I work on data-driven security. My research objective is to provide an evidence based foundation for security, by building defenses grounded in a rigorous understanding of real-world adversaries.
I conduct empirical studies of adversary behavior, I build machine learning systems for detecting malware and attacks, and I study the security of machine learning in adversarial environments. I also have a good knowledge of the security industry, having worked for 2.5 years at Symantec Research Labs. There, I built WINE, one of the first platforms for sharing field data collected by the security industry with academic researchers. In my most cited paper I measured how long zero-day attacks go on undiscovered in the wild; this measurement was made possible, for the first time, by the WINE platform.
My research has been featured in the Research Highlights of the Communications of the ACM and has been widely cited in the media, for example in The Economist, the MIT Technology Review, Forbes, and The Register. I also enjoy giving TED-style talks, to explain our work to broad audiences.
I have a Ph.D. from Carnegie Mellon University and undergraduate degrees from the Ecole Polytechnique and the “Politehnica” University, Bucharest.
At a Glance
In Spring’17 I am teaching ENEE 140 - Introduction to Programming Concepts for Engineers
In January, I organized the MC2 Workshop on Data-Driven to Security
Student(s) who joined my group in Spring’17: Doowon Kim and Yiğitcan Kaya