Projects
Web application security:
- MoRePriv mobile personalization and privacy
- RePriv browser-based personalization and privacy
- Gatekeeper and Gulfstream static analysis of JavaScript
- Nozzle, Zozzle, and Rozzle detecting and preventing JavaScript-based malware
- Ripley and ConScript ensuring integrity of distributed Web applications and performing browser enforcement
Web application performance:
Retired projects
Here are links to some of the projects I used to work on:
- Merlin improving and inferring specification for static analysis tools
- AjaxScope/Ajax View distributed Web 2.0 monitoring
- Volta advanced distributing tier-splitting .NET compiler, which is the basis of much other work
- Spectator detection and containment of JavaScript worms
- Griffin Software Security Project protecting Web applications from security attacks using static ana runtime analysis
- PQL project specifying queries on program behavior
- bddbddb declarative program analysis
- LAPSE Web application security scanner for Java
- Checklipse Finding Bugs in Eclipse Code using Eclipse