Vinod Ganapathy: Research Papers

This page contains links to most of my major publications. Other sources listing my publications include:
C S S L Computer Systems Security Laboratory
For presentation slides, see the Web pages of the corresponding papers. Slides for extended presentations of my work are available from this Web page. A list of technical reports on which I am co-author is available here.

Topics ― SEC: Security; SWE: Software Engineering & Analysis; MOB: Mobile Systems; CLD: Cloud Computing; WEB: Web Platforms; SYS: Computer Systems & Architecture;
Conference Papers
icdcs'17
SEC SYS CLD
EnGarde: Mutually-Trusted Inspection of SGX Enclaves
Hai Nguyen and Vinod Ganapathy,
Proceedings of ICDCS'17, the 37th International Conference on Distributed Computing Systems
Atlanta, Georgia, USA, June 2017.
MobiSys'16
SEC MOB
Regulating ARM TrustZone Devices in Restricted Spaces
Ferdinand Brasser, Daeyoung Kim, Christopher Liebchen, Vinod Ganapathy, Liviu Iftode, and Ahmad-Reza Sadeghi,
Proceedings of MobiSys'16, the 14th ACM International Conference on Mobile Systems, Applications, and Services
Singapore, June 2016.
ase'15
SWE MOB
Testing Cross-Platform Mobile App Development Frameworks
Nader Boushehrinejadmoradi, Vinod Ganapathy, Santosh Nagarakatte, and Liviu Iftode,
Proceedings of ASE'15, the 30th IEEE/ACM International Conference on Automated Software Engineering
Lincoln, Nebraska, USA, November 2015.
socc'14
SEC CLD
On the Control Plane of a Self-service Cloud Platform
Shakeel Butt, Vinod Ganapathy, and Abhinav Srivastava,
Proceedings of SOCC'14, the 5th ACM Symposium on Cloud Computing
Seattle, Washington, USA, November 2014.
fse'14
SEC SWE WEB
Efficient Runtime Enforcement Techniques for Policy Weaving
Richard Joiner, Thomas Reps, Somesh Jha, Mohan Dhawan, and Vinod Ganapathy,
Proceedings of FSE'14, the 22nd ACM SIGSOFT International Symposium on the Foundations of Software Engineering
Hong Kong, November 2014, The results in the paper were certified by the FSE'14 artifact evaluation committee.
ecoop'14
SEC SWE WEB
Retargetting Legacy Browser Extensions to Modern Extension Frameworks
Rezwana Karim, Mohan Dhawan, and Vinod Ganapathy,
Proceedings of ECOOP'14, the 28th European Conference on Object-Oriented Programming
Uppasala, Sweden, July/August 2014.
icse'13
SWE MOB
Inferring Likely Mappings Between APIs
Amruta Gokhale, Vinod Ganapathy, and Yogesh Padmanaban,
Proceedings of ICSE'13, the 35th ACM/IEEE International Conference on Software Engineering
San Francisco, California, USA, May 2013.
ccs'12a
SEC CLD
Self-service Cloud Computing
Shakeel Butt, H. Andrés Lagar-Cavilla, Abhinav Srivastava, and Vinod Ganapathy,
Proceedings of CCS'12, the 19th ACM Conference on Computer and Communications Security
Raleigh, North Carolina, USA, October 2012.
ccs'12b
SEC SWE
Leveraging “Choice” to Automate Authorization Hook Placement
Divya Muthukumaran, Trent Jaeger, and Vinod Ganapathy,
Proceedings of CCS'12, the 19th ACM Conference on Computer and Communications Security
Raleigh, North Carolina, USA, October 2012.
ancs'12
SEC
Fast Submatch Extraction using OBDDs
Liu Yang, Pratyusa Manadhata, William G. Horne, Prasad Rao, and Vinod Ganapathy,
Proceedings of ANCS'12, the 8th ACM/IEEE Symposium on Architectures for Networking and Communications Systems
Austin, Texas, USA, October 2012.
ecoop'12a
SEC SWE WEB
An Analysis of the Mozilla Jetpack Extension Framework
Rezwana Karim, Mohan Dhawan, Vinod Ganapathy, and Chung-chieh Shan,
Proceedings of ECOOP'12, the 26th European Conference on Object-Oriented Programming
Beijing, China, June 2012.
ecoop'12b
SEC WEB
Enhancing JavaScript with Transactions
Mohan Dhawan, Chung-chieh Shan, and Vinod Ganapathy,
Proceedings of ECOOP'12, the 26th European Conference on Object-Oriented Programming
Beijing, China, June 2012.
rv'11
SEC SYS
Monitoring Data Structures using Hardware Transactional Memory
Shakeel Butt, Vinod Ganapathy, Arati Baliga, and Mihai Christodorescu,
Proceedings of RV'11, the 2nd International Conference on Runtime Verification
San Francisco, California, USA, September 2011.
MobiSys'11
SEC MOB
Security versus Energy Tradeoffs in Host-based Mobile Malware Detection
Jeffrey Bickford, H. Andrés Lagar-Cavilla, Alexander Varshavsky, Vinod Ganapathy, and Liviu Iftode,
Proceedings of MobiSys'11, the 9th ACM International Symposium on Mobile Systems, Applications, and Services
Bethesda, Maryland, USA, June/July 2011.
raid'10
SEC
Improving NFA-based Signature Matching using Ordered Binary Decision Diagrams
Liu Yang, Rezwana Karim, Vinod Ganapathy, and Randy Smith,
Proceedings of RAID'10, the 13th International Symposium on Recent Advances in Intrusion Detection
Ottawa, Canada, September 2010, Journal version appears as [ComNet'11].
acsac'09a
SEC WEB
Analyzing Information Flow in JavaScript-based Browser Extensions
Mohan Dhawan, and Vinod Ganapathy,
Proceedings of ACSAC'09, the 25th Annual Computer Security Applications Conference
Honolulu, Hawaii, USA, December 2009, Outstanding Student Paper Award.
acsac'09b
SEC SYS
Protecting Commodity Operating System Kernels from Vulnerable Device Drivers
Shakeel Butt, Vinod Ganapathy, Michael M. Swift, and Chih-Cheng Chang,
Proceedings of ACSAC'09, the 25th Annual Computer Security Applications Conference
Honolulu, Hawaii, USA, December 2009.
UbiComp'09
SEC MOB
Privately Querying Location-based Services with SybilQuery
Pravin Shankar, Vinod Ganapathy, and Liviu Iftode,
Proceedings of UbiComp'09, the 11th International Conference on Ubiquitous Computing
Orlando, Florida, USA, September/October 2009.
sacmat'09
SEC MOB
Working Set-Based Access Control for Network File Systems
Stephen Smaldone, Vinod Ganapathy, and Liviu Iftode,
Proceedings of SACMAT'09, the 14th ACM Symposium on Access Control Models and Technologies
Stresa, Italy, June 2009.
acsac'08a
SEC SWE SYS
Automatic Inference and Enforcement of Kernel Data Structure Invariants
Arati Baliga, Vinod Ganapathy, and Liviu Iftode,
Proceedings of ACSAC'08, the 24th Annual Computer Security Applications Conference
Anaheim, California, USA, December 2008, Outstanding Student Paper Award. Journal version appears as [tdsc'11].
acsac'08b
SEC WEB
OMOS: A Framework for Secure Communication in Mashup Applications
Saman Zarandioon, Danfeng Yao, and Vinod Ganapathy,
Proceedings of ACSAC'08, the 24th Annual Computer Security Applications Conference
Anaheim, California, USA, December 2008.
ccs'08
SEC SYS
Enforcing Authorization Policies using Transactional Memory Introspection
Arnar Birgisson, Mohan Dhawan, Úlfar Erlingsson, Vinod Ganapathy, and Liviu Iftode,
Proceedings of CCS'08, the 15th ACM Conference on Computer and Communications Security
Alexandria, Virginia, USA, October 2008.
asplos'08
SWE SYS
The Design and Implementation of Microdrivers
Vinod Ganapathy, Matthew J. Renzelmann, Arini Balakrishnan, Michael M. Swift, and Somesh Jha,
Proceedings of ASPLOS'08, the Thirteenth International Conference on Architectural Support for Programming Languages and Operating Systems
Seattle, Washington, USA, March 2008.
icse'07
SEC SWE
Mining Security-Sensitive Operations in Legacy Code using Concept Analysis
Vinod Ganapathy, David King, Trent Jaeger, and Somesh Jha,
Proceedings of ICSE'07, the 29th ACM/IEEE International Conference on Software Engineering
Minneapolis, Minnesota, USA, May 2007.
acsac'06
SEC
NetSpy: Automatic Generation of Spyware Signatures for NIDS
Hao Wang, Somesh Jha, and Vinod Ganapathy,
Proceedings of ACSAC'06, the 22nd Annual Computer Security Applications Conference
Miami Beach, Florida, USA, December 2006.
asplos'06
SWE
HeapMD: Identifying Heap-based Bugs using Anomaly Detection
Trishul M. Chilimbi, and Vinod Ganapathy,
Proceedings of ASPLOS'06, the Twelfth International Conference on Architectural Support for Programming Languages and Operating Systems
San Jose, California, USA, October 2006.
Oakland'06
SEC SWE
Retrofitting Legacy Code for Authorization Policy Enforcement
Vinod Ganapathy, Trent Jaeger, and Somesh Jha,
Proceedings of IEEE S&P'06, the 2006 IEEE Symposium on Security and Privacy
Berkeley/Oakland, California, USA, May 2006.
ccs'05a
SEC SWE
Automatic Placement of Authorization Hooks in the Linux Security Modules Framework
Vinod Ganapathy, Trent Jaeger, and Somesh Jha,
Proceedings of CCS'05, the 12th ACM Conference on Computer and Communications Security
Alexandria, Virginia, USA, November 2005.
ccs'05b
SEC
An Auctioning Reputation System Based on Anomaly Detection
Shai Rubin, Mihai Christodorescu, Vinod Ganapathy, Jonathon T. Giffin, Louis Kruger, Hao Wang, and Nicholas Kidd,
Proceedings of CCS'05, the 12th ACM Conference on Computer and Communications Security
Alexandria, Virginia, USA, November 2005.
icse'05
SEC SWE
Automatic Discovery of API-Level Exploits
Vinod Ganapathy, Sanjit A. Seshia, Somesh Jha, Thomas W. Reps, and Randal E. Bryant,
Proceedings of ICSE'05, the 27th ACM/IEEE International Conference on Software Engineering
St. Louis, Missouri, USA, May 2005.
ccs'03
SEC SWE
Buffer Overrun Detection using Linear Programming and Static Analysis
Vinod Ganapathy, Somesh Jha, David Chandler, David Melski, and David Vitek,
Proceedings of CCS'03, the 10th ACM Conference on Computer and Communications Security
Washington, DC, USA, October 2003.
Journal Articles
jase'16
SEC SWE MOB
Detecting Plagiarized Mobile Apps using API Birthmarks
Daeyoung Kim, Amruta Gokhale, Vinod Ganapathy, and Abhinav Srivastava,
Automated Software Engineering (Springer), Volume 23, Issue 4, December 2016.
c&s'16
SEC CLD
Exploring Infrastructure Support for App-based Services on Cloud Platforms
Hai Nguyen, Vinod Ganapathy, Abhinav Srivastava, and Shivaramakrishnan Vaidyanathan,
Computers and Security (Elsevier), Volume 62, September 2016, pages 177-192.
tifs'13
SEC SYS
Monitoring Integrity using Limited Local Memory
Yuki Kinebuchi, Shakeel Butt, Vinod Ganapathy, Liviu Iftode, and Tatsuo Nakajima,
IEEE Transactions on Information Forensics and Security, 8(7), July 2013, pages 1230-1242.
ComNet'11
SEC
Fast, Memory-efficient Regular Expression Matching with NFA-OBDDs
Liu Yang, Rezwana Karim, Vinod Ganapathy, and Randy Smith,
Computer Networks (Elsevier), 55(15), October 2011, pages 3376-3393, Extends [raid'10].
tdsc'11
SEC SWE SYS
Detecting Kernel-Level Rootkits using Data Structure Invariants
Arati Baliga, Vinod Ganapathy, and Liviu Iftode,
IEEE Transactions on Dependable and Secure Computing, 8(5), September/October 2011, pages 670-684, Extends [acsac'08a].
Selected Workshop Papers
ccsw'12
SEC CLD
Towards a Richer Model of Cloud App Markets
Abhinav Srivastava, and Vinod Ganapathy,
Proceedings of CCSW'12, the 4th ACM Cloud Computing Security Workshop
Raleigh, North Carolina, USA, October 2012.
spsm'12
SEC MOB
Short Paper: Enhancing Users' Comprehension of Android Permissions
Liu Yang, Nader Boushehrinejadmoradi, Pallab Roy, Vinod Ganapathy, and Liviu Iftode,
Proceedings of SPSM'12, the 2nd ACM CCS Workshop on Security and Privacy in Mobile Devices
Raleigh, North Carolina, USA, October 2012.
plas'10
SEC WEB
Position Paper: The Case for JavaScript Transactions
Mohan Dhawan, Chung-chieh Shan, and Vinod Ganapathy,
Proceedings of PLAS'10, the ACM SIGPLAN 5th Workshop on Programming Languages and Analysis for Security
Toronto, Canada, June 2010.
HotMobile'10
SEC MOB
Rootkits on Smart Phones: Attacks, Implications and Opportunities
Jeffrey Bickford, Ryan O'Hare, Arati Baliga, Vinod Ganapathy, and Liviu Iftode,
Proceedings of HotMobile'10, the 11th International Workshop on Mobile Computing Systems and Applications
Annapolis, Maryland, USA, February 2010.
w2sp'09
SEC WEB
Evaluating Attack Amplification in Online Social Networks
Blase E. Ur, and Vinod Ganapathy,
W2SP'09, the Web 2.0 Security and Privacy Workshop
Oakland, California, USA, May 2009.
HotOS'07
SWE SYS
Microdrivers: A New Architecture for Device Drivers
Vinod Ganapathy, Arini Balakrishnan, Michael M. Swift, and Somesh Jha,
Proceedings of HotOS'07, the 11th Workshop on Hot Topics in Operating Systems
San Diego, California, USA, May 2007.
entcs'02
SWE
Slicing Synchronous Reactive Programs
Vinod Ganapathy, and S. Ramesh,
Proceedings of the 1st Workshop on Synchronous Languages, Applications and Programming
Grenoble, France, July 2002.
Theses
PhD'07
SEC SWE
Retrofitting Legacy Code for Authorization Policy Enforcement
Vinod Ganapathy,
Ph.D. dissertation, University of Wisconsin-Madison, Madison, Wisconsin, USA, August 2007, ISBN: 978-0-549-19468-2. Supervised by Professor Somesh Jha. The dissertation is essentially a concatenation of three conference papers: ccs'05a, Oakland'06 and icse'07.
BTech'01
SWE
Efficient Verification of Synchronous Programs
Vinod Ganapathy,
B.Tech. Project Report (Undergraduate thesis), Indian Institute of Technology Bombay, Powai, Mumbai, May 2001, Supervised by Professor S. Ramesh.
Patents Issued
US-9542216 Richer Model of Cloud App Markets
Abhinav Srivastava and Vinod Ganapathy,
US Patent Number 9,542,216, issued on January 10, 2017.
US-8566935 Balancing Malware Rootkit Detection with Power Consumption on Mobile Devices
Horacio Andres Lagar-Cavilla, Jeffrey Bickford, Vinod Ganapathy, Liviu Iftode, and Alexander Varshavsky,
US Patent Number 8,566,935, issued on October 22, 2013.
US-7770153 Heap-Based Bug Identification using Anomaly Detection
Trishul M. Chilimbi and Vinod Ganapathy,
US Patent Number 7,770,153, issued on August 3, 2010.

Funding Acknowledgments. My research has been funded by a number of grants from the National Science Foundation, the US Army Research Office and US Army CERDEC, the US Air Force Office of Scientific Research, research gifts from NEC Research Laboratories America, Microsoft Research India, (the late) Sun Microsystems, and a number of internal sources at Rutgers. Their support is gratefully acknowledged.


Back to my home page