• Dr. Jon Giffin

• Home
• Papers
• Presentations
• Courses

Jonathon T. Giffin

Assistant Professor
School of Computer Science
Georgia Institute of Technology

2 Rue Marconi #213
Metz Technopôle
57070 Metz
France

Tel: +33 03 87 20 39 34

[my last name]@cc.gatech.edu
http://www.cc.gatech.edu/~giffin/

Conference Papers

Static detection of C++ vtable escape vulnerabilities in binary code.

David Dewey and Jonathon Giffin.
In Network and Distributed System Security Symposium (NDSS).
San Diego, California, February 2012.
Paper: Not yet available.

Automated remote repair for mobile malware.

Yacin Nadji, Jonathon Giffin, and Patrick Traynor.
In Annual Computer Security Applications Conference (ACSAC).
Orlando, Florida, December 2011.
Paper: [pdf]

Operating system interface obfuscation and the revealing of hidden operations.

Abhinav Srivastava, Andrea Lanzi, Jonathon Giffin, and Davide Balzarotti.
In Detection of Intrusions and Malware & Vulnerability Assessment (DIMVA).
Amsterdam, The Netherlands, July 2011.
Paper: [pdf]

Virtuoso: Narrowing the Semantic Gap in Virtual Machine Introspection.

Brendan Dolan-Gavitt, Tim Leek, Michael Zhivich, Jonathon Giffin, and Wenke Lee.
In IEEE Symposium on Security and Privacy.
Oakland, California, May 2011.
Paper: [pdf]

Efficient monitoring of untrusted kernel-mode execution.

Abhinav Srivastava and Jonathon Giffin.
In Network and Distributed System Security Symposium (NDSS).
San Diego, California, February 2011.
Paper: [pdf]

Automatic discovery of parasitic malware.

Abhinav Srivastava and Jonathon Giffin.
In International Symposium on Recent Advances in Intrusion Detection (RAID).
Ottawa, Canada, September 2010.
Paper: [pdf]

Automatic generation of remediation procedures for malware.

Roberto Paleari, Lorenzo Martignoni, Emanuele Passerini, Drew Davidson, Matt Fredrickson, Jonathon Giffin, and Somesh Jha.
In USENIX Security Symposium.
Washington, DC, August 2010.
Paper: [pdf]

Protecting e-healthcare client devices against malware and physical theft.

Daisuke Mashima, Abhinav Srivastava, Jonathon Giffin, and Mustaque Ahamad.
In USENIX Workshop on Health Security and Privacy.
Washington, DC, August 2010.
Paper: [pdf]

Robust signatures for kernel data structures.

Brendan Dolan-Gavitt, Abhinav Srivastava, Patrick Traynor, and Jonathon Giffin.
In ACM Conference on Computer and Communications Security.
Chicago, Illinois, November 2009.
Paper: [pdf]

Automatic reverse engineering of malware emulators.

Monirul Sharif, Andrea Lanzi, Jonathon Giffin, and Wenke Lee.
In IEEE Symposium on Security and Privacy.
Oakland, California, May 2009.
Received best student paper award.
Received Georgia Tech Sigma Xi faculty best paper award (2010).
Paper: [pdf]

Soft-timer driven transient kernel control flow attacks and defense.

Jinpeng Wei, Bryan Payne, Jonathon Giffin, and Calton Pu.
In Annual Computer Security Applications Conference (ACSAC).
Anaheim, California, December 2008.
Received best paper award.
Paper: [pdf]

Evolutionary study of phishing.

Danesh Irani, Steve Webb, Jonathon Giffin, and Calton Pu.
In 3rd Anti-Phishing Working Group eCrime Researchers Summit.
Atlanta, Georgia, October 2008.
Received best paper award.
Paper: [pdf]

System call API obfuscation (Extended abstract).

Abhinav Srivastava, Andrea Lanzi, and Jonathon Giffin.
In Recent Advances in Intrusion Detection (RAID).
Cambridge, Massachusetts, September 2008.
Paper: [pdf]

Tamper-resistant, application-aware blocking of malicious network connections.

Abhinav Srivastava and Jonathon Giffin.
In Recent Advances in Intrusion Detection (RAID).
Cambridge, Massachusetts, September 2008.
Paper: [Abstract] [pdf]

Security analysis of an IP phone: Cisco 7960G.

Italo Dacosta, Neel Mehta, Evan Metrock, and Jonathon Giffin.
In Principles, Systems and Applications of IP Telecommunications (IPTComm).
Heidelberg, Germany, July 2008.
Paper: [Abstract] [pdf]

Evaluating email's feasibility for botnet command and control.

Kapil Singh, Abhinav Srivastava, Jonathon Giffin, and Wenke Lee.
In 38th Annual IEEE/IFIP International Conference on Dependable Systems and Networks (DSN).
Anchorage, Alaska, June 2008.
Paper: [Abstract] [pdf]

Impeding malware analysis using conditional code obfuscation.

Monirul Sharif, Andrea Lanzi, Jonathon Giffin, and Wenke Lee.
In 15th Network and Distributed System Security Symposium (NDSS).
San Diego, California, February 2008.
Paper: [Abstract] [pdf]

Understanding precision in host based intrusion detection: Formal analysis and practical models.

Monirul Sharif, Kapil Singh, Jonathon Giffin, and Wenke Lee.
In 10th International Symposium on Recent Advances in Intrusion Detection (RAID).
Surfers Paradise, Australia, September 2007.
Paper: [Abstract] [pdf]

Automated discovery of mimicry attacks.

Jonathon T. Giffin, Somesh Jha, and Barton P. Miller.
In 9th International Symposium on Recent Advances in Intrusion Detection (RAID).
Hamburg, Germany, September 2006.
Paper: [Abstract] [pdf] [ps]
Slides: [pdf]

Strengthening software self-checksumming via self-modifying code.

Jonathon T. Giffin, Mihai Christodorescu, and Louis Kruger.
In 21st Annual Computer Security Applications Conference (ACSAC).
Tucson, Arizona, December 2005.
Paper: [Abstract] [pdf] [ps]
Slides: [pdf]

An auctioning reputation system based on anomaly detection.

Shai Rubin, Mihai Christodorescu, Vinod Ganapathy, Jonathon T. Giffin, Louis Kruger, Hao Wang, and Nicholas Kidd.
In 12th ACM Conference on Computer and Communications Security (CCS).
Alexandria, Virginia, November 2005.
Paper: [Abstract] [pdf] [ps]
Slides: [pdf] (Presentation given by Shai Rubin)

Environment-sensitive intrusion detection.

Jonathon T. Giffin, David Dagon, Somesh Jha, Wenke Lee, and Barton P. Miller.
In 8th International Symposium on Recent Advances in Intrusion Detection (RAID).
Seattle, Washington, September 2005.
Paper: [Abstract] [pdf] [ps]
Slides: [pdf]

An architecture for generating semantics-aware signatures.

Vinod Yegneswaran, Jonathon T. Giffin, Paul Barford, and Somesh Jha.
In 14th USENIX Security Symposium.
Baltimore, Maryland, August 2005.
Paper: [Abstract] [pdf]
Slides: [pdf]
In the news: [SearchSecurity.com]

Formalizing sensitivity in static analysis for intrusion detection.

Henry Hanping Feng, Jonathon T. Giffin, Yong Huang, Somesh Jha, Wenke Lee, and Barton P. Miller.
In IEEE Symposium on Security and Privacy.
Oakland, California, May 2004.
Paper: [Abstract] [pdf] [ps]
Slides: [ppt]

Efficient context-sensitive intrusion detection.

Jonathon T. Giffin, Somesh Jha, and Barton P. Miller.
In 11th Network and Distributed System Security Symposium (NDSS).
San Diego, California, February 2004.
Paper: [Abstract] [pdf] [ps]
Slides: [pdf]

Detecting manipulated remote call streams.

Jonathon T. Giffin, Somesh Jha, and Barton P. Miller.
In 11th USENIX Security Symposium.
San Francisco, California, August 2002.
Paper: [Abstract] [pdf] [ps]
Slides: [pdf]

Invited Papers (unrefereed)

Attribution of malicious behavior.

Jonathon Giffin
In International Conference on Information Systems Security (ICISS).
Gandhinagar, Gujarat, India, December 2010.

Journal & Magazine Articles

The next malware battleground: Recovery after unknown attacks.

Jonathon Giffin
In IEEE Security & Privacy.
May/June 2010.

Technical Reports

Secure observation of kernel behavior.

Abhinav Srivastava, Kapil Singh, and Jonathon Giffin.
Technical Report GT-CS-08-01, Georgia Institute of Technology, Atlanta, 2008.
Paper: [pdf]

On effective model-based intrusion detection.

Jonathon T. Giffin, Somesh Jha, and Barton P. Miller.
Technical report 1543, Computer Sciences Department, University of Wisconsin, Madison, November 2005.
Paper: [Abstract] [pdf] [ps]

Strengthening software self-checksumming via self-modifying code.

Jonathon T. Giffin, Mihai Christodorescu, and Louis Kruger.
Technical report 1531, Computer Sciences Department, University of Wisconsin, Madison, September 2005.
Paper: [Abstract] [pdf] [ps]

Internet sieve: An architecture for generating resilient signatures.

Vinod Yegneswaran, Jonathon T. Giffin, Paul Barford, and Somesh Jha.
Technical report 1507, Computer Sciences Department, University of Wisconsin, Madison, May 2004.
Paper: [Abstract] [pdf]

Book Chapters

A declarative framework for intrusion analysis.

Matt Fredrickson, Mihai Christodorescu, Jonathon Giffin, and Somesh Jha.
In Cyber Situational Awareness, Liu, Jajodia, and Wang, eds., Springer, 2010.

Analysis of COTS for security vulnerability remediation.

Gogul Balakrishnan, Mihai Christodorescu, Vinod Ganapathy, Jonathon T. Giffin, Shai Rubin, Hao Wang, Somesh Jha, Barton P. Miller, and Thomas Reps.
In Information Security Research: New Methods for Protecting against Cyber Threats, Wiley Publishing, Inc., Wang, King, Wachter, Herklotz, Arney, Toth, Hislop, Heise, and Combs, eds., July 2007.
ISBN 978-0471787563.

Dissertation

Model-based intrusion detection system design and evaluation.

Jonathon T. Giffin.
Ph.D. Dissertation, Computer Sciences Department, University of Wisconsin, Madison, August 2006.
Paper: [Abstract] [pdf]

Patents

Semantically-aware network intrusion signature generator.

Paul Barford, Jonathon Giffin, Somesh Jha, and Vinod Yegneswaran.
United States Patent Application #20060212942, March 2005.

Page last modified: November 07, 2011

©2012 Georgia Institute of Technology   ::   Atlanta, Georgia 30332