Georgia Institute of TechnologyCollege of Computing

Jon Giffin

Jon Giffin

School of Computer Science
Georgia Institute of Technology

266 Ferst Drive NW
Atlanta, Georgia 30332-0765
Tel: +1 (404) 385-1060
Fax: +1 (404) 385-2295

I do not check voicemail.

[my last name]@cc.gatech.edu
http://www.cc.gatech.edu/~giffin/

Presentations

Automated discovery of mimicry attacks

Recent Advances in Intrusion Detection (RAID). Hamburg, Germany, September 2006.
Slides: [pdf]

Model-based intrusion detection system design and evaluation

Ph.D. defense of dissertation exam. Madison, Wisconsin, August 2006.

Detecting manipulated process execution

Vrije Universiteit. Amsterdam, Netherlands, March 2006.

Two sides of intrusion detection: strengthening and attacking model-based detectors

  • Microsoft Research. Mountain View, California, May 2006.
  • Microsoft Research. Redmond, Washington, April 2006.
  • Michigan State University. East Lansing, Michigan, April 2006.
  • University of Texas. Austin, Texas, March 2006.
  • University of Michigan. Ann Arbor, Michigan, March 2006.
  • Georgia Institute of Technology. Atlanta, Georgia, February 2006.

Strengthening software self-checksumming via self-modifying code

21st Annual Computer Security Applications Conference. Tucson, Arizona, December 2005.
Slides: [pdf]
Alternate slides: [pdf] (More technical content, no position statements)

Environment-sensitive intrusion detection

An architecture for generating semantics-aware signatures

14th USENIX Security Symposium. Baltimore, Maryland, August 2005.
Slides: [pdf]

Model-based intrusion detection design and evaluation

Ph.D. thesis proposal exam. Madison, Wisconsin, September 2004.

Formalizing sensitivity in static analysis for intrusion detection

IEEE Symposium on Security and Privacy. Oakland, California, May 2004.
Slides: [ppt]

Work-in-progress: Testing defensive systems

IEEE Symposium on Security and Privacy. Oakland, California, May 2004.

Efficient context-sensitive intrusion detection

  • MURI Workshop. Baltimore, Maryland, August 2004.
  • IBM T. J. Watson Research Center. Hawthorne, New York, February 2004.
  • Bell Labs. Murray Hill, New Jersey, February 2004.
  • 11th Network and Distributed System Security Symposium (NDSS). San Diego, California, Feburary 2004.
    Slides: [pdf]

Specification-based monitoring

MURI Workshop. Pittsburgh, Pennsylvania, July 2003.
Slides: [pdf]

Detecting remote security attacks

Condor Affiliates Meeting. Madison, Wisconsin, May 2003.

Specification-based monitoring: Improving model precision

MURI Workshop. Williamsburg, Virginia, January 2003.
Slides: [pdf]

Detecting manipulated remote call streams

11th USENIX Security Symposium. San Francisco, California, August 2002.
Slides: [pdf]

Specification-based analysis and enforcement

MURI Workshop. Harpers Ferry, West Virginia, July 2002.
Slides: [pdf]

Protecting your local host from remote security attacks

Paradyn/Condor Week. Madison, Wisconsin, March 2002.

Determining the integrity of remote system call streams

MURI Workshop. Washington, DC, January 2002.
Slides: [pdf]

Work-in-progress

10th USENIX Security Symposium. Washington, DC, August 2001.