Excellence in Secure Cloud Computing Research and Education!

Refereed Papers

2020 - 2021

Sun D, Zhang X, Choo KK, Hu L, Wang F. NLP-based digital forensic investigation platform for online communications. Computers & Security, 104, p.102210. May 2021 (Final), doi: https://doi.org/10.1016/j.cose.2021.102210
Chen Y, Wang H, Choo KK, He P, Salcic Z, Kaafar MA, Zhang X. DDCA: A Distortion Drift-Based Cost Assignment Method for Adaptive Video Steganography in the Transform Domain. IEEE Transactions on Dependable and Secure Computing. Feb 2021 (Early Access), doi: 10.1109/TDSC.2021.3058134
Lin C, Luo M, Huang X, Choo KK, He D. An Efficient Privacy-Preserving Credit Score System Based on Noninteractive Zero-Knowledge Proof. IEEE Systems Journal. Jan 2021 (Early Access), doi: https://doi.org/10.1109/JSYST.2020.3045076
Lu N, Chang Y, Shi W, Choo KK. CoinLayering: An Efficient Coin Mixing Scheme for Large Scale Bitcoin Transactions. IEEE Transactions on Dependable and Secure Computing. Dec 2020 (Early Access), doi: 10.1109/TDSC.2020.3043366
Al-Alaj, Abdullah, Ram Krishnan, and Ravi Sandhu. ParaSDN: An Access Control Model for SDN Applications based on Parameterized Roles and Permissions. 2020 IEEE 6th International Conference on Collaboration and Internet Computing (CIC). IEEE, Dec 2020, doi: https://doi.org/10.1109/CIC50333.2020.00022
Haque, Md Farhan, and Ram Krishnan. Toward Automated Cyber Defense with Secure Sharing of Structured Cyber Threat Intelligence. Information Systems Frontiers,Dec 2020 (Early Access): 1-14, doi: https://doi.org/10.1007/s10796-020-10103-7
Ficke, Eric, and Shouhuai Xu. APIN: Automatic Attack Path Identification in Computer Networks. 2020 IEEE International Conference on Intelligence and Security Informatics (ISI), IEEE, Nov 2020, pp. 1-6, doi:10.1109/ISI49825.2020.9280547
Al-Alaj, Abdullah, Ravi Sandhu, and Ram Krishnan. A Model for the Administration of Access Control in Software Defined Networking using Custom Permissions. 2020 Second IEEE International Conference on Trust, Privacy and Security in Intelligent Systems and Applications (TPS-ISA). IEEE, Oct 28-31, 2020, doi: https://doi.org/10.1109/TPS-ISA50397.2020.00032
Talegaon, Samir, and Ram Krishnan. Role-Based Access Control Models for Android. 2020 Second IEEE International Conference on Trust, Privacy and Security in Intelligent Systems and Applications (TPS-ISA). IEEE, Oct 2020, doi: 10.1109/TPS-ISA50397.2020.00033
Ali IM, Sallam KM, Moustafa N, Chakraborty R, Ryan MJ, Choo KK. An Automated Task Scheduling Model using Non-Dominated Sorting Genetic Algorithm II for Fog-Cloud Systems. IEEE Transactions on Cloud Computing. Oct 2020 (Early Access), doi: 10.1109/TCC.2020.3032386
Liu, Y., He, D., Obaidat, M.S., Kumar, N.,Khan, M.K., Raymond Choo, K.-K. Blockchain-based identity management systems: A review, Journal of Network and Computer Applications, Sept 2020 (Final), doi: https://doi.org/10.1016/j.jnca.2020.102731
Haddadpajouh H, Mohtadi A, Dehghantanaha A, Karimipour H, Lin X, Choo KK. A Multi-Kernel and Meta-heuristic Feature Selection Approach for IoT Malware Threat Hunting in the Edge Layer. IEEE Internet of Things Journal. Sept 2020 (Early Access), doi: 10.1109/JIOT.2020.3026660
Talegaon, S., Krishnan, R. A Formal Specification of Access Control in Android with URI Permissions. Inf Syst Front, Sept 2020 (Early Access), doi: https://doi.org/10.1007/s10796-020-10066-9

2019 - 2020

Samir Talegaon and Ram Krishnan. Administrative Models for Role Based Access Control in Android. In Journal of Internet Services and Information Security, Vol. 10, Issue 3, pp 31-46, August 2020. doi: 10.22667/JISIS.2020.08.31.031
Naiwei Liu, Meng Yu, Wanyu Zang and Ravi Sandhu. On the Cost-Effectiveness of TrustZone Defense on ARM Platform. In Proceedings of 21st World Conference on Information Security Applications (WISA), Virtual Event, August 26-28, 2020, 12 pages, doi: https://doi.org/10.1007/978-3-030-65299-9_16
Safwa Ameer, James Benson and Ravi Sandhu. The EGRBAC Model for Smart Home IoT. In Proceedings of the 21st IEEE Conference on Information Reuse and Integration (IRI), Virtual Event, August 11-13, 2020, 8 pgs, doi: 10.1109/IRI49571.2020.00076.
Bao J, He D, Luo M and Choo K-K R. A Survey of Blockchain Applications in the Energy Sector. IEEE Systems Journal, July 2020, doi: https://doi.org/10.1109/JSYST.2020.2998791
Zhang, Xueling, Xiaoyin Wang, Rocky Slavin, Travis Breaux, and Jianwei Niu. How Does Misconfiguration of Analytic Services Compromise Mobile Privacy?. 42nd ACM/IEEE International Conference on Software Engineering (ICSE), July 2020, 12 pgs, doi: https://doi.org/10.1145/3377811.3380401
Smriti Bhatt and Ravi Sandhu. ABAC-CC: Attribute-Based Access Control and Communication Control for Internet of Things. In Proceedings of the 25th ACM Symposium on Access Control Models and Technologies (SACMAT), Virtual Event, June 10-12, 2020, pages 203-212, doi: https://doi.org/10.1145/3381991.3395618
Chen B, He D, Kumar N, Wang H and Choo K-K R. A Blockchain-Based Proxy Re-Encryption with Equality Test for Vehicular Communication Systems. IEEE Transactions on Network Science and Engineering, June 2020. doi: https://doi.org/10.1109/TNSE.2020.2999551
Chen H, Pendleton M, Njilla L, Xu S. A survey on ethereum systems security: Vulnerabilities, attacks and defenses. ACM Computing Surveys:1908.04507. June 2020, doi: https://doi.org/10.1145/3391195
Lin C, He D, Huang X, Kumar N and Choo K-K R. BCPPA: A Blockchain-based Conditional Privacy-preserving Authentication Protocol for Vehicular Ad Hoc Networks. IEEE Transactions on Intelligent Transportation Systems, June 2020, doi: https://doi.org/10.1109/TITS.2020.3002096
Q. Feng, D. He, Z. Liu, H. Wang and K. R. Choo. SecureNLP: A System for Multi-Party Privacy-Preserving Natural Language Processing, in IEEE Transactions on Information Forensics and Security, vol. 15, pp. 3709-3721, May 2020, doi: 10.1109/TIFS.2020.2997134.
Lawa, Sherifdeen, and Ram Krishnan. Policy Review in Attribute Based Access Control A Policy Machine Case Study Journal of Internet Services and Information Security (JISIS) 10.2 May 2020: 14 pgs, doi: 10.22667/JISIS.2020.05.31.067
Zhang X, Upton O, Beebe N and Choo K-K R. IoT Botnet Forensics: A Comprehensive Digital Forensic Case Study on Mirai Botnet Servers. Forensic Science International: Digital Investigation, April 2020, doi: https://doi.org/10.1016/j.fsidi.2020.300926
Hosseini, Mitra Bokaei, Rocky Slavin, Travis Breaux, Xiaoyin Wang, and Jianwei Niu. Disambiguating Requirements Through Syntax-Driven Semantic Analysis of Information Types. In International Working Conference on Requirements Engineering: Foundation for Software Quality, pp. 97-115. Springer, Cham, March 2020, doi: https://doi.org/10.1007/978-3-030-44429-7_7
Mandal S, Bera B, Sutrala A K, Das A K, Choo K-K R and Park Y. Certificateless-Signcryption-Based Three-Factor User Access Control Scheme for IoT Environment. IEEE Internet of Things Journal 7(4): 3184-3197, Jan 2020, doi: https://doi.org/10.1109/JIOT.2020.2966242
Guo C, Jia J, Jie Y, Liu C Z and Choo K-K R. Enabling Secure Cross-Modal Retrieval over Encrypted Heterogeneous IoT Databases with Collective Matrix Factorization. IEEE Internet of Things Journal 7(4): 3104-3113, Jan 2020, doi: https://doi.org/10.1109/JIOT.2020.2964412
Lei Xu, Lin Chen, Zhimin Gao, Xinxin Fan, Kimberly Doan, Shouhuai Xu and Weidong Shi. KCRS: A Blockchain-Based Key Compromise Resilient Signature System. In International Conference on Blockchain and Trustworthy Systems, Dec 2019, doi: https://doi.org/10.1007/978-981-15-2777-7_19
Mehrnoosh Shakarami and Ravi Sandhu. Safety and Consistency of Mutable Attributes Using Quotas: A Formal Analysis. In Proceedings of the 1st IEEE International Conference on Trust, Privacy and Security in Intelligent Systems and Applications (TPS-ISA), Los Angeles, California, December 12-14, 2019, 9 pages, doi: https://doi.org/10.1109/TPS-ISA48467.2019.00010
Md. Farhan Haque and Ram Krishnan. Toward Relationship Based Access Control for Secure Sharing of Structured Cyber Threat Intelligence. In Proceedings of the 8th International Conference on Secure Knowledge Management in Artificial Intelligence Era (SKM), Goa, India, Dec. 21-22, 2019, doi: https://doi.org/10.1007/978-981-15-3817-9_2
Chakraborty Shuvra, Sandhu Ravi, Krishnan Ram. On the Feasibility of RBAC to ABAC Policy Mining: A Formal Analysis. In Proceedings of the 8th International Conference on Secure Knowledge Management in Artificial Intelligence Era (SKM), Goa, India, Dec. 21-22, 2019, doi: https://doi.org/10.1007/978-981-15-3817-9_9
Haque, Md Farhan, and Ram Krishnan. Toward Relationship Based Access Control for Secure Sharing of Structured Cyber Threat Intelligence. In Proceedings of the 8th International Conference on Secure Knowledge Management in Artificial Intelligence Era (SKM), Goa, India, Dec. 21-22, 2019, doi: https://doi.org/10.1007/978-981-15-3817-9_2
Talegaon, Samir & Krishnan, Ram. A Formal Specification of Access Control in Android. In Proceedings of the 8th International Conference on Secure Knowledge Management in Artificial Intelligence Era (SKM), Goa, India, Dec. 21-22, 2019, doi: 10.1007/978-981-15-3817-9_7.
Rodriguez, Rodney; Wang, Xiaoyin. Static Analysis of File Manipulation Scripts, IEEE Pacific Rim International Symposium on Dependable Computing (PRDC), Dec 2019, doi: https://doi.org/10.1109/PRDC47002.2019.00039
Zhang, Xueling; Slavin, Rocky; Wang, Xiaoyin; Niu, Jianwei. Privacy Assurance for Android Augmented Reality Apps, IEEE Pacific Rim International Symposium on Dependable Computing (PRDC), Dec 2019, doi: https://doi.org/10.1109/PRDC47002.2019.00037
Gabriel C. Fernandez and Shouhuai Xu. A Case Study on Using Deep Learning for Network Intrusion Detection. IEEE Milcom, Nov 2019, doi: https://doi.org/10.1109/MILCOM47813.2019.9020824
Eric Ficke, Kristin M. Schweitzer, Raymond M. Bateman, and Shouhuai Xu. Analyzing Root Causes of Intrusion Detection False-Negatives: Methodology and Case Study. IEEE Milcom, Nov 2019, doi: 10.1109/MILCOM47813.2019.9020860
Jonathan Shahen, Jianwei Niu, and Mahesh V. Tripunitara. Cree: a Performant Tool for Safety Analysis of Administrative Temporal Role-Based Access Control (ATRBAC) Policies. IEEE Transactions on Dependable and Secure Computing, Oct 2019, doi: https://doi.org/10.1109/TDSC.2019.2949410
Abdullah Al-Alaj, Ram Krishnan and Ravi Sandhu. SDN-RBAC: An Access Control Model for SDN Controller Applications, In Proceedings of 4th IEEE International Conference on Computing Communication and Security (ICCCS 2019), Rome, Italy, October 10-12, 2019, doi: 10.1109/CCCS.2019.8888031
Randy Klepetko and Ram Krishnan. Analyzing CNN Model Performance Sensitivity to the Ordering of Non-Natural Data, In Proceedings of 4th IEEE International Conference on Computing Communication and Security (ICCCS 2019), Rome, Italy, October 10-12, 2019, doi: https://doi.org/10.1109/CCCS.2019.8888041
D. Zou, S. Wang, S. Xu, Z. Li, and H. Jin. muVulDeePecker: A Deep Learning-Based System for Multiclass Vulnerability Detection. IEEE Transactions on Dependable and Secure Computing (IEEE TDSC), Sept. 2019, doi: 10.1109/TDSC.2019.2942930.
Shaikh Mostafa, Bridgette Findley, Na Meng, and Xiaoyin Wang. SAIS: Self-Adaptive Identification of Security Bug Reports, IEEE Transactions on Dependable and Secure Computing (IEEE TDSC), Sept. 2019, doi: 10.1109/TDSC.2019.2939132.

2018 - 2019

Alkadi O S, Moustafa N, Turnbull B and Choo K-K R. An Ontological Graph Identification Method for Improving Localization of IP Prefix Hijacking in Network Systems. IEEE Transactions on Information Forensics and Security 15: 1164-1174, Aug 2019. doi: https://doi.org/10.1109/TIFS.2019.2936975
Shuvra Chakraborty, Ravi Sandhu and Ram Krishnan. On the Feasibility of Attribute-Based Access Control Policy Mining. In Proceedings of the 20th IEEE Conference on Information Reuse and Integration (IRI), Los Angeles, California, July 30-August 1, 2019, 8 pages, doi: 10.1109/IRI.2019.00047.
Mahmoud Abdelsalam, Ram Krishnan and Ravi Sandhu. Online Malware Detection in Cloud Auto-Scaling Systems Using Shallow Convolutional Neural Networks. In Proceedings 31st Annual IFIP WG 11.3 Working Conference on Data and Applications Security and Privacy (DBSec), Charleston, SC, July 15-17, 2019, 17 pages, doi: https://doi.org/10.1007/978-3-030-22479-0_20
Mehrnoosh Shakarami and Ravi Sandhu. Refresh Instead of Revoke Enhances Safety and Availability: A Formal Analysis. In Proceedings 31st Annual IFIP WG 11.3 Working Conference on Data and Applications Security and Privacy (DBSec), Charleston, SC, July 15-17, 2019, doi: https://doi.org/10.1007/978-3-030-22479-0_16
Banerjee S, Odelu V, Das A K, Srinivas J, Kumar N, Chattopadhyay S and Choo K-K R. A Provably Secure and Lightweight Anonymous User Authenticated Session Key Exchange Scheme for Internet of Things Deployment. IEEE Internet of Things Journal 6(5): 8739-8752, June 17, 2019, 14 pages, doi: https://doi.org/10.1109/JIOT.2019.2923373
John Heaps, Xiaoyin Wang, Travis Breaux, and Jianwei Niu. Toward Detection of Access Control Models from Source Code via Word Embedding. In SACMAT ’19: Proceedings of The 24th ACM Symposium on Access Control Models & Technologies (SACMAT), June 4-6, 2019, Toronto, Canada, 8 pages, doi: https://doi.org/10.1145/3322431.3326329
Joy Rahman and Palden Lama. Predicting the End-to-End Tail Latency of Containerized Microservices in the Cloud. In Proceedings of IEEE International Conference on Cloud Engineering (IC2E), Prague, Czech Republic, June 24-27, 2019, 10 pages, doi: https://doi.org/10.1109/IC2E.2019.00034
Mehrnoosh Shakarami and Ravi Sandhu. Safety and Consistency of Subject Attributes for Attribute-Based Pre-Authorization Systems. In Proceedings National Cyber Summit (NCS), Huntsville, Alabama, June 4-6, 2019, doi: https://doi.org/10.1007/978-3-030-31239-8_19
CohenMiller, A., & Pate, P. E. A model for developing interdisciplinary research theoretical frameworks. The Qualitative Report, 24(6), June 3, 2019
Zongzong Lin, Wenlian Lu, Shouhuai Xu. Unified Preventive and Reactive Cyber Defense Dynamics Is Still Globally Convergent. IEEE/ACM Transactions on Networking, 27(3): 1098-1111, May 2019, doi: https://doi.org/10.1109/TNET.2019.2912847
Marahattaa A, Pirbhulal S, Zhang F, Parizid R M, Choo K-K R and Liu Z. Classification-based and Energy-Efficient Dynamic Task Scheduling Scheme for Virtualized Cloud Data Center. IEEE Transactions on Cloud Computing, May 2019. https://doi.org/10.1109/TCC.2019.2918226
Mengsu Chen, Felix Fischer, Na Meng, Xiaoyin Wang, Jens Grossklags. How Reliable is the Crowdsourced Knowledge of Security Implementation? Proceedings of International Conference on Software Engineering (ICSE), Montreal, Canada, May 25-31, 2019, 12 pages, doi: https://doi.org/10.1109/ICSE.2019.00065
Zhang X, Choo K-K R and Beebe N. How do I share my IoT forensic experience with the broader community? An automated knowledge sharing IoT forensic platform. IEEE Internet of Things Journal 6(4): 6850-6861, April 22, 2019, 12 pages.
Abdullah Al-Alaj, Ravi Sandhu and Ram Krishnan. A Formal Access Control Model for SE-Floodlight Controller. In Proceedings of the ACM International Workshop on Security in Software Defined Networks & Network Function Virtualization (SDN-NFVSecurity), March 25-27, 2019, Richardson, TX, 6 pages, doi: https://doi.org/10.1109/JIOT.2019.2912118
Maanak Gupta, James Benson, Farhan Patwa and Ravi Sandhu. Dynamic Groups and Attribute-Based Access Control for Next-Generation Smart Cars. In Proceedings of the 9th ACM Conference on Data and Application Security and Privacy (CODASPY), March 25-27, 2019, Richardson, TX, pages 61-72, doi: https://doi.org/10.1145/3292006.3300048
Hongyu Liu, Sam Silvestro Xiaoyin Wang, Lide Duan, Tongping Liu. CSOD: Context-Sensitive Overflow Detection, Proceedings of International Symposium on Code Generation and Optimization (CGO), Washington DC, Feb. 16-20, 2019, 11 pages, doi: https://doi.org/10.1109/CGO.2019.8661198
R. Garcia-Lebron, D. Myers, S. Xu, and J. Sun. Node Diversification in Complex Networks by Decentralized Coloring. Journal of Complex Networks, Dec 2018 (Early Access), doi: https://doi.org/10.1093/comnet/cny031
John Charlton, Pang Du, Jin-Hee Cho, Shouhuai Xu. Measuring Relative Accuracy of Malware Detectors in the Absence of Ground Truth. Proceedings of IEEE MILCOM Oct 2018: 450-455, doi: https://doi.org/10.1109/MILCOM.2018.8599730
Foyzul Hassan, Rodney Rodriguez, Xiaoyin Wang. RUDSEA: recommending updates of Dockerfiles via software environment analysis, Proceedings of ACM/IEEE Conference on Automated Software Engineering (ASE), Montpelier, France, Sept. 3-7, 2018, 6 pages, doi: https://doi.org/10.1145/3238147.3240470

2017 - 2018

Mahmoud Abdelsalam, Ram Krishnan, Yufei Huang and Ravi Sandhu. Malware Detection in Cloud Infrastructures using Convolutional Neural Networks. In Proceedings 11th IEEE International Conference on Cloud Computing (CLOUD), San Francisco, CA, July 2-7, 2018, 8 pages. Presentation(pdf), doi: https://doi.org/10.1109/CLOUD.2018.00028
Demir, Mevlut and Wagner, Weslyn and Dandona, Divyaansh and Prevost, John J A Comprehensive Solution for Research-Oriented Cloud Computing, International Conference on Cloud Computing, June 2018, doi: https://doi.org/10.1007/978-3-319-94295-7
Guo C, Zhuang R, Jie Y, Choo K-K R and Tang X. Secure Range Search over Encrypted Uncertain IoT Outsourced Data. IEEE Internet of Things Journal 6(2): 1520-1529, June 7, 2018, 10 pages, doi: https://doi.org/10.1109/JIOT.2018.2845106
Heaps, John; Slavin, Rocky; Wang, Xiaoyin. Toward A Code Pattern Based Vulnerability Measurement Model, ACM Symposium on Access Control Models & Technologies (SACMAT), June 2018, doi: https://doi.org/10.1145/3205977.3208948
Maanak Gupta and Ravi Sandhu. Authorization Framework for Secure Cloud Assisted Connected Cars and Vehicular Internet of Things. In Proceedings of the 23rd ACM Symposium on Access Control Models and Technologies (SACMAT), Indianapolis, Indiana, June 13-15, 2018, 12 pages. Presentation(pptx) (pdf), doi: https://doi.org/10.1145/3205977.3205994
Herrera, Joshua and Demir, Mevlut and Prevost, John and Rad, Paul. Distributed Edge Cloud R-CNN for Real Time Object Detection, World Automation Congress proceedings, June 2018, doi: https://doi.org/10.23919/WAC.2018.8430385
Janet L. Losser, Paul Caldarella, Sharon J. Black & P. Elizabeth Pate. Factors affecting service learning implementation: a comparison of novice and veteran teachers, Teachers and Teaching, 24:6, 659-672, April 25 2018, doi: 10.1080/13540602.2018.1464906
Vargas, V., Cristóbal, C. & Carmona, G. Competencias matemáticas a través de la implementación de actividades provocadoras de modelos. (Mathematical Competencies through the implementation of Model-eliciting activities). Educación Matemática. Vol. 30(1), p. 213-36, April, 2018.
Alvarado, A., Carmona, G. & Mata, A. Tópicos Selectos para la Educación en Ciencias, Ingeniería, Tecnología y Matemáticas (CITeM): Una Visión Integradora. ©ECORFAN-México. ISBN 978-607-8534-43-2, April 2018.
Maanak Gupta, Farhan Patwa and Ravi Sandhu. An Attribute-Based Access Control Model for Secure Big Data Processing in Hadoop Ecosystem. In Proceedings of the 3rd ACM Workshop on Attribute-Based Access Control (ABAC), March 19-21, 2018, Tempe, Arizona. Presentation(pptx) (pdf), doi: https://doi.org/10.1145/3180457.3180463
Asma Alshehri, James Benson, Farhan Patwa and Ravi Sandhu. Access Control Model for Virtual Objects (Shadows) Communication for AWS Internet of Things, In Proceedings of the 8th ACM Conference on Data and Application Security and Privacy (CODASPY), Tempe, AZ, March 19-21, 2018. Presentation(pptx) (pdf), doi: https://doi.org/10.1145/3176258.3176328
Smriti Bhatt, Farhan Patwa and Ravi Sandhu. An Access Control Framework for Cloud-Enabled Wearable Internet of Things, In Proceedings of the 3rd IEEE International Conference on Collaboration and Internet Computing (CIC), San Jose, CA, October 15-17, 2017, 11 pages. Presentation(pptx)(pdf), doi: https://doi.org/10.1109/CIC.2017.00050