.

Included below is a brief version of my research curricula vitae. A longer, more complete .pdf version is available here. A personal biography is also available.

Patrick Drew McDaniel

Associate Professor
Office : 360A IST Building • Computer Science and Engineering Department
Pennsylvania State University • University Park, PA 16802 • (814) 863-3599
email: mcdaniel@cse.psu.edu • Homepage: http://www.patrickmcdaniel.org/

Education

University of Michigan, Ann Arbor
Ph.D., Computer Science and Engineering, October 2001
Dissertation: Policy Management in Secure Group Communication
Advisor: Dr. Atul Prakash

Ball State University
M.S., Computer Science, June 1991

Ohio University
B.S., Computer Science, August 1989

Academic Appointments

Associate Professor, Pennsylvania State University, University Park, Pennsylvania July 2007-Present
Computer and Network Security (2007)

Hartz Family Career Development Assistant Professor, Pennsylvania State University, University Park, Pennsylvania August 2004-June 2007
Introduction to Computer and Network Security (2006)
Computer and Network Security (2004, 2005)
Advanced Systems Security, (2005, 2006 )

Adjunct Professor, Stern School of Business, New York University, New York, NY, January 2003-Present
Computer and Network Security (2003, 2004, 2005, 2006)
Online Privacy (2003, 2004)

Research Assistant, University of Michigan, Ann Arbor, Michigan, September 2000-August 2001
Student of the DARPA sponsored ``Specifying and Enforcing Security Policies in Multi-Party Communication Systems'' project.

Research Assistant, NASA Kennedy Space Center Fellowship, Ann Arbor, Michigan, 1997-2000
Working under Kennedy Space Center Fellowship Graduate Student Researchers program.

Research Assistant, University of Michigan, Ann Arbor, MI, 1996-1997
Student on the NSA funded "Design and Implementation of Secure Mobile Agent Services" research project.

Industrial Appointments

Senior Research Staff Member, AT&T Labs - Research, Florham Park, NJ, September 2001-August 2004
Research staff member working in security management, network security, multiparty communication, networking, web technologies, and distributed systems.

Research Intern, AT&T Labs - Research, Florham Park, NJ, Summer 1999
Working with Aviel Rubin, investigated the design space and practical applications of certificate revocation technologies.

Selected Publications

Patrick Traynor, Patrick McDaniel, and Thomas La Porta, Security for Telecommunications Networks. Springer, Series: Advances in Information Security, July, 2008. ISBN: 978-0-387-72441-6.

Patrick Traynor, William Enck, Patrick McDaniel, and Thomas La Porta, Mitigating Attacks on Open Functionality in SMS-Capable Cellular Networks. IEEE/ACM Transactions on Networking (TON), 17(1):40--53, 2008.

Patrick Traynor, William Enck, Patrick McDaniel, and Thomas La Porta, Exploiting Open Functionality in SMS-Capable Cellular Networks. Journal of Computer Security, 16(6):713-742, 2008.

Patrick Traynor, Michael Chien, Scott Weaver, Boniface Hicks, and Patrick McDaniel, Non-Invasive Methods for Host Certification. ACM Transactions on Information and System Security (TISSEC), 11(3), 2008.

Patrick McDaniel and Atul Prakash, Methods and Limitations of Security Policy Reconciliation. ACM Transactions on Information and System Security (TISSEC), Association for Computing Machinery, 9(3):259-291, August, 2006.

Patrick Traynor, Patrick McDaniel, and Thomas La Porta. On Attack Causality in Internet-Connected Cellular Networks. Proceedings of the 16th USENIX Security Symposium, August 2007. Boston, MA.

Kevin Butler, William Aiello, and Patrick McDaniel. Optimizing BGP Security by Exploiting Path Stability. Proceedings of the 13th ACM Conference on Computer and Communications Security (CCS), pages 298-310, November 2006. Alexandria, VA.

Patrick Traynor, William Enck, Patrick McDaniel, and Thomas La Porta. Mitigating Attacks on Open Functionality in SMS-Capable Cellular Networks. Proceedings of the Twelfth Annual International Conference on Mobile Computing and Networking (MobiCom), pages 182-193, September 2006. Los Angeles, CA.

William Enck, Patrick Traynor, Patrick McDaniel, and Thomas La Porta. Exploiting Open Functionality in SMS-Capable Cellular Networks. Proceedings of the 12th ACM Conference on Computer and Communications Security (CCS), pages 393--404, November 2005. Alexandria, VA.

Patrick McDaniel and Atul Prakash. Methods and Limitations of Security Policy Reconciliation. 2002 IEEE Symposium on Security and Privacy, IEEE Computer Society Press, pages 73-87, May 2002. Oakland, CA.

Student Advising

Past PhD Students

  • Patrick Traynor, co-advisor, Pennsylvania State University, Spring 2008, now Assistant Professor, Georgia Institute of Technology
  • Fr. Boniface Hicks, Pennsylvania State University, Fall 2007, now Assistant Professor, St. Vincent College

Current PhD Students

  • Kevin Butler, Pennsylvania State University, expected Spring 2010
  • William Enck, Pennsylvania State University, expected Spring 2011
  • Machigar Ongtang, Pennsylvania State University, expected Spring 2010
  • Thomas Moyer, Pennsylvania State University, expected Spring 2011
  • Steve McLaughlin, Pennsylvania State University, expected Spring 2013
  • Devin Pohly, Pennsylvania State University, expected Spring 2014

Past Masters Students

  • Thomas Moyer, M.S., Pennsylvania State University, Spring 2009
  • Luke St. Clair, M.S., Pennsylvania State University, Summer 2008
  • Lisa Johansen, M.S., Pennsylvania State University, Spring 2008
  • Sunam Ryu, M.S., Pennsylvania State University, Spring 2007
  • Dhananjay Bapat, M.S., Pennsylvania State University (Electrical Engineering), Fall 2006
  • Jennifer Plasterr, M.Eng., Pennsylvania State University, Summer 2006
  • Adam Kerr, M.Eng., Pennsylvania State University, Fall 2006
  • William Enck, M.S., Pennsylvania State University, Spring 2006
  • Wesam Lootah, M.S., Pennsylvania State University, Spring 2006
  • Jon Hansford, M.Eng., Pennsylvania State University, Fall 2005
  • John van Bremer, M.Eng., Pennsylvania State University, Spring 2005

Past Undergraduate Honors Students

  • Tim Misiak, Schreyer Honors College, Pennsylvania State University, Spring 2007
  • Kiyan Ahmadizadeh, Schreyer Honors College, Pennsylvania State University, Spring 2006

Collaborators (last 48 months, alphabetical)

Last 48 months, alphabetical by last name

  • Kiyan Ahmadizadeh, William Aiello, Farooq Anjum, Adam Aviv, David Balzarotti, Greg Banks, Dhananjay Bapat, Matt Blaze, Kevin Borders, Kevin Butler, Ramon Caceres, Pavol Cerny, Shiva Chaitanya, Michael Chien, Heesook Choi, Sandy Clark, Marco Cova, Eric Cronin, William Enck, Toni Farley, Viktoria Felmetsger, Abhrajit Ghosh, Albert Greenberg, Boniface Hicks, Michael Hicks, Harri Hursti, John Ioannidis, Trent Jaeger, Guruprasad Jakka, Lisa Johansen, Shyam K. Gupta, Charles Kalmanek, Richard Kemmerer, Dave King, Thomas La Porta, Tom La Porta, Michael Lin, Wesam Lootah, Joseph Lorenzo Hall, Patick McDaniel, Stephen McLaughlin, Tim Misiak, Fabian Monrose, Thomas Moyer, Bashar Nuseibeh, Machigar Ongtang, Birgit Pfitzmann, Matthew Pirretti, Jennifer Plasterr, Dmitry Podkuiko, Atul Prakash, Sophie Qiu, Laura Quilter, Padma Raghavan, Vikhyath Rao, Sanjay Rao, Karl Rauscher, J. Rexford, Thomas Richardson, William Robertson, Hosam Rowaihy, Michael Rowell, Avi Rubin, Sandra Rueda, Sunam Ryu, Reiner Sailer, Joshua Schiffman, Panagiotis Sebos, Shubho Sen, Gaurav Shah, Christopher Shal, Micah Sherr, Jaesheung Shin, Jun Shu, Anand Sivasubramaniam, Adam Smith, Oliver Spatscheck, Sylke Spoerel, Yogesh Sreenivasan, Anusha Sriraman, Luke St. Clair, Yu-Wei Sung, Andreas Terzis, Patrick Traynor, Fredrik Valeur, Jacobus Van der Merwe, Giovanni Vigna, Brent Waters, Scott Weaver

Research Support

  • PI, Smart Grid Cyber Security Research, Lockheed Martin, $250,000, (08/1/09-12/16/09).
  • PI, NSF HECURA: Collaborative Research: Secure Provenance in High-End Computing Systems, NSF (CCF), $307,073, (08/1/09-8/31/13).
  • PI, TC: Medium: Collaborative Research: Security Services in Open Telecommunications Networks, NSF (CNS), $594,941, (08/01/09-08/01/12).
  • PI, Characterizing and Mitigating Wireless Systems Vulnerabilities, Defense University Research Instrumentation Program (DURIP), Army Research Office (ARO), $150,000, (05/22/09-05/21/10).
  • PI, Integrity Management for ICT Development, Bell Labs Network Reliability and Security Office, Alcatel-Lucent , $100,000, (11/30/08-11/30/09).
  • PI, Utility Grid Automation and Risk Management, Lockheed Martin, $400,000, (11/30/08-12/16/09).
  • PI, EVEREST: Evaluation and Validation of Election-Related Equipment, Standards, and Testing, The State of Ohio, $332,066, (10/01/07-01/07/08).
  • Co-PI, Protecting Services for Emerging Wireless Telecommunications Infrastructure, NSF (CNS), $658,032, (09/01/07-08/31/11).
  • Co-PI, Security for Internet/IMS Convergence, Cisco, $100,000, (9/1/07-8/31/08).
  • Co-PI, System-Wide Information Flow Enforcement, BAA 06-11-IFKA, "National Intelligence Community Enterprise Cyber Assurance Program", $496,000, (2/1/07-8/1/08).
  • PI, CAREER: Realizing Practical High Assurance through Security-Typed Information Flow Systems, NSF (CNS), $400,000, (1/2/07-1/1/12).
  • Co-PI, CT-IS: Shamon: Systems Approaches for Constructing Distributed Trust, NSF (CNS), $400,000, (9/1/06-8/31/10).
  • Co-PI, Center of Excellence, Ben Franklin Technology Partners, $75,000, (01/01/07-07/01/07).
  • Co-PI, Exploiting Asymmetry in Performance and Security Requirements for I/O in High-end Computing, NSF (CFF), $699,690, (9/1/06-8/31/10).
  • PI, Automated Configuration with the PRESTO Network Management Platform, AT\&T, $50,000, (6/1/06-5/31/07).
  • PI, Testbed for Network-Scale Countermeasure Evaluation, Cisco, $45,938, (9/1/05-8/31/06).
  • PI, Collaborative Research: CT-T: Flexible, Decentralized Information-flow Control for Dynamic Environments, NSF (CFF), $234,585, (8/1/05-7/31/08).
  • PI, Extending Developer Tools for Security-typed Languages, Software Engineering Research Center, Sponsor: Motorola, $23,200, (7/1/05-6/30/06).
  • PI, Student Travel Support for ACM SIGCOMM 2005 Conference, NSF, $19,620, (4/1/05-3/31/06).
  • Co-PI, NSF CyberTrust: Collaborative Research: Testing and Benchmarking Methodologies for Future Network Security Mechanisms (EMIST), NSF/DHS, $363,000, (8/1/04-8/31/06).

Honors

  • Best Paper, 25nd Annual Computer Security Applications Conference
    • advisees Machigar Ongtang, Stephen McLaughlin, and William Enck, December 2009
  • Faculty Marshal, College of Engineering
    • selected by student marshals for contributions to undergraduate education, leads procession into graduation ceremony
  • PSES Outstanding Research Award
    • highly selective award by the Penn State Engineering Society given to faculty in the College of Engineering who have made significant contributions to knowledge in their field
  • Google Security and Product Safety Acknowledgement
    • in recognition of efforts in improving the security of Google Android cellular phone operating system.
  • Commendation for Exceptional Leadership and Achievement
    • in recognition of efforts as PI of the EVEREST study, from Ohio Secretary of State Jennifer Brunner, August 2008
  • IEEE Technical Committee on Security and Privacy Outstanding Community Service Award
    • in recognition for technical program management of 2007 and 2008 IEEE Security and Privacy symposia, August 2008
  • National Science Foundation CAREER Award
    • Faculty early career development grant, August 2007
  • Penn State Computer Science and Engineering Outstanding Teaching Award
    • Given to best teacher in the department as selected by students, March 2007
  • ACM Certificate of Meritorious Service
    • Certificate acknowledging exemplary service as associate editor of ACM Transactions on Internet Technologies, April 2007
  • Best Student Paper, 22nd Annual Computer Security Applications Conference
    • as advisor, with Boniface Hicks and Kiyan Ahmadizadeh, December 2006
  • Conference Keynote Addresses
    • Second International Conference on Information Systems Security (ICISS 2006), Kolkata, India, December 2006
    • Eighth International Conference on Information and Communications Security (ICICS '06), Raleigh, North Carolina, December 2006
  • Best Paper, Innovations and Commercial Applications of Distributed Sensor Networks Symposia
    • Awarded for best paper in conference, October 2005.
  • Hartz Family Career Development Professor
    • Endowed Professorship, Pennsylvania State University, Fall 2004-2007
  • Bang for the Buck Award, DARPA Dynamic Coalitions Program
    • Award for most feature-rich/useful software system, April 2002
  • National Aeronautics and Space Administration, Kennedy Space Center Fellowship
    • Research Fellowship, September 1997 - August 2000
  • Electrical Engineering and Computer Science Summer Fellowship Award
    • University of Michigan, June 1997
  • Dean's Citation for Perfect Academic Record
    • Ball State University, June 1991

Professional Service

Editorial Positions, Panels, and Boards

  • ACM Transactions on Internet Technology (TOIT)
    • Editor in Chief--September 2007-present
    • Associate Editor--April 2004-August 2007
  • IEEE Security and Privacy Magazine
    • Area Editor, Secure Systems--January 2009-present
  • IEEE Transactions on Computers (TC)
    • Associate Editor--August 2008-present
  • ACM Transactions on Information and System Security (TISSEC)
    • Associate Editor--May 2007-present
  • IEEE Transactions on Software Engineering (TSE)
    • Associate Editor--January 2007-present
    • Guest Editor, Special Issue on Topics in Security--Fall 2006-present
  • Elsevier Journal of Computer Networks
    • Guest Editor, Special Issue on Web Security--Fall 2003-Spring 2005
  • Encyclopedia of Cryptography and Security
    • Editorial Board Member--Fall 2002-Spring 2005

Conference and Workshop Participation

  • IEEE Symposium on Security and Privacy
    • Technical Program Co-Chair--2007, 2008
  • USENIX Security Symposium
    • Program Chair--2005
    • Invited Talks Chair--2006, 2009
    • Program Committee--2001, 2003, 2004, 2007
  • ACM Conference on Computer and Communications Security (CCS)
    • Program Committee--2006, 2008, 2009, 2010
    • Industry and Government Track Chair--2004, 2007
    • Program Committee-Industry and Government Track--2003, 2005, 2006
  • Network and Distributed System Security Symposium (NDSS)
    • Program Committee--2009
  • European Symposium on Research in Computer Security (ESORICS)
    • Program Committee--2004, 2005
  • Annual Computer Security Applications Conference (ACSAC)
    • Program Committee--2004, 2005, 2006, 2007
  • IEEE GLOBECOM
    • Program Committee--2010
  • ACM Annual International Conference on Mobile Computing and Networking (MobiCom)
    • Program Committee--2010
  • USENIX Workshop on Large-Scale Exploits and Emergent Threats (LEET)
    • Program Committee--2010
  • USENIX Workshop on Hot Topics in Security (HotSec)
    • Program Committee--2007, 2008, 2009
  • ACM Symposium on Access Control Models and Technologies (SACMAT)
    • Program Committee--2002, 2003, 2004, 2005, 2006, 2007, 2008, 2009
  • ACM Conference on ASIA Computer and Communications Security (ASIA CCS)
    • Program Committee--2008
  • ACM Conference on Electronic Commerce (ACM EC)
    • Program Committee--2005
  • International Conference on Applied Cryptography and Network Security (ACNS)
    • Program Committee--2006
  • ACM Symposium on Applied Computing (SAC)
    • Program Committee, Information Security Research and Applications --2010
  • USENIX Annual Technical Conference
    • Program Committee--2002, 2003
  • World Wide Web Conference (WWW)
    • Security and Privacy Track Vice-Chair--2005
    • Security and Privacy Track Deputy Vice-Chair--2004
    • Program Committee--2003, 2007, 2010
  • IEEE INFOCOM
    • Program Committee--2007
  • Financial Cryptography
    • General Chair--2006
    • Program Committee--2007, 2008
  • International Conference on Information Systems Security (ICISS)
    • Steering Committee--2007
    • Program Co-Chair--2007
    • Program Committee--2005, 2006, 2009
  • International Conference on Parallel Processing
    • Program Committee-Network Security--2003
  • ACM SIGCOMM Workshop on Networking, Systems, Applications on Mobile Handhelds (MobiHand)
    • Member--2009
  • ACM Workshop on Cloud Computing Security
    • Member--2009
  • International Workshop on Security in Software Engineering
    • Founding General Co-Chair--2007
  • USENIX Workshop On Offensive Technology (WOOT 07)
    • Program Committee--2007
  • ACM Storage Security and Survivability Workshop
    • Program Committee--2006
  • ACM SIGCOMM Workshop on Internet Network Management
    • Program Committee--2006, 2007
  • Annual IFIP WG 11.3 Working Conference on Data and Applications Security (DBSec)
    • Program Committee--2006, 2007, 2008
  • International Conference on Emerging Trends in Information and Communication Security (ETRICS)
    • Program Committee--2006
  • Workshop on Workshop on Telecommunications Infrastructure Protection and Security (TIPS)
    • General Chair--2009
  • International Workshop on Systems and Network Security (SNS)
    • Program Committee--2005, 2006
  • IEEE ICNP Workshop on Secure Network Protocols (NPSec)
    • Program Committee--2005, 2006
  • The Five Nines Workshop on Designing and Managing High Availability Internet Services (INM 2007)
    • Program Committee--2007

Other Professional Activities

  • Natural Sciences and Engineering Research Council of Canada, Internetworked Systems Security Network
    • Scientific Advisory Board--2008-present
  • Technology for Cyber Physical System Security Forum, Cyber Security Research and Development, (Senators Joseph I. Lieberman and Susan Collins, Chairs)
    • Speaker and Participant--September 2008
  • ACM Student Organization Advisor
    • Penn State Computer Science and Engineering Department--2006-present
  • The Technology Collaborative
    • Penn State Representative (Pennsylvania economic development consortium)--2007-2008
  • President's National Security Telecommunications Advisory Panel
    • Member, Next Generation Networks Task Force--2005-present
  • Abusable Technologies Awareness Center (ATAC)
    • Panelist--October 2003-present
  • ATT IP Services Security Council
    • Member--June 2003-August 2004
  • ATT Internet Intellectual Property Review Team
    • Member--September 2001-May 2002
  • ACM SIGCOMM Student Travel Grant Committee
    • Member--August 2005
  • National Science Foundation, Grant Review Panel
    • Member--2003, 2004, 2006, 2007, 2009
  • Department of Energy SciDAC Review Panel
    • Member--2001

Industrial Experience

Software Developer, Applied Innovation, Inc., Columbus, OH, 1994-1995
Served as lead developer of the AppliedView network management system, a hardware configuration and monitoring platform.

Project Manager, Primary Access Corporation, San Diego, CA, 1993-1994
Technical lead for server-based network management platform for rack-mounted network-mediation devices.

Software Developer, Primary Access Corporation, San Diego, CA, 1991-1993
Developed UNIX-based server application that coordinates the operation of remote network management terminals.

Software Developer, Integrated Technologies, Inc., Muncie, IN, 1989
Worked as a C programmer responsible for development and maintenance of installation code for statistical process control system.

Affiliations

  • Association for Computing Machinery (ACM)
  • The Institute of Electrical and Electronics Engineers (IEEE), Senior Member
  • USENIX Advanced Computing Systems Association