Curriculum Vitae

Education

• Ph.D., Electrical and Computer Engineering
  University of Illinois at Urbana-Champaign (Urbana, Illinois)
  August 2016 to June 2020
  Dissertation: “Securing the Software-defined Networking Control Plane by Using Control and Data Dependency Techniques”
  Research co-advisor: Prof. William H. Sanders
  Research co-advisor: Prof. Adam Bates

• M.S., Electrical and Computer Engineering
  University of Illinois at Urbana-Champaign (Urbana, Illinois)
  August 2014 to August 2016
  Thesis: “An Attack Model, Language, and Injector for the Control Plane of Software-defined Networks”
  Research advisor: Prof. William H. Sanders

• B.S. (Honors), Computer Engineering
  Clemson University (Clemson, South Carolina)
  August 2010 to May 2014
  Research advisor: Prof. Kuang-Ching (K.-C.) Wang
  Academic advisor: Prof. Harlan B. Russell

Work Experience

Full-Time Positions

• Assistant Professor
  Department of Computer Science
  Georgetown University (Washington, D.C.)
  August 2020 to present

Advising and Consulting

Contact for more information.

Internships and Research Positions

• Graduate Research Intern
  Cyber Analytics and Decision Systems (CADS) Group
  Secure Resilient Systems and Technology Group
  MIT Lincoln Laboratory (Lexington, Massachusetts)
  May 2017 to August 2017
  May 2018 to August 2019

• Graduate Research Assistant
  Performability Engineering Research (PERFORM) Group
  Information Trust Institute (ITI) / Coordinated Science Laboratory (CSL)
  University of Illinois at Urbana-Champaign (Urbana, Illinois)
  June 2015 to July 2020

• Carver Fellow
  University of Illinois at Urbana-Champaign (Urbana, Illinois)
  College of Engineering
  August 2014 to June 2015

• Software Engineering Intern
  Global Environment for Network Innovations (GENI) Project Office
  Raytheon BBN Technologies (Cambridge, Massachusetts)
  June 2013 to August 2014

• Undergraduate Research Assistant
  Clemson OpenFlow (OFCLEM) Group
  Clemson University (Clemson, South Carolina)
  June 2011 to May 2014

Vulnerability Discoveries and CVEs

• CVE-2023-43889: Disclosure pending
• CVE-2023-43888: Disclosure pending
• CVE-2023-41591: Disclosure pending
• CVE-2022-29609: ONOS SDN controller intent installation failure vulnerability
• CVE-2022-29608: ONOS SDN controller intent flow rule loop vulnerability
• CVE-2022-29607: ONOS SDN controller intent installation failure vulnerability
• CVE-2022-29606: ONOS SDN controller port range vulnerability
• CVE-2022-29605: ONOS SDN controller IPv6 vulnerability
• CVE-2022-29604: ONOS SDN controller flow and intent inconsistency vulnerability
• CVE-2022-24109: ONOS SDN controller duplicated intent removal vulnerability
• CVE-2022-24035: ONOS SDN controller purge link failure
• CVE-2021-38364: ONOS SDN controller remote intent removal vulnerability
• CVE-2021-38363: ONOS SDN controller IntentManager pendingMap vulnerability
• CVE-2019-16302: ONOS SDN controller Ethernet VPN app (evpnopenflow) vulnerability
• CVE-2019-16301: ONOS SDN controller virtual tenant networking app (vtn) vulnerability
• CVE-2019-16300: ONOS SDN controller data plane access control app (acl) vulnerability
• CVE-2019-16299: ONOS SDN controller host mobility app (mobility) vulnerability
• CVE-2019-16298: ONOS SDN controller virtual broadband network gateway (virtualbng) vulnerability
• CVE-2019-16297: ONOS SDN controller P4 tutorial app (p4tutorial) vulnerability
• CVE-2019-11189: ONOS SDN controller data plane access control app (acl) vulnerability
• CVE-2018-12691: ONOS SDN controller data plane access control app (acl) vulnerability

Publications

Journal Articles

1. “Security Challenges of Intent-Based Networking”
   Jiwon Kim, Dave (Jing) Tian, Hamed Okhravi, and Benjamin E. Ujcich
   To appear in Communications of the ACM, 2024.

Conference Papers

1. “NetShuffle: Circumventing Censorship with Shuffle Proxies at the Edge” (IEEE link)
   Patrick Tser Jern Kon, Aniket Gattani, Dhiraj Saharia, Tianyu Cao, Diogo Barradas, Ang Chen, Micah Sherr, and Benjamin E. Ujcich
   2024 IEEE Symposium on Security & Privacy (S&P/Oakland ‘24)
   Acceptance rate: TBD
   San Francisco, California, USA, 20-22 May 2024

2. “Intender: Fuzzing Intent-Based Networking with Intent-State Transition Guidance” (USENIX link)
   Jiwon Kim, Benjamin E. Ujcich, and Dave (Jing) Tian
   2023 USENIX Security Symposium (Security ‘23)
   Acceptance rate: TBD
   Anaheim, California, USA, 9-11 August 2023

3. “Causal Analysis for Software-Defined Networking Attacks” (USENIX link)
   Benjamin E. Ujcich, Samuel Jero, Richard Skowyra, Adam Bates, William H. Sanders, and Hamed Okhravi
   2021 USENIX Security Symposium (Security ‘21)
   Acceptance rate: 18.2%
   Vancouver, British Columbia, Canada (virtual), 11-13 August 2021

4. “Provenance for Intent-Based Networking” (IEEE link)
   Benjamin E. Ujcich, Adam Bates, and William H. Sanders
   2020 IEEE Conference on Network Softwarization (NetSoft ‘20)
   Ghent, Belgium (virtual), 29 June - 3 July 2020

5. “Automated Discovery of Cross-Plane Event-Based Vulnerabilities in Software-Defined Networking” (slides) (NDSS link)
   Benjamin E. Ujcich, Samuel Jero, Richard Skowyra, Steven R. Gomez, Adam Bates, William H. Sanders, and Hamed Okhravi
   2020 ISOC Network and Distributed System Security Symposium (NDSS ‘20)
   Acceptance rate: 17.4%
   San Diego, California, USA, 23-26 February 2020

6. “Data Protection Intents for Software-Defined Networking” (slides) (IEEE link)
   Benjamin E. Ujcich and William H. Sanders
   2019 IEEE Conference on Network Softwarization (NetSoft ‘19)
   Paris, France, 24-28 June 2019

7. “Cross-App Poisoning in Software-Defined Networking” (slides) (ACM link)
   Benjamin E. Ujcich, Samuel Jero, Anne Edmundson, Qi Wang, Richard Skowyra, James Landry, Adam Bates, William H. Sanders, Cristina Nita-Rotaru, and Hamed Okhravi
   2018 ACM Conference on Computer and Communications Security (CCS ‘18)
   Acceptance rate: 16.6%
   Toronto, Ontario, Canada, 15-19 October 2018

8. “Towards an Accountable Software-Defined Networking Architecture” (slides) (IEEE link)
   Benjamin E. Ujcich, Andrew Miller, Adam Bates, and William H. Sanders
   2017 IEEE Conference on Network Softwarization (NetSoft ‘17)
   Bologna, Italy, 3-7 July 2017

9. “ATTAIN: An Attack Injection Framework for Software-Defined Networking” (slides) (IEEE link)
   Benjamin E. Ujcich, Uttam Thakore, and William H. Sanders
   2017 IEEE/IFIP International Conference on Dependable Systems and Networks (DSN ‘17)
   Acceptance rate: 24.5%
   Denver, Colorado, USA, 26-29 June 2017

10. “REMAX: Reachability-Maximizing P2P Detection of Erroneous Readings in Wireless Sensor Networks” (IEEE link)
    Varun Badrinath Krishna, Michael J. Rausch, Benjamin E. Ujcich, Indranil Gupta, and William H. Sanders
    2017 IEEE/IFIP International Conference on Dependable Systems and Networks (DSN ‘17)
    Acceptance rate: 24.5%
    Denver, Colorado, USA, 26-29 June 2017

11. “Thoughts on the Internet Architecture from a Modern Enterprise Network Outage” (IEEE link)
    Benjamin E. Ujcich, Kuang-Ching Wang, Dan Schmiedt, and Brian Parker
    2012 IEEE/IFIP Network Operations and Management Symposium (NOMS ‘12)
    Maui, Hawaii, USA, 16-20 April 2012

Workshop Papers

1. “A Provenance Model for the European Union General Data Protection Regulation” (slides) (Springer link)
   Benjamin E. Ujcich, Adam Bates, and William H. Sanders 7th International Provenance and Annotation Workshop (IPAW ‘18)
   London, England, UK, 9-10 July 2018

2. “Data Provenance for Accountability Mechanisms and Properties” (slides)
   Benjamin E. Ujcich, Adam Bates, and William H. Sanders
   First Workshop on Supporting Algorithm Accountability using Provenance (SAAP ‘18)
   London, England, UK, 12 July 2018

Talks and Presentations

Presentations and Invited Talks

• Invited speaker
  ‘‘No Ill Intent? Understanding the Security Threats and Challenges of Intent-Based Networking’’
  Computer Science Seminar Series
  Virginia Tech (Northern Virginia Center), February 2024

• Invited speaker
  ‘‘No Ill Intent? Understanding the Security Threats and Challenges of Intent-Based Networking’’
  Computer Science Speaker Series
  University of Massachusetts Amherst, November 2023

• Invited speaker
  ‘‘Securing Software-Defined Networking’’
  Computer Science Laboratory Seminar Series
  SRI International, February 2022

• Invited speaker
  ‘‘Securing the Software-Defined Networking Control Plane’’
  Illinois Cyber Security Scholars Program
  University of Illinois at Urbana-Champaign, April 2021

• Invited speaker
  ‘‘Securing the Software-Defined Networking Control Plane’’
  National Security Agency, November 2020

• Guest lecturer
  CS 461 / ECE 422 (Introduction to Computer Security)
  University of Illinois at Urbana-Champaign, October 2019

• Guest lecturer
  CS 563 / ECE 524 (Advanced Computer Security)
  University of Illinois at Urbana-Champaign, October 2018

• Speaker and panel member, “Data Provenance for GDPR Compliance” (slides)
  2018 Law and Data Science Summit (LDS ‘18)
  Illinois Data Science Initiative, University of Illinois at Urbana-Champaign, October 2018

Poster Presentations

• “Accountable Software-Defined Networks with Data Provenance”
  Benjamin E. Ujcich, Samuel Jero, Richard Skowyra, Adam Bates, William H. Sanders, Cristina Nita-Rotaru, and Hamed Okhravi
  2018 Midwest Security Workshop
  Urbana, Illinois, USA, 14 April 2018

Grants

Georgetown University

• NSF CNS-2339882: CAREER: Secure and Trustworthy Intent-Based Networking, $621K, 3/2024 to 2/2029
• NSF CNS-1704189: NeTS: Medium: Collaborative Research: Diagnosing Datacenter Networks with Quantitative Provenance, $1.2M ($343K Georgetown), 9/2017 to 9/2023

Awards

Georgetown University

• NSF Faculty Early Career Development Program (CAREER) (March 2024)

University of Illinois at Urbana-Champaign

• NSF Graduate Research Fellowship Program Honorable Mention (April 2016) (UIUC News Bureau link)
• Carver Fellowship (August 2014)

Clemson University

• NSF Graduate Research Fellowship Program Honorable Mention (April 2014)
• Barry M. Goldwater Scholarship (March 2012)

Academic Service

Conference Chairing

• Program Committee Co-Chair, Ninth Hot Topics on Science of Security Symposium (HoTSoS), 2022

Technical Program Committees

Conferences

• ACM Conference on Computer and Communications Security (CCS): 2024
• IEEE Symposium on Security and Privacy (S&P / Oakland): 2024, 2023
• USENIX Security Symposium (Security): 2023
• Privacy Enhancing Technologies Symposium (PETS): 2024, 2023
• Annual Computer Security Applications Conference (ACSAC): 2022, 2021
• IEEE International Conference on Computer Communications and Networks (ICCCN): 2022, 2021
• IEEE/IFIP International Conference on Dependable Systems and Networks (DSN): 2022 (Fast Abstracts track)

Workshops

• International Workshop on Theory and Practice of Provenance (TaPP): 2024
• IEEE Workshop on the Internet of Safe Things (SafeThings): 2022
• ACM Workshop on Formal Foundations and Security of Programmable Network Infrastructures (FFSPIN): 2022
• ACM International Workshop on Security in Software Defined Networks & Network Function Virtualization (SDN-NFV Security): 2019

Journal Reviewer

• IEEE Transactions on Dependable and Secure Computing: March 2023
• IEEE Communications Magazine: January 2022
• ACM Transactions on Privacy and Security (TOPS): March 2021
• IEEE/ACM Transactions on Networking (ToN): August 2020
• Computer Networks: June 2022, May 2022, July 2020
• IEEE Security & Privacy Magazine: May 2020

Subreviewer

• IEEE Symposium on Security and Privacy (S&P / Oakland): 2020
• IEEE/IFIP International Conference on Dependable Systems and Networks (DSN): 2020, 2019, 2018
• Internet Society Network and Distributed System Security (NDSS) Conference: 2018
• USENIX Annual Technical Conference (ATC): 2017

Service Committees

• Communications Committee (chair), Department of Computer Science, Georgetown University, August 2022 to present
• Colloquium Committee, Department of Computer Science, Georgetown University, August 2020 to August 2021, August 2023 to December 2023

Advising and Mentoring

PhD students

• Dhiraj Saharia, Georgetown University
• Ran Tao, Georgetown University
• Jiachi Zhang, Georgetown University, graduated Fall 2023

MS students

• Moxiao Liu, Georgetown University, graduated Fall 2022

Committees

• Jiwon Kim, Purdue University: PhD advisory committee member, Spring 2024
• Jiachi Zhang, Georgetown University: PhD dissertation committee chair
• Ryan Wails, Georgetown University: PhD dissertation committee member
• Ryan Wails, Georgetown University: PhD area exam committee member, Fall 2022
• Rahel Fainchtein, Georgetown University: PhD dissertation committee member, Fall 2023
• Rahel Fainchtein, Georgetown University: PhD area exam committee member, Spring 2021
• Feiyang Yu, Georgetown University, MS thesis committee member, Spring 2021

Memberships

• IEEE, Member (IEEE Communications Society, IEEE Computer Society)
• ACM, Member
• Tau Beta Pi, SC Alpha Chapter