WORK      TECHNICAL SKILLS
   
 
       

l
  RESEARCH INTERESTS
 

My research interests are Network Security, especially Identity Management and User Authentication. Currently I am working on research about user-centric identity management system architecture ( GUIDE-ME: Georgia Tech User-Centric Identity Management Environment). While designing and developing "Identity Agent(Demo video can be found here.)," which stores and manages identity-related credentials on behalf of human users, my primary topic in this project is Identity Usage Monitoring System, which aims to help users have more control over their own identity information in a usable, flexible manner with minimum privacy concern. I am designing a mechanism to profile normal usage pattern in terms of context information, such as time stamp. geographic location, and device characteristics, and how to detect anomaly. This is closely related to machine learning and data mining area, which is also included in my interest.

Summaries of research projects that I am currently working on are shown below.

  • GUIDE-ME: Georgia tech User-centric IDEntity Management Environment (2007-2009)
    • Design a user-centric identity management architecture involving networked and local identity agents that help enhance security, usability, and control over online identities
  • MedVault: Ensuring Security & Privacy for Medical Data (2008-Present)
    • Develop new techniques to securely share and manage electronic medical records (EMR) based on patients' access control policies by using networked user agents and user-centric identity management model developed in GUIDE-ME project
  • Context-based Risk (Anomaly) Scoring Engine (2008-Present)
    • Devise a mechanism that calculate anomaly scores for each login attempt to a system based on context information, such as timestamp, geographic location, and so on, in a real-time and privacy-preserving fashion
 
  go to index of page
   PUBLICATIONS
 

    

 Apurva Mohan, David Bauer, Douglas M. Blough, Mustaque Ahamad, Bhuvan Bamba, Ramkumar Krishnan, Ling Liu, Daisuke Mashima, and Balaji Palanisamy, "A Patient-centric, Attribute-based, Source-verifiable Framework for Health Record Sharing." Technical Report GIT-CERCS-09-11, 2009.

    

 Daisuke Mashima and Mustaque Ahamad, "Using Identity Credential Usage Logs to Detect Anomalous Service Accesses." In Proc. of The 5th ACM Workshop on Digital Identity Management (DIM 2009), Chicago, IL, 2009.

    

 Daisuke Mashima, Mustaque Ahamad, and Swagath Kannan, "User-Centric Handling of Identity Agent Compromise." In Proc. of 14th European Symposium on Research in Computer Security (ESORICS 2009), Saint-Malo, France, 2009. [Acceptance Rate: 19%]

    

 Daisuke Mashima and Mustaque Ahamad, "Towards A User-Centric Identity-Usage Monitoring System." In Proc. of The Third International Conference on Internet Monitoring and Protection (ICIMP 2008), Bucharest, Romania, 2008. [Acceptance Rate: 23%]

    

 Daisuke Mashima, Tomoyoshi Hada, Junichiro Tanabe and Akihiro Shimizu, "HTTP Based Secure and Simple Authentication Method Using SAS," IPSJ, IPSJ SIGNotes Contents Computer Security No.16, 2002. (In Japanese)

    

 Daisuke Mashima, Mitsuyoshi Shibuya, Tomoyoshi Hada and Akihiro Shimizu, "An Implementation of SAS Authentication on Mobile Terminal," IEICE, Office Information System Group, OFS-2001-49, 2001. (In Japanese)

 
  go to index of page
l
   PRESENTATIONS / TALKS

    

 "Using Identity Credential Usage Logs to Detect Anomalous Service Accesses" at The 5th ACM Workshop on Digital Identity Management (DIM 2009) in Chicago, IL on November 13, 2009.

    

 "User-Centric Handling of Identity Agent Compromise" at 14th European Symposium on Research in Computer Security (ESORICS 2009) in Saint-Malo, France on September 21, 2009.

    

 "Maps Daily - Visualizing Media Trends" at Summer Intern Talk Series at AT&T Labs in Florham Park, NJ on August 3, 2009.

    

 "Handling Identity Agent Compromise in User-Centric Identity Management Systems" at Poster Session in 17th Usenix Security Symposium in San Jose, CA on July 30, 2008.

    

 "Towards a User-Centric Identity-Usage Monitoring System" at The Third International Conference on Internet Monitoring and Protection (ICIMP 2008) in Bucharest, Romania on July 1, 2008.

    

 "Developing Anomaly Detection Model for Security Auditing Service" at Seminar Series on Information Security and Systems for Healthcare Applications in Georgia Institute of Technology, Atlanta, GA, December 7, 2006.

  go to index of page
l
   COURSE WORK


 Summer 2009

       Summer Internship at AT&T Labs, Florham Park, NJ  


 Spring 2009

       CS 6290 - High-performance Computing Architecture  

       CS 9000 - Doctoral Thesis (with Prof. Mustaque Ahamad)  


 Fall 2008

       CS 8803 - Graduate Introduction to Operating Systems  

       CS 8902 - Special Problems (Preparation for Qualifying Exam)  

       CS 8903 - Special Problems (with Prof. Mustaque Ahamad)  


 Summer 2008

       Summer Internship at eBay, San Jose, CA  


 Spring 2008

       CS 6238 - Secure Computer Systems  

       CS 8803 - Foundation of Cryptography  

       CS 8903 - Special Problems (with Prof. Mustaque Ahamad)  

       CSE 6740 - Computational Data Analysis  


 Fall 2007

       CS 6505 - Algorithms, Computability and Complexity  

       CS 8903 - Special Problems (with Prof. Mustaque Ahamad)  

       CS 8903 - Special Problems (with Prof. Wenke Lee)  


 Summer 2007

       CS 8903 - Special Problems (with Prof. Mustaque Ahamad)  


 Spring 2007

       CS6750 - Human Computer Interaction

       CS6262 - Network Security

       CS 8001- Information Security Seminar

       CS 8903 - Special Problems (with Prof. Mustaque Ahamad)  


   Fall 2006

       CS6260 - Applied Cryptography

       CS7001 - Graduate Studies Computing

       CS 8001- Usable Security Seminar

       CS 8903 - Special Problems (with Prof. Mustaque Ahamad)  

 
 
  go to index of page
l
    EDUCATION
 

      Ph.D. student, Computer Science
        Georgia Institute of Technology, Atlanta, GA (08/2006 - Present)
        Major : Computer Security        

     M.S., Engineering
        Keio University, Japan, (04/1998 - 03/2000)
        Thesis Title: "Performance Evaluation of Bootstrap Control Chart"
        Adviser: Prof. Nobuo Shinozaki
        Major:Administration Engineering
        Minor: Statistics

      B.E., Engineering
        Keio University, Japan, (04/1994 - 03/1998)
        Thesis Title: "Marketing of Beer based on Multivariate Analysis"
        Adviser: Prof. Nobuo Shinozaki
        Major: Administration Engineering
        Minor: Statistics
 
  go to index of page
l
    PROFESSIONAL EXPERIENCE
 
     AT&T Labs., Florham Park, NJ (06/2009 -08/2009) [Mentor: Dr. Stephen Kobourov, Dr. Yifan Hu]
    Explored a way to visualize dynamic data, e.g., media trends, by using map metaphor and implemented a prototype system.
 
 
     eBay Inc., San Jose, CA (05/2008 -08/2008) [Mentor: Dr. Li Liu]
    Analyzed data related to security, such as security incidents and fraud detected and results of network scans, and developed Security Metrics system by using Archer SmartSuite Framework. Overview of our project was presented at MetriCon3.0.
 
 
     NTT Advanced Technology Co. Japan (04/2000 - 06/2004)

       Position:  Manager / Research Engineer, System Integration Division
    Developed onetime password authentication / VPN software for cell phones based on SAS onetime password algorithm. Our unprecedented products attracted many people's interest and were awarded the grand prix at "NetWorld+Interop 2001Tokyo" (2001-2003)
 
    Researched a secure network optimized for inter-school communication and developed an original VPN system which is based on SAS onetime password algorithm. (2001)
 
    Developed a secure groupware optimized for communication within regional communities which resulted in the establishment of a system that fulfilled both trustworthy user-authentication and contents protection. (2000)
 
    Developed a prototype of real-time communication system for all Internet users that succeeded in providing a system in which users of PCs and cell phones interface seamlessly. (2004)
 
    Researched the way to add security functions to CyberBook, a book-type multimedia document viewer developed by NTT, and succeeded in implementing a novel contents-protection function by using encryption and onetime password authentication algorithm. (2001)
 
    Took charge of management of the corporate network of NTT Advanced Technology Co., and contributed to the effective administration of the company. (2002-2003)
 
    Developed and maintained the web site of Ministry of Finance of Japan and earned high reliance of the customer. (2003-2004)
 
    Developed a system which provided cell phones with real-time traffic information and enabled the service provider to have more customers than any other its competitors. (2003)
 
    Collaborated with NTT researchers to improve NTT's data cleansing algorithm, a kind of natural language processing algorithm, and implemented a prototype system based on it. (2003-2004)
 
    Served as advisor of students of Kochi University of Technology, Japan and led them to success in their research, such as "The Password Input Interface Suitable for Primary School Children" and "The introduction of SAS Proxy network and its evaluation." (2000-2001)
 
 
     Graduate School in Georgia Tech Atlanta (08/2006 - present)
    Worked as a Research Assistant.  Advisor : Prof. Mustaque Ahamad (01/2007 - present)
 
    Worked as a Teaching Assistant of Information Security Lab class. [CS6265 / Fall 2006]
 
     Graduate School in Keio University Japan (04/1998 - 03/2000)
    Worked as a Teaching Assistant of statistics classes and properly helped the students complete their tasks.
 
    Served as a network administrator of Keio University and succeeded in proactive management.
 
 
  go to index of page
l
    TECHNICAL SKILLS
 

  Programming Language
  Java, C, C++, Perl, PHP, Visual Basic, Shell Script, Java Script, SQL, PL/SQL, HTML, XML, XSLT, and UML
    Operating System
  Solaris, Linux, AIX, and Windows 9x/NT/2000/XP
    Database
  Oracle, DB2, PostgreSQL, MySQL, and SQLServer
    Web
  IIS, Apache, OpenSSL, Jakarta Products(Tomcat, Turbine, Torque, Ant, JMeter), WebSphere, MovableType, Wiki, and Microsoft Web Application Stress Tool
    Server Applications
  BIND, djbdns, VNC, samba, Squid, NTP, CVS and qmail
    Security
  OpenSSH, Zebedee, Hamachi, TCPWrapper, ipchains, iptables, Nessus, Nmap, chkrootkit, Snort, tcpdump, Kismet, NetStumbler, BackTrack, p0f, fl0p, MaxMind GeoIP, John the Ripper, Outpost Firewall, Wireshark(Ethereal), and Archer SmartSuite Framework
    Data Analysis Applications
  S-PLUS, R, Statistica, MATLAB, and Mathematica
 
  go to index of page
Last Modified : 11/15/2009