Lorenzo Cavallaro

Publications

Menu:

• Home
• Research
• Publications
• Ph.D. & M.Sc
• Technical Reports
• Projects
• Teaching Experiences

International Conferences & Workshops

• Your Botnet is My Botnet: Analysis of a Botnet Takeover Brett Stone-Gross, Marco Cova, Lorenzo Cavallaro, Bob Gilbert, Martin Szydlowski, Richard Kemmerer, Chris Kruegel, and Giovanni Vigna In the Proceedings of the 16th ACM Conference on Computer and Communications Security (CCS), 2009 (To Appear) [PDF] [BibTex]
• A Parallel Architecture for Stateful, High-Speed Intrusion Detection Luca Foschini, Ashish V. Thapliyal, Lorenzo Cavallaro, Christopher Kruegel, and Giovanni Vigna In the Proceedings of the 4th International Conference on Information Systems Security (ICISS) 16-20 December 2008 JNTU, Hyderabad, India [PDF] [BibTeX]
• Anomalous Taint Detection (Extended Abstract) Lorenzo Cavallaro, and R. Sekar In the Proceedings of the 11th International Symposium On Recent Advances In Intrusion Detection (RAID) Boston, MA, USA, September 15-17, 2008 [PDF] [BibTeX]
• On the Limits of Information Flow Techniques for Malware Analysis and Containment Lorenzo Cavallaro, Prateek Saxena, and R. Sekar In the Proceedings of the GI SIG SIDAR Conference on Detection of Intrusions and Malware & Vulnerability Assessment (DIMVA) July 10-11, 2008, Paris, France [PDF] [BibTeX] [Slide]
• LISABETH: Automated Content-based Signature Generator for Zero-day Polymorphic Worms Lorenzo Cavallaro, Andrea Lanzi, Luca Mayer, and Mattia Monga International Workshop on Software Engineering for Secure Systems (SESS) 2008 [PDF] [BibTeX] [Slide]
• Static Analysis on x86 Executable for Preventing Automatic Mimicry Attacks Danilo Bruschi, Lorenzo Cavallaro, and Andrea Lanzi In the Proceedings of the GI SIG SIDAR Conference on Detection of Intrusions and Malware & Vulnerability Assessment (DIMVA) July 12-13, 2007, Lucerne, Switzerland [PDF] [BibTeX]
• Diversified Process Replicae for Defeating Memory Error Exploits Danilo Bruschi, Lorenzo Cavallaro, and Andrea Lanzi In the Proceedings of the 3rd International Workshop on Information Assurance (WIA) April 11-13, 2007, New Orleans, Louisiana, USA [PDF] [BibTeX] [Slide]
• An Efficient Technique for Preventing Mimicry and Impossible Paths Execution Attacks Danilo Bruschi, Lorenzo Cavallaro, and Andrea Lanzi In the Proceedings of the 3rd International Workshop on Information Assurance (WIA) April 11-13, 2007, New Orleans, Louisiana, USA [PDF] [BibTeX]
• Replay Attack in TCG Specification and Solution Danilo Bruschi, Lorenzo Cavallaro, Andrea Lanzi, and Mattia Monga In 21th Annual Computer Security Application Conference (ACSAC) Tucson, AZ, USA [PDF] [BibTeX] [Slide]
• Less harm, less worry or how to improve network security by bounding system offensiveness Danilo Bruschi, Lorenzo Cavallaro, and Emilia Rosti In 16th Annual Computer Security Application Conference (ACSAC) USA, 2000 [PDF] [BibTeX]

Ph.D. & M.Sc.

• Comprehensive Memory Error Protection via Diversity and Taint-Tracking Lorenzo Cavallaro Ph.D. Dissertation Università degli Studi di Mil[ano (University of Milan), Italy, Feb 2008 [PDF] [BibTeX] [Slide]
• Analysis, Design and Realization of a Trusted Computing Platform Emulator Lorenzo Cavallaro M.Sc. Thesis Università degli Studi di Milano (University of Milan), Italy, Feb 2008 [PDF] [BibTeX]

Technical Reports

• Mining the Network Behavior of Bots Lorenzo Cavallaro, Christopher Kruegel, and Giovanni Vigna Technical Report 2009-12 Department of Computer Science, University of California, Santa Barbara (UCSB), Jul 2009 [PDF] [BibTeX]
• PAriCheck: An efficient pointer arithmetic checker for C programs Yves Younan, Pieter Phillipaerts, Lorenzo Cavallaro, R. Sekar, Frank Piessens, and Wouter Joosen Technical Report CW 554 Department of Computer Science, Katholieke Universiteit Leuven, Belgium, Jun 2009 [PDF] [BibTeX]
• Your Botnet is My Botnet: Analysis of a Botnet Takeover Brett Stone-Gross, Marco Cova, Lorenzo Cavallaro, Bob Gilbert, Martin Szydlowski, Richard Kemmerer, Chris Kruegel, and Giovanni Vigna Technical Report Department of Computer Science, University of California at Santa Barbara (UCSB), USA, Apr 2009 [PDF] [BibTeX]
• Anomalous Taint Detection Lorenzo Cavallaro, and R. Sekar Technical Report SECLAB08-06 Department of Computer Science, Stony Brook University, USA, Jun 2008 [PDF] [BibTeX]
• Anti-Taint-Analysis: Practical Evasion Techniques Against Information Flow Based Malware Defense Lorenzo Cavallaro, Prateek Saxena, and R. Sekar Technical Report SECLAB07-03 Department of Computer Science, Stony Brook University, USA, November 2007 [PDF] [BibTeX]
• LISABETH: Automated Content-based Signature Generator for Zero-day Polymorphic Worms Lorenzo Cavallaro, Andrea Lanzi, Luca Mayer, and Mattia Monga Technical Report RT 18-07 Department of Computer Science, University of Milan, Italy, 2007 [PDF] [BibTeX]
• Diversified Process Replicae for Defeating Memory Error Exploits Danilo Bruschi, Lorenzo Cavallaro, and Andrea Lanzi Technical Report RT 14-06 Department of Computer Science, University of Milan, Italy, 2006 [PDF] [BibTeX]
• Syscalls Obfuscation for Preventing Mimicry and Impossible Paths Execution Attacks Danilo Bruschi, Lorenzo Cavallaro, and Andrea Lanzi Technical Report RT 10-06 Department of Computer Science, University of Milan, Italy, 2006 [PDF] [BibTeX]
• Attacking a Trusted Computing Platform [Improving the Security of TCG Specification] Danilo Bruschi, Lorenzo Cavallaro, and Andrea Lanzi Technical Report RT 05-05 Department of Computer Science, University of Milan, Italy, 2005 [PDF] [BibTeX]

© 2008 Lorenzo Cavallaro
Original design by Andreas Viklund