Curriculum Vitae

Education

Work Experience

Full-Time Positions

Advising and Consulting

Contact for more information.

Internships and Research Positions

Vulnerability Discoveries and CVEs

  • CVE-2022-29609: ONOS SDN controller intent installation failure vulnerability
  • CVE-2022-29608: ONOS SDN controller intent flow rule loop vulnerability
  • CVE-2022-29607: ONOS SDN controller intent installation failure vulnerability
  • CVE-2022-29606: ONOS SDN controller port range vulnerability
  • CVE-2022-29605: ONOS SDN controller IPv6 vulnerability
  • CVE-2022-29604: ONOS SDN controller flow and intent inconsistency vulnerability
  • CVE-2022-24109: ONOS SDN controller duplicated intent removal vulnerability
  • CVE-2022-24035: ONOS SDN controller purge link failure
  • CVE-2021-38364: ONOS SDN controller remote intent removal vulnerability
  • CVE-2021-38363: ONOS SDN controller IntentManager pendingMap vulnerability
  • CVE-2019-16302: ONOS SDN controller Ethernet VPN app (evpnopenflow) vulnerability
  • CVE-2019-16301: ONOS SDN controller virtual tenant networking app (vtn) vulnerability
  • CVE-2019-16300: ONOS SDN controller data plane access control app (acl) vulnerability
  • CVE-2019-16299: ONOS SDN controller host mobility app (mobility) vulnerability
  • CVE-2019-16298: ONOS SDN controller virtual broadband network gateway (virtualbng) vulnerability
  • CVE-2019-16297: ONOS SDN controller P4 tutorial app (p4tutorial) vulnerability
  • CVE-2019-11189: ONOS SDN controller data plane access control app (acl) vulnerability
  • CVE-2018-12691: ONOS SDN controller data plane access control app (acl) vulnerability

Publications

Conference Papers

2024
2023
2021
2020
2019
2018
  • “Cross-App Poisoning in Software-Defined Networking” (slides) (ACM link)
    Benjamin E. Ujcich, Samuel Jero, Anne Edmundson, Qi Wang, Richard Skowyra, James Landry, Adam Bates, William H. Sanders, Cristina Nita-Rotaru, and Hamed Okhravi
    2018 ACM Conference on Computer and Communications Security (CCS ‘18)
    Acceptance rate: 16.6%
    Toronto, Ontario, Canada, 15-19 October 2018
2017 and earlier

Workshop Papers

Talks and Presentations

Presentations and Invited Talks

  • Invited speaker
    ‘‘Securing Software-Defined Networking’’
    Computer Science Laboratory Seminar Series
    SRI International, February 2022

  • Invited speaker
    ‘‘Securing the Software-Defined Networking Control Plane’’
    Illinois Cyber Security Scholars Program
    University of Illinois at Urbana-Champaign, April 2021

  • Invited speaker
    ‘‘Securing the Software-Defined Networking Control Plane’’
    National Security Agency, November 2020

  • Guest lecturer
    CS 461 / ECE 422 (Introduction to Computer Security)
    University of Illinois at Urbana-Champaign, October 2019

  • Guest lecturer
    CS 563 / ECE 524 (Advanced Computer Security)
    University of Illinois at Urbana-Champaign, October 2018

  • Speaker and panel member, “Data Provenance for GDPR Compliance” (slides)
    2018 Law and Data Science Summit (LDS ‘18)
    Illinois Data Science Initiative, University of Illinois at Urbana-Champaign, October 2018

Poster Presentations

  • “Accountable Software-Defined Networks with Data Provenance”
    Benjamin E. Ujcich, Samuel Jero, Richard Skowyra, Adam Bates, William H. Sanders, Cristina Nita-Rotaru, and Hamed Okhravi
    2018 Midwest Security Workshop
    Urbana, Illinois, USA, 14 April 2018

Academic Service

Conference Chairing

  • Program Committee Co-Chair, Ninth Hot Topics on Science of Security Symposium (HoTSoS), 2022

Technical Program Committees

Conferences
  • IEEE Symposium on Security and Privacy (S&P / Oakland): 2024, 2023
  • USENIX Security Symposium (Security): 2023
  • Privacy Enhancing Technologies Symposium (PETS): 2024, 2023
  • Annual Computer Security Applications Conference (ACSAC): 2022, 2021
  • IEEE International Conference on Computer Communications and Networks (ICCCN): 2022, 2021
  • IEEE/IFIP International Conference on Dependable Systems and Networks (DSN): 2022 (Fast Abstracts track)
Workshops
  • IEEE Workshop on the Internet of Safe Things (SafeThings): 2022
  • ACM Workshop on Formal Foundations and Security of Programmable Network Infrastructures (FFSPIN): 2022
  • ACM International Workshop on Security in Software Defined Networks & Network Function Virtualization (SDN-NFV Security): 2019

Journal Reviewer

  • IEEE Transactions on Dependable and Secure Computing: March 2023
  • IEEE Communications Magazine: January 2022
  • ACM Transactions on Privacy and Security (TOPS): March 2021
  • IEEE/ACM Transactions on Networking (ToN): August 2020
  • Computer Networks: June 2022, May 2022, July 2020
  • IEEE Security & Privacy Magazine: May 2020

Subreviewer

  • IEEE Symposium on Security and Privacy (S&P / Oakland): 2020
  • IEEE/IFIP International Conference on Dependable Systems and Networks (DSN): 2020, 2019, 2018
  • Internet Society Network and Distributed System Security (NDSS) Conference: 2018
  • USENIX Annual Technical Conference (ATC): 2017

Service Committees

  • Communications Committee (chair), Department of Computer Science, Georgetown University, August 2022 to present
  • Colloquium Committee, Department of Computer Science, Georgetown University, August 2020 to August 2021

Advising and Mentoring

PhD students

  • Dhiraj Saharia, Georgetown University
  • Ran Tao, Georgetown University
  • Jiachi Zhang, Georgetown University

MS students

  • Moxiao Liu, Georgetown University

Committees

  • Jiachi Zhang, Georgetown University: PhD dissertation committee chair
  • Ryan Wails, Georgetown University: PhD dissertation committee
  • Ryan Wails, Georgetown University: PhD area exam committee, Fall 2022
  • Rahel Fainchtein, Georgetown University: PhD dissertation committee, Fall 2023 (anticipated)
  • Rahel Fainchtein, Georgetown University: PhD area exam committee, Spring 2021
  • Feiyang Yu, Georgetown University, MS thesis committee member, Spring 2021

Grants

Georgetown University

Awards

University of Illinois at Urbana-Champaign

Clemson University

  • NSF Graduate Research Fellowship Program Honorable Mention (April 2014)
  • Department of Electrical and Computer Engineering Rhodes Most Outstanding Senior Award in Computer Engineering (April 2014)
  • Department of Electrical and Computer Engineering Rhodes Most Outstanding Junior Award in Computer Engineering (April 2013)
  • Department of Electrical and Computer Engineering Rhodes Most Outstanding Sophomore Award in Computer Engineering (April 2012)
  • Barry M. Goldwater Scholarship (March 2012)]
  • NSF Research Experience for Undergraduates, Clemson University (Summer 2011)
  • President’s List, Clemson University (Fall 2010 – Fall 2013)
  • Clemson University Honors College (Fall 2010 to Spring 2014)

Memberships

  • IEEE, Member (IEEE Communications Society, IEEE Computer Society)
  • ACM, Member
  • Tau Beta Pi, SC Alpha Chapter