Karthick’s Research

 

You might want to know...

Research Interests


  1. 1.System security

  2. 2.Web security

  3. 3.Security policy analysis

Publications


  1. 1.Karthick Jayaraman, Vijay Ganesh, Mahesh Tripunitara, Martin Rinard, and Steve Chapin,
    Automatic Error Finding for Access Control Policies,
    In Proceedings of 18th ACM Conference on Computer and Communications Security (CCS) 2011,
    Chicago, IL USA, OCT 17-27, 2011.

  2. 2.Wenliang Du, Karthick Jayaraman, Xi Tan, Tongbo Luo, and Steve Chapin,
    Position Paper: Why Are There So Many Vulnerabilities in Web Applications?,
    In Proceedings of the New Security Paradigms Workshop (NSPW’11),
    Marin County, CA, USA. September 12-15, 2011.

  3. 3.Wenliang Du, Xi Tan, Tongbo Luo, Karthick Jayaraman, and Zutao Zhu,
    Re-designing the Web’s Access Control System (Invited Talk),
    In Proceedings of the 25th Annual WG 11.3 Conference on Data and Applications Security and Privacy (DBSec’11),
    Richmond, Virginia USA. July 11-13, 2011.

  4. 4.Glenn Benson, Sean Croston, Shiu-Kai Chin, Karthick Jayaraman, and Susan Older,
    Interoperable Credentials for High Value Transactions,
    In Proceedings of 5th International Conference on Mathematical Methods, Models, and Architectures for Computer Networks Security (MMM-ACNS) 2010,
    St. Petersburg, Russia, Sep 2010.

  5. 5.Karthick Jayaraman, Wenliang Du, Balamurugan Rajagopalan, and SteveChapin,
    ESCUDO: A Fine-Grained Protection Model for Web Browsers,
    In Proceedings of 30th International Conference on Distributed Computing Systems (ICDCS 2010), Genoa, Italy, June 21-25, 2010.

  6. 6.Wenliang Du, Karthick Jayaraman, and Noreen B. Gaubatz,
    Enhancing Security Education with Hands-on Laboratory Exercises,
    In Proceedings of the 5th Annual Symposium on Information Assurance (ASIA ’10),
    Albany, New York June 16-17, 2010, Best Paper Award.

  7. 7.Karthick Jayaraman, Gregg Lewandowski, Paul Talaga, and Steve Chapin,
    Enforcing Request Integrity in Web Applications,
    In 24th Annual IFIP WG 11.3 Working Conference on Data and Applications Security (DBSec 2010), Rome, Italy, June 21-23, 2010.

  8. 8.Karthick Jayaraman, Gregg Lewandowski, Paul Talaga, Steve Chapin, and Munawar Hafiz, Modeling User Interactions for Fun (and Profit): Preventing Web Request Forgery Attacks in Web Applications, In Proceedings of 16th Conference on Pattern Languages of Programs 2009, Chicago, Illinois, USA, August 28 - 30, 2009.

  9. 9. Karthick Jayaraman, David Harvison, Vijay Ganesh, Adam Kiezun,
    jFuzz: a concolic whitebox fuzzer for Java,
    In NASA Formal Methods Symposium (NFM) 2009,
    Moffett Field, California, USA, April 6-8, 2009.

  10. 10. Adam Kiezun, Philip J. Guo, Karthick Jayaraman, Michael D. Ernst,
    Automatic Creation of SQL Injection and Cross-site Scripting Attacks,
    In Proceedings of IEEE International Conference on Software Engineering (ICSE) 2009, (Vancouver, Canada), May 16-24, 2009.