Bryan Parno
RESEARCHER
.
| Email: | <last>@microsoft.com |
| Phone: | 425-705-1170 |
| CV: | [pdf] |
I recently joined the Security and Privacy Research Group here at Microsoft Research. I am interested in a broad range of security topics (e.g., network and system security, applied cryptography, usable security, and data privacy), as well as topics such as operating system design, distributed systems, and mobile computing. My current work investigates primitives for building secure systems, next-generation application models, security challenges in data center networks, and cryptographic techniques for outsourcing computation.
I completed my PhD at Carnegie Mellon University under the supervision of Adrian Perrig. My dissertation studies the design, implementation, and evaluation of a combination of hardware, software, and cryptographic primitives for extending the trust you have in one service or device in order to allow you to trust other services and devices.
Earlier in my career, I studied computer science at Harvard University.
News
- December 19, 2011 - I was selected for Forbes' 30-Under-30: Science list.
- August 30, 2011 - Our book has been published! It can be purchased from Springer or Amazon.
- May 11, 2011 - My dissertation won the 2010 ACM Doctoral Dissertation Award!
Professional Activities
- Program Committee, ACM Conference on Computer & Communications Security (CCS), 2012
- Program Committee, ACM Cloud Computing Security Workshop (CCSW), 2012
- Program Committee, Conference on Trust and Trustworthy Computing (TRUST), 2012
- Program Committee, ACM Symposium on Mobile Ad Hoc Networking and Computing (MobiHoc), 2012
- Program Committee, Network and Distributed System Security Symposium (NDSS), 2012
- Program Committee, Conference on Cryptology and Network Security (CANS), 2011
- Program Committee, Network and Distributed System Security Symposium (NDSS), 2011
- Program Committee, IACR Conference on the Practice and Theory of Public Key Cryptography (PKC), 2011
- Program Committee, APWG eCrime Researchers Summit, 2010
- Program Committee, PhD Forum of The Conference on Mobile Systems, Applications and Services (MobiSys), 2010
- Program Committee, APWG eCrime Researchers Summit, 2009
- Program Committee, Financial Cryptography and Data Security Conference, 2009
Publications
- Franziska Roesner, Tadayoshi Kohno, Alexander Moshchuk, Bryan Parno, Helen J. Wang, and Crispin Cowan, User-Driven Access Control: Rethinking Permission Granting in Modern Operating Systems, in Proceedings of the IEEE Symposium on Security and Privacy, IEEE, 21 May 2012
- Bryan Parno, Mariana Raykova, and Vinod Vaikuntanathan, How to Delegate and Verify in Public: Verifiable Computation from Attribute-based Encryption, in Proceedings of the IACR Theory of Cryptography Conference (TCC), International Association for Cryptologic Research, March 2012
- Nicolas Christin, Alessandro Acquisti, Adrian Perrig, and Bryan Parno, Monetary Forgery in the Digital Age: Will Physical-Digital Cash Be a Solution?, in I/S: A Journal of Law and Policy for the Information Society, vol. 7, no. 2, pp. 171-206, 2012
- John R. Douceur, Jon Howell, Bryan Parno, Michael Walfish, and Xi Xiong, The Web Interface Should Be Radically Refactored, in Tenth ACM Workshop on Hot Topics in Networks (HotNets-X), ACM SIGCOMM, November 2011
- John R. Douceur, Jon Howell, Bryan Parno, and Michael Walfish, Refactoring the Web Interface, in SOSP 2011 Poster Session, 24 October 2011
- Franziska Roesner, Tadayoshi Kohno, Alexander Moshchuk, Bryan Parno, Helen J. Wang, and Crispin Cowan, User-Driven Access Control: Rethinking Permission Granting in Modern Operating Systems, no. MSR-TR-2011-91, 2 August 2011
- Bryan Parno, Jonathan M. McCune, and Adrian Perrig, Bootstrapping Trust in Modern Computers , Springer, August 2011
- Bryan Parno, Jacob R. Lorch, John R. Douceur, James Mickens, and Jonathan M. McCune, Memoir: Practical State Continuity for Protected Modules, in Proceedings of the IEEE Symposium on Security and Privacy, IEEE, May 2011
- John R. Douceur, Jacob R. Lorch, Bryan Parno, James Mickens, and Jonathan M. McCune, Memoir---Formal Specs and Correctness Proofs, no. MSR-TR-2011-19, February 2011
- Rosario Gennaro, Craig Gentry, and Bryan Parno, Non-Interactive Verifiable Computing: Outsourcing Computation to Untrusted Workers, in Proceedings of the International Cryptology Conference (CRYPTO), Springer Verlag, August 2010
- Bryan Parno, Jonathan M. McCune, and Adrian Perrig, Bootstrapping Trust in Commodity Computers, in Proceedings of the IEEE Symposium on Security and Privacy, IEEE, May 2010
- Bryan Parno, Trust Extension as a Mechanism for Secure Code Execution on Commodity Computers, May 2010
- Bryan Parno, Zongwei Zhou, and Adrian Perrig, Don't Talk to Zombies: Mitigating DDoS Attacks via Attestation, no. CMU-CyLab-09-009, June 2009
- Bryan Parno, Jonathan M. McCune, Dan Wendlandt, David G. Andersen, and Adrian Perrig, CLAMP: Practical Prevention of Large-Scale Data Leaks, in Proceedings of the 2009 IEEE Symposium on Security and Privacy, IEEE, May 2009
- Ari Juels, Ravikanth Pappu, and Bryan Parno, Unidirectional Key Distribution Across Time and Space with Applications to RFID Security, in Proceedings of the USENIX Security Symposium, USENIX, July 2008
- Bryan Parno, Bootstrapping Trust in a "Trusted" Platform, in Proceedings of the 3rd USENIX Workshop on Hot Topics in Security (HotSec), USENIX, July 2008
- Jonathan M. McCune, Bryan Parno, Adrian Perrig, Michael K. Reiter, and Hiroshi Isozaki, Flicker: An Execution Infrastructure for TCB Minimization, in Proceedings of the ACM European Conference on Computer Systems (EuroSys), Association for Computing Machinery, Inc., April 2008
- Bryan Parno, Adrian Perrig, and David Andersen, SNAPP: Stateless Network-Authenticated Path Pinning, in Proceedings of the ACM Symposium on Information, Computer and Communications Security (ASIACCS), Association for Computing Machinery, Inc., March 2008
- Jonathan M. McCune, Bryan Parno, Adrian Perrig, Michael K. Reiter, and Arvind Seshadri, How Low Can You Go? Recommendations for Hardware-Supported Minimal TCB Code Execution, in Proceedings of the Conference on Architectural Support for Programming Languages and Operating Systems (ASPLOS), Association for Computing Machinery, Inc., March 2008
- Alessandro Acquisti, Nicolas Christin, Bryan Parno, and Adrian Perrig, Countermeasures against Government-Scale Monetary Forgery, in Proceedings of the Financial Cryptography and Data Security 12th International Conference, Springer Verlag, January 2008
- Bryan Parno, Dan Wendlandt, Elaine Shi, Adrian Perrig, Bruce Maggs, and Yih-Chun Hu, Portcullis: Protecting Connection Setup from Denial-of-Capability Attacks, in Proceedings of the ACM SIGCOMM, Association for Computing Machinery, Inc., August 2007
- Jonathan M. McCune, Bryan Parno, Adrian Perrig, Michael K. Reiter, and Arvind Seshadri, Minimal TCB Code Execution (Extended Abstract), in Proceedings of the 2007 IEEE Symposium on Security and Privacy, IEEE, May 2007
- Jay Lorch, Bryan Parno, and Helen Wang, SAV-V: Securing Anti-Virus with Virtualization, no. MSR-TR-2011-101, 5 April 2007
- Bryan Parno, Mark Luk, Evan Gaustad, and Adrian Perrig, Secure Sensor Network Routing: A Clean-Slate Approach, in Proceedings of the 2nd Conference on Future Networking Technologies (CoNEXT), Association for Computing Machinery, Inc., December 2006
- Bryan Parno, Cynthia Kuo, and Adrian Perrig, Phoolproof Phishing Prevention, in Proceedings of the Financial Cryptography and Data Security 10th International Conference, Springer Verlag, February 2006
