Research

Books

  • Software-Defined Networking and Security: From Theory to Practice, Book, CRC Press, 2018, [Book] [Amazon]

Journal Papers

  • Generative Adversarial Network (GAN)-Based Autonomous Penetration Testing for Web Applications [Link]
  • Unraveled—A semi-synthetic dataset for Advanced Persistent Threats. published at Computer Networks 227 (2023) [Link]
  • Intent-Driven Security Policy Management for Software-Defined Systems accepted at IEEE Transactions on Network and Service Management (TNSM), 2022 [Link]
  • SCVS: On AI and Edge Clouds Enabled Privacy-Preserved Smart-City Video Surveillance Services accepted at ACM Transactions on Internet of Things, 2022 [Link]
  • SmartDefense: A Distributed Deep Defense Against DDoS attacks with Edge Computing accepted at Computer Networks Journal, 2022 [Link]
  • Towards scalable graph-based security analysis for cloud networks, accepted at Computer Networks Journal, 2022 [Link]
  • Object Oriented Policy Conflict Checking Framework in Cloud Networks (OOPC), accepted at IEEE Transactions on Dependable and Secure Computing (TDSC)
  • A survey of Moving Target Defenses for Network Security, IEEE Communications Surveys and Tutorials, 2020 [Paper]
  • A Survey on Advanced Persistent Threats: Techniques, Solutions, Challenges, and Research Opportunities, IEEE Communications Surveys and Tutorials, 2019 [Paper]
  • Brew: A Security Policy Analysis Framework for Distributed SDN-Based Cloud Environments, IEEE Transactions on Dependable and Secure Computing, 2017 [Paper]

Conference Papers

  • SDN-based Moving Target Defense using Multi-agent Reinforcement Learning, accepted at 1st International Conference on Autonomous Intelligent Cyber-defense Agents (AICA 2021)
  • Autonomous Security Analysis and Penetration Testing (ASAP), The 16th International Conference on Mobility, Sensing, and Networking (MSN 2020) [Paper]
  • General Sum Markov Games for Strategic Detection of Advanced Persistent Threats using Moving Target Defense in Cloud Networks, GameSec 2019, Stockholm, Sweden, 2019 [Paper] [Presentation] [Poster] [Code]
  • S3: A DFW-based Scalable Security State Analysis Framework for Large-Scale Data Center Networks, RAID, Beijing, China, 2019 [Paper]
  • TRUFL: Distributed Trust Management framework in SDN, IEEE International Conference on Communications (ICC), Shanghai, China 2019 [Paper] [Presentation]
  • Adaptive MTD Security using Markov Game Modeling, IEEE ICNC, Hawaii, USA, 2019 [Paper]
  • SUPC: SDN enabled Universal Policy Checking in Cloud Network, IEEE ICNC, Hawaii, USA, 2019 [Paper]
  • SDN based Network Function Parallelism in Cloud, IEEE ICNC, Hawaii, USA, 2019 [Paper]
  • Moving Target Defense for the Placement of Intrusion Detection Systems in the Cloud, GameSec 2018, Seattle, WA, 2018 [Paper] [Presentation]
  • Combining Dynamic and Static Attack Information for Attack Tracing and Event Correlation, IEEE Globecomm, Abu Dhabi, 2018. [Paper] [Presentation]
  • Fault Tolerant Controller Placement in Distributed SDN Environments, IEEE International Conference on Communications (ICC), Kansas, US 2018 [Paper]
  • A Defense System for Defeating DDoS Attacks in SDN based Networks, ACM MobiWac 2017 [Paper]
  • Security Policy Checking in Distributed SDN Based Clouds, IEEE Conference on Communications and Network Security (CNS), 2016 [Paper]
  • Software Defined Stochastic Model for Moving Target Defense, Springer Third International Afro-European Conference for Industrial Advancement AECIA, 2016 [Paper]

Workshop and Demo Papers

  • DAPT 2020 – Constructing a Benchmark Dataset for Advanced Persistent Threats, MLHat:The First International Workshop on Deployable Machine Learning for Security Defense, SigKDD, 2020 [Paper] [Talk]
  • SDNSOC: Object Oriented SDN Framework, ACM SDN-NFV Sec’19, TX, USA, 2019   [Paper] [Presentation]
  • Markov Game Modeling of Moving Target Defense for Strategic Detection of Threats in Cloud Networks, AICS-AAAI, Hawaii, USA, 2019 [Paper] [Presentation] [Code]
  • MTD Analysis and evaluation framework in Software Defined Network (MASON), ACM SDN-NFV Sec’18, 2018 [Paper] [Presentation]
  • Science DMZ: SDN based Secured Cloud Testbed (Demo Paper), IEEE Conference on Network Function Virtualization and Software Defined Networks, Berlin, Germany 2017 [Paper] [Demo] [Poster]
  • Dynamic Game based Security framework in SDN-enabled Cloud Networking Environments, ACM SDN-NFV Sec’17, 2017 [Paper] [Presentation]
  • SDN based Scalable MTD solution in Cloud Network, ACM Workshop on Moving Target Defense, 2016 [Paper] [Presentation]
  • VC-bots: A Vehicular Cloud Computing Testbed with Mobile Robots, ACM First international workshop on internet of vehicles and vehicles of internet, 2016 [Paper]

Patents

  • US Patent 10,868,737: Security policy analysis framework for distributed software defined networking (sdn) based cloud environments [Patent]

Industry Events, Guest Lectures, Preprints

  • Generative Adversarial Network (GAN) based autonomous penetration testing for web applications, DEFCON 31, AppSec Village, USA 2023
  • WRCCDC Training Series – VMWare, SSH, Basic Log Analysis [Video]
  • Autonomous Security Analysis and Pentesting (ASAP), DEFCON Red Team Village, Virtual, USA, 2020 [Talk]
  • Deception-NET: Build Your Own Deception, CactusCon, Mesa, AZ, USA 2019 [Presentation]
  • Enterprise Auditing and Logging, DevilSec, Fall 2019 [Presentation]
  • Finding and Exploiting Vulnerabilities, Guest Lecture, CSE 468, Fall 2019 [Presentation]
  • Moving Target Defense and Intelligent Cyberdeception, CSE 591, Spring 2019 [Presentation]
  • SDFW: SDN-based Stateful Distributed Firewall, 2018 [Paper]

Master’s Thesis

  • Secure Mobile SDN, Masters Thesis, 2015 [Thesis]