—outstanding paper
award (see also, publications by type)
Programming Language / Mobile Code Safety and Security
David W. Price, Algis Rudys, and Dan S. Wallach, Garbage Collector Memory Accounting in Language-Based Systems, 2003 IEEE Symposium on Security and Privacy (Oakland, California), May 2003.
Y. Charlie Hu, Weimin Yu, Alan Cox, Dan S. Wallach, and Willy Zwaenepoel, Runtime Support for Distributed Sharing in Safe Languages. ACM Transactions on Computer Systems, volume 21, number 1, pp. 1-35, February 2003.
Algis Rudys and Dan S. Wallach, Enforcing Java Run-Time Properties Using Bytecode Rewriting, International Symposium on Software Security (Tokyo, Japan), November 2002.
Algis Rudys and Dan S. Wallach, Transactional Rollback for Language-Based Systems, The 2002 International Conference on Dependable Systems and Networks (DSN-2002) (Washington, D.C.), June 2002.
Algis Rudys and Dan S. Wallach, Termination in Language-based Systems, ACM Transactions on Information and System Security, volume 5, number 2, May 2002.
Algis Rudys, John Clements, and Dan S. Wallach, Termination in Language-based Systems, Network and Distributed Systems Security Symposium (San Diego, California), February 2001.
Dan S. Wallach, Edward W. Felten, and Andrew W. Appel, The Security Architecture Formerly Known as Stack Inspection: A Security Mechanism for Language-based Systems, ACM Transactions on Software Engineering and Methodology, volume 9, number 4, October 2000.
Gary McGraw, et al., Attacking Malicious Code: A Report from the Infosec Research Council (San Antonio, Texas), April, 2000. Report published in IEEE Software 17(5), pp. 33-40.
Y. Charie Hu, Weimin Yu, Alan L. Cox, Dan S. Wallach, and Willy Zwaenepoel, Runtime Support for Distributed Sharing in Typed Languages, Proceedings of LCR2000: the Fifth Workshop on Languages, Compilers, and Run-time Systems for Scalable Computers (Rochester, New York), May 2000.
Dan S. Wallach, A New Approach to Mobile Code Security, PhD Dissertation, Princeton University, January 1999.
Dan S. Wallach and Edward W. Felten, Understanding Java Stack Inspection, 1998 IEEE Symposium on Security and Privacy (Oakland, California), May 1998, pp. 52-63.
Dan S. Wallach, Dirk Balfanz, Drew Dean, and Edward W.
Felten, Extensible
Security Architectures for Java, 16th Symposium on Operating Systems
Principles (Saint-Malo, France), October 1997, pp. 116-128.
—outstanding paper
award
Drew Dean, Edward W. Felten, Dan S. Wallach, and Dirk Balfanz, Java Security: Web Browsers and Beyond, Internet Beseiged: Countering Cyberspace Scofflaws, D. E. Denning and P. J. Denning, Eds. ACM Press, New York, Oct. 1997, pp. 241-269.
Dan S. Wallach, Jim A. Roskind, and Edward W. Felten, Flexible, Extensible Java Security Using Digital Signatures, Network Threats (New Brunswick, New Jersey), December 1996, R. N. Wright and P. G. Neumann, Eds., vol. 38 of DIMACS Series in Discrete Mathematics and Theoretical Computer Science, American Mathematical Society, pp. 59-74.
Drew Dean, Edward W. Felten, and Dan S. Wallach, Java Security: From HotJava to Netscape and Beyond, 1996 IEEE Symposium on Security and Privacy (Oakland, California), May 1996, pp. 190-200.
Distributed, Web, and Peer-to-Peer Systems Security
Scott A. Crosby, Rudolf H. Riedi, and Dan S. Wallach, Opportunities and Limits of Remote Timing Attacks, ACM Transactions on Information and Systems Security (TISSEC), to appear.
Daniel R. Sandler and Dan S. Wallach. <input type="password"> must die! Web 2.0 Security & Privacy (W2SP 2008) (Oakland, California), May 2008.
Atul Singh, Tsuen-Wan "Johnny" Ngan, Peter Druschel, and Dan S. Wallach, Eclipse Attacks on Overlay Networks: Threats and Defenses, IEEE INFOCOM '06 (Barcelona, Spain), April 2006.
Cristian Coarfa, Peter Druschel, Dan S. Wallach, Performance Analysis of TLS Web Servers, ACM Transactions on Computer Systems, vol. 24, no. 1, February 2006.
Animesh Nandi, Tsuen-Wan "Johnny" Ngan, Atul Singh, Peter Druschel, and Dan S. Wallach, Scrivener: Providing Incentives in Cooperative Content Distribution Systems, ACM/IFIP/USENIX 6th International Middleware Conference (Middleware 2005) (Grenoble, France), November 2005.
Seth James Nielson, Scott A. Crosby, and Dan S. Wallach, A Taxonomy of Rational Attacks, Fourth International Workshop on Peer-to-Peer Systems (IPTPS '05) (Ithaca, New York), February 2005.
Adam B. Stubblefield, Aviel D. Rubin, and Dan S. Wallach, Managing the Performance Impact of Web Security, Electronic Commerce Research Journal, February, 2005.
Alan Mislove, Gaurav Oberoi, Ansley Post, Charles Reis, Peter Druschel, and Dan S. Wallach, AP3: Cooperative, Decentralized Anonymous Communication, 11th ACM SIGOPS European Workshop (Leuven, Belgium), September 2004.
Tsuen-Wan "Johnny" Ngan, Animesh Nandi, Atul Singh, Dan S. Wallach, and Peter Druschel, Designing Incentives-Compatible Peer-to-Peer Systems, 2nd Bertinoro Workshop on Future Directions in Distributed Computing (FuDiCo 2004), Bertinoro, Italy, June 2004.
Tsuen-Wan "Johnny" Ngan, Dan S. Wallach, and Peter Druschel, Incentives-Compatible Peer-to-Peer Multicast, 2nd Workshop on Economics of Peer-to-Peer Systems (Cambridge, Massachusetts), June 2004.
Scott Crosby and Dan S. Wallach, Denial of Service via Algorithmic Complexity Attacks, 12th Usenix Security Symposium (Washington, D.C.), August 2003.
Andrew Fuqua, Tsuen-Wan "Johnny" Ngan, and Dan S. Wallach, Economic Behavior of Peer-to-Peer Storage Networks, Workshop on Economics of Peer-to-Peer Systems (Berkeley, California), June 2003.
Alan Mislove, Charles Reis, Ansley Post, Paul Willmann, Peter Druschel, Dan S. Wallach, Xavier Bonnaire, Pierre Sens, Jean-Michel Busca, Luciana Arantes-Bezerra, POST: A Secure, Resilient, Cooperative Messaging System, 9th Workshop on Hot Topics in Operating Systems (HotOS IX) (Lihue, Hawaii), May 2003.
Tsuen-Wan "Johnny" Ngan, Dan S. Wallach, and Peter Druschel, Enforcing Fair Sharing of Peer-to-Peer Resources, 2nd International Workshop on Peer-to-Peer Systems (IPTPS '03) (Berkeley, California), February 2003.
Miguel Castro, Peter Druschel, Ayalvadi Ganesh, Antony Rowstron and Dan S. Wallach, Security for Peer-to-Peer Routing Overlays. Fifth Symposium on Operating Systems Design and Implementation (OSDI '02) (Boston, Massachusetts), December 2002.
Dan S. Wallach, A Survey of Peer-to-Peer Security Issues, International Symposium on Software Security (Tokyo, Japan), November 2002.
Cristian Coarfa, Peter Druschel, and Dan S. Wallach, Performance Analysis of TLS Web Servers, Network and Distributed Systems Security Symposium (San Diego, California), February 2002.
Adam B. Stubblefield and Dan S. Wallach, Dagster: Censorship-Resistant Publishing Without Replication, Technical Report TR01-380, Department of Computer Science, Rice University, July 2001.
Edward W. Felten, Dirk Balfanz, Drew Dean, and Dan S. Wallach, Web Spoofing: An Internet Con Game, 20th National Information Systems Security Conference (Baltimore, Maryland), October 1996.
Mobile Systems and Adaptation
Eyal de Lara, Yogesh Chopra, Nilesh Vaghela, Rajnish Kumar, Dan S. Wallach, Willy Zwaenepoel, Iterative Adaptation for Mobile Clients Using Existing APIs, IEEE Transactions on Parallel and Distributed Systems, vol. 16, no. 10, October 2005 (also appeared in IEEE Distributed Systems Online, vol. 6, no. 9, September 2005).
Andrew M. Ladd, Kostas E. Bekris, Algis Rudys, Lydia E. Kavraki, and Dan S. Wallach, Robotics-Based Location Sensing Using Wireless Ethernet, Wireless Networks, volume 11, number 1-2, January 2005, pp. 189-204.
Andreas Haeberlen, Eliot Flannery, Andrew M. Ladd, Algis Rudys, Dan S. Wallach, and Lydia E. Kavraki, Practical Robust Localization over Large-Scale 802.11 Networks, Tenth ACM International Conference on Mobile Computing and Networking (MOBICOM 2004) (Philadelphia, Pennsylvania), September 2004.
Andrew M. Ladd, Kostas E. Bekris, Algis P. Rudys, Dan S. Wallach, and Lydia E. Kavraki. On the Feasibility of Using Wireless Ethernet for Indoor Localization, IEEE Transactions on Robotics and Automation, volume 20, number 3, June 2004.
Ping Tao, Algis Rudys, Andrew Ladd, and Dan S. Wallach, Wireless LAN Location Sensing for Security Applications, ACM Workshop on Wireless Security (WiSe 2003) (San Diego, California), September 2003.
Eyal de Lara, Rajnish Kumar, Dan S. Wallach, and Willy Zwaenepoel, Collaboration and Multimedia Authoring on Mobile Devices, First International Conference on Mobile Systems, Applications, and Services (MobiSys '03) (San Francisco, California), May 2003.
Andrew M. Ladd, Kostas E. Bekris, Guillaume Marceau, Algis Rudys, Dan S. Wallach, and Lydia E. Kavraki, Using Wireless Ethernet for Localization. 2002 IEEE/RSJ International Conference on Intelligent Robots and Systems (IROS 2002) (Lausanne, Switzerland), October 2002.
Andrew M. Ladd, Kostas E. Bekris, Guillaume Marceau, Algis Rudys, Lydia E. Kavraki and Dan S. Wallach, Robotics-Based Location Sensing using Wireless Ethernet. Eighth ACM International Conference on Mobile Computing and Networking (MOBICOM 2002) (Atlanta, Georgia), September 2002.
Yuri Dotsenko, Eyal de Lara, Dan S. Wallach, and Willy Zwaenepoel, Extensible Adaptation via Constraint Solving, 4th IEEE Workshop on Mobile Computing Systems & Applications (Callicoon, New York), June 2002.
Eyal de Lara, Dan S. Wallach, and Willy Zwaenepoel, HATS: Hierarchical Adaptive Transmission Scheduling, Multimedia Computing and Networking 2002 (MMCN02) (San Jose, California), January 2002.
Jason Flinn, Eyal de Lara, M. Satyanarayanan, Dan S. Wallach, and Willy Zwaenepoel, Reducing the Energy Usage of Office Applications, IFIP/ACM International Conference on Distributed Systems Platforms - Middleware 2001 (Heidelberg, Germany), November 2001.
Eyal de Lara, Rajnish Kumar, Dan S. Wallach, and Willy Zwaenepoel, Collaboration and Document Editing on Bandwidth-Limited Devices, Proceedings of the Workshop on Application Models and Programming Tools for Ubiquitous Computing (UbiTools '01) (Atlanta, Georgia), September 2001.
Eyal de Lara, Dan S. Wallach, and Willy Zwaenepoel, Position Summary: Architectures for Adaptation Systems, Eighth IEEE Workshop on Hot Topics in Operating Systems (HotOS-VIII) (Schloss Elmau, Germany), May 2001.
Eyal de Lara, Dan S. Wallach and Willy Zwaenepoel, Puppeteer: Component-based Adaptation for Mobile Computing, 3rd Usenix Symposium on Internet Technologies and Systems (USITS '01) (San Francisco, California), March 2001.
Eyal de Lara, Dan S. Wallach and Willy Zwaenepoel, Opportunities for Bandwidth Adaptation in Microsoft Office Documents, 4th Usenix Windows Systems Symposium (Seattle, Washington), August 2000.
Electronic Voting Security
Daniel R. Sandler and Dan S. Wallach, The case for networked remote voting precincts. 3rd USENIX/ACCURATE Electronic Voting Technology Workshop (EVT '08) (San Jose, California), August 2008.
Daniel R. Sandler, Kyle Derr, and D. S. Wallach. VoteBox: a tamper-evident, verifiable electronic voting system. Proceedings of the 17th USENIX Security Symposium (USENIX Security ’08) (San Jose, California), August 2008.
Robert M. Stein, Greg Vonnahme, Michael Byrne, and Dan S. Wallach, Voting Technology, Election Administration, and Voter Performance, Election Law Journal, vol. 7, no. 2, 2008.
Daniel R. Sandler, Kyle Derr, Scott Crosby, and Dan S. Wallach. Finding the evidence in tamper-evident logs. Proceedings of the 3rd International Workshop on Systematic Approaches to Digital Forensic Engineering (SADFE’08) (Oakland, California), May 2008.
Sarah P. Everett, Kristen K. Greene, Michael D. Byrne, Dan S. Wallach, Kyle Derr, Daniel Sandler, and Ted Torous, Electronic Voting Machines versus Traditional Methods: Improved Preference, Similar Performance, Human Factors in Computing Systems: Proceedings of CHI 2008 (Florence, Italy), April 2008.
Daniel Sandler and Dan S. Wallach, Casting Votes in the Auditorium, 2nd USENIX/ACCURATE Electronic Voting Technology Workshop (EVT '07) (Boston, Massachusetts), August 2007.
Srinivas Inguva, Eric Rescorla, Hovav Shacham, and Dan S. Wallach, Source Code Review of the Hart InterCivic Voting System, California Secretary of State's "Top to Bottom" Review, July 2007.
David L. Dill and Dan S. Wallach, Stones Unturned: Gaps in the Investigation of Sarasota's Disputed Congressional Election, April 2007
Dan S. Wallach, "Expert Report in Conroy v. Dennis" (portions redacted), September 2006.
Dan S. Wallach, "Security and Reliability of Webb County’s ES&S Voting System and the March ‘06 Primary Election" (Expert Report in Flores v. Lopez), May 2006.
Dan S. Wallach, Testimony for the NIST/EAC Technical Guidelines Development Committee (Gaithersburg, Maryland), September 2004.
Dan S. Wallach, Texas must confront voting systems' flaws, Austin American-Statesman, September 2004.
Dan S. Wallach, Testimony for the Texas Senate Committee on State Affairs (Austin, Texas), May 2004.
Tadayoshi Kohno, Adam Stubblefield, Aviel D. Rubin, Dan S. Wallach, Analysis of an Electronic Voting System, 2004 IEEE Symposium on Security and Privacy (Oakland, California), May 2004.
Dan S. Wallach, Testimony for the Texas House Elections Committee (Austin, Texas), March 2004.
Dan S. Wallach, Testimony for the Ohio Joint Committee on Ballot Security (Columbus, Ohio), March 2004.
Jonathan Bannet, David W. Price, Algis Rudys, Justin Singer, Dan S. Wallach, Hack-a-Vote: Demonstrating Security Issues with Electronic Voting Systems, IEEE Security & Privacy Magazine, volume 2, number 1, January/February 2004, pp. 32-37. Also reprinted by ComputerUser, March 2004.
Tadayoshi Kohno, Adam Stubblefield, Aviel D. Rubin, Dan S. Wallach, Analysis of an Electronic Voting System, Johns Hopkins Information Security Institute Technical Report TR-2003-19, July 2003.
Nathanael Paul, David Evans, Aviel D. Rubin, and Dan S. Wallach, Authentication for Remote Voting, Workshop on Human-Computer Interaction and Security Systems (Fort Lauderdale, Florida), April 2003.
David L. Dill, Rebecca Mercuri, Peter G. Neumann, and Dan S. Wallach. Frequently Asked Questions about DRE Voting Systems (web page, also submitted to Santa Clara County board of supervisors), February 2003.
Miscellaneous
Seth Nielson, Seth J. Fogarty, and Dan S. Wallach, Attacks on Local Searching Tools, Technical Report TR-04-445, Department of Computer Science, Rice University, December 2004.
Darleen Fisher, et al., NSF Workshop on Security and Privacy (Berkeley, California), February 2002. Publication pending.
Dan S. Wallach, Copy Protection Technology is Doomed, IEEE Computer, volume 34, number 10, October 2001, pp. 48-49.
Scott A. Craver, Min Wu, Bede Liu, Adam Stubblefield, Ben Swartzlander, Dan S. Wallach, Drew Dean, and Edward W. Felten, Reading Between the Lines: Lessons from the SDMI Challenge, 10th Usenix Security Symposium (Washington, D.C.), August 2001.
Alex Grosul and Dan S. Wallach, A Related-Key Cryptanalysis of RC4, Technical Report TR-00-358, Department of Computer Science, Rice University, June 2000.
Gary McGraw, et al., Attacking Malicious Code: A Report from the Infosec Research Council (San Antonio, Texas), April, 2000. Report published in IEEE Software 17(5), pp. 33-40.
Adam B. Stublefield and Dan S. Wallach, A Security Analysis of My.MP3.com and the Beam-it Protocol, Technical Report TR-00-353, Department of Computer Science, Rice University, February 2000.
Dan S. Wallach, Sharma Kunapalli and Michael F. Cohen, Accelerated MPEG Compression of Dynamic Polygonal Scenes, Computer Graphics, SIGGRAPH 1994 (Orlando, Florida), August 1994, pp. 193-196.