|
Office: ECS 3.223 Tel: 972-883-4738 Fax: 972-883-2349 Email: |
|
Dr. Bhavani Thuraisingham is the Louis A. Beecherl, Jr. I Distinguished Professor in the Erik Jonsson School of Engineering and Computer Science at the University of Texas at Dallas (UTD) effective September 2010. She joined UTD in October 2004 as a Professor of Computer Science and Director of the Cyber Security Research Center which conducts research in data security and privacy, secure networks, secure languages, secure social media, data mining and semantic web. She is an elected Fellow of three prestigious organizations: the IEEE (Institute for Electrical and Electronics Engineers), the AAAS (American Association for the Advancement of Science) and the BCS (British Computer Society). She is the recipient of numerous awards including the IEEE Computer Society’s 1997 Technical Achievement Award for “outstanding and innovative contributions to secure data management” and the 2010 Research Leadership Award for Outstanding and Sustained Leadership Contributions to the field of Intelligence and Security Informatics” presented jointly by the IEEE Intelligent and Transportation Systems Society Technical Committee on Intelligence and Security Informatics in Transportation Systems and the IEEE Systems, Man and Cybernetics Society Technical Committee on Homeland Security. She served as served as an IEEE Distinguished Lecturer between 2002 and 2005. She was also quoted by Silicon India magazine as one of the seven leading technology innovators of South Asian origin in the USA in 2002.
Prior to joining UTD, Dr. Thuraisingham was an IPA (Intergovernmental Personnel Act) at the National Science Foundation (NSF) in Arlington, VA, from the MITRE Corporation for three years. At NSF she established the Data and Applications Security Program and co-founded the Cyber Trust theme and was involved in interagency activities in data mining for counter-terrorism. She worked at MITRE in Bedford, MA between January 1989 and September 2001, first in the Information Security Center and later as a department head in Data and Information Management as well as Chief Scientist in Data Management in the Intelligence and Air Force centers. At MITRE she led team research and development efforts on secure data management and real-time data management for NSA, AFRL, SPAWAR, CECOM and CIA. She also served as a technical consultant in information security and data management to the Department of Defense, the Department of Treasury and the Intelligence Community for over 10 years and served as an expert consultant to the Department of Justice in 2001. Thuraisingham’s industry experience includes six years of research and product development as well as technology transfer at Control Data Corp. and Honeywell Inc. in Minneapolis, MN. While in industry and at MITRE, she was an adjunct professor of computer science and member of the graduate faculty first at the University of Minnesota and later at Boston University between 1984 and 2001. She also worked as visiting professor soon after her PhD, first at the New Mexico Institute of Technology and later at the University of Minnesota between 1980 and 1983.
Dr. Thuraisingham’s research interests are in data security and data mining for counter-terrorism. Her work in information security and information management has resulted in over 100 journal articles, over 200 refereed conference papers and workshops, three US patents and several IP disclosures. She is the author of ten books in data management, data mining and data security including one on data mining for counter-terrorism and another on Database and Applications Security and is completing her eleventh book on Data Mining Tools for Malware Detection, and is the editor of twelve books She has given over 70 keynote presentations at various technical conferences and has also given invited talks at the White House Office of Science and Technology Policy and at the United Nations on Data Mining for counter-terrorism. She serves (or has served) on editorial boards of leading research and industry journals including several IEEE and ACM Transactions, the VLDB Journal, and also served as the Editor in Chief of Computer Standards and Interfaces Journal. She has contributed to multiple standards activities including Navy’s Next Generation Interface efforts, Object Management Group’s Real-time computing and C4I efforts, and more recently the Open Geospatial Consortium’s semantic web efforts. In addition, she has been an instructor at AFCEA’s (Armed Forces Communications and Electronics Association) Professional Development Center since 1998 and has served on panels for the Air Force Scientific Advisory Board and the National Academy of Sciences including one on protecting children from inappropriate content on the Internet chaired by Hon. Dick Thornburgh in 2000. She is continuing with these efforts and recently participated in EastWest Institute’s 1st Worldwide Security Summit panel on protecting our children in cyberspace. She is a member of several professional organizations including the Association for Computing Machinery, IFIP 11.3 Working Group in Data and Applications Security and AFCEA. She has chaired over ten conferences and has served in over 100 conferences program committees.
During her six years at UTD, Dr. Thuraisingham has established and leads a strong research program in Intelligence and Security Informatics which now includes 5 core professors and the team has generated over $12 million in research funding from agencies such as NSF, AFOSR, IARPA, NGA, NASA, ONR, ARO and NIH as well as corporations such as Raytheon Inc. The research projects include an NSF Career Grant, an AFOSR Young Investigator Program Award and a DoD MURI Award on Assured Information Sharing. Her current focus includes three activities: (i) studying how terrorists and hackers function so that effective and improved solutions can be provided (ii) initiating interdisciplinary programs integrating social sciences and information sciences and (iii) transferring the technologies developed at the university to commercial development efforts. She is also instrumental in establishing UTD’s MS Track in Information Assurance and is a Co-PI of the $1.7 million NSF Scholarship for Service Award in Cyber Security. She teaches courses in data and applications security, trustworthy semantic services and digital forensics and collaborates with the DFW corporations as well as North Texas Regional Computer Forensics Laboratory for student projects. She also writes motivational articles including one on CS Careers in the Global Economy.
Dr. Thuraisingham received her BS degree in Mathematics and Physics with first class at the University of Ceylon, her M.Sc degree in Mathematical Logic at the University of Bristol, UK and her PhD degree in Theory of Computation at the University of Wales, UK. She strongly believes in continuing education and has also received a number of professional qualifications to enhance her 30 year career since 1980 including an MS in Computer Science focusing in computer systems and networks at the University of Minnesota, Java Development Certification from Learning Tree International, the Certificate in Terrorism Studies at St. Andrews University, Scotland and CISSP (Certified Information Systems Security Professional) certification with ISC2.
Dr. Thuraisingham is the founding president of “Bhavani Security Consulting, LLC” a company providing services in consulting and training in Cyber Security and Information Technology. She is also the founder and a member of the board of directors of “Infosec Analytics, LLC”, a spin-off company from UTD developing tools in malware detection and information sharing.
She promotes Math and Science to high school students as well as to women and underrepresented minorities, and is a member of the Society of Women Engineers (SWE). She has given featured addresses at conferences sponsored by WITI (Women in Technology International) and SWE and received the 2001 Woman of Color Research Leadership Award from Career Communications Inc. Articles on her efforts, her vision as well as her team’s research have appeared in multiple magazines including the Dallas Morning News, the Boston Globe, ABC News, D Magazine, MITRE Matters the DFW Metroplex Technology magazine. She has also appeared in DFW Television giving her opinions on cyber security.
EXTERNAL
o Best paper award, IEEE Conference on Systems Sciences, 1988 on Secure Query Processing Strategies (Invited paper published in IEEE Computer, March 1989)
o Recipient of IEEE Computer Society’s 1997 Technical Achievement Award for contributions to secure distributed database management. As cited by IEEE, “this award is given to individuals who have made outstanding and innovative contributions in the field of computer and information science and engineering within the past 15 years.”
o Recipient of Career Communication Inc.’s National 2001 Woman of Color Technology Research Leadership Award
o Featured by SiliconIndia’s May 2002 issue as one of the top seven technology innovators (the only woman) in USA of South Asian origin (others are from Stanford, Berkeley, MIT, NASA, PARC and HP Labs). The innovation was for data and web security.
o Recipient of IEEE’s 2003 Fellow Award for Contributions to Secure Systems involving databases, distributed systems and the web. As stated by IEEE, “each year, following a rigorous evaluation procedure, the IEEE Fellow Committee recommends a select group of recipients for one of the Institute's most prestigious honors, election to IEEE Fellow”.
o Recipient of AAAS (American Association for the Advancement of Science) 2003 Fellow Award for “Outstanding and Innovative Contributions to Secure Database Systems and Secure Web Information Systems”
o Recipient of British Computer Society (BCS) 2005 Fellow Award for contributions to information technology
o IEEE Distinguished Lecturer, 2002-2005
INTERNAL
· MITRE Program Achievement Awards 1997 (AWACS), 2002 and 2005 (IRS Research Credit)
· MITRE Director’s Awards 1997 (Data Mining), 1997 (Distributed Objects)
· MITRE Author of the Month award (1997, 1999)
· Honeywell Computer Sciences Center Employee of the Month Award (April 1987)
· Control Data Corporation, Arden Hill Programming Division, CDCNET Award (September 1985)
· NSF Program Awards (ITR 2003, Cyber Trust 2005)
My research combines theory and practice. I have utilized my PhD research in theory of computation and complexity theory with my systems expertise in industry to develop prototypes based on fundamental principles. My research in secure systems utilized the non interference principles to design the Lock Data Views System in the mid 1980s. This is one of the first two secure relational database systems designed. Our techniques for secure query processing, update processing, and metadata management were incorporated into the early commercial products such as Trust Oracle, Secure Sybase, Secure Ingres and Secure Informix in the early 1990s. I then developed secure distributed database systems and secure object oriented systems utilizing the Bell and La Padula security principles as well as the non interference principles. The work that I received several awards was for the inference problem. I first proved that the inference problem was unsolvable and then designed and developed prototype inference controllers for specific classes of the problem. I also designed and developed secure database systems based on logic that I designed called NTML (Nonmonotonic Typed Multilevel Logic). I was among the first to develop secure dependable systems that integrated real-time processing with security techniques in the late 1990s.
After spending three years at the National Science Foundation and establishing programs in data and application security, I joined UTD in October 2004. At UTD I have developed two areas (i) Cyber Security, in particular Data and Applications Security and (ii) Information Management. In the area of Data and Applications Security, I have focused on four areas. (a) Assured information sharing: My team in the CS department collaborates with the School of Management and Economics and Policy Sciences to develop an interdisciplinary approach for incentive based information sharing. (b) In addition, we have also explored research issues in secure and private social networks. (c) We also developed novel privacy preserving data mining and data integration techniques. (d) Policy management based on semantic web technologies. (e) Data mining tools for security applications. Notable among these tools are those based on novel class detection for stream mining. In the area of Information Management our focus has been on developing technologies for national security in two major areas. (a) We have designed ontology alignment algorithms critical for homeland security applications and (b) developed geospatial data management and mining techniques. In addition to data security and information management, my team has also focuses on secure cloud computing and in-line reference monitors. In addition to collaborating with two of my colleagues and contributing to assured information sharing as well as to the data mining tools, my main research has been on policy management based on semantic web technologies. Our goal is to build inference controllers based on RDF data engines and RDF reasoning engines. Essentially this research extends my earlier work on the inference problem utilizing semantic web technologies. I have also developed prototypes for policy management in a coalition environment.
We are developing a multi-pronged approach to research. Our major goal is to publish papers in the most prestigious journals and conferences. Since 2005, I have papers published in IEEE Transactions on Knowledge and Data Engineering, IEEE Transactions on Dependable and Secure Computing, ACM Transactions on Information and Systems Security, IEEE Transactions on Systems, Man and Cybernetics, and Very Large Database Journal. Prestigious conferences include IEEE Conference on Data Mining (ICDM) and ACM Conference of Access Control and Models (SACMAT). My team has published several more papers in IEEE as well as ACM Transactions. Our second goal is to build systems. We have developed several prototypes and tools and have published open source software. These tools are being utilized by our colleagues around the world. Our third goal is to disclose inventions, develop intellectual property and start spin-off companies. This is something we started in 2009. Our fourth goal is to contribute to standards and we participate in W3C and OGC standards.
Since October 2005, my team has generated over $10m in research funding including a DoD MURI, NSF Career and AFOSR YIP. Our sponsors include AFOSR, NSF, IARPA, NGA, NASA, ONR and NIH. Our major corporate sponsor is Raytheon. In 2010 I am working toward expending the corporate sponsor based and we are having discussions with Lockheed, Rockwell and IBM among others.
Name: Dr. Bhavani Thuraisingham
Work Address: Department of Computer Science, University of Texas at Dallas, Richardson, Texas
Phone: 972-883-4738 ; Fax: 972-883-2349
Email: Bhavani.thuraisingham@utdallas.edu
URL I: http://www.utdallas.edu/~bxt043000/ URL II: www.dr-bhavani.org
I. EDUCATION
Ph.D. in Theory of Computation and Computability Theory; University of Wales, Swansea, United Kingdom, July 1979 (at age 24). Thesis: Decision Problems for System Functions
Advisors: Dr. Roger Hindley (Swansea), Dr. John Cleave (Bristol) – received most of the supervision at University of Bristol and submitted thesis at University of Wales, Swansea due to residency requirements
M.S. in Computer Science, University of Minnesota, March 1984 (G.P.A. 4.0/4.0); Specialized in: Databases, Networks, Operating Systems. Dissertation: Transport Layer for a Token Ring Network, Advisor: Dr. William Munroe
M.Sc. in Mathematical Logic and Foundations of Computer Science; University of Bristol, United Kingdom, January 1977; Thesis: Construction of a Universal Partial Recursive Functional; Advisors: Dr. John Cleave and Prof. John Shepherdson
B.Sc. in Pure Mathematics, Applied Mathematics, and Physics; University of Ceylon, August 1975 (First Class and First in order of merit)
Higher Doctorate: D.Sc. Preparing published work to be submitted to the degree of D.Sc (Doctor of Science) at the University of Bristol in England, 2010. D.Sc. is beyond Ph.D. (usually known as Higher Doctorate) and awarded by British universities to alumni who have made outstanding research contributions in their field. University of Bristol is consistently rated among the top five universities in the U.K.
CERTIFICATION PROGRAMS (with exams)
1. JAVA Certification, Learning Tree International, 1998-2000 (5 courses)
2. Certificate in Terrorism Studies, St. Andrews University, Scotland, January – May 2010.
3. CISSP, May 2010
PROFESSIONAL EDUCATION
1. Management Development Program, 1996-1997, The MITRE Institute
2. US Intelligence Community, AFCEA 1994
3. Cybil Programming Language, Control Data Institute, 1984
II HONORS AND AWARDS
External: Recipient of IEEE’s 2003 Fellow Award for Contributions to Secure Systems involving databases, distributed systems and the web; Recipient of AAAS (American Association for the Advancement of Science) 2003 Fellow Award; Recipient of British Computer Society (BCS) 2005 Fellow Award; Recipient of IEEE Computer Society’s 1997 Technical Achievement Award for outstanding and innovative contributions to Secure distributed database management; Featured by SiliconIndia magazine (May 2002) issue as one of seven prominent technology innovators (the only woman) in the USA of South Asian origin; Recipient of Career Communication Inc.’s National 2001 Woman of Color Technology Research Leadership Award Best paper award, IEEE Conference on Systems Sciences, 1988.
Internal: MITRE Corporation’s program achievement award (distributed real-time systems) 1997; IRS Program Award 2002 and 2005; Director awards for data mining and distributed objects 1998.
III: SIGNIFICANCE OF RESEARCH
My early research was on theory of computation and in particular recursion theory. This research was carried out as visiting professor at the New Mexico Institute of Technology and at the University of Minnesota for three years. It resulted in several journal publications including in the Journal of Computer and Systems Sciences. Since 1985 my research has focused on data security. This research was carried out initially at Honeywell Inc., as well as the University of Minnesota as adjunct faculty of computer science for over four years. I continued with this research at the MITRE Corporation starting in 1989. Significant contributions include design and development of Lock Data Views Relational Database System, design and development of secure distributed database system, design and development of techniques to handle the Inference problem, design of NTML: a Non monotonic Logic for Secure Data and Knowledge Based Systems, design and development of secure multimedia and object systems, and the design and development of an object-based real-time data manager and middleware for next generation real-time command and control systems. I also used my background in theory and proved that the inference problem was unsolvable. This work has been quoted by Dr. John Campbell of NSA as the significant[r1] development in database security in 1990. My main research now is focusing in four major areas: Assured Information Sharing; Securing the Semantic Web, Secure Geospatial Data Management; Knowledge Discovery/Data Mining for security applications and their privacy implications. I focus on developing sound theories and then build highly assured systems that are founded on theories that result in prototypes, some of which are transferred to operational systems and products.
IV. WORK EXPERIENCE
(i) The University of Texas at Dallas (October 2004 – Present): In October 2004, I joined the University of Texas at Dallas as Tenured Full Professor of Computer Science (with tenure)[r2] and Director of the Cyber Security Research Center at the Erik Jonsson School of Engineering and Computer Science. This is my first tenure track faculty appointment. Over the past 3 years, I have hired and mentored several junior faculty in Cyber Security in general and Data Security, in particular. Together we have secured competitive research funding of over $5 million from several federal agencies including Air Force Office of Scientific Research, National Science Foundation, National Geospatial Intelligence Agency, National Aeronautical and Space Administration, and Intelligence Advanced Research Projects Agency. This funding also includes a prestigious DoD MURI award. In addition, we have established a close research collaboration and partnership with Raytheon Corporation in DFW. Together we have about 25 Ph.D. students; I graduated my first student in 2007. Due to our efforts we have been in the first group batch of universities to receive the NSA/DHS Center for Excellence in Research Award in 2008. My team has significantly enhanced UTD’s education program in Information Assurance by introducing several courses, including Data and Applications Security, Digital Forensics, Trustworthy Semantic eb, Biometrics, Privacy, Knowledge Discovery, Cryptography and Secure Programming Languages. UT Dallas is one of the top universities in the world in data security[r3] .
(ii) National Science Foundation, Arlington, Virginia (Oct. 1, 2001 – September 30, 2004)
IPA, Position: I was the Director of Cyber Trust, Data and Applications Security, Information and Data Management
As an IPA from the MITRE Corporation at NSF for three years, I managed programs in Information Management, Sensor Networks, Data and Applications Security and Cyber Trust. In addition, I initiated the program in data and applications security and made it a focus area.
(iii) The MITRE Corporation, Bedford, MA (Dates?): My 15 plus years experience at MITRE has given me the opportunity to work on research, development and technology transfer projects. I secured research funding from a number of sponsors including the Air Force, Navy, Army, NSA, and CIA as well as consulted for the IRS. I led team research efforts and designed and developed algorithms and prototypes for secure distributed database systems, secure object systems and secure deductive systems. I proved that the inference problem was unsolvable and developed solutions to limited aspects of this problem. We also developed distributed object-based real-time systems and transferred the technology to the AWACS program. Additionally, I built MITRE’s programs and gave it[r4] international visibility in data mining and data security. For 4 years, I managed a department of about 28 staff. I am currently a consultant to IRS through MITRE on the software research credit program.
(iv) Honeywell Inc. Golden Valley, MN (Jan. ‘86 - Jan. ‘89) Position: Principal Research Scientist / Engineer, Corporate Systems Development Division. I conducted research, development, and technology transfer activities in database security, data management, distributed processing, information systems, process control systems, payoff modeling, and AI[r5] applications. In addition to reports and proprietary documents, papers were also published in refereed journals and conferences. Work was carried out for Honeywell internal divisions as well as for the Air Force and NASA.
(vi) Control Data Corporation, Arden Hills, MN (Dec '83 - Jan ‘86) Position: Senior Programmer/ Analyst, Arden Hills programming Division; I was involved in the design and development of the CDCNET (Control Data Communications Network) product. Company proprietary documents were also written. Specifically I was responsible for the design and development of transport, network, session layers as well as several other components of the network. Details are given under the Industry Experience section.
V. RESEARCH ACCOMPLISHMENTS
Publications Statistics: Over 90 journal papers including articles in several IEEE Transactions, Very Large Database Journal, ACM Transactions, Journal of Computer and Systems Sciences and Notre Dame Journal of Formal Logic. Over 200 Conference/Workshop Papers (IEEE, ACM and IFIP conferences), over 70 keynote/featured presentations, 9 books authored (data security, data management and data mining), 12 books edited; 3 US patents (data security).
Research Contracts/Grants
UT Dallas: Over $10 million in grants and contracts by my team in assured information sharing, geospatial information management, semantic web, data mining for security applications, and secure grids. Sponsors include AFOSR, IARPA, NSF, NASA, NGA, ONR, NIH and Raytheon.
MITRE: I initiated and led several research projects for various sponsors including Navy (secure distributed databases, secure objects, inference problem/NTML), Army (inference problem, security constraint processing), Air Force (secure distributed databases and real-time databases/middleware), and National Security Agency (secure federated databases, designing secure systems and applications). Each project that I led consisted of about three – five staff, a third with Ph.D.’s and half with MS degrees; also included students from Carnegie Mellon University, Cornell, University of Rhode Island and North Eastern University.
Prototypes and Products: UTDallas: My students are implementing several prototypes in secure data, information and knowledge management systems, data mining tools for security applications, geospatial semantic webs and social network tools. Some tools were transferred to the Raytheon program and we are having discussions on commercializing the data mining tools. Other: Developed parts of the CDCNET product at Control Data Corporation (extensive implementation in Cybil language). Oversaw the implementation of expert process control system XIMKON at Honeywell as well as Network operating system and students’ implementations at University of Minnesota (mostly C). Supervised very closely the implementation of several prototypes based on my designs at MITRE. These included secure distributed database system prototypes, database inference controller prototypes for query, update, and database design, multimedia system prototypes simulating security features, active real-time data management prototype, and real-time data management hosted on an infrastructure for real-time applications and data/text mining and knowledge management prototypes.
Educational Activities: I have promoted Math and Science among high school students (e.g., talks at UTD), women (SWE, WITI) and disadvantaged minorities (Career Communications). At NSF I was actively involved in the Math Science Education Partnerships between universities and high schools. I have been involved in tutorials at numerous conferences since 1987, AF/Army/Navy Bases since 1992, and AFCEA (Armed Forces Communications and Electronics Association) since 1998.
VI. PROFESSIONAL ACTIVITIES
Major Advisory Boards: Advisory Board, Department of Computer Science, Purdue University 2005-2006.
Advisory boards for journals. Conference and Journal Boards: IEEE Distinguished Lecturer 2002-2005; Chair IEEE Kanai Award 2002-2006; Editor in Chief, Computer Standards and Interface Journal, 2005 – present; Editorial board member IEEE Transactions on Knowledge and Data Engineering (1996 - 2000) the Journal of Computer Security (1990 – 2000), Computer Standards and Interface Journal (1993 – present), ACM Transactions on Information Systems Security (2004 - 2008), IEEE Transactions on Secure Dependable Computing (2004 - present); Conference Programs: Program Chair for over 15 conferences; Program committee member for over 100 conferences; Government Panels: National Science Foundation, National Academy of Sciences, Air Force Scientific Advisory Board, Department of Health and Human Services, and the White House Office of Science and Technology Policy.
My education and work has been influenced a great deal by my personal life. My personal statement “From Industry to Government to Academia can be found under the section “Motivational Articles” in my UTD web site
http://www.utdallas.edu/~xyt061000/curriculum_vitae.htm#Section%2017.MOTIVATIONAL%20ARTICLES
Section 5: INDUSTRY EXPERIENCE
I. The MITRE Corporation, Bedford, MA (January 1989 – June 2005) www.mitre.org
Technical Positions:
* Information Technology Consultant (October 2001 – June 2005)
* Chief Scientist/Engineer in Data Management, Information Technology Directorate
(May ‘99 – Sept. 2001)
* Senior Principal Scientist/Engineer, Advanced Information Systems Center (Sept. 1996 – May 1999)
* Principal Scientist/Engineer, Advanced Information Systems Center (March 1995 - Sept. 1996)
* Lead Scientist/Engineer, Network and Distributed Systems Center (August 1992 - March 1995), Information Security Center (January 1989 - August 1992)
Management Positions:
* Section Leader (June 1995 – Oct 1996) and Department Head (Oct. 1996 – May 1999) in Data Management and Object Technology, Advanced Information Systems Center and Information Technology Division. Staff grew from ten in June 1995 to approximately twenty-eight in May 1999.
Leadership/Coordination Positions:
* Head, MITRE’s Corporate Research and Development Initiative in Evolvable Interoperable Information Systems (March 1996 - September '97, budget approximately $4 million)
* Head, MITRE’s Corporate Research and Development Initiative in Data Management (Sept. 1994 - March 1996, budget approximately $1 million)
* Co-Director, MITRE Database Specialty Group (Oct 1993 - Dec 1995)
Technical: My sixteen years experience at MITRE gave me the opportunity to work on research, development and technology transfer projects. I have worked for a number of sponsors including the Air Force, Navy, Army, NSA, CIA and IRS. I have worked with not only researchers and defense contractors, but also with Fortune 500 corporations in Information Technology. A summary of my technical accomplishments is listed below.
Information Security: Between January 1989 and August 1992, my work focused entirely on Information Security. I initiated and lead various database and object security projects for the Army, Navy, Air Force, and the National Security Agency. The topics included secure distributed/federated database management, inference problem, secure multimedia/object-oriented data management, and secure client-server computing. I designed and supervised the implementation of a prototype secure distributed database system that connected database systems in Bedford, MA, McLean, VA, and Fort Monmouth, NJ, the first developed. I also designed centralized and distributed database inference controllers and supervised the implementation of these systems. In addition, I designed a secure object/multimedia database system and supervised its implementation. Other contributions include the proof of the unsolvability of the inference problem, use of conceptual structures to design secure database applications and the development of a logic for secure data and knowledge base management systems. Since August 1992 I have been working part-time on Information Security. My focus has been on the inference problem, object security, and privacy issues for data mining. I led a team project to investigate security for distributed object systems and this work impacted the security standards for the Object Management Group. I provided technical direction to DoD projects in database security between March 1991 and September 1996, was a consultant to NSA and mentored junior staff there. Between 1996 and 2001, I continued to work in Information Security by providing direction on the Inference problem to the Air Force and also examining security issues for XML and web information systems.
Data Management, Real-time Systems and Object Technology: My work in data management at MITRE began around August 1992. Since then I have initiated and led projects in real-time database management and distributed object management for evolvable real-time command and control systems, massive multimedia data management for Intelligence applications, and distributed object management for heterogeneous database integration. In addition, I have initiated and contributed to projects in data mining and warehousing. As part of my work, I have provided direction in data management to the Department of Defense and the Intelligence community. In particular, between October 1993 and March 1999, I was the lead in providing technology direction for the Intelligence Community initiative on Massive Digital Data Systems. Based on results of this effort, and together with the CIA sponsor, we began discussions with DARPA on data mining in December 1997 and these discussions eventually led to the EELD program at DARPA. Also between October 1993 and September 1999, I was part of a team providing direction for next generation real-time data management and object systems for the AWACS project. For this work I received the MITRE Program Achievement award in 1997. For the work in data mining and distributed objects, I received two MITRE Director awards in 1997.
Consulting in Information Technology (IRS): Between January 1999 and September 2001, I consulted for the Internal Revenue Service by interviewing various Fortune 500 corporations on their research and development tax credits.This work utilized my extensive experience in Computer Science and Information Technology. It also enabled me to obtain an excellent understanding of the internal details of databases, ERP, and e-commerce software. Initially my work focused on banking and financial industries, later I worked in other industries such as Telecommunications. Between May 2000 and July 2001, I worked with a major Fortune 100 corporation and the IRS jointly to determine the products that would qualify for research tax credit. For this effort, I reviewed numerous products that this company worked on during FY00 which made me intimately familiar with the commercial products of a major corporation in the US in Information Technology. This work was reported in the Wall Street Journal in December 2000 and also claimed by the IRS as a success story in a major IRS and Fortune 100 meeting in February 2001. As a result of this work, I received the MITRE Program Achievement awards in 2002 and 2005.
Consultant to Air Force: In May 1999 I was appointed chief scientist/engineer in data management in MITRE’s Information Technology Directorate and in this position provide data management direction for MITRE’s programs for the Air Force, In addition, I oversaw the information technology technical work in the directorate in the following areas: information management, e-business and web computing, real-time computing, and decision support. I also consulted on MITRE's corporate initiatives in knowledge management and e-business. Between January 2001 and September 2001, I was Vice Chair of the Database Migration Panel to the AF Scientific Advisory Board (SAB).
Other Consulting: In the 1990s, I consulted on several MITRE projects involving information and data management sponsored by the Intelligence Community, NASA (EOS project) and FAA.
Other Information: My work has resulted in IEEE Computer Society’s 1997 Technical Achievement Award, IEEE’s 2003 Fellow Award, AAAS 2003 Fellow Award, British Computer Society’s 2005 Fellow Award, over 300 publications including over 70 journal articles, 3 software patents and 9 books (7 published and 2 in preparation)[r6] . I give tutorials to sponsors at conferences, and at the MITRE Institute in relational database management, distributed database management, heterogeneous database integration, real-time data management, secure data management, object-oriented database management, and data mining. I have also participated in standards efforts including Department of the Navy’s Database Interface Standard and Object Management Group’s real-time and C4I standards. I have given over 150 professional presentations including 30 keynote/featured addresses at major conferences. In addition, I participated in panels at the National Academy of Sciences and the Air Force Scientific Advisory Board.
Leadership, Coordination: Between March 1996 and September 1997, as head of the Evolvable Interoperable Information Systems (EIIS) Initiative at MITRE reporting to the Vice President of Research and Technology, I was responsible for research in data management, real-time systems, software reverse engineering, economic analysis for information system evolution and interoperation, and object technology and architectures. I worked with the leaders in each of these areas. Prior to this responsibility, I led the corporate initiative in data management from September 1994 to March 1996 (which is part of EIIS). As a co-director between October 1993 and December 1995, I organized meetings in data management to discuss projects as well as conferences at MITRE. Between October 1995 and May 1999, I was actively involved in promoting object technology within MITRE. In this role, I was part of a MITRE team working in distributed object management and object-oriented frameworks, designing patterns, attending Object Management Group meetings and participating in the real-time SIG at OMG. I introduced real-time issues for the common object request broker architecture at Object World West 1995, founded the C4I SIG at OMG in 1996, and organized object technology conferences at MITRE. I have also provided technology advice to MITRE's e-business initiatives.
Management: Between June 1995 and May 1999, as a department manager reporting to the Director of the Division, I developed the skills in my department of about thirty people in relational data management, object-oriented data management, distributed object management, distributed database management, heterogeneous database integration, multimedia data management, data warehousing, migrating legacy databases, data mining, web technology, data security, and knowledge management. I formed four groups in my department each focusing on a subset of the above technologies with security cutting across all areas. I initiated and continued projects each year at MITRE totaling 3 - 4 staff years[r7] . I was actively involved in mentoring staff and helping them in leadership and coordination positions such as providing direction for MITRE's research as well as organizing internal conferences in data management and object technology. Between May 1999 and September 2001, as chief engineer, I had oversight of the technical work in MITRE's Information Technology Directorate for about 200 staff.
II National Science Foundation, Arlington, Virginia (Oct. 1, 2001 – September 30, 2004)
IPA Position from the MITRE Corporation: Director of Information Cyber Trust, Data and Applications Security, Information and Data Management
I completed a three year IPA from the MITRE Corporation at the National Science Foundation. At NSF, during 2002, I was program director for information and data management. This is approximately a $10 million program a year and funds research in various aspects of information and data management including data mining, information retrieval and information systems. I also participated in inter-directorate (CISE, BIO GEO) activities on providing direction in Bioinformatics and Geoinformatics. In addition, I was involved in the Math Science Partnership program with the Education Directorate. During 2003 I initiated a new program in Data and Applications Security ($2 million/year) and also managed the Information Management component of ITR (approximately $50million) and Information Management for the Sensor Initiative (approximately $2 millionM). During 2004 I was one of four founding directorates of NSF’s Cyber Trust Theme (approximately $30 millionM) and continued to manage the Information Management component of ITR.
During 2002 and 2003, I supported the Department of Health and Human Services on planning for information technologies to combat bioterrorism as part of the States Bioterrorism Initiative. In 2004 I participated in an Interagency study on Hard Problems in Cyber Security and completed a draft in September (a version was later published by the government in 2006). The study report was used by agencies to fund future research in Information Security. Beginning in October 2001, I have been very active in counter-terrorism related research especially on the use of data mining. I gave talks not only at conferences, but also at the White House Office of Science and Technology Policy and the United Nations and participated in National Academy of Science activities in this area. I was a member of interagency planning on data mining for counter-terrorism. As an IPA, I also conducted research at MITRE, focusing on privacy, secure semantic web and secure sensor information management.
III. Honeywell Inc., Golden Valley, MN (January 1986 - January. 1989)
http://www51.honeywell.com/honeywell/
Position: Principal Research Scientist / Engineer, Corporate Systems Development Division
I conducted research, development, and technology transfer activities in database security, data management, distributed processing, information systems, process control systems, payoff modeling, and AI applications. In addition to reports and proprietary documents, papers were also published in refereed journals and conferences. Work was carried out for Honeywell internal divisions as well as for the Air Force and NASA. Specific projects included the following: Design of a Multilevel Secure Database Management System (Rome Laboratory); Development of Engineering Information Systems (Wright Laboratory);Design of a Distributed Data Dictionary System (Honeywell’s Residential Control Division); AI Applications in Process Control Systems (Honeywell Industrial Automation Systems Division); Design of a Network Operating System for a Multicompatible Network Interface Unit (NASA); Development of a Payoff Model of Alternative Communication Strategies (Honeywell Corporate); Design of Innovative Software Architectures for Industrial and Buildings Control Systems (Honeywell Building Controls Systems); and Design of Knowledge Transformation Strategies (Honeywell Industrial Automation Systems Division).
IV. Control Data Corporation, Arden Hills, MN (December 1983 - January 1986)
http://en.wikipedia.org/wiki/Control_Data_Corporation
Position: Senior Programmer/Analyst, Arden Hills Programming Division
I was involved in the design and development of the CDCNET (Control Data Communications Network) product. Company proprietary documents were also written. Specifically, I was responsible for the following: design, development and testing of CDCNET Transport layer (Generic and Xerox transport protocols);. design, development and testing of the first version of the CDCNET session layer, which enabled the ASYNC Terminal Interface Program to communicate with the Cyber 170 Gateway; design, development and testing of X25 support for CDCNET, which would enable CDCNET to communicate with an X25 Network; development and testing of CDCNET Network Layer; implementation of the Intranetwork layer, which supported HDLC, Ethernet and MCI Networks; design, and development and testing of a set of command processors (transport Status command processor), which gathered information about the Transport connections, and also a set of command processors to configure an MCI network; development and testing of CDCNET memory management unit, which was responsible for releasing the buffers depending on the congestion; acting as the Task Lead for testing CDCNET with other Cyber products. (Official start date of January 1984; consulted in December 1983)
V. Bhavani Security Consulting (June 2005 – Present) www.dr-bhavani.org
I am the founding president of Bhavani Security Consulting, a consulting and training company. I consult for the Department of Treasury through a contract from the MITRE Corporation on corporate research credit as well as being an expert witness in software. I also handle patent litigation cases as an expert witness. I teach AFCEA (Armed Forces Communications and Electronics Association) courses in data management, data mining for counter-terrorism and data security. Through AFCEA, I teach classes at Air Force bases including at Offutt, Eglin, Lackland, Edwards and Kirkland. I consult for corporations in technology futures and write books on data management and data security.
VI. Knowledge Discovery and Security Informatics [start-up for Small Business Innovation Research (SBIR) , 2009]
A spin-off company based on UT Dallas research, focusing on data security, geospatial data management, data mining and social networking. Partners: Dr. Latifur Khan and Dr. Murat Kantarcioglu
VII. Personal Tutors, England (1979-1980)
Taught high school students Mathematics and prepared them for GCE OL and GCE AL exams. http://www.personal-tutors.co.uk/home.html
Section 6: TEACHING EXPERIENCE
I. Academic Teaching Experience (1980 – Present)
Current (2004 – Present)
The University of Texas at Dallas
Position: Professor of Computer Science and Director of Cyber Security Research Center
- Courses in data and applications security Spring 2005, Spring 2006, Spring 2007, Spring 2008, Spring 2009 (based on my book Database and Applications Security: Integrating Data Management and Information Security, CRC Press/Auerbach, June 2005) Graduate level
- Biometrics, Fall 2005, Graduate level
- Building Trustworthy Semantic Webs, Fall 2006, Fall 2008, Spring 2010 (based on my book Building Trustworthy Semantic Webs, CRC Press, 2007) Ph.D. level
- Data and Applications Security, Spring 2007, Spring 2008 (Information Assurance, Minor Core course) Undergraduate level
- Digital Forensics, Fall 2007, Fall 2008, Fall 2009 (Information Assurance Minor, Core course) Undergraduate level
- Information Assurance, Minor: Data and Applications Security, as well as Digital Forensics, are two of the three mandatory security courses for a minor in Information Assurance at the Undergraduate level. Students work with ENCASE tool and conduct forensics analysis.
- Proposing an education track on Semantic Web
Previous (1980 – 2001)
(i) New Mexico Institute of Technology, Socorro, New Mexico
Position: Visiting Professor 1980-1981
Dept. Head: Prof. Tom Nartker (now at UNLV)
- Department of Computer Science
Theory of Computation
Ph.D. level course on theory of computation covering topics such as automata theory, complexity theory and recursion theory, using the text book Theory of Computation by Barinard and Landweber
Date: Fall Semester 1980 (August – December 1980
Mathematical Logic for Computer Scientists
Senior undergraduate/ 1st yr MS level course covering logic, theorem proving. Developed my own lecture notes. References used: Theorem Proving by Chang and Lee, Mathematical Logic by E. Mendelssohn
Date: Spring Semester 1981 (January – May 1981
- Department of Mathematics
Calculus
Undergraduate level course in calculus
Date: Spring Semester, 1981 (January – May 1981)
(ii ) University of Minnesota
Position: Visiting Professor, 1981-1982
Adjunct Professor and Member of the Graduate Faculty, September 1984 – December 1988
Schedule Coordinator: Prof. Sartaj Sahni (now at University of Florida)
- Department of Computer Science
Fortran Programming
Undergraduate course in FORTRAN programming
Date: Fall Quarter 1984, Winter 1985, Spring 1985, Fall 1985, Winter 1986, Spring 1986, Fall 1986, Winter 1987, Spring 1987, Summer I and II 1987, Fall 1987, Winter 1988, Spring 1988, Summer I and II 1988
Basic and Advanced Assembly Language Programming
Junior and senior undergraduate as well as 1st year MS level course in M68000 programming
Date: Fall 1985, Winter 1986, Spring 1986, Fall 1986
Algorithms and Data Structures
Junior undergraduate course in algorithms
Date: Winter 1987, Winter 1988
Programming Languages using Scheme
Junior undergraduate course in Scheme programming and principles
Date: Spring 1987, Spring 1988
Discrete Structure of Computer Science
Junior undergraduate course in Combinatorial mathematics for computer scientists
Date: Summer I, 1986
Principles of Programming Languages
Senior undergraduate/1st year MS level course on principles of programming languages including principles of FORTRAN, Pascal, Algal, Lisp, Prolog, and Smalltalk
Database Security, Ph.D. level seminar; Date: Fall 1987
- Department of Mathematics
Calculus and Algebra
Undergraduate level courses on calculus and algebra
Date: Fall 1981, Winter 1982, Spring 1982, Spring 1985, Fall 1985, Winter 1986
Boston University
Position: Adjunct Professor of Computer Science, 1999 - 2001
Point of Contact: Linda Goldberg
- Department of Computer Science
Advanced Data Management
Graduate level course which covered relational databases, object databases, distributed databases heterogeneous databases, migrating legacy databases, data mining, data warehousing, web databases.
Based on my two books Data Management System Evolution and Interoperation, CRC Press, May 1997, and Data Mining, Technologies, Techniques, Tools and Trends, CRC Press December 1998
Date: Spring Semester 2000, Spring Semester 2001.
II. Professional Teaching Experience (1990 – Present)
(i) The MITRE Institute (1990 – 2000)
Position: Instructor
Schedule Coordinator: Phil Trudeau
Courses taught:
Database Security (Four two hour lectures, 1990)
Introduction to Databases (3 hour, 10 week course, 1992, 1993)
Heterogeneous Database Integration (1 day course taught several times in 1993 - 1994)
Object Databases (1 day course taught several times in 1993 -1994)
Real-time Databases (1 day course taught several times in 1994)
Data Management Systems Evolution and Interoperation (2 day course taught several times in 1997 -1999), based on my book
Data Mining (1 day course taught several times in 1998 - 2000), based on my book
Through the MITRE Corporation, I taught courses to several government agencies
(1992 - 2000)
Topics: secure databases, data management and data mining, (based on my books)
US Government (DoD and Intelligence)
Agencies: Air Force (ESC, AIA, SPACECOM), Navy (SPAWAR, NRaD), Army (CECOM),
Other: DISA, DISA/JPO, NSA, EUCOM
(ii) AFCEA Professional Development Center (1998 – Present)
Position: Instructor
Schedule Coordinator: Ann Beckham
Courses Taught (all courses based on my books – see publications)
Data Management (3 day course in September 1998, June 1999)
Data Management, Data Mining and E-Commerce (3 day course in October 2000)
Data Management, Information Management and Knowledge Management (3 day course in October 2001, October 2002, October 2003, September 2004, October 2005)
Data Mining (3 day course in June 2003, December 2003, December 2004, March 2006, December 2006, November 2007, May 2008, November 2008)
Knowledge Management through Semantic Web and Social Network (April 2008, October 2009)
Data Management, Information Management and Knowledge Management: to the Air Force through AFCEA (3 day course)
Offutt AFB, October 2004
Eglin AFB, March 2005
Lackland AFB, August 2006
Edwards AFB, June 2006
Kirkland AFB, September 2006
(iii) University of California, San Diego (2008)
Security for Service Oriented Architecture portion of the Certificate Course on Systems Engineering, offered at UCSD under the directorship of Prof. Hal Sorenson. This course was also taught as part of the Architecture course at AFCEA under the directorship of Prof. Alex Levis.
Education Proposals
In January 2010 I worked with my colleagues and submitted a proposal to the NSF SFS Program. If funded UTD could very well become a leading institution in cyber security research as well as in education. I visited several universities (e.g., NYU Poly, Mississippi State and University of Tulsa) to learn from their successful experiences to put together this proposal.
Section 7: Academic Research Supervision
For details of the projects, please see the project web site at http://utdallas.edu/~ppd081000/
Current: (October 2004 – Present)
The University of Texas at Dallas
Ph.D. Students Graduated:
Li Liu, (2004 - 2008) Privacy Preserving Data Mining; May 2008 (Senior Security Strategist at EBay)
Ryan Layfield (2004 - 2008) – Social Network and Game Theory Applications, December 2008 (Senior Research Scientist at CISCO)
MS Students with Thesis Graduated (supported as RAs):
Gal Lavee (Graduated December 2005)) – Suspicious Event Detection, Ph.D. at Technion-Israel
Vibha Sethi (Graduated August 2006) – Secure Sensor Networks, Motorola
Abinanthan (Graduated May 2007) – Fingerprinting Biometrics and RFID, Oracle
Srinivasan (Graduated May 2007) – Trust Management for Assured Information Sharing, Hewlett Packard
Pavan Chittamala (Graduated May 2007) – Geospatial Data Management - Microsoft
Jungin Kim (Graduated August 2007) Dependable Information Management, Samsung Korea
Ganesh Subbiah (Graduated December 2007) Trust Negotiation for Semantic Web, ESRI
Yashashwini Harshakumar (2007), Assured Information Sharing, Amazon
Sonia Chib (2009) Geospatial Proximity for Blackbook, Will be joining ESRI
Pranav Parikh (2009) Secure Amazon.com Web Services, Will be joijning Yahoo in July 2010
Pankil Doshi, (2010), Sparql over Hadoop, Working for a multimedia company in Florida.
Ph.D. Students (supported as RAs):
Wei-She (2006) Secure ERP Systems and SOA (completion, 2010)
Zhong Wang (2007) Complexity Results in Security (completion 2010)
M. Farhan (2006) – Secure Geospatial Data Management (completion 2011)
Jeff Partyka (2007) Geospatial Data Management (completion 2011)
Tyrone Cadenhead(2008) Semantic Web (completion 2012)
Vaibhav Khaldikar (2008) Managing Large RDF Graphs (completion 2012)
Neda Alipana (2007) Geospatial Semantic Web (completion 2011)
Jyothsna Rachapalli (2009) Ontology Alignment and Development for NVD
Amy Tan (2007) – Data Mining
Alam Ashraful (2005) Geospatial Data Management (part-time working at AT&T)
Parveen Pallabi (2010) – Exploring research topics
Other Ph.D. students I have sponsored and/or mentored:
Mehedy Masud, Defended Thesis, October 2009
Sunitha Sriram, proposal Defense, November 2009
Jeff McGolthlin, 2007 - Present
Non Thesis MS Students (supported as Students Workers/RAs):
Parveen Pallabi (2005 -2006) Face Recognition, RFID, Graduated, Texas Instruments
Alam Ashraful (2006) Secure Geospatial Data Management, Graduated, AT&T
Sai Chatanya (2006) Privacy Preserving Surveillance
Dilshad Cavus (2006) Data Mining for Assured Information Sharing
Ramaya Krishnan (2007) Secure Motion Management
Jyothsna Rachpalli (2008-2009) Semantic Web
Greg Hellings (2009) Geospatial Data Management
Other non-Thesis MS Students on IARPA Projects:
Geospatial Proximity Team
Aniruddh Bajirao (2008 - 2009), Siddharth Manu (2008 - 2009), Laveesh Bansal (2008 - 2009)
Lucene & Hadoop Model Team
Phillip White (2008 - 2009), Abhishek Shanbhag (2008 - 2009), John George (2008 - 2009), Julie Rauer (2008 - 2009)
SPARQL over Hadoop Team
Asif Mohammed (2008 - 2009)
Variable Ontology Team
Mohit Pawar (2008 - 2009), Vijay Bahirji (2008 - 2009), Gaurav Kumar (2008 - 2009), Nilesh Singhania (2008 - 2009) Abhilash Kannan (2008 - 2009), Sandip Gaikwad (2008 - 2009)
Semantic Support and Software Professionalization Team
Pralabh Kumar (2008 - 2010), Sharath Jagannath (2008 - 2010)
CVE/NVD on Blackbook (Collaboration with NIST on the NVD Project)
Aniruddh Bajirao (2008 - 2009)
Post-doctorate:
Dr. Mamoun Awad: (February 2006 – August 2006) Assured Information Sharing, Ph.D. UT Dallas
Dr. Chuan Li, (September 2006 – December 2006) Geospatial Data Mining, Ph.D. UT Dallas
Dr. Ebru Celikel, (June 2006 – June 2007) Risk-based Access Control, Ph.D. Turkey
Dr. Greg Lee (August 2007 – July 2009) – Surgical/Secure Robots, Ph.D. University of Washington, Seattle
Dr. Mehedy Masud (2010 - ), Malware Detection
Research Scientist 2010 -, Interviewing Candidates
Thesis Committees: Serving/served on numerous internal and external MS and Ph.D. Committees since joining UT Dallas. External committees include University of Milan (2005 - 2009), University of Ottowa (2006), University of Maryland, Baltimore County (2005 - 2007)
Research is proceeding in the following areas: Data and Applications Security and Privacy (Assured Information Sharing, Secure Geospatial Data Management, Data Mining for Security Applications, Secure Grid, Storage and Web Services, Secure Social Networks) and Information Management (Semantic Web, Information Integrating). Topics include the following:
I. Data Security and Privacy
Area 1: Assured Information Sharing
Trustworthy partners experimentation, Semi trustworthy partners and game theory , Untrustworthy partners and worm detection , Agent-based trust management , Peer-to-peer trust management , Data integrity and provenance, Risk-based access control and data sharing
Area 2: Secure Geospatial Data Management
Secure geospatial semantic web and web services, Geospatial data management for emergency preparedness , Privacy for geospatial data
Area 3: Secure Semantic Web and Social Networks
Policy management, Inference control, Security and privacy for social networks
Area 4: Data Mining for Security Applications
Intrusion, buffer overflow and worm detection, Automatic face recognition and RFID technologies, Data mining for surveillance applications, Secure robots for disaster recovery, Data mining for fault detection, Privacy preserving data mining
Area 5: Secure Grid, Clouds, and Web Services
Accountability for grids, Delegation based model for secure web services
Other: Complexity Theory
In addition, examining complexity results for sensor networks and security problems. This is more of a hobby continuing with my PhD research and co-supervising students.
II. Information Management
Ontology Alignment for Semantic Web, Geospatial Data Mining, Knowledge Management, Managing Large RDF graphs, Query Processing in Clouds, Geospatial Data Mining
Research Supervision: Previous: (1980 – 2004)
New Mexico Institute of Technology
While I taught courses in theory of computation and Mathematics Logic, I conducted research in Complexity theory and published several journal papers including ones in the Journal of Computer and Systems Sciences and the Notre Dame Journal of Formal Logic. I developed a concept called System Function Language in 1981 which was published later in 1993 in the Journal of Mathematical Logic.
University of Minnesota
As member of the graduate faculty, together with Prof. Wei-Tek Tsai (now at Arizona State University), I co-supervised the following students from 1984 to 1988.
Tom Keefe, Ph.D.
Secure query processing and SODA system (several journal and conference papers, see publications – IEEE Computer Computers and Security)
K. Hwang, Ph.D.
Distributed system and networks; Conference paper in IEEE Local Area Networks 1987
S. Chen, Ph.D.
Fault Tolerant Distributed Systems
Paper in IEEE Transactions on Software Engineering
D. Thomsen, M.S.
Prototyping secure database systems
Journal paper and conference papers (e.g. Computers and Security)
Other Research: While I worked in the Mathematics Department in the early 1980s, I conducted research with Prof. Marian Pour-El on Algorithmic Information Theory and gave seminars at the University.
The MITRE Corporation
Collaborated with universities and supervised many students for senior undergraduate research projects and graduate MS level students. In particular, collaborated with the following universities:
Carnegie Mellon University
Amiel Kamon: Secure Distributed Query Processing, research funded by Navy-SPAWAR, senior undergraduate, Summer 1989
Jonathan O’Keefe: Constraint Processing in Secure Databases systems, research funded by Navy-SPAWAR (papers and patents) Summer 1990, Winter 1991, senior undergraduate
Cornell University
David Foti: Secure Distributed Databases, research funded by Army – CECOM, Summer 1992, undergraduate
Northeastern University
Gary Gengo: MS
Active Real-time Data Management, research funded by Air Force (ESC) 1994
University of Rhode Island
Jointly with Professor Victor Wolfe supervised the following students
Michael Squadrito: MS (1994-1996) Research on Rreal-time Transaction Processing, research funded by Air Force (ESC)
Roman Ginis: senior undergraduate (1996) Research on Real-time Data Management, research funded by Air Force (ESC)
Massachusetts Institute of Technology
Co-supervised MS students with Prof. Amar Gupta in secure e-commerce, 2000-2001
(Journal paper in Knowledge management journal and conference papers)
University of Milan, Italy
With Prof. Elisa Bertino, I supervised two students, Barbara Carminati and Anna Squicciarini, in XML Security (2000-2004)
(Journal paper in TKDE and conference papers, e.g., EDBT)
Thesis Committees
In addition to serving on the committees of many of the students I supervised, I also served on the committee for Ph.D. thesis at University of Minnesota, Latrobe University, Australia and University of Milan, Italy (1999 – 2004).
I have obtained research funding at the University of Texas at Dallas, The MITRE Corporation, and Honeywell Inc. My team at UT Dallas has brought in over $10m in grants and contracts since October 2005.
The University of Texas at Dallas (October 2004 - Present)
o 1. Air Force Office of Scientific Research 2005 – 2008 (PI)
Topic: Information Operations Across Infospheres: Assured Information Sharing
Response to BAA: Air Force Office of Scientific Research BAA 2005-I
Subcontract to UTSA
Amount: $00K
o 2. CH2MHILL 2005-2007 (co-PI)
Topic: Geospatial Data Management Equipment Grant
PI: D. Harris
Amount: $50K
o 3. Raytheon Corporation 2006-2009 (PI)
Topic: Geospatial Semantic Web research, Data Mining and Security
Raytheon University Research Program
Amount: $400K
o 4. Raytheon Corporation 2007-2008 (co-PI)
Topic: Geospatial Semantic Web Development for Security Applications
PI: L. Khan
Amount: $100K
o 5. Air Force Office of Scientific Research 2006-2009 (Co-PI)
Topic: System Integrity Control
Response to BAA: Air Force Office of Scientific Research BAA 2006-I
Subcontract from Purdue University
PI: M. Kantarcioglu
Amount: $150K
· 6. The National Science Foundation 2007-2009 (PI)
Topic: A Semantic Framework for Policy Specification and Enforcement
Response to Program Solicitation: 07-500
Collaboration with UMBC and UTSA
Amount: $590K
· 7. The National Science Foundation 2007-2008 (PI)
Topic: Data and Applications Security Workshop
Amount: $50K
· 8. National Geospatial Intelligence Agency 2007-2010 (co-PI)
Topic: Geospatial Data Mining for Crime Analysis
Response to Program Solicitation NURI-007
Subcontract from U. of MN
Amount: $150K
· 10. National Aeronautic Space Administration 2008-2010 (co-PI)
Topic: Data Mining of Fault Reports
Response to NASA BAA
Subcontract from University of Illinois, Urbana Champaign
PI: L. Khan
Amount: $360K
o 11. Department of Defense 2008-2013 (PI)
Topic: Assured Information Sharing 2008-2013
Multi-university research initiative funded by the DoD/AFOSR
Response to MURI 2007 BAA; Subcontract from UMBC
Amount: $1. million
o 12. Department of Defense 2008-2011 (PI)
Topic: Secure Grid Information Management
Multi-university research initiative funded by the DoD
Subcontract to the University of Texas at Arlington and Purdue University
Amount: $2.2 million
· 13. Intelligence Community Advanced Research Projects Agency 2008-2011 (PI)
Topic: Novel Semantic Framework for Knowledge Discovery and Dissemination
Response to KDD BAA
Amount: $550K
· 14. Department of Defense 2009-2013 (PI)
Topic: Secure Social Networks
Subcontracts to UTA, Purdue, Collin County-TX
Amount: $1.5 million
· 15. National Science Foundation, 2009 (PI)
Topic: Intelligence and Security Informatics (Students Scholarships)
Amount: $10K
· 16. Air Force Office of Scientific Research, 2009-2012
Topic: Malware Detection (Senior Personnel)
PI: Kevin Hamlen, Co-PI: Latifur Khan
Amount: $450K
· 18. National Science Foundation, 2009 (Co-PI)
Topic: Secure Peer to Peer Data Management (PI: Kevin Hamlen)
Amount: $80K
· 19. Texas Enterprise Research Funds for research in Data and Applications Security 2004-2008; part of technology funds awarded to UTDallas by Texas Instruments and Texas state government
Awards received by my Team (October 2007 - Present)
Kevin Hamlen: Air Force Young Investigator Award, 2007
Murat Kantarcioglu: NSF CAREER Award, 2009
Murat Kantarcioglu: Botnet, ONR (subcontract from Purdue) 2009 - 2010
Murat Kantarcioglu, Privacy in Genomic Databases, NIH (subcontract from Vanderbilt) 2009 - 2012
Murat Kantarcioglu, Provenance for Sensor Data, NSF NeTS Medium, 2010 - 2013
The MITRE Corporation (January 1989 – 2004)
MITRE is a Not-for-Profit federally funded research and development center and therefore the research projects that are externally funded are internally completed. One staff year is approximately $200K
I. Principal Investigator for the following research projects at MITRE:
1. Secure Distributed Data Management
US Navy, SPAWAR, FY89 (1 staff year)
Team members: Bhavani Thuraisingham, Amiel Kamon
USAF Rome Air Development Center FY90, FY91, FY92 (1 staff year / yr)
2. Inference Problem/Constraint Processing
US Navy, SPAWAR FY90 (1.5 staff years)
Team Members: Bhavani Thuraisingham, William Ford, Marie Collins, Jonathan O’Keeffe
US Army CECOM FY91, FY92, FY93, FY94, FY95 (1.5 staff years / yr approx)
Continued to work on project FY96 and FY97
Team Members: Bhavani Thuraisingham, William Ford, Harvey Rubinovitz, Marie Collins, David Foti
US AirForce, FY99 (1 staff yr)
Team Members: Bhavani Thuraisingham, Harvey Rubinovitz
3. Secure Multimedia/Object Database Management
US Navy SPAWAR, FY91, FY92, FY93 (2 staff years/yr approx)
Continued to work on project FY94, FY95
Team Members: Bhavani Thuraisingham, William Herndon, Arnon Rosenthal, Richard Graubart, Jim Williams
4. Secure Client Server Computing
US Army CECOM, FY94 (1 staff year)
Investigated security issues for client-server computing and identified security for object request brokers.
Team Members: Bhavani Thuraisingham, Brian Kahn
5. Research Directions in Database Security, Special topics in database security (secure federated data management, foundations of inference problem, data mining and privacy)
NSA FY91 (0.5 staff year), FY92 (1.5 staff years), FY93, FY94, FY95 (0.5 staff year/yr), FY96 (1 staff year) Project continued under Dr. Chris Clifton, FY97
Team Members: Bhavani Thuraisingham, Mark Nadel, Leonard Monk, Chris Clifton
NSA Team Members: Leonard Binns, Don Marks, Peter Sell
6. Research Directions in Massive Digital Data Systems (MDDS), Data Mining for Text Databases
CIA MDDS FY93 – FY99 (1.5 staff year/yr); Text mining (initiated project for 2 staff years/yr in FY96 – subcontractor: Stanford University, project managed by Dr. Chris Clifton and continued until FY99)
Team Members: Bhavani Thuraisingham, Maria Zemankova, Beth Lavender, Henry Bayard, Marcia Kerchner, Manette Lazar, Chip Paradise, Chris Clifton, Arnon Rosenthal
7. Research in Real-time Data Management and Real-time Middleware
USAF Rome Lab, FY93 – FY99 (Principal investigator for real-time data management part of project: 2 staff year/yr – part of larger project approx. 5 – 7 staff year/yr managed by John Maurer)
Team members: Bhavani Thuraisingham, Alice Shafer, Gary Gengo, Mike Squadrito, Roman Ginis, Victor Fay-Wolfe, Steve Wohlever, Eric Hughes
8. Research Directions in Data Management
MITRE Research FY95, FY96, FY97 (1 staff year/yr)
Team Members: Bhavani Thuraisingham, Barbara Blaustein, Arnon Rosenthal, Len Seligman, Penny Chase, Tom Mowbray
9. NSF: XML Security as part of Independent research from NSF IPA (20% of my time, FY02-FY04)
II. Other research analysis/technology transfer projects:
1. Treasury research credit (evaluated research conducted by Fortune 100 corporations – FY99 - FY01), work report in Wall Street Journal, December 2000; I was part of a team instrumental in bringing this project to MITRE FY99 – FY01.
2. Technology Transfer to Services: (i) Air Force: AWACS project; Secure Distributed Query processing – IMOM Application (ii) Navy: Inference problem analysis for operational systems; and (iii) Army: Technology transfer of secure distributed database research
III. Research Management
1. MITRE: As Department Head of MITRE, managed budget of approx: $5 million/yr for 4+ years
2. MITRE: As head of MITRE’s research in IT, managed a budget of approx $4million/yr for 3 years
3. CIA: As manager of fifteen research projects for CIA, managed a budget of approx $3 million/yr for 6 years
Honeywell Inc. (1986-1989)
1. Air Force: Secure Distributed Data Views As project contributor, worked on proposals for various research projects and contributed to projects, e.g. secure distributed data views (SDDS), RADC. Became the principal investigator during the 2nd year of the three year SDDS project. (January 1986 – December 1988); managed 3 staff years/yr (Team Members: Pat Dwyer, Emanual Oneugbe, Paul Stachour, Tom Haigh, Earl Boebert, Blair Dillaway)
Response to BAA
2. Air Force: Engineering Information Systems As project contributor, led the data modeling part of the project for Engineering Information Systems; project funded by Wright Patterson AFB (October 1987 - December 1988); managed 2 staff years /yr (Team member: Venkat Venkatraman)
Response to BAA
3. NASA: Distributed Systems Project contributor on the distributed systems project for NASA; principal investigator of the Network Operating Systems portion of the project (November 1986- October 1987); managed 2 staff year /yr
Response to BAA
4. Honeywell: Internally funded research projects:
o Distributed Data Dictionary Systems, Honeywell’s Residential Controls Division, 1986 -1987 (Team members: Krishna Mikkileneni, Hongjun Lu)
o Expert Systems for Control Systems, Honeywell Industrial Automation Systems Division 1987 - 1988 (Team members: Ferit Konar, Paul Felix)
o Expert Systems for Network Management: Honeywell Building Controls Division, 1987 - 1988
o Object Technology for Building Control Systems, Honeywell’s Building Controls Division, 1987 - 1988
o Cost Modeling of Software Strategies, Honeywell Corporate (1987 - 1988) (Team members: Ron Crowe)
o Heterogeneous Knowledge Integration, Honeywell Industrial Automation Systems Division, 1988 - 1989
Infrastructure Development Funding
I have supported my colleagues in the NSF Capacity building efforts 2007 (Murat Kantarcioglu), 2008 (Kevin Hamlen) and 2010 (Latifur Khan). In 2009 I was a co-PI on an NSF MRI proposal (under stimulus funds) on secure cloud computing. Our propose was rated Highly Competitive, However due to the fact that our budget was over $2m and due to the severe restrictions in stimulus funding placed on MRI, our proposal was not funded. The MRI funding under stimulus funding is expected to be less than 5%. We will be submitting a version of this proposal for DURIP in September 2010. In addition to research funding my goal is to also obtain funding for education and infrastructure development.
Research Proposals Submitted/Planned
For 2010 we are planning to submit several proposals including the following.
- IARPA – KDD We have teamed with IBM, MIT, UMBC and Intervise and submitted a $16m to IARPA for the KDD program. UTD portion is $2m for 4 years. (February 2010)
- IARPA-ALADDIN We is discussing teaming arrangement with Honeywell, UIUC and UCI. The BAA is not out yet for this program
- ONR- We are preparing a white paper with Rockwell to submit to ONR’s Network Defense BAA, March 2010
- Planning to submit a proposal to AFOSR on building trusted application in untrusted platforms, May 2010
- Submitted a white paper on Adversarial Learning to ARO, November 2009, received feedback and addressing comments.
- Discussions with UTEP to submit proposals to DHS via their DHS Center
- Discussions with DHS to submit a white paper on Incidence Response
- Planning for a Center scale Trust Computing proposal with Purdue
- White paper submitted to NSF with U of VT and GWU for US-India Collaboration, February 2010
- Focusing on funding opportunities with Raytheon, Rockwell, Lockheed, Ball Aerospace and Wallmart
Authored Works (Journals, Conferences, Books, etc.)
I. JOURNAL PAPERS
Data and Applications Security
- Multilevel Security in Database Management Systems, June 1987, Computers and Security Journal (North Holland), Vol. 6, No. 3, pp. 252-260, (coauthors: P. Dwyer, G. Jelatis).
- Security Checking in Relational Database Management Systems Augmented with Inference Engines, December 1987, Computers and Security Journal (North Holland), Vol. 6, No. 6, pp. 479-492.
- Multilevel Security in Distributed Database Management Systems, August 1988, Computers and Security Journal (North Holland), Vol. 7, No. 4, (coauthor: J. McHugh).
- Secure Query Processing Strategies, IEEE Computer, March 1989, Vol. 22, No. 3, (invited paper - coauthors: T. F. Keefe and W. T. Tsai).
- SODA - A Secure Object-Oriented Database System, October 1989, Computers and Security Journal, Vol. 8, (coauthors: W. T. Tsai and T. F. Keefe).
- A Prototyping Approach to Experimentally Evaluating MLS/DBMS, May 1989, Computers and Security Journal (Elsevier formerly North Holland), Vol. 8, (coauthors: W. T.Tsai and D. Thomsen).
- A Functional View to Multilevel Databases, December 1989, Computers and Security Journal (Elsevier), Vol. 8, No. 8.
- Towards the Design of a Secure Data/Knowledge Base Management System, March 1990, Data and Knowledge Engineering Journal (North Holland), Vol. 5, No. 1.
- Security in Object-Oriented Database Systems, March/April 1990, Journal of Object‑Oriented Programming, Vol. 2, No. 6. (also reprinted in book on object-oriented database management systems by SIG publishers).
- Design of LDV - A Multilevel Secure Database Management System, June 1990, IEEE Transactions on Knowledge and Data Engineering, Vol. 2, No. 2, June 1990, (coauthor: P. Stachour).
- SQL Extensions for Security Assertions, 1990, Computer Standards and Interfaces Journal (North Holland), Vol. 11, #1, 5-14 (coauthor: P. Stachour).
- Artificial Intelligence Applications in Database Security, 1990, Computer Security Journal, (Miller Freeman Publishers), Vol. 6, No. 1, (coauthors: W. Tsai, T. Keefe, and D. Thomsen)
- Multilevel Secure Object-Oriented Data Model - Issues on Noncomposite Objects, Composite Objects, and Versioning, Journal of Object-Oriented Programming, Volume 4, November/December 1991. (Version of the article reprinted by the MITRE Journal, 1992.) (Also reprinted in book on object-oriented database management systems by SIG publishers.)
- Multilevel Security Issues in Distributed Database Management Systems – II, Computers and Security Journal (Elsevier), Volume 10, #8, December 1991.
- Multilevel Security Issues for Distributed Database Management - III, Computers and Security (Elsevier), Vol. 11, November 1992 (co-author: H. Rubinovitz).
- Design and Implementation of a Distributed Query Processor for a Trusted Distributed Database Management Systems, April 1993, Journal of Systems and Software (North Holland), Vol. 21, #1 (co-author: Harvey Rubinovitz).
- Design and Implementation of a Database Inference Controller, December 1993, Data and Knowledge Engineering Journal (North Holland), Vol. 11, #3 (co-authors: W. Ford, M. Collins, J. O'Keeffe); (Article reprinted by the MITRE Journal, 1994).
- Intelligent Database Systems and Multilevel Database Security: Applying One Technology To The Other, Computer Security Journal 1993 (Miller Freeman Publishers).
- Simulation of Secure Distributed Join Query Processing Algorithms; Information and Software Technology Journal (Chapman and Hall), Vol. 35, #5, 1993 co-author: Harvey Rubinovitz; (version of conference paper published in Simulation Conference, 1991).
- Towards Developing a Standard Multilevel Relational Data Model for Representing a Multilevel Universe, Computer Standards and Interfaces Journal (North Holland), Vol. 15, #1, 1993 (also published by Computer Standards Interface Journal special issue in 1999 as one of the seminal papers to appear in the journal).
- Multilevel Security in Information Retrieval Systems, Information and Management Journal (North Holland) Vol. 24, 1993.
- Security for Collaborative Computer Systems, Multimedia Review: The Journal of Multimedia Computing (Penton Media publishers), Summer 1993 (co-authors: S. Demurjian and T.C. Ting).
- Security Issues for Federated Database Systems, 1994, Computers and Security (North Holland), December 1994.
- Multilevel Security in Information Retrieval Systems - II, Information and Management Journal (North Holland) 1995.
- Security Constraint Processing in a Multilevel Secure Distributed Database Management System, IEEE Transactions on Knowledge and Data Engineering, April 1995 (coauthor: W. Ford).
- Towards the Design of a Multilevel Secure Object-Oriented Database Management System, Journal of Object-Oriented Programming, June 1995.
- MOMT: A Multilevel Object Modeling Technique for designing Secure Database Applications, Journal of Object-Oriented Programming, 1996 (co-authors: D. Marks and P. Sell)
- Information Survivability for Real-time Command and Control Systems, IEEE Transactions on Knowledge and Data Engineering, January 1999 (coauthor: J. Maurer)
- Secure Distributed Database Systems, Information Security Journal (Elsevier Science) special issue in database security, 2001
-
Secure Third Party
Publication of XML Documents,
IEEE Transactions on Knowledge and Data Engineering, 2004 (coauthor: E.
Bertino et al; version also published as MIT Working Paper, 2002)
- Secure Sensor Information Management, IEEE Signal Processing, May 2004.
- Security and Privacy for Sensor Databases, Sensor Letters, Inaugural Issue (American Scientific), Volume 2, #1, March 2004.
- Security for Multimedia Information System, Accepted in Multimedia Tools (Kluwer) 2003 (keynote at IEEE Multimedia Software Engineering and Distributed Multimedia); published January 2007.
- Privacy Sensitive Data Mining: Developments and Directions, Journal of Database Management, March 2005 (special issue in Database technologies for National Security).
- Privacy Constraint Processing in a Privacy-Enhanced Database Management System, Data and Knowledge Engineering Journal (North Holland), 2005.
- Standards for Secure Semantic Web, Computer Standards and Interface Journal (North Holland), March 2005 (version of COMPSAC Conference workshop paper, 2003).
- Security Policies and Access Control in Data Management Systems, Invited Paper published in Annales des Telecommunications (coauthor: E. Ferrari et al), January 2006.
- Secure Semantic E-Business, Invited Paper, Communications of ACM, December 2005.
- A New Intrusion Detection System using Support Vector Machines and Hierarchical Clustering, Accepted in VLDB Journal, 2005 (coauthor: M. Awad et al; 2007).
- Suspicious Event Detection, Accepted in Multimedia Tools, Accepted 2005 (coauthor: G. Lavee et al).
- Standards for Secure Data Sharing, Computer Standards and Interface Journal, September 2006 (co-author: D. Harris et al).
- Secure Knowledge Management, IEEE Transactions on Systems, Man and Cybernetics, May 2006 (coauthors: E. Bertino et al, based on keynote I presented at SKM2004).
- PP-trust-X: A System for Privacy Preserving Trust Nnegotiation, Accepted in ACM Transactions on Information and Systems Security, July 2007 co-author: (E. Bertino et al).
- Administering the Semantic Web, Journal of Information Security Management 2007 (coauthor: N. Tsybulnik, A. Ashraful).
- Secure Grid Computing, Journal of Computer Science and Network Security, August 2006 (co-author: J. Zhu)
- Security for ERP Systems, Information Systems Security Journal, May 2007 (co-author: W. She)
- Secure Data Warehousing, Data Warehousing Journal, IDEA Press, 2007 (co-author: Srinivasan, M. Kantarcioglu)
- A Scalable Multi-level Feature Extraction Ttchnique to Detect Malicious Executables, Information Systems Frontiers 10(1): 33-45 (2008) (co-authors: M. Masud, L. Khan).
- Secure Scalable P2P Data Grid, Accepted in IEEE Transactions on Dependable and Secure Computing, Accepted January 2008 (co-authors: I. Yen, M. Tu et al)
- Policy Management in Assured Information Sharing, Journal of Information Security and Privacy, 2008. (Y. Harshakumar et al)
- Geospatial RDF and Security, Computer Standards and Interfaces Journal, 2008 (special issue from ICDE conference workshop)
52. A Scalable Multi-level Feature Extraction Technique to Detect Malicious Executables, Mohammad Masud, Latifur Khan, and Bhavani Thuraisingham; Information Systems Frontiers, Springer Netherlands, Vol. 10, No. 1, Page 33-45
53. The Applicability of the Perturbation Based Privacy Preserving Data Mining for Real-World Data,, " Data and Knowledge Engineering (DKE), 65(1): 5-21 (2008) Leading Journal (Li Liu, Murat Kantarcioglu).
54. Managing Risks in Distributed Environments, Risk and Decision Analysis Journal, 2008 (Ebru Celikel, Murat Kantarcioglu, Elisa Bertino).
55. Exploiting an antivirus interface,. Computer Standards & Interfaces 31(6): 1182-1189 (2009) (Kevin W. Hamlen, Vishwath Mohan, Mohammad M. Masud, Latifur Khan).
56. Privacy Preservation in Wireless Sensor Networks: A State-of-the-art Survey, Ad-Hoc Networks Journal, (coauthors: L. Na et al).
57. Design of a Secure Social Network, Computer Systems Science and Engineering, Accepted 2009.
58. Delegation Model for Web Services, Accepted in the Journal of Web Services Research 2009 (W. She, I. Yen).
59. Relationalization of Provenance Data in Complex RDF Reification Nodes," Special Issue of Electronic Commerce Research Journal on Trust and Privacy Aspects of Electronic Commerce, 2009 (S. Sriram et al).
- Classification and Novel Class Detection in Concept-Drifting Data Streams under Time Constraints, Accepted IEEE Transactions on Knowledge and Data Engineering, 2010 (co-authors: M. Masud, L. Khan, J. Han).
- Policy and Model for Social Networks, Accepted for Publication in Computers and Security, 2010 (special issue for SACMST conference), co-authors: B. Carminati et al.
- Semantic Web, Data Mining and Security, To appear in IEEE Intelligent Systems Special Issue, 2010 (coauthors: M. Kantarcioglu and L. Khan)
Distributed Systems/Data Management/ /AI Applications/Real-time Systems
62. Artificial Intelligence Applications in Distributed System Design Issues, 1988, IEEE Network, Vol. 2, No. 6, (coauthor: J. Larson).
63. Recovery Point Placement Algorithms for the Reverse Binary Tree Task Model, August 1989, IEEE Transactions on Software Engineering, Vol. 15, No.8, (coauthors: W. T. Tsai and S. K Chen).
64. From Rules to Frames and Frames to Rules, October 1989, AI Expert (Miller Freeman Publishers) Volume 2, No. 10. (Reviewed by Editorial Board).
65. A View of Information Modeling Relative to Data Modeling, Information Systems Management Journal (Auerbach), Vol. 9, #2, Spring 1992 (coauthor: V. Venkataraman; also reprinted in Handbook of Data Management 1993, ed: von Halle and Kull).
66. Developing Multimedia Database Management Systems utilizing the Object-Oriented Approach, Multimedia Review: Journal of Multimedia Computing, Vol. 3, #2, 1992.
67. Interoperability of Heterogeneous Database Systems: Developments and Challenges, SIGNAL Magazine: AFCEA Journal, December 1995.
68. Web Information Management and Electronic Commerce, AI Tools Journal (World Scientific), July 1999.
69. Real-time Transaction Processing, Computer Systems: Science and Practice (Chapman and Hall), 1999 (with L. DiPippo, V. Wolfe et al).
70. Data Mining, IEEE ITPro, January 2000.
71. Real-time CORBA, IEEE Transactions on Parallel and Distributed Systems (coauthor: V. Wolfe et al), October 2000.
72. Real-time Priority Ceiling Algorithm, Real-time Systems Journal (Kluwer), 2001 (co-author: V. Wolfe, L. DiPippo et al).
73. Standards for Data Mining, Computer Standards and Interface Journal (North Holland) (coauthor: C. Clifton) 2001.
74. Foundations of Data Mining: Position Paper, Communications of Institute for Information and Computing Machinery (Taiwan Journal), May 2002. (PAKDD 2002 workshop paper published as special issue in journal).
75. Collaborative Commerce and Knowledge Management, Knowledge Management Journal (Wiley Interscience), 2002.
76. Managing and Mining Multimedia Databases, AI Tools Journal (World Scientific), 2006 (keynote at ICTAI99).
77. Predicting WWW Surfing Using Multiple Evidence Combination, Accepted in VLDB Journal, Accepted 2008 (M. Awad et al).
78. A Framework for Automated Image Annotation, Accepted in Computer Systems Science and Engineering, Accepted 2007, (co-author: L Wang et al).
79. A Scalable Clustering Method Based on Density, WSEAS Transactions on Computing Research (co-authors: L. Khan and S. Bereg) 2008.
80. Emergency Response Applications: Dynamic Plume Modeling and Real-Time Routing, IEEE Internet Computing, Vol. 12, No. 1, Page 38-44, January - February 2008,( Pavan Kumar Chitumalla, Douglas Harris, and Latifur Khan).
81. R2D: A Bridge Between the Semantic Web and Relational Visualization, Semantic Computing Journal, Accepted, 2009. (S. Sriram et al).
82. Necessary and Sufficient Conditions for Transaction-consistent Global Cceckpoints in a Distributed Database System. Inf. Sci. 179(20): 3659-3672 (2009), (Jiang Wu, D. Manivannan, Bhavani M. Thuraisingham).
Computability/Complexity Theory
- Representation of One-One Degrees by Decision Problems, 1982, Journal of Computer and Systems Sciences (Academic Press), Vol. 24, pp. 373-377.
- Some Elementary Closure Properties of N-Cylinders, 1983, Notre Dame Journal of Formal Logic, Vol. 24, No. 2, pp. 242-253.
- The Concept of N-Cylinder and its Relationship to Simple Sets, 1983, Notre Dame Journal of Formal Logic, Vol. 24, No. 3, pp. 328-336.
- Cylindrical Decision Problems, 1983, Notre Dame Journal of Formal Logic, Vol. 24, No. 2, pp. 188-198.
- System Functions and their Decision Problems, 1984, Zeitschrift fur Mathematische Logik und Grundlagen der Mathematik, Vol. 30, pp. 119-128. (now Journal of Mathematical Logic)
- The Concept of N-Cylinder and its Application , 1986, Zeitschrift fur Mathematische Logik und Grundlagen der Mathematik, Vol. 32, pp. 211-219.
89. Reducibility Relationship Between Decision Problems, 1987, Zeitschrift fur Mathematische Logik und Grundlagen der Mathematik, Vol. 33, pp. 305-312.
90. Representing One-One Degrees by N-Cylindrical Decision Problems, December 1988, Zeitschrift fur Mathematische Logik und Grundlagen der Mathematik, Vol. 34, No. 6.
91. System Function Languages, Mathematical Logic Journal, Vol. 39, 1993.
- A Construction of Cartesian Authentication Codes from Orthogonal Spaces over a Finite Field of Odd Characteristic, Discrete Mathematics, Algorithms and Applications 2009 (co-authors: Z. Li et al)
- A Better Approximation for Minimum Average Routing Path Clustering Problem in 2-D Underwater Sensor Networks, Discrete Mathematics, Algorithms and Applications 2009 (co-authors: D. Kim et al)
II. CONFERENCES PAPERS
Data and Applications Security
1. Secure Query Processing Using AI Techniques, January 1988, Proceedings of the IEEE Hawaii International Conference on Systems Sciences, pp. 561-570, (coauthors: W. T. Tsai and T. F. Keefe) - Best Paper Award for Software Tracks (enhanced version in IEEE Computer 1989).
2. A Multilevel Security Policy for Object-Oriented Systems, October 1988, Proceedings of the 11th National Computer Security Conference, Baltimore, MD, (coauthors: W. T. Tsai and T. F. Keefe).
3. Prototyping as a Research Tool for MLS/DBMS, October 1988, Proceedings of the IFIP WG 11.3 Conference on Database Security, Kingston, Ontario, Canada, (also published as book chapter by North Holland, 1989) (coauthors: W. Tsai and D. Thomsen).
4. Novel Approaches to the Inference Problem, June 1990, Proceedings of the 3rd RADC Database Security Workshop, New York.
5. The Inference Problem in Multilevel Secure Database Management Systems, June 1990, Proceedings of the 3rd RADC Database Security Workshop, New York (coauthors: W. Ford, M. Collins, J. O'Keeffe).
6. Trusted Distributed Database Management Systems June 1990, Proceedings of the 3rd RADC Database Security Workshop, New York, (coauthor: H. Rubinovitz).
7. An Approach to Security Constraint Processing, April 1991, Proceedings of the 4th RADC Database Security Workshop, Little Compton, RI (coauthor: W. Ford, M. Collins).
8. Trusted Distributed Database Management Systems - A Progress Report, April 1991, Proceedings of the 4th RADC Database Security Workshop, Little Compton, RI, (coauthors: H. Rubinovitz).
9. Handling Association-based Constraints in Multilevel Databases, April 1991, Proceedings of the 4th RADC Database Security Workshop, Little Compton, RI.
10. Foundations of Multilevel Databases, May 1988, Proceedings 1st RADC Database Security Invitational Workshop, Menlo Park, CA, (Proceedings published by Springer Verlag, 1992, Ed: T. Lunt – Book Chapter).
11. Design of an Update Processor for MLS/DBMS, October 1988, Invited paper, Proceedings of the 11th National Computer Security Conference, Baltimore, MD; addendum to Proceedings (coauthors: P. Stachour and P. Dwyer).
12. Design of a Query Processor for MLS/DBMS, December 1988, Proceedings of the 4th IEEE Aerospace Computer Security Conference, Orlando, (coauthors: P. Dwyer, E. Onuegbe and P. Stachour).
13. Security Checking with Prolog-Extensions, May 1989, Proceedings of the 2nd RADC Database Security Invitational Workshop, Franconia, NH.
14. Mandatory Security in Object-Oriented Database Systems, October 1989, Proceedings of the ACM Conference on Object-Oriented Programming, Systems, Languages and Applications (ACM OOPSLA) Conference, New Orleans, LA.
15. Multilevel Security in Object-Oriented Database Systems, October 1989, Proceedings of the 12th National Computer Security Conference, Baltimore, MD.
16. Secure Query Processing in Intelligent Database Management Systems, December 1989, Proceedings of the 5th IEEE Computer Security Applications Conference Tucson, AZ.
17. Recursion Theoretic Complexity of the Inference Problem in Database Security, June 1990, Presented at the 3rd IEEE Workshop on Foundations of Computer Security, Franconia, NH (public release was not obtained in time for proceedings; printed as MITRE Paper M291 June 1990).
18. Multilevel Security for Multimedia Systems, September 1990, Proceedings of the 4th IFIP WG 11.3 Conference on Database Security, Halifax, England, (also published as book chapter by North Holland, 1991).
19. Secure Query Processing in Distributed Database Management Systems - Design and Performance Study, December 1990, Proceedings of the 6th IEEE Computer Security Applications Conference, Tucson, AZ, (coauthor: A. Kamon).
20. Implementation and Simulation of Secure Distributed Query Processing Algorithms, Proceedings of the 1991 Computer Simulation Conference, Baltimore, MD, (coauthor: H. Rubinovitz).
21. A Nonmonotonic Typed Multilevel Logic for Multilevel Database Management Systems, June 1991, Proceedings of the 4th IEEE Computer Security Foundations Workshop, Franconia, NH.
22. Issues on the Design and Implementation of an Intelligent Database Inference Controller, Proceedings of the 1991 IEEE International Conference on Systems, Man, and Cybernetics, Charlottsville, VA, (co-author: W. Ford).
23. The Use of Conceptual Structures to Handle the Inference Problem, November 1991, Proceedings of the 5th IFIP WG 11.3 Conference on Database Security, Shepherdstown, VA. (Also published by North Holland, 1992.)
24. Design and Implementation of a Database Update Processor, Proceedings of the 7th IEEE Computer Security Applications Conference, San Antonio, TX, December 1991 (coauthor: M. Collins, W. Ford).
25. Design and Simulation of Secure Distributed Concurrency Control Algorithms, Proceedings of the 1992 Computer Simulation Conference, Nevada, July 1992. (co-author: H. Rubinovitz)
26. A Nonmonotonic Typed Multilevel Logic for Multilevel Database Management Systems - II, June 1992, Proceedings of the 5th IEEE Computer Security Foundations Workshop, Franconia, NH.
27. On Knowledge-Based Inference Control, Proceedings of the 15th National Computer Security Conference, Baltimore, MD, October 1992.
28. A Note on the Security Impact on Real-time Database Management Systems, Proceedings of the 5th RADC Database Security Workshop, New York, October 1992.
29. Secure Computing with the ACTORS Paradigm, Presented at the ACM/SIGSAC New Computer Security Paradigms Workshop, Little Compton, RI, September 1992. (Proceedings published by ACM Press, 1993)
30. An Object-Oriented Approach to Modeling Multilevel Database Applications, Proceedings of the ACM Conference Workshop on Object-Oriented Programming Language, Systems, and Applications, Vancouver, B.C., October 1992. (co-author: P. Sell)
31. Towards the Design and Implementation of a Multilevel Secure Deductive Database Management System, Proceedings of the 26th Hawaii International Conference on Systems Sciences, January 1993.
32. Parallel Processing and Trusted Database Management Systems - Applying One Technology to the Other, Proceedings of the 1993 ACM Conference in Computer Science, Indianapolis, Indiana.
33. Security and Integrity Constraint Processing in a Multilevel Secure Distributed Environment, MILCOM 93, October 1993 (coauthors: A. Abreu, H. Rubinovitz, M. Collins) (classified session)
34. Towards a Multilevel Secure Database Management System for Realtime Applications, Proceedings of the First IEEE Workshop in Realtime Computing, May 1993. (coauthor: S. Son)
35. Design and Implementation of a Distributed Database Inference Controller, Proceedings of the 17th IEEE COMPSAC Conference, November 1993. (coauthor: H. Rubinovitz, D. Foti, A. Abreu)
36. Security and Integrity in Distributed Database System, Database Colloquium 93, San Diego, CA, August 1993. (co-authors: D. Small, D. Goldsmith - proceedings available in electronic media.)
37. Applying OMT for Multilevel Database Application Design, Proceedings of the 7th IFIP Conference in Database Security, Huntsville, Alabama, September 1993. (coauthor: P. Sell; also published as book chapter by North Holland, 1994.)
38. Object-oriented Approach to Interconnecting Trusted Database Management Systems, September 1993, ACM OOPSLA-93 Conference Workshop on Object Persistence in Heterogeneous Database Environments, Washington D.C. (coauthor: H. Rubinovitz)
39. Security Constraint Processing in a Distributed Database Environment, Proceedings of the 1993 ACM Computer Science Conference, Phoenix, AZ, March 1994. (coauthor: H. Rubinovitz)
40. Database Inference Control, Proceedings of the DoD Database Security Workshop, Maine, June 1994 (co-authors: M. Collins and H. Rubinovitz).
41. MLS Database Application Design, Proceedings of the DoD Database Security Workshop, Maine, June 1994 (co-authors: S. Lewis, D. Marks, P. Sell, S. Wiseman).
42. Hypersemantic Data Modeling for Inference Analysis, Proceedings of the 8th IFIP Working Conference in Database Security, Hildesheim, Germany, August 1994. (co-authors: D. Marks, L. Binns, also as book chapter by North Holland 1995).
43. A Fine-grained Access Control Model for Object-oriented DBMS, Proceedings of the 8th IFIP Working Conference in Database Security, Hildesheim, Germany, August 1994. (co-authors: A. Rosenthal et al, also as book chapter by North Holland, 1995).
44. An Adaptive Policy for Improved Timeliness in Secure Database Systems, Proceedings of the 9th IFIP Working Conference in Database Security, New York, August 1995. (coauthors: S. Son and R. David, also as book chapter by North Holland 1996).
45. Design and Implementation of a Database Inference Controller Utilizing a Deductive Object-Oriented Data Model, Proceedings of the 13th DOD Database Colloquium, San Diego, CA, August 1996. (coauthors: M. Collins, D. Marks, B. Neuman).
47. Survivability Issues for Real-time for Evolvable Command and Control Systems, Proceedings of the Information Survivability Workshop, February 1997 (coauthor: J. Maurer et al).
48. Survivability Issues for Adaptable Command and Control Systems, Proceedings of the Information Survivability Workshop (coauthor: J. Maurer et al), October 1998.
46. Data Mining, Data Warehousing and Security, Proceedings of the IFIP Conference Book, Chapman and Hall, 1997 (version of keynote address at conference, 1996; editor: P. Samarati and R. Sandhu); also presented at CODATA Conference, Paris, June 1999.
49. Information Survivability for Adaptable and Evolvable Command and Control Systems, proceedings IEEE FTDCS Conference, Cape Town, December 1999 (coauthor: J. Maurer).
50. Web Security, Proceedings WETICE June 2001 (coauthor: E. Bertino et al).
51. Data and Applications Security: Developments and Directions Proceedings IEEE COMPSAC, 2002.
52. Building Secure and Dependable Semantic Webs, Proceedings IEEE ICTAI 2002.
53. Security Issues for the Semantic Web, Proceedings IEEE COMPSAC 2003.
54. Data and Applications Security: Past, Present and Future, Proceedings of IFIP Conference Book, Kluwer Publishers, to appear, 2004 (version of keynote address at conference, 2003; Editor: I. Ray).
55. Security and Privacy for Web Databases and Web Services, Proceedings of the EDBT Conference, March 2003, Crete. (coauthor: E. Ferrari) (based on keynote address at EDBT).
56. RDF Security, Proceedings of the DEXA Workshop on Web Semantics, Spain, August 2004 (coauthor: B. Carminati et al).
57. Complexity of the Privacy Problem, Proceedings Foundations of Data Mining, Workshop, England, 2004 (Proceedings by lecture notes Springer).
58. Secure Model Management, Proceedings IEEE E-Commerce Workshop, Hong Kong, May 2005 (co-author: K. Zhang et al).
59. Model Management in Data Interoperability, Proceedings IFIP Database Security Conference, August 2005 (K. Zhang et al)
60. Multilevel Teleconferencing, IFIP Database Security Conference, 2005 (co-author: C. Farkas et al).
61. Real-time Dependable Data Mining, Proceedings ISORC 2005 (co-author: C. Clifton et al).
62. A Framework for a Video Analysis Tool for Suspicious Event Detection, ACM SIGKDD Multimedia Data Mining Workshop, Chicago, IL 2005 (co-author: G. Lavee et al).
63. Message Correlation in Automated Communication Surveillance through Singular Value Decomposition, Proceedings ACM MM Workshop, Chicago, IL, 2005 (co-author: R. Layfield, et al).
64. Privacy Preserving Data Mining, Proceedings IEEE IDCM Workshop on Privacy preserving Data Mining, Houston, TX, 2005.
65. Secure and Dependable TMO, Proceedings ISORC, 2006 (co-author: J. Kim).
66. Security for Web Services, Proceedings IEEE Workshop in Secure Web Services, May 2006 9co-autjor: C. Farkas et al).
67. Detection and Resolution of Anomalies in Firewall Policy Rules, Proceedings IFIP Data and Applications Security Conference, 2006 (coauthor: L. Khan et al).
68. Data Mining for Malicious Code Detection, Proceedings Second SKM Workshop, NY, September 2006 (coauthor: L. Khan et al; enhanced version appeared in Information Systems Frontiers).
69. Access Control for Geospatial Web Services, Proceedings ACM CCS Conference Workshop, and November 2006. (coauthor: A. Ashraful et al).
70. Geospatial RDF, ISWC Conference on Geospatial Semantic Web, 2006 (coauthor: A. Ashraful).
71. Data Mining for Automatic Face Recognition, IEEE ICTAI Conference Proceedings, November 2006 Washington DC, November 2006.
72. Adaptive Privacy Preserving Data Mining, Proceedings IEEE ICDM Conference Workshop on Privacy Preserving Data Mining, Hong Kong, December 2006. (enhanced version to appear in DKE).
73. Simulation of Distributed Trust Management for Coalition Data Sharing, Proceedings FTDCS, 2007.
74. Algorithm for Fingerprint Matching, Proceedings ARES, April 2007.
75. Data Warehousing Security, Proceedings ARES, April 2007 (enhanced version to appear in data warehousing journal).
76. Secure and Dependable TMO – II, Proceedings ISORC, May 2007.
77. Risk Management and Security, Proceedings Risk management conference, Dallas, TX May 2007.
78. Geospatial Data Mining for National Security, Proceedings ISI, May 2007.
79. Data Mining for Worm Detection, Proceedings ICC 2007.
80. Game Theory Applications for Secure Coalition Data Sharing, Proceedings IFIP Data and Applications Security, Redondo Beach, CA, July 2007.
81. Anonimization Techniques for Outsourcing Security Data, Proceedings SECURICOM, Nice France, September 2007 (coauthors: William Yurcik, et al).
82. Centralized Security Labels in Decentralized P2P Networks, Computer Security Applications Conference, December 2007 (ACSAC) (co-authors: N. Tsybulnik and K. Hamlen)
83. Delegation-Based Security Model for Web Services,. HASE 2007: 82-91 (coauthors: Wei She, I. yen).
84. Building Secure Applications for Peer to Peer Systems, Proceedings TRUST workshop, NY, November 2007.
85. Hybrid Signature Free Approach for Detecting Malicious Executables, Proceedings IFIP Digital Forensics Conference, Kyoto, January 2008.
86. GRDF and Secure GRDF, Proceedings ICDE Conference Workshop in Secure semantic web, Co-author: A. Ashraful et al), April 2008.
87. Toward Trusted Sharing of Network Packet Traces Using Economization: Single-Field Privacy/Analysis Tradeoffs, CoRR abs/0710.3979: (2007) (coauthors: William Yurcik, Clay Woolam, Greg Hellings, Latifur Khan).
88. Measuring Anonymization Privacy/analysis Tradeoffs Inherent to Sharing Nnetwork Data, NOMS 2008: 991-994 (coauthors: W. Yurick et al).
89. The SCRUB Security Data Sharing Infrastructure, NOMS 2008: 630-644 (coauthors: Y. Yurick et al, also software available as Opensource).
90. Making Quantitative Measurements of Privacy/Analysis Tradeoffs Inherent to Packet Trace Anonymization, Financial Cryptography 2008: 323-324 (coauthors: W. Yurick et al).
91. Privacy/Analysis Tradeoffs in Sharing Anonymized Packet Traces: Single-Field Case,. ARES 2008: 237-244 (coauthors: W. Yurick et al).
92. ROWLBAC - Representing Role Based Access Control in OWL, Proceedings ACM SACMAT June 2008 (coauthors: T. Finin, L Kagal et al).
93. Accountability for Grid, DOE Conference on Cyber Security, Knoxville, TN, (coauthor: E. Bertino)
94. "Role Based Access Control and OWL", Proceedings of the fourth OWL: Experiences and Directions Workshop, April 2008, (coauthor: T. Finin et ).
95. Incentive and Trust Issues in Assured Information Sharing Invited Paper, CollaborateCom, 2008 (coauthors: R. Layfield, M. Kantarcioglu).
96. Data Mining for Cyber Security Applications, Proceedings TRUST 2008, Shanghai (coauthor: L/ Khan, K. Hamlen et al).
97. Trustworthy Semantic Web Technologies for Secure Knowledge Management, TPS 2008, Shanghai (coauthor: P. Parikh).
98. Secure, Highly Available, and High Performance Peer-to-Peer Storage Systems, HASE 2008 (coauthor: I. Yen et al).
99.
Enhancing Security Modeling for Web Services Using Delegation and Pass-On,
ICWS 2008 (coauthor: She, Wei; Yen, I-Ling).
100. Flow-based Identification of Botnet Traffic by Mining Multiple Log Files. Proceedings of the International Conference on Distributed Frameworks & Applications (DFMA), Penang, Malaysia, Oct 21-22, 2008. (coauthors: M. Masud et al).
101. Novel Privacy Preserving Data Mining Algorithm, HICCS 2009 (coauthor: Li Liu et al) – Nominated for best paper award..
102. Enhancing Security Modeling for Web Services Using Delegation and Pass-On, ICWS 2008, (Wei She, I-Ling Yen)
103. , HASE 2008: 383-391, (Yunqi Ye, I-Ling Yen, Liangliang Xiao).
104. W. Flow-based Identification of Botnet Traffic by Mining Multiple Log Files, In proceedings of the International Conference on Distributed Frameworks & Applications (DFMA), Penang, Malaysia, Oct. 2008, (Masud, M. M., Al-khateeb, T., Khan, L., Hamlen, K.).
105. Incentive and Trust Issues in Assured Information Sharing ,CollaborateCom, Orlando, FL, November 2008 (invited paper, Ryan Layfield and Murat Kantadcioglu).
106. Trustworthy Semantic Web and Knowledge Management, IEEE Symposium on Trust, Security and Privacy for Pervasive Applications, (TSP) December 2008.
107. Privacy Preserving Decision Tree Mining from Perturbed Data. HICSS 2009: 1-10, Nominated for best paper award (Li Liu and Murat Kantarcioglu).
108.
Enhancing Security Modeling for Web Services Using Delegation and Pass-On –
II:
ICWS 2009 (coauthor: She, Wei; Yen, I-Ling, E. Bertino).
109. Secure Social Network Analysis, IEEE ISI Conference Workshop on Social Computing, 2009 (coauthor: R. Layfield).
110. Assured Information Sharing, IE.EE ISI Conference workshop on Social Computing, 2009 (coauthor: T. Finin et al).
111. A Semantic Web Based Framework for Social Network Access Control,. SACMAT 2009: 177-186, (Barbara Carminati, Elena Ferrari, Raymond Heatherly, Murat Kantarcioglu).
Real-time Processing: Objects, Data Management and Networks
112. Implementing Distributed Application in Local Area Network, October 1987, Presented at the 12th IEEE Local Computer Network Conference, Minneapolis, MN, Proceedings, pp. 142 (coauthors: W. T. Tsai, K. W. Hwang, abstract in proceedings, paper distributed at conference).
113. MCNIU- A High Performance Local Area Network for Space Station Application, October 1987, Proceedings of the Fiber Optic Communication Local Area Network Conference, Anaheim, CA, pp. 69-73, (co-authors: P. Gonia, D. Myers and T. Chan).
114. RT-OMT: A Realtime Object Modeling Technique for Designing Realtime Database Applications: A Position Paper, Proceedings of the 2nd IEEE Realtime Systems Applications Workshop, July 1994, MD, (coauthor: A. Schafer).
115. On Realtime Extensions to the Common Object Request Broker Architecture, Proceedings of the OOPSLA 94 Conference Workshop on CORBA, Portland, OR. October 1994, (co-authors: P. Krupp, A. Schafer, V. Wolfe)
116. An Integrated Architecture for Constraint Processing in Real-time Database Management Systems, Proceedings of the 1994 High Performance Computing Symposium, Phoenix, AZ, April 1995.
117. Evolvable Systems Initiative for Real-time C3 Systems, Proceedings of the 1st IEEE Complex Systems Conference, November 1995, Florida,(coauthors: E. Bensley et al).
118. Real-time Extensions to Remote Procedure Call, Proceedings of the IEEE High Performance Computing Conference, December 1995, (coauthors: V. Wolfe et al).
119. Object-oriented Approach to Developing Real-time Infrastructure and Data Manager, Proceedings of the IEEE Workshop on Object-Oriented Real-time Systems, Laguna Beach, CA, February 1996, (coauthor: E. Bensley et al).
120. Design and Implementation of an Active Real-time Database Management System, Proceedings of the Intelligent Information Systems Management Conference, June 1996, (coauthors: G. Gengo).
121. Integrating Priority Ceiling with Semantic Locking Concurrency Control, Proceedings of the 1st Real-time Database Workshop, March 1996, (coauthor: V. Wolfe et al).
122. Evolvable Systems Initiative for Real-time C3 Systems - II, Proceedings of the 2nd IEEE Complex Systems Conference, October 1996, Montreal, (coauthors: E. Bensley et al).
123. Active Real-time Data Management for Command and Control Applications, Proceedings DARTWorkshop, CIKM Conference, MD, November 1996, (coauthor: E. Hughes et al).
124. Integration of Real-time Infrastructure, Data Manager, and Tracker, Proceedings of the IEEE Workshop on Object-Oriented Real-time Systems (WORDS), Newport Beach, CA, February 1997.
125. Real-time Object Data Management for Command and Control Applications, Proceedings VLDB 1997 (Athens, Greece; coauthor: R. Ginis, et al).
126. Adaptable Real-time Object Management, Proceedings RTDB Workshop 1997, (coauthor: R. Ginis, E. Hughes, et al).
127. Realtime CORBA at MITRE, URI, Nrad, TriPacific, Proceedings RT Middleware workshop, 1997, (coauthor: V. Wolfe et al).
128. Concurrency Control for Real-time Object Database Systems, Proceedings IEEE ISORC, Kyoto, April 1998, (coauthor: V. Wolfe, et al).
129. Component Technology for Adaptable Evolvable Command and Control Systems, Web Proceedings of the DARPA/OMG Workshop on Compos ability, January 1998, (coauthor: P. Rupp et al).
130. Adaptable Real-time Command and Control Systems, Proceedings of the IEEE ISADS Conference, March 1999, (coauthor: J. Maurer et al, Tokyo, Japan).
131. On the Design and Implementation of CORBA-based Real-time Trader Service for Command and Control Systems, Proceedings of the IEEE ISORC Conference, May 1999, (coauthor: J. Maurer et al, St Malo, France).
132. Dependable Objects for Databases, Middleware, and Methodologies, (coauthor: Dr. Marion Cerotic), Proceedings IEEE WORDS 99F, Monterey, CA.
133. Real-time Agents, Proceedings IEEE WORDS 99F, (coauthor: L. Dippier), Monterey, CA.
134. Benchmarking Distributed Real-time Objects, Proceedings IEEE ISORC 2000, (coauthor: John Maier et al), Newport Beach, CA.
135. Real-time Multimedia Object Mining, Proceedings IEEE ISORC, ISORC, 2001, (coauthor: M. Cerotic et al), Magdeburg, Germany.
136. Dependable Semantic Webs, Proceedings IEEE WORDS 2002 (keynote address published as paper, also version appeared in IEEE ICTAI 2002) San Diego, CA.
137. Dependable Sensor Information Management, Proceedings IEEE WORDS 2003F, Capri Island.
138. . ISORC 2008: 69-75 , (co-authors: Vana Kalogeraki, Dimitrios Gunopulos, Ravi S. Sandhu).
139. , EuroHaptics 2008: 295-300, (co-authors: Gregory S. Lee).
140. RT-KDD for Rapid Response, Proceedings HICCS 2009 (coauthor: J. Han et al) Nominated for best paper award.
141. RT-SOA, Proceedings COMPSAC Conference Workshop, July 2009 (co-author: I. Yen).
142. Secure Semantic Grid for Cyber Physical Systems and Applications, Proceedings DHS/CPS Workshop on Cyber Physical Systems Security, Newark, NJ, July 2009.
143. Classification and Novel Class Detection in Data Streams with Active Mining, To appear in the 14th Pacific-Asia Conference on Knowledge Discovery and Data Mining, 2010 Hyderabad, India. (coauthors: Mohammad M. Masud, Jing Gao, Latifur Khan, Jiawei Han).
Data Management and Mining/Geospatial information systems/Semantic Web
144. Design of a Distributed Data Dictionary System, June 1987, Proceedings of the National Computer Conference, Chicago, IL, pp. 583-590, (coauthors: H. Lu and K. Mikkilineni).
145. Knowledge-Based User Interface Design Issues for Heterogeneous Networks, September 1988, Proceedings of the Australian Computer Conference, Sydney, Australia.
146. Knowledge-Based Application Development Toolkit, February 1989, Proceedings of the 5th IEEE International Conference on Data Engineering, Los Angeles, CA, (coauthors: R. Bell and H. Atchan).
147. XIMKON: An Expert Simulation and Control Program, AAAI Conference Workshop on AI in Process Engineering (coauthors: F. Konar, 1988).
148. XIMKON- An Expert Simulation and Control Program, June 1989, Proceedings of the American Control Conference, Pittsburgh, PA, (coauthors: F. Konar and P. Felix; enhanced version of AAAI Workshop 1988 paper).
149. Expert Network Simulation and Control, March 1989, Proceedings of the 7th Applications of Artificial Intelligence Conference, Orlando, FL.
150. Applying OMT for Designing Medical Database Applications, September 1993, Proceedings of the OOPSLA Conference Workshop on Information Modeling, Washington D.C.
151. Extending an Object-Oriented Data Model for Representing Multimedia Database Applications, Proceedings of the OOPSLA 94 Conference Workshop on Information Modeling, Portland, OR. October 1994, (coauthor: K. Nwosu).
152. Object-Oriented Approach for the Interoperability of Persistent Database Systems, Proceedings of the OOPSLA 94 Conference Workshop on Persistence in Heterogeneous Database Systems, Portland, OR. October 1994, (coauthor: R. Nemec) .
153. Consistent Data Access in a Distributed Database Management System for Command and Control Applications, Proceedings of the High Performing Computing Symposium, April 1994. San Diego, CA ,(coauthors: D. Small, D. Goldsmith).
154. Distributed Database Technology for Mobile Computing and Communications Systems, Proceedings of the IEEE Technology Dual Use and Applications Conference, Utica, NY, May 1994.
155. Applying OMT for designing Multimedia Information Systems Applications, Proceedings of the IEEE Technology Dual Use and Applications Conference, Utica, NY, May 1994. (coauthor: K. Nwosu)
156. Distributed Multimedia Database Systems, Proceedings of the AIPASG Symposium, March 1994, (Abstract in Proceedings; coauthor: B. Lavender).
157. Object-Oriented Approach to Federated Data Management, Proceedings of the ISMM International Conference on Intelligent Information Management Systems, Washington D.C., June 1994, (coauthor: N. Idris).
158. On Dynamic Reallocation of Parallel Retrievable Objects, Proceedings of the Distributed Multimedia Systems Applications Conference, Honolulu, HI, August 1994, (coauthor: P. Bobbie).
159. Maintaining Integrity in a Distributed Heterogeneous Database System, Proceedings of the DOD Database Colloquium 94, San Diego, CA, August 1994, (coauthor: D. Goldsmith).
160. The Role of Standards in the Interoperability of Heterogeneous Database Systems, Proceedings of the DOE Office Information Technology Conference, August 1994 (coauthor: M. Zemankova) (abstract and presentation published in Proceedings).
161. Distributed Database Management for C3I Systems, Proceedings of the MILCOM 94 Conference, Ft. Monmouth, NJ, October 1994, (coauthors: A. Grasso, M. Collins; classified session).
162. Application of Object-Oriented Technology for Integrating Heterogeneous Database Systems, Proceedings of the ACM Computer Science Conference, Nashville TN, March 1995.
163. Storage Management in Multimedia Database Systems, Proceedings of the IEEE Phoenix Conference on Computers and Communications, Phoenix, AZ March 1995, (coauthor: K. Nwosu).
164. Massive Digital Data Systems Initiative, Proceedings of the AIPASG Symposium, March 1995, (coauthors: R. Kluttz, et al); an update published in AIPASG Symposium, March 1996, (coauthor: H. Curran et al).
165. Massive Data and Information Systems Initiative at MITRE, Proceedings of the AIPASG Symposium March 1995 (also versions given at MITRE conferences).
166. Applying OMT to design Medical Information Systems Applications, Proceedings of the Intelligent Information Systems Management Conference, Washington D.C. June 1995.
167. Distributed Object Management for Integrating Heterogeneous Databases, Proceedings of the 1995 DOD Database Colloquium, San Diego, CA (coauthors: M. Ceruti et al).
168. Data Mining and Visualization, A Position Paper, Databases in Visualization Workshop, Atlanta, GA, Oct. 19’96, (coauthor: G. Grinstein) Proceedings published by Springer Verlag, 1996.
169. Interactive Data Mining and its Impact on the World Wide Web, Proceedings Compugraphics and Visualization Techniques, Paris, December 1996.
170. Text Mining, AIPASG, 1997, (co-author: C. Clifton et al).
171. Text Mining and Visualization, Proceedings of the KDD Workshop on Data Mining and Visualization, Newport Beach, CA, August 1997 (also in IEEE Visualization workshop, October 1997).
172. Understanding and Applying Data Mining for C3I Applications, Proceedings IEEE COMPSAC 2000 (coauthor: M. Ceruti).
173. Data Management for Global Command and Control Systems, AFCEA Database Colloquium, 2000, (coauthor: J. Putman).
174. Data Mining for E-commerce, Proceedings SPIE, 2000, Orlando, FL, (coauthor: A. Grasso et al).
175. Neural Networks and Data Mining, AFCEA 2001, San Diego, CA, (coauthor: C. Clifton).
176. Data Management for the 21st Century, Proceedings SMC, July 2002, (coauthor: M. Ceruti).
177. Data Quality, Kluwer 2002 (based on keynote address at IFIP Integrity, November 2001, (co-author: E. Hughes).
178. Geospatial Data Qualities as Web Services Performance Metrics, Proceedings ACM GIS, November 2007, (co-author: G. Subbiah et al).
179. DAGIS: A Geospatial Semantic Web Services Discovery and Selection Framework, GeoS 2007, Mexico City, November 2007, (coauthor: G. Subbiah et al).
180. Ontology Alignment Using Multiple Contexts. International Semantic Web Conference (Posters & Demos) 2008, (coauthors: J. Partyka et al).
181. An Effective Theory Based K-Nearest Classification Algorithm, Proceedings WEB Intelligence 2008, Sydney, (coauthor: L. Khan et al).
182. Content-based Ontology Matching for GIS Datasets, ACM GIS 2008, (coauthors: J. Partyka et al).
183. A Practical Approach to Classify Evolving Data Streams with Limited Amount of Labeled Data, ICDM 2008 ,(coauthors: M. Masud et al).
184. A Multi-Partition Multi-Chunk Ensemble Technique to Classify Concept-Drifting Data Streams, PAKDD 2009, (coauthor: M. Masud et al).
185. Simulating Bioterrorism Thru Epidemiology Approximation, IEEE International Conference on Intelligence and Security Informatics 2008, (co-authors: Ryan Layfield, Murat Kantarcioglu).
186. An Effective Evidence Theory Based K-Nearest Neighbor (KNN) Classification,. Web Intelligence 2008:797-801, (co-authors: (Lei Wang, Latifur Khan).
187. Inferring Private Information Using Social Network Data, ). WWW 2009: 1145-1146, (co-authors: (Lei Wang, Latifur Khan).
188. A Relational Wrapper for RDF Reification, Third IFIP WG 11.11 International Conference on Trust Management (IFIPTM), West Lafayette, USA, June 15-19, 2009, (co-authors: Sunitha Ramanujam, Anubha Gupta, Latifur Khan, and Steven Seida).
189.
“Relationalizing RDF Stores for Tools Reusability” ACM
18th International World Wide Web Conference (WWW 2009—Poster Session),
Madrid, Spain, April 2009 (co-authors: Sunitha Ramanujam, Anubha
Gupta, Latifur Khan, and Steven Seida).
190. On the Mitigation of Bioterrorism through Game Theory Infection Model, ISI 2009., (co-authors: Ryan Layfield and Murat Kantarcioglu).
191. Social Network Classification Incorporating Link Type, ISI 2009 (co-authors: Raymond Heatherly and Murat Kantarcioglu). ).,
192. Temporal Geosocial Semantic Web for Military Stabilization and Reconstruction Operations, Proceedings SIGKDD Conference Workshop on Intelligence and Security Informatics, 2009.
193. A Multi-partition Multi-chunk Ensemble Technique to Classify Concept-Drifting Data Streams. PAKDD 2009: 363-375, (co-authors: Mohammad M. Masud, Jing Gao, Latifur Khan, and Jiawei Han).:
194. R2D: Extracting Relational Structure from RDF Stores, Web Intelligence, September 2009, (co-authors: Sunitha Ramanujam, Anubha Gupta, Latifur Khan, and Steven Seida).
195. Integrating Novel Class Detection with Classification for Concept-Drifting Data Streams, PKDD, September 2009 (co-authors: L. Khan, M. Masud, J. Han et al).
196. 'Semantic Schema Matching Without Shared Instances', Proceedings IEEE Semantic Computing Conference, 2009 (short paper – coauthor: L. Khan et al)).
197. 'R2D: A Bridge between the Semantic Web and Relational Visualization Tools' Proceedings IEEE Semantic Computing Conference, 2009 (long – regular – paper, coauthor: L. Khan et al).
198. 'Semantic Web for Content Based Video Retrieval' Proceedings IEEE Semantic Computing Conference, 2009 (short paper – coauthor: B. Prabhakaran et al).
199. Geographically-typed Semantic Schema Matching. GIS 2009: 456-459 (coauthors: Jeffrey Partyka, Latifur Khan).
200. Storage and Retrieval of Large RDF Graph Using Hadoop and MapReduce. CloudCom 2009: 680-686, (co-authors: Mohammad Farhan Husain, Pankil Doshi, and Latifur Khan).
III. BOOKS AUTHORED
Series 1: Data Management, Data Mining, Data Security for Technical Managers
1. Data Management Systems Evolution and Interoperation, CRC Press, May 1997.
2. Data Mining, Technologies, Techniques Tools and Trends, CRC Press December 1998
3. Web Data Management and Electronic Commerce, CRC Press,June 2000
4. Managing and Mining Multimedia Databases, CRC Press, June 2001
5. XML, Databases and Semantic Web, CRC Press, March 2002
6. Web Data Mining and Counter-terrorism, CRC Press, June 2003
7. Database and Applications Security: Integrating Data Management and Information Security, CRC Press/Auerbach, June 2005.
8. Building Trustworthy Semantic Webs, CRC Press/Auerbach, 2007
9. Secure Service Oriented Architectures, CRC Press (contract signed) expected publication 2010 June
Series 2: Research from PhD/MS Thesis of Students
10. Design and Implementation of Tools for Data Mining Applications, CRC Press, June 2009
(co-authors: L. Khan, M. Awad, L. Wang).
11. Data Mining Tools for Malware Detection, CRC Press, June 2011 (contract to be signed) (co-authors: L. Khan, M. Masud).
IV. BOOK CHAPTERS (not including reprints from conference proceedings)
1. Expert System to Design Control Systems, May 1990, Artificial Intelligence in Process Engineering, Academic Press, ed: M. Mavronopoulos (co-authors: F. Konar and P. Felix).
2. Distributed Database Management Systems: Developments and Challenges, Local Area Network Handbook 1993 (Auerbach Publishers, invited paper, ed: J. Sloane and A. Drinan).
3. Object-Oriented Approach to the Interoperability of Heterogeneous Database Management Systems, Local Area Network Handbook, 1994 (Aurebach Publishers, invited paper, ed: J. Sloane).
4. Distributed Object Management System Approach to Integrating Heterogeneous Database Systems, Local Area Network Handbook, 1995 (Auerbach Publishers, invited paper, ed: R. Maybry).
5. Internet Database Management, Database Management, 1996 (Auerbach Publishers, ed: R. Mabry).
6. Secure database management, Handbook of Database Management, McGraw Hill 1996 (Ed: P. Fortier, coauthor: S. Son et al).
7. Multimedia database management, Handbook of Database Management, McGraw Hill, 1996 (Ed: P. Fortier, co-author: S. Dao).
8. Secure Database Systems, Advances on Data Management, 2000 (Editor: O. Diaz and M. Piattini; co-author: E. Ferrari - Artech House).
9. KM for Heterogeneous information exchange, Kluwer Book (co-author: A Gupta et al), 2002.
10. Managing Cyber Threats: Issues and Challenges, Kluwer (editor: V. Kumar et al), 2004.
11. Data Mining for Counter-terrorism, AAAI Press (editor: H. Kargupta et al), 2004 (MGDM Conference, 2002).
13. Secure Semantic Grids, Web and Information Systems Security, co-author: L. Khan (editors: E. Ferrari et al) Idea Group.
14. Assured Information Sharing Across Organization Boundaries, Data Mining for Counter-terrorism, Springer, 2006 (editor: H. Chen).
15.
Secure
Semantic Web Services,
Springer, (editor: M. Gertz), 2008
16. Assured Information Sharing: Technologies, Challenges and Directions, Intelligence and Security Informatics 2008: 1-15.
17. Security for Web Services, Advanced in database Security (Editor: S. Jajodia and M Gertz)
18. Policy Management for the Semantic Web, Cyber Security, Elsevier (Editor: Shambhu Upadhyaya)
19. Security and Privacy for Social Networks, Springer, co-authors: B. Carminati et al (Editor: E. Ferrari)
V. TECHNICAL ARTICLES (not including panel presentation papers in proceedings)
1. Decision Problems for System Functions, March 1980, Recursive Function Theory Letters.
2. Recent Developments in Database Security, September 1989, Tutorial Proceedings of the IEEE COMPSAC Conference, Orlando, FL.
3. An Object-Oriented Approach for Designing Secure Systems, Fall 1989, IEEE CIPHER (co-author: F.Chase).
4. Computing Transitive Closures of Multilevel Relations, September 1990, ACM SIGMOD Record, Vol. 19, No. 3.
5. Inference Problem in Database Security, IEEE CIPHER, Winter 1991.
6. Recursion Theoretic Properties of the Inference Problem, IEEE CIPHER, Winter 1991.
7. A Note on the Recursive Enumerability of the Inference Problem in Multilevel Secure Database Management Systems, Recursive Function Theory Letters, 1992
8. Developments in Trusted Database Management Systems, ACM SIGMOD Record, Vol. 21, #3, September 1992.
9. A Survey of Concurrency Control in Trusted Database Management Systems, ACM SIGMOD Record, December 1993 (coauthor: H. Ko).
10. Engineering Real-time Complex Systems, IEEE Complex Systems, 1994/1995, (coauthors: P. Krupp, A. Kanevsky).
11. Data Management Research at the MITRE Corporation, ACM SIGMOD Record, September 1995 (coauthors: Rosenthal, et al).
12. Real-time systems and security, ACM SIGMOD Record. 1996 (coauthor: S. Son et al).
13. Data Mining, National Security, Privacy and Civil Liberties, ACM SIGKDD, December 2002.
14. Semantic Web, Essays in the Encyclopedia of Human Interaction, Berkshire Publishers, Editor: W. Bainbridge, 2004.
15. Security, Essays in the Encyclopedia of Human Interaction, Berkshire Publishers, Editor: W. Bainbridge, 2004.
16. Link Analysis for National Security, Essays in the Encyclopedia of Data Mining, Editor: J. Wang, 2004.
17. Security and Privacy for Geospatial Data Management, Encyclopedia of Geospatial Data Management, Springer, 2007 (co-authors: L. Khan et al).
18. Multimedia Data Management, Mining and Animation, Proceedings Wiley Encyclopedia, 2007 (co-authors: B. Prabhakaran, L. Khan).
19. Multilevel Secure Data Management, Encyclopedia on Database Security, Editor: E. Ferrari, 2007.
20. Mandatory Security, Encyclopedia of Information Security, Editor: E. Ferrari.
20. Privacy and Security Challenges in GIS, Encyclopedia of GIS 2008: 898-902 (co-authors Latifur Khan, Ganesh Subbiah, Ashraful Alam, Murat Kantarcioglu).
21. Geospatial Semantic Web, Definition. Encyclopedia of GIS 2008: 398 (co-authors: Latifur Khan, Ganesh Subbiah, Ashraful Alam, Murat Kantarcioglu).
22. Data Mining for Security Applications and Its Privacy Implications, Lecture Notes in Computer Science, Springer Verlag, (Based on keynote address at SIGKDD workshop 2008).
VI. MITRE JOURNALS
1. Multilevel Secure Object-Oriented Data Model - Issues on Noncomposite Objects, Composite Objects, The MITRE Journal, 1992 (Version of Journal of Object-Oriented Programming paper, 1991).
2. Object-Oriented Approach to PACS Applications, MITRE Information Systems Engineering Journal, Fall 1993.
3. Design and Implementation of a Database Inference Controller, the MITRE Journal, 1994, (coauthors: W. Ford, M. Collins, J. O'Keeffe; version of Data and Knowledge Engineering Paper, 1993).
I. JOURNAL SPECIAL ISSUES EDITED
1.Special issue in Security and Standards, Computer Standards and Interface Journal, 1995 (co-editor: J. Williams, editorial Introduction).
2.Special issue in Secure Database Systems Technology, IEEE Transactions on Knowledge and Data Engineering, February 1996 (co-editor: T. Ting, editorial introduction).
3. Special issue in Multimedia Database Management, Multimedia Tools and Applications Journal, 1997, (co-editors: K. Nwosu, B. Berra – also version published as book by Kluwer).
4. Special issue in Multimedia databases, IEEE Multimedia (co-editors: Nwosu, Berra, editorial introduction).
5. Special Issue in Data and Applications Security, Data and Knowledge Engineering Journal, November 2002 (co-editor: R. van der Riet).
6. Special Issue in Data and Applications Security, Journal of Computer Security, 2003 (co-editor R. van der Riet).
7. Special Issue in Data and Applications Security, Journal of Intelligent Information Systems, 2004 .
8. Privacy preserving Data Management, VLDB Journal, September 2006 (co-editor: E. Ferrari).
9. Data and Applications Security, International Journal of Information Security (co-editor: E. Ferrari).
10. Editorial for Computer Standards and Interface Journal as Editor in Chief, November 2006.
11. Foreword for book on Security Standards for Web Services (Editors: Eduardo Fernandez-Medina).
II. BOOKS EDITED
1. Database Security VI: Status and Prospects, 1993, Book by North Holland (Co-Editor: C. Landwehr). (Enhanced version of Proceedings of 6th IFIP 11.3 Working Conference in Database Security, 1992).
2. Security for Object-Oriented Systems, Book by Springer Verlag, 1994 (Co-Editor: R. Sandhu, T.C. Ting, Enhanced version of ACM OOPSLA Workshop Proceedings on Secure Object Systems).
3. Multimedia Database Management Systems, Kluwer Publications, 1996 (co-editors: B. Berra, K. Nwosu).
4. Data Management Handbook Supplement, Auerbach Publications, 1996 (Guest Editor).
5. Directions in Multimedia Database Management, Kluwer, 1997 (co-editors: B. Berra, K. Nwosu).
6. Data Management Handbook, 1998 (Consulting editor).
7. Knowledge Management, MIT Press, coeditor, 2001 (M. Maybury et al).
8. Data and Applications Security, Kluwer 2001 (co-editors: R. van der Riet et al; enhanced version of Proceedings of IFIP Database Security Conference, 2000).
9. Heterogeneous Information Exchange, Kluwer 2002 (H. Bestegoff et al Coeditor, Editorial Introduction), 2002.
10. Web Information Management Security, coeditor: E. Ferrari, Artech House, 2005.
11. System Integrity and Control, co-editor S. Wang et al, Springer, 2006.
III CONFERENCE AND WORKSHOP PROCEEDINGS EDITED
1. Proceedings of the 3rd RADC Database Security Workshop, Published as MITRE Technical Report, MTP 385, May 1991.
2. Proceedings of the 6th IFIP 11.3 Working Conference in Database Security, August 1992.
3. Proceedings of the OOPSLA-93 Conference Workshop on Integrating Object-oriented technology and Security Technology, September 1993 (co-editors: R. Sandhu and T.C. Ting).
4. Proceedings of the Massive Digital Data Systems Workshop, March 1994, (co-authors: B. Lavender et al; published by the Community Management Staff, Intelligence Community).
5. Proceedings of the OOPSLA 94, 95, and 96 Conference Workshop on Object-Oriented Technology for Medical Information Systems, October 1994, 95, 96 (co-editor: M. Ibrahim et al).
6. Proceedings of the ACM Multimedia Conference Workshop on Multimedia Database Management Systems, October 1994, Nov. 95 (co-editors: B. Berra, K. Nwosu).
7. Proceedings WORDS 1999 by IEEE CS Press, August 199