Refereed Papers

A Systematic Analysis of XSS Sanitization in Web Application Frameworks.: Joel Weinberger, Prateek Saxena, Devdatta Akhawe, Matthew Finifter, Richard Shin and Dawn Song. To appear in Proceedings of the European Symposium on Research in Computer Security (ESORICS 2011), September 2011.
MACE: Model-inference-Assisted Concolic Exploration for Protocol and Vulnerability Discovery.: Chia Yuan Cho, Domagoj Babic, Pongsin Poosankam, Kevin Zhijie Chen, Edward XueJun Wu, and Dawn Song. To appear in Proceedings of USENIX Security 2011. August 2011.
Towards Client-side HTML Security Policies .: Joel Weinberger, Adam Barth, Dawn Song, To appear in Proceedings of USENIX Hot Topics in Security (HotSec) August 2011.
Malware Analysis with Tree Automata Inference.: Domagoj Babic, Daniel Reynaud and Dawn Song. To appear in Proceedings of 23rd International Conference on Computer Aided Verification (CAV 2011). July 2011.
Statically-Directed Dynamic Automated Test Generation.: Domagoj Babic, Lorenzo Martignoni, Stephen McCamant, and Dawn Song. To appear in Proceedings of International Symposium on Software Testing and Analysis (ISSTA 2011). July 2011.
Privacy Settings from Contextual Attributes: A Case Study Using Google Buzz.: Daisuke Mashima, Prateek Sarkar, Elaine Shi, Chris Li, Richard Chow, Dawn Song. In IEEE International Conference on Pervasive Computing and Communications Workshops (PerCom) pp. 257-262. March 2011.
Do You Know Where Your Data Are? Secure Data Capsules for Deployable Data Protection.: Petros Maniatis, Devdatta Akhawe, Kevin Fall; Elaine Shi, Dawn Song. 13th Workshop on Hot Topics in Operating Systems (USENIX HotOS 2011), May 2011.
Design and Evaluation of a Real-Time URL Spam Filtering Service.: Kurt Thomas, Chris Grier, Justin Ma, Vern Paxson, Dawn Song. In Proceedings of the 32nd IEEE Symposium on Security and Privacy, May 2011.
Differential Slicing: Identifying Causal Execution Differences for Security Applications.: Noah Johnson, Juan Caballero, Kevin Zhijie Chen, Stephen McCamant, Pongsin Poosankam, Daniel Reynaud, and Dawn Song. In Proceedings of the 32nd IEEE Symposium on Security and Privacy, May 2011.
DTA++: Dynamic Taint Analysis with Targeted Control-Flow Propagation.: Min Gyung Kang, Stephen McCamant, Pongsin Poosankam, and Dawn Song. In Proceedings of the 18th Annual Network and Distributed System Security Symposium, February 2011.
Privacy-Preserving Aggregation of Time-Series Data.: Elaine Shi, T-H. Hubert Chan, Eleanor Rieffel, Richard Chow, and Dawn Song. In Proceedings of 18th Annual Network and Distributed System Security Symposium (NDSS 2011). February 2011.
Inference and Analysis of Formal Models of Botnet Command and Control Protocols: Chia Yuan Cho, Domagoj Babic, Richard Shin and Dawn Song. In Proceedings of the 17th ACM Conference on Computer and Communication Security, October 2010.
Input Generation via Decomposition and Re-Stitching: Finding Bugs in Malware.: Juan Caballero, Pongsin Poosankam, Stephen McCamant, Domagoj Babic, Dawn Song. In Proceedings of the 17th ACM Conference on Computer and Communication Security, October 2010.
Private and Continual Release of Statistics.: T-H. Hubert Chan, Elaine Shi, and Dawn Song. In Proceedings of the 37th International Colloquium on Automata, Languages and Programming (ICALP), July 2010.
HookScout: Proactive Binary-Centric Hook Detection.: Heng.Yin, Pongsin Poosankam, Steve Hanna, and Dawn Song. In Proceedings of the Seventh Conference on Detection of Intrusions and Malware & Vulnerability Assessment (DIMVA), July 2010.
Towards a Formal Foundation of Web Security: Devdatta Akhawe, Adam Barth, Peifung Lam, John C. Mitchell, and Dawn Song. In Proceedings of the Computer Security Foundations Symposium (CSF), July 2010.
The Emperor's New API: On the (In)Secure Usage of New Client Side Primitives.: Steve Hanna, Richard Shin, Devdatta Akhawe, Arman Boehm, and Dawn Song. WEB 2.0 SECURITY AND PRIVACY (W2SP), May 2010.
A Symbolic Execution Framework for JavaScript.: Prateek Saxena, Devdatta Akhawe, Steve Hanna, Stephen McCamant, Feng Mao, Dawn Song. In Proceedings of the IEEE Symposium on Security and Privacy, pp. 513-528, May 2010.
Insights from the Inside: A View of Botnet Management from Infiltration.: Chia Yuan Cho, Juan Caballero, Chris Grier, Vern Paxson and Dawn Song. Proceedings of the 3rd USENIX Workshop on Large-Scale Exploits and Emergent Threats (LEET 2010), April 2010.
FLAX: Systematic Discovery of Client-side Validation Vulnerabilities in Rich Web Applications.: Prateek Saxena, Steve Hanna, Pongsin Poosankam, Dawn Song, In Proc. of the 17th Network and Distributed System Security Symposium (NDSS), February 2010.
Binary Code Extraction and Interface Identification for Security Applications.: Juan Caballero, Noah M. Johnson, Stephen McCamant, and Dawn Song. In Proceedings of the 17th Annual Network and Distributed System Security Symposium, February 2010.
A Learning-Based Approach to Reactive Security,: Adam Barth, Benjamin I. P. Rubinstein, Mukund Sundararajan, John C. Mitchell, Dawn Song, and Peter Bartlett. In the Proceedings of the Financial Cryptography and Data Security '10. Fourteenth International Conference. January 2010.
Signatures of Reputation: Towards Trust Without Identity.: John Bethencourt, Elaine Shi, and Dawn Song. Presented as an extended abstract at Financial Cryptography; the manuscript linked above is a preliminary full version. January 2010
Tracking Dynamic Sources of Malicious Activity at Internet-Scale: Shobha Venkataraman, Avrim Blum, Dawn Song, Subhabrata Sen and Oliver Spatscheck. In Proceedings of Neural Information Processing Systems (NIPS), December 2009.
Dispatcher: Enabling Active Botnet Infiltration using Automatic Protocol Reverse-Engineering.: Juan Caballero, Pongsin Poosankam, Christian Kreibich, and Dawn Song. In Proceedings of the 16th ACM Conference on Computer and Communication Security, November 2009.
Emulating Emulation-Resistant Malware.: Min Gyung Kang, Heng Yin, Steve Hanna, Steve McCamant, and Dawn Song. In Proceedings of the 2nd Workshop on Virtual Machine Security, November 2009.
Towards Generating High Coverage Vulnerability-Based Signatures with Protocol-Level Constraint-Guided Exploration.: Juan Caballero, Zhenkai Liang, Pongsin Poosankam, and Dawn Song. In Proceedings of the 12th International Symposium on Recent Advances in Intrusion Detection (RAID), September 2009
Cross-Origin JavaScript Capability Leaks: Detection, Exploitation, and Defense.: Adam Barth, Joel Weinberger, and Dawn Song In Proceedings of USENIX Security Symposium, August 2009.
Loop-Extended Symbolic Execution on Binary Programs.: Prateek Saxena, Pongsin Poosankam, Stephen McCamant, and Dawn Song. In Proceedings of the ACM/SIGSOFT International Symposium on Software Testing and Analysis (ISSTA), July 2009.
Measuring Channel Capacity to Distinguish Undue Influence.: James Newsome, Stephen McCamant, and Dawn Song. In Proceedings of the Fourth ACM SIGPLAN Workshop on Programming Languages and Analysis for Security (PLAS), June 2009.
Secure Content Sniffing for Web Browsers or How to Stop Papers from Reviewing Themselves.: Adam Barth, Juan Caballero, and Dawn Song. In Proceedings of the IEEE Symposium on Security and Privacy, May 2009.
Document Structure Integrity: A Robust Basis for Cross-site Scripting Defense.: Yacin Nadji, Prateek Saxena, and Dawn Song In Proceedings of Network & Distributed System Security Symposium (NDSS), Feb 2009.
BinHunt: Automatically Finding Semantic Differences in Binary Programs.: Debin Gao, Michael K. Reiter, and Dawn Song. In Proceedings of the 4th International Conference on Information Systems Security, December 2008.
BitBlaze: A New Approach to Computer Security via Binary Analysis.: Dawn Song, David Brumley, Heng Yin, Juan Caballero, Ivan Jager, Min Gyung Kang, Zhenkai Liang, James Newsome, Pongsin Poosankam, and Prateek Saxena. In Proceedings of the 4th International Conference on Information Systems Security, December 2008. Keynote Invited Paper.
Theory and Techniques for Automatic Generation of Vulnerability-Based Signatures: David. Brumley, James Newsome, Dawn Song, Hao Wang, and Somesh Jha. . In IEEE Transactions on Dependable and Secure Computing, vol. 5(4), pp. 224-241, Oct.-Dec. 2008.
Automatic Patch-Based Exploit Generation is Possible: Techniques and Implications.: David Brumley, Pongsin Poosankam, Dawn Song, and Jiang Zheng. In Proceedings of the IEEE Security and Privacy Symposium, May, 2008.
Analysis-resistant Malware: John Bethencourt, Dawn Song, Brent Waters. In the proceedings of Network and Distributed System Security Symposium (NDSS), Feb 2008.
Limits of Learning-based Signature Generation with Adversaries.: Shobha Venkataraman, Avrim Blum, Dawn Song. In the proceedings of Network and Distributed System Security Symposium (NDSS), Feb 2008.
HookFinder: Identifying and Understanding Malware Hooking Behaviors.: Heng Yin, Zhenkai Liang, and Dawn Song. In the proceedings of Network and Distributed System Security Symposium (NDSS), Feb 2008.
Would Diversity Really Increase the Robustness of the Routing Infrastructure Against Software Defects?: Juan Caballero, Theocharis Kampouris, Dawn Song, Jia Wang. In the proceedings of Network and Distributed System Security Symposium (NDSS), Feb 2008.
Capturing System-wide Information Flow for Malware Detection and Analysis.: Heng Yin, Dawn Song, Manuel Egele, Engin Kirda and Christopher Kruegel. In Proceedings of ACM Conference on Computer and Communications Security (CCS), Oct 2007.
Polyglot: Automatic Extraction of Protocol Message Format using Dynamic Binary Analysis.: Juan Caballero, Heng Yin, Zhenkai Liang, and Dawn Song. In Proceedings of the 14th ACM Conference on Computer and Communications Security (CCS), October 2007.
Provable Data Possession at Untrusted Stores.: Giuseppe Ateniese, Randal Burns, Reza Curtmola, Joseph Herring, Lea Kissner, Zachary Peterson and Dawn Song. In Proceedings of ACM Conference on Computer and Communications Security (CCS), Oct 2007.
Towards Automatic Discovery of Deviations in Binary Implementations with Applications to Error Detection and Fingerprint Generation.: David Brumley, Juan Caballero, Zhenkai Liang, James Newsome, and Dawn Song. In Proceedings of USENIX Security Symposium, Aug 2007.
Best Paper Award
Exploiting Network Structure for Proactive Spam Mitigation.: Shobha Venkataraman, Subhabrata Sen, Oliver Spatscheck, Patrick Haffner, and Dawn Song. Iin Proceedings of USENIX Security Symposium, Aug 2007.
Creating Vulnerability Signatures Using Weakest Pre-conditions.: David Brumley, Hao Wang, Somesh Jha, and Dawn Song. In Proceedings of Computer Security Foundations Symposium, Jul 2007.
Dynamic Spyware Analysis.: Manuel Egele, Christopher Kruegel, Engin Kirda, Heng Yin, and Dawn Song. In Proceedings of USENIX Annual Technical Conference, Jun 2007.
Distributed Evasive Scan Techniques and Countermeasures.: Min Gyyng Kang, Juan Caballero, and Dawn Song. In Proceedings of International Conference on Detection of Intrusions & Malware, and Vulnerability Assessment (DIMVA), Jun 2007.
Multi-Dimensional Range Query over Encrypted Data.: Elaine Shi, John Bethencourt, Hubert Chan, Dawn Song, and Adrian Perrig. In Proceedings of IEEE Security and Privacy Symposium, May 2007.
Sweeper: a Lightweight End-to-End System for Defending against Fast Worms.: Joseph Tucek, James Newsome, Shan Lu, Chengdu Huang, Spiros Xanthos, David Brumley, Yuanyuan Zhou, and Dawn Song. In Proceedings of European Conference on Computer Systems (EuroSys), Mar 2007.
FiG: Automatic Fingerprint Generation.: Juan Caballero,Shobha Venkataraman, Pongsin Poosankam, Min Gyung Kang, Dawn Song and Avrim Blum. In Proceedings of NDSS, Feb 2007.
Efficient and Accurate Detection of Integer-based Attacks.: David Brumley, Tzi-cker Chiueh, Rob Johnson, Huijia Lin, and Dawn Song. In Proceedings of NDSS, Feb 2007.
Black-box Anomaly Detection---Is it Utopian?: Shobha Venkataraman, Juan Caballero, Dawn Song, Avrim Blum, Jennifer Yates. In Proceedings of HotNets, Nov 2006.
Replayer: Automatic Protocol Replay by Binary Analysis.: James Newsome, David Brumley, Jason Franklin, and Dawn Song. In Proceedings of the 13th ACM Conference on Computer and Communications Security (CCS), October 2006.
Secure Hierarchical In-Network Aggregation in Sensor Networks.: Haowen Chan, Adrian Perrig, and Dawn Song. ACM CCS, November 2006.
Thwarting Signature Learning by Training Maliciously.: James Newsome, Brad Karp, and Dawn Song. In Proceedings of the 9th International Symposium On Recent Advances In Intrusion Detection (RAID 2006), September 2006.
Behavioral Distance Measurement Using Hidden Markov Models.: Debin Gao, Michael K. Reiter and Dawn Song In Proceedings of the 9th International Symposium on Recent Advances in Intrusion Detection (RAID 2006), Hamburg, Germany, September 2006.
Towards Attack-Agnostic Defenses.: David Brumley and Dawn Song. In the Proceedings of the First Workshop on Hot Topics in Security (HOTSEC 06).
Towards Automatic Generation of Vulnerability Signatures: David Brumley, James Newsome, Dawn Song, Hao Wang, and Somesh Jha. In the Proceedings of the IEEE Symposium on Security and Privacy, May 2006.
New Constructions and Applications for Private Stream Search (Extended Abstract): John Bethencourt, Dawn Song, and Brent Waters. In the Proceedings of the IEEE Symposium on Security and Privacy, May 2006.
Vulnerability-Specific Execution Filtering for Exploit Prevention on Commodity Software: James Newsome, David Brumley, and Dawn Song. In the Proceedings of the 13th Annual Network and Distributed Systems Security Symposium (NDSS), 2006.
Behavioral Distance for Intrusion Detection: Debin Gao, Mike Reiter and Dawn Song. Symposium on Recent Advance in Intrusion Detection (RAID), Sep 2005.
Privacy Preserving Set Operations: Lea Kissner and Dawn Song. CRYPTO, Aug 2005.
Semantics-Aware Malware Detection: Mihai Christodorescu, Somesh Jha, Sanjit Seshia, Dawn Song, Randal E. Bryant. In IEEE Security and Privacy Symposium, May 2005.
Polygraph: Automatic Signature Generation for Polymorphic Worms: James Newsome, Brad Karp, Dawn Song. In IEEE Security and Privacy Symposium, May 2005.
FIT: Fast Internet Traceback: Abraham Yaar, Adrian Perrig, and Dawn Song. In IEEE InfoCom, March 2005.
New Streaming Algorithms for Superspreader Detection: Shobha Venkataraman, Dawn Song, Phil Gibbons, and Avrim Blum. In Network and Distributed Systems Security Symposium, Feb 2005.
Dynamic Taint Analysis: Automatic Detection, Analysis, and Signature Generation of Exploit Attacks on Commodity Software: James Newsome and Dawn Song. In Network and Distributed Systems Security Symposium, Feb 2005.
Gray-box Extraction of Execution Graphs for Anomaly Detection: Debin Gao, Mike Reiter, and Dawn Song. In ACM Computer and Communication Security (CCS) 2004.
Detection of Interactive Stepping Stones: Algorithms and Confidence Bounds: Avrim Blum, Dawn Song, and Shobha Venkataraman. In Conference of Recent Advance in Intrusion Detection (RAID) 2004.
Privtrans: Automatic Privilege Separation: David Brumley and Dawn Song. In USENIX Security Symposium 2004.
Graybox Program Tracking for Hostbased Intrusion Detection: Debin Gao, Mike Reiter, and Dawn Song. In USENIX Security Symposium 2004.
SIFF: An Endhost Capability Mechanism to Mitigate DDoS Flooding Attacks: Abraham Yaar, Adrian Perrig, and Dawn Song. In IEEE Symposium on Security and Privacy 2004, May 2004.
The Sybil attack in sensor networks: analysis & defenses.: James Newsome, Runting Shi, Dawn Song, and Adrian Perrig. In 3rd International Symposium on Information Processing in Sensor Networks (IPSN 2004), April 2004.
GEM: Graph Embedding for Routing and Data-Centric Storage in Sensor Networks without Geographic Information.: James Newsome and Dawn Song. In ACM SenSys (Conference on Embedded Networked Sensor Systems), November 2003.
SIA: Secure Information Aggregation in Sensor Networks.: Bartosz Przydatek, Dawn Song, and Adrian Perrig. In ACM SenSys (Conference on Embedded Networked Sensor Systems), November 2003.
Pi: A Path Identification Mechanism to Defend against DDoS Attacks.: Avi Yaar, Adrian Perrig, and Dawn Song. In IEEE Symposium on Security and Privacy 2003.
Random Key Predistribution Schemes for Sensor Networks: Haowen Chan, Adrian Perrig, and Dawn Song. In IEEE Symposium on Security and Privacy 2003.
Expander Graphs for Digital Stream Authentication and Robust Overlay Networks: D. Song, D. Zuckerman, and J. D. Tygar. In 2002 IEEE Symposium on Research in Security and Privacy.
Quasi-efficient Revocation of Group Signatures: G. Ateniese, D. Song, and G. Tsudik. In Financial Crypto 2002.
Homomorphic Signature Schemes: R. Johnson, D. Molnar, D. Song, and D. Wagner. In RSA 2002, Cryptographer's track.
Practical Forward Secure Group Signature Schemes: D. Song. In 8th ACM Conference on Computer and Communications Security (CCS-8), 2001.
Timing Analysis of Keystrokes and SSH Timing Attacks: D. Song, D. Wagner, and X. Tian. In 10th USENIX Security Symposium, 2001.
AGVI --- Automatic Generation, Verification, and Implementation of Security Protocols: D. Song, A. Perrig, and D. Phan. In 13th Conference on Computer Aided Verification (CAV), 2001.
ELK, a New Protocol for Efficient Large-Group Key Distribution: A. Perrig, D. Song, and D. Tygar. In 2001 IEEE Symposium on Research in Security and Privacy.
Advanced and Authenticated Marking Schemes for IP Traceback: D. Song and A. Perrig. In IEEE Infocomm 2001.
Efficient and Secure Source Authentication for Multicast: A. Perrig, R. Canetti, D. Song, and J. D. Tygar. In Symposium on Network and Distributed Systems Security (NDSS) 2001.
Looking for Diamonds in the Desert --- Extending Automatic Protocol Generation to Three-Party Authentication and Key Agreement Protocols: A. Perrig and D. Song. In 13th IEEE Computer Security Foundations Workshop, 2000.
Efficient Authentication and Signature of Multicast Streams Over Lossy Channels: A. Perrig, R. Canetti, J. D. Tygar, and D. Song. In IEEE Symposium on Research in Security and Privacy 2000.
Practical Techniques for Searches on Encrypted Data: D. Song, D. Wagner, and A. Perrig. In IEEE Symposium on Research in Security and Privacy 2000.
A First Step towards the Automatic Generation of Security Protocols: A. Perrig and D. Song. In Symposium on Network and Distributed Systems Security (NDSS) 2000.
Hash Visualization: A New Technique to Improve Real-World Security: A. Perrig and D. Song. In International Workshop on Cryptographic Techniques and E-Commerce (CrypTEC) 1999.
Athena, an Automatic Checker for Security Protocol Analysis: D. Song. In 12th IEEE Computer Security Foundation Workshop, 1999.

Journal Papers

Remote data checking using provable data possession: Guiseppe Atenisese, Randal Burns, Reza Curtmola, Joseph Herring, Osama Khan, Lea Kissner, Zachary Peterson, Dawn Song. In ACM Transactions on Information and System Security (TISSEC), Volume 14 Issue 1, May 2011.
TaintEraser: protecting sensitive data leaks using application-level taint tracking.: David (Yu) Zhu, Jaeyeon Jung, Dawn Song, Tadayoshi Kohno, and David Wetherall. 2011. SIGOPS Oper. Syst. Rev., Vol 45, Issue 1 February 2011.
Beyond Output Voting: Detecting Compromised Replicas Using HMM-based Behavioral Distance.: D. Gao, M. Reiter, and D. Song. In IEEE Transactions of Dependable and Secure Computing, vol. 6(2), pp. 96-110, April-June 2009.
New Techniques for Private Stream Searching.: John Bethencourt, Dawn Song, and Brent Waters. ACM Transactions on Information and System Security (TISSEC) 12 (3) , January 2009.
SIA: Secure Information Aggregation in Sensor Networks.: Haowen Chan, Adrian Perrig, Bartosz Przydatek, and Dawn Song. Journal of Computer Security.
StackPi: New Packet Marking and Filtering Mechanisms for DDoS and IP Spoofing Defense.: Abraham Yaar, Adrian Perrig, and Dawn Song. In IEEE Journal on Selected Areas in Communication (JSAC) 24(10), October 2006
Athena, a Novel Approach to Efficient Automatic Security Protocol Analysis: D. Song, S. Berezin, and A. Perrig. In Journal of Computer Security, 9(1,2):47--74, 2001.

Books, Book Chapters, and other Reports


Sting: an End-to-End Self-healing System for Defending against Internet Worms.: David. Brumley, James Newsome, and Dawn Song. Book chapter in Malware Detection and Defense, Editors Christodorescu, Jha, Maughn, Song. pp. 147-170, Springer Science and Business Media, New York NY, 2007.
Automatically Identifying Trigger-based Behavior in Malware: David Brumley, Cody Hartwig, Zhenkai. Liang, James Newsome, Pongsin Poosankam, Dawn Song, and Heng Yin. Book chapter in Botnet Analysis and Defense, Editors Wenke Lee et. al., pp. 1-24, 2007.
A Clean-Slate Design for the Next-Generation Secure Internet.: Steven Bellovin, David Clark, Adrian Perrig, and Dawn Song. Report of the NSF workshop on "Next-generation Secure Internet", held at CMU 12-14 July 2005.
Key Distribution Techniques for Sensor Networks: Haowen Chan, Adrian Perrig, and Dawn Song. In Wireless Sensor Networks, Kluwer Academic Publishers.

Technical Reports

Mitigating Buffer Overflows by Operating System Randomization: M. Chew and D. Song. Technical Report CMU-CS-02-197.

IETF Drafts

TESLA: Multicast Source Authentication Transform: A. Perrig, R. Canetti, B. Briscoe, D. Song, and J. D. Tygar. IETF draft, 2000.

Patents

Secure Auction Marketplace using a Secure Coprocessor: A. Perrig, S. Smith, and D. Song. U.S. Patent pending, filed in 2000.