Further Adventures in Evidence-Based Security

• February 15, 2018
• Geoff Voelker | University of California at San Diego

Over the last decade, our group has undertaken an “evidence-based” approach to measure, analyze, and undermine various kinds of abuse and cybercrime on the Internet. In this talk, I will describe our evidence-based approach and present work on two recent projects. The first is a technique for inferring site compromise from a third-party perspective using honey accounts, and a measurement study that detected 19 site compromises over a year (including an Alexa top-500 site) and our experiences disclosing our findings to these sites. The second is a measurement study exploring the impact of ICANN’s New gTLD Program on the domain name ecosystem, classifying the intent of registrations in new TLDs (including speculative and defensive registrations) and impact on old TLDs. I will end briefly summarizing where our group is headed going forward.

This work reflects a long-standing collaborative effort between UCSD and ICSI/Berkeley, with more information available at: http://www.evidencebasedsecurity.org (opens in new tab)

Speaker Details

Geoffrey M. Voelker is a professor at the University of California at San Diego. His research interests include operating systems, distributed systems, computer networks, and security. He received a B.S. degree in Electrical Engineering and Computer Science from the University of California at Berkeley in 1992, and the M.S. and Ph.D. degrees in Computer Science and Engineering from the University of Washington in 1995 and 2000, respectively.