Prasad Naldurg
RESEARCHER
.
Research Interests:
• Formal methods for security
• Specification and analysis of access control models
• Authorization logic and verification for security
• Security metadata and configuration analysis
• Software protection
• Malware detection
Publications
- Jean-Baptiste Jeannin, Guido de Caso, Juan Chen, Yuri Gurevich, Prasad Naldurg, and Nikhil Swamy, DKAL*: Constructing Executable Specifications of Authorization Protocols, no. MSR-TR-2012-24, 8 March 2012
- Sandeep Karanth, Srivatsan Laxman, Prasad Naldurg, Ramarathnam Venkatesan, J. Lambert, and Jinwook Shin, ZDVUE: Prioritization of JavaScript Attacks To Discover New Vulnerabilities, in Proceedings of the Fourth ACM Workshop on Artificial Intelligence and Security (AISEC 2011), ACM, October 2011
- Prasad Naldurg, Ranjita Bhagwan, and Tathagata Das, Understanding policy intent and misconfigurations from implementations: Consistency and Convergence, in (Short Paper) The 8th International Workshop on Formal Aspects of Security & Trust (FAST2011), 15 September 2011
- Prasad Naldurg and Raghavendra K R, SEAL: a logic programming framework for specifying and verifying access control models , in 16th ACM Symposium on Access Control Models and Technologies (SACMAT), ACM, 15 June 2011
- Tathagata Das, Ranjita Bhagwan, and Prasad Naldurg, Baaz: A System for Detecting Access Control Misconfigurations, in USENIX Security Symposium, USENIX, August 2010
- Sandeep Karanth, Srivatsan Laxman, Prasad Naldurg, Ramarathnam Venkatesan, J Lambert, and Jinwook Shin, Pattern Mining for Future Attacks, no. MSR-TR-2010-100, July 2010
- Saurabh Panjwani, Prasad Naldurg, and Raghav Bhaskar, Analysis of Two Token-Based Authentication Schemes for Mobile Banking, no. MSR-TR-2010-75, June 2010
- Matthias Jacob, Mariusz H. Jakubowski, Prasad Naldurg, Chit Wei (Nick) Saw, and Ramarathnam Venkatesan, The Superdiversifier: Peephole Individualization for Software Protection, in 3rd International Workshop on Security (IWSEC 2008), Springer Verlag, Kagawa, Japan, November 2008
- Avik Chaudhuri, Prasad Naldurg, G. Ramalingam, Sriram Rajamani, and L. Velaga, EON: Modeling and Analyzing Access Control Systems with Logic Programs, in ACM Conference on Computer and Communications Security (CCS), Association for Computing Machinery, Inc., October 2008
- Avik Chaudhuri, Prasad Naldurg, and Sriram Rajamani, A Type System for Data-Flow Integrity on Windows Vista, in ACM Workshop on Programming Languages and Analysis for Security (PLAS), Association for Computing Machinery, Inc., June 2008
- Srivatsan Laxman, Prasad Naldurg, Raja Sripada, and Ramarathnam Venkatesan, Connections between Mining Frequent Itemsets and Learning Generative Models, in Proceedings of Seventh IEEE International Conference on Data Mining, 2007 (ICDM 2007), Omaha, USA, IEEE, October 2007
- Srivatsan Laxman, Prasad Naldurg, Raja Sripada, and Ramarathnam Venkatesan, Connections between mining frequent itemsets and learning generative models, no. MSR-TR-2007-100, August 2007
- Mariusz H. Jakubowski, Prasad Naldurg, Vijay Patankar, and Ramarathnam Venkatesan, Software integrity checking expressions (ICEs) for robust tamper detection, in Information Hiding 2007, Saint Malo, France, June 2007
- Prasad Naldurg, Stefan Schwoon, Sriram Rajamani, and John Lambert, NETRA: Seeing Through Access Control, in Proceedings of the 4th ACM Workshop on Formal Methods in Security Engineering: From Specifications to Code (FMSE), Association for Computing Machinery, Inc., November 2006
- Ganesh Ananthanarayanan, Ramarathnam Venkatesan, Prasad Naldurg, Sean Blagsvedt, and A. Hemakumar, SPACE: Secure Protocol for Address-Book based Connection Establishment, in ACM HotNets, Irvine, CA, USA, Association for Computing Machinery, Inc., November 2006



