"You write down the problem. You think very hard. Then you write down the answer." —Murray Gell-Mann, describing Richard P. Feynman's problem-solving abilities.
This page contains links to most of my major publications. Other sources listing my publications include: | |
|
|
For presentation slides, see the Web pages of the corresponding papers. Slides for extended presentations of my work are available from this Web page. A list of technical reports on which I am co-author is available here. |
Topics ― SEC: Security; PRIV: Privacy; SWE: Software Engineering & Analysis; MOB: Mobile Systems; CLD: Cloud Computing; WEB: Web Platforms; SYS: Computer Systems & Architecture; AI/ML: Machine Intelligence; | |
Journal, Conference and Workshop Papers | |
pets'24
PRIV MOB |
Privadome: Delivery Drones and Citizen Privacy Gokulnath M. Pillai, Ajith Suresh, Eikansh Gupta, Vinod Ganapathy and Arpita Patra, Proceedings of PETS'24, the 24th Privacy Enhancing Technologies Symposium Bristol, United Kingdom, July 2024. |
ndss'24
SYS SEC PRIV |
Decentralized Information-Flow Control for ROS2 Nishit V. Pandya, Himanshu Kumar, Gokulnath M. Pillai and Vinod Ganapathy, Proceedings of NDSS'24, the 31st Annual Network and Distributed System Security Symposium San Diego, California, February/March 2024. |
sec'23
SYS SEC PRIV |
A Contributory Public-Event Recording and Querying System Arun Joseph, Nikita Yadav, Vinod Ganapathy, and Dushyant Behl, Proceedings of SEC'23, the 8th ACM/IEEE Symposium on Edge Computing Wilmington, Delaware, December 2023. |
ccs'23
SYS SEC SWE |
Whole-Program Control-Flow Path Attestation Nikita Yadav and Vinod Ganapathy, Proceedings of CCS'23, the 30th ACM Conference on Computer and Communications Security Copenhagen, Denmark, November 2023. |
Comsnets'23
SYS SEC SWE |
Data Protection in Permissioned Blockchains using Privilege Separation Arun Joseph, Nikita Yadav, Vinod Ganapathy, Dushyant Behl, Praveen Jayachandran, Proceedings of COMSNETS'23, the 15th International Conference on Communication Systems and Networks Bangalore, India, January 2023. |
usenix'21
SEC SYS CLD |
Faastlane: Accelerating Function-as-a-Service Workflows
Swaroop Kotni, Ajay Ashok Nayak, Vinod Ganapathy, and Arkaprava Basu, Proceedings of USENIX ATC'21, the 2021 USENIX Annual Technical Conference Virtual event, July 2021. |
AsiaCCS'21
SEC SYS CLD |
(Mis)managed: A Novel TLB-based Covert Channel on GPUs
Ajay Ashok Nayak, B. Pratheek, Vinod Ganapathy, and Arkaprava Basu, Proceedings of AsiaCCS'21, the 16th ACM Asia Conference on Computer and Communications Security Virtual event (originally: Hong Kong), June 2021. |
taco'20
SEC SYS CLD |
SGXL: Security and Performance for Enclaves using Large Pages Sujay Yadalam, Vinod Ganapathy, and Arkaprava Basu, ACM Transactions on Architecture and Code Optimization, Volume 18, Number 1, Article 12, pages 12:1-12:25, December 2020. |
ccs'20
PRIV MOB SYS |
Privaros: A Framework for Privacy-Compliant Delivery Drones
Rakesh Rajan Beck, Abhishek Vijeev, and Vinod Ganapathy, Proceedings of CCS'20, the 27th ACM Conference on Computer and Communications Security Virtual event (originally: Orlando, Florida, USA), November 2020. |
fse'20
SEC SWE CLD |
An Evaluation of Methods to Port Legacy Code to SGX Enclaves
Kripa Shanker, Arun Joseph, and Vinod Ganapathy, Proceedings of ESEC/FSE'20, the 28th ACM Joint European Software Engineering Conference and Symposium on the Foundations of Software Engineering Virtual event (originally: Sacramento, California, USA), November 2020. |
aaai'20
PRIV AI/ML |
ActiveThief: Model Extraction using Active Learning and Unannotated Public Data
Soham Pal, Yash Gupta, Aditya Shukla, Aditya Kanade, Shirish Shevade, and Vinod Ganapathy, Proceedings of AAAI'20, the 34th AAAI Conference on Artificial Intelligence New York, New York, USA, February 2020. |
HotMobile'19
PRIV MOB SYS |
Regulating Drones in Restricted Spaces
Abhishek Vijeev, Vinod Ganapathy, and Chiranjib Bhattacharyya, Proceedings of HotMobile'19, the 20th International Workshop on Mobile Computing Systems and Applications Santa Cruz, California, USA, February 2019. |
codaspy'18
SEC SYS |
Secure, Consistent, and High-Performance Memory Snapshotting Guilherme Cox, Zi Yan, Abhishek Bhattacharjee and Vinod Ganapathy, Proceedings of CODASPY'18, the 8th ACM Conference on Data and Application Security and Privacy Tempe, Arizona, USA, March 2018. |
plas'17
SEC SWE |
Compiler Optimizations with Retrofitting Transformations: Is there a Semantic
Mismatch? Jay P. Lim, Vinod Ganapathy and Santosh Nagarakatte, Proceedings of PLAS'17, the 12th ACM SIGSAC Workshop on Programming Languages and Analysis for Security Dallas, Texas, USA, October 2017. |
icdcs'17
SEC SYS CLD |
EnGarde: Mutually-Trusted Inspection of SGX Enclaves Hai Nguyen and Vinod Ganapathy, Proceedings of ICDCS'17, the 37th International Conference on Distributed Computing Systems Atlanta, Georgia, USA, June 2017. |
jase'16
SEC SWE MOB |
Detecting Plagiarized Mobile Apps using API Birthmarks Daeyoung Kim, Amruta Gokhale, Vinod Ganapathy, and Abhinav Srivastava, Automated Software Engineering (Springer), Volume 23, Issue 4, December 2016, pages 591--618. |
c&s'16
SEC CLD |
Exploring Infrastructure Support for App-based Services on Cloud Platforms Hai Nguyen, Vinod Ganapathy, Abhinav Srivastava, and Shivaramakrishnan Vaidyanathan, Computers and Security (Elsevier), Volume 62, September 2016, pages 177-192. |
MobiSys'16
PRIV MOB SYS |
Regulating ARM TrustZone Devices in Restricted Spaces Ferdinand Brasser, Daeyoung Kim, Christopher Liebchen, Vinod Ganapathy, Liviu Iftode, and Ahmad-Reza Sadeghi, Proceedings of MobiSys'16, the 14th ACM International Conference on Mobile Systems, Applications, and Services Singapore, June 2016. |
ase'15
SWE MOB |
Testing Cross-Platform Mobile App Development Frameworks Nader Boushehrinejadmoradi, Vinod Ganapathy, Santosh Nagarakatte, and Liviu Iftode, Proceedings of ASE'15, the 30th IEEE/ACM International Conference on Automated Software Engineering Lincoln, Nebraska, USA, November 2015. |
socc'14
SEC CLD |
On the Control Plane of a Self-service Cloud Platform Shakeel Butt, Vinod Ganapathy, and Abhinav Srivastava, Proceedings of SOCC'14, the 5th ACM Symposium on Cloud Computing Seattle, Washington, USA, November 2014. |
fse'14
SEC SWE WEB |
Efficient Runtime Enforcement Techniques for Policy Weaving Richard Joiner, Thomas Reps, Somesh Jha, Mohan Dhawan, and Vinod Ganapathy, Proceedings of FSE'14, the 22nd ACM SIGSOFT International Symposium on the Foundations of Software Engineering Hong Kong, November 2014, The results in the paper were certified by the FSE'14 artifact evaluation committee. |
ecoop'14
SEC SWE WEB |
Retargetting Legacy Browser Extensions to Modern Extension Frameworks Rezwana Karim, Mohan Dhawan, and Vinod Ganapathy, Proceedings of ECOOP'14, the 28th European Conference on Object-Oriented Programming Uppasala, Sweden, July/August 2014. |
tifs'13
SEC SYS |
Monitoring Integrity using Limited Local Memory Yuki Kinebuchi, Shakeel Butt, Vinod Ganapathy, Liviu Iftode, and Tatsuo Nakajima, IEEE Transactions on Information Forensics and Security, 8(7), July 2013, pages 1230-1242. |
icse'13
SWE MOB |
Inferring Likely Mappings Between APIs Amruta Gokhale, Vinod Ganapathy, and Yogesh Padmanaban, Proceedings of ICSE'13, the 35th ACM/IEEE International Conference on Software Engineering San Francisco, California, USA, May 2013. |
ancs'12
SEC |
Fast Submatch Extraction using OBDDs Liu Yang, Pratyusa Manadhata, William G. Horne, Prasad Rao, and Vinod Ganapathy, Proceedings of ANCS'12, the 8th ACM/IEEE Symposium on Architectures for Networking and Communications Systems Austin, Texas, USA, October 2012. |
ccs'12a
SEC CLD |
Self-service Cloud Computing Shakeel Butt, H. Andrés Lagar-Cavilla, Abhinav Srivastava, and Vinod Ganapathy, Proceedings of CCS'12, the 19th ACM Conference on Computer and Communications Security Raleigh, North Carolina, USA, October 2012. |
ccs'12b
SEC SWE |
Leveraging “Choice” to Automate Authorization Hook Placement Divya Muthukumaran, Trent Jaeger, and Vinod Ganapathy, Proceedings of CCS'12, the 19th ACM Conference on Computer and Communications Security Raleigh, North Carolina, USA, October 2012. |
ccsw'12
SEC CLD |
Towards a Richer Model of Cloud App Markets Abhinav Srivastava, and Vinod Ganapathy, Proceedings of CCSW'12, the 4th ACM Cloud Computing Security Workshop Raleigh, North Carolina, USA, October 2012. |
spsm'12
SEC MOB |
Short Paper: Enhancing Users' Comprehension of Android Permissions Liu Yang, Nader Boushehrinejadmoradi, Pallab Roy, Vinod Ganapathy, and Liviu Iftode, Proceedings of SPSM'12, the 2nd ACM CCS Workshop on Security and Privacy in Mobile Devices Raleigh, North Carolina, USA, October 2012. |
ecoop'12a
SEC SWE WEB |
An Analysis of the Mozilla Jetpack Extension Framework Rezwana Karim, Mohan Dhawan, Vinod Ganapathy, and Chung-chieh Shan, Proceedings of ECOOP'12, the 26th European Conference on Object-Oriented Programming Beijing, China, June 2012. |
ecoop'12b
SEC WEB |
Enhancing JavaScript with Transactions Mohan Dhawan, Chung-chieh Shan, and Vinod Ganapathy, Proceedings of ECOOP'12, the 26th European Conference on Object-Oriented Programming Beijing, China, June 2012. |
ComNet'11
SEC |
Fast, Memory-efficient Regular Expression Matching with NFA-OBDDs Liu Yang, Rezwana Karim, Vinod Ganapathy, and Randy Smith, Computer Networks (Elsevier), 55(15), October 2011, pages 3376-3393, Extends [raid'10]. |
tdsc'11
SEC SWE SYS |
Detecting Kernel-Level Rootkits using Data Structure Invariants Arati Baliga, Vinod Ganapathy, and Liviu Iftode, IEEE Transactions on Dependable and Secure Computing, 8(5), September/October 2011, pages 670-684, Extends [acsac'08a]. |
rv'11
SEC SYS |
Monitoring Data Structures using Hardware Transactional Memory Shakeel Butt, Vinod Ganapathy, Arati Baliga, and Mihai Christodorescu, Proceedings of RV'11, the 2nd International Conference on Runtime Verification San Francisco, California, USA, September 2011. |
MobiSys'11
SEC MOB |
Security versus Energy Tradeoffs in Host-based Mobile Malware Detection Jeffrey Bickford, H. Andrés Lagar-Cavilla, Alexander Varshavsky, Vinod Ganapathy, and Liviu Iftode, Proceedings of MobiSys'11, the 9th ACM International Symposium on Mobile Systems, Applications, and Services Bethesda, Maryland, USA, June/July 2011. |
raid'10
SEC |
Improving NFA-based Signature Matching using Ordered Binary Decision
Diagrams Liu Yang, Rezwana Karim, Vinod Ganapathy, and Randy Smith, Proceedings of RAID'10, the 13th International Symposium on Recent Advances in Intrusion Detection Ottawa, Canada, September 2010, Journal version appears as [ComNet'11]. |
plas'10
SEC WEB |
Position Paper: The Case for JavaScript Transactions Mohan Dhawan, Chung-chieh Shan, and Vinod Ganapathy, Proceedings of PLAS'10, the ACM SIGPLAN 5th Workshop on Programming Languages and Analysis for Security Toronto, Canada, June 2010. |
HotMobile'10
SEC MOB |
Rootkits on Smart Phones: Attacks, Implications and Opportunities Jeffrey Bickford, Ryan O'Hare, Arati Baliga, Vinod Ganapathy, and Liviu Iftode, Proceedings of HotMobile'10, the 11th International Workshop on Mobile Computing Systems and Applications Annapolis, Maryland, USA, February 2010. |
acsac'09a
SEC WEB |
Analyzing Information Flow in JavaScript-based Browser Extensions Mohan Dhawan, and Vinod Ganapathy, Proceedings of ACSAC'09, the 25th Annual Computer Security Applications Conference Honolulu, Hawaii, USA, December 2009, Outstanding Student Paper Award. |
acsac'09b
SEC SYS |
Protecting Commodity Operating System Kernels from Vulnerable Device
Drivers Shakeel Butt, Vinod Ganapathy, Michael M. Swift, and Chih-Cheng Chang, Proceedings of ACSAC'09, the 25th Annual Computer Security Applications Conference Honolulu, Hawaii, USA, December 2009. |
UbiComp'09
PRIV MOB |
Privately Querying Location-based Services with SybilQuery Pravin Shankar, Vinod Ganapathy, and Liviu Iftode, Proceedings of UbiComp'09, the 11th International Conference on Ubiquitous Computing Orlando, Florida, USA, September/October 2009. |
sacmat'09
SEC MOB |
Working Set-Based Access Control for Network File Systems Stephen Smaldone, Vinod Ganapathy, and Liviu Iftode, Proceedings of SACMAT'09, the 14th ACM Symposium on Access Control Models and Technologies Stresa, Italy, June 2009. |
w2sp'09
SEC WEB |
Evaluating Attack Amplification in Online Social Networks Blase E. Ur, and Vinod Ganapathy, W2SP'09, the Web 2.0 Security and Privacy Workshop Oakland, California, USA, May 2009. |
acsac'08a
SEC SWE SYS |
Automatic Inference and Enforcement of Kernel Data Structure Invariants Arati Baliga, Vinod Ganapathy, and Liviu Iftode, Proceedings of ACSAC'08, the 24th Annual Computer Security Applications Conference Anaheim, California, USA, December 2008, Outstanding Student Paper Award. Journal version appears as [tdsc'11]. |
acsac'08b
SEC WEB |
OMOS: A Framework for Secure Communication in Mashup Applications Saman Zarandioon, Danfeng Yao, and Vinod Ganapathy, Proceedings of ACSAC'08, the 24th Annual Computer Security Applications Conference Anaheim, California, USA, December 2008. |
ccs'08
SEC SYS |
Enforcing Authorization Policies using Transactional Memory
Introspection Arnar Birgisson, Mohan Dhawan, Úlfar Erlingsson, Vinod Ganapathy, and Liviu Iftode, Proceedings of CCS'08, the 15th ACM Conference on Computer and Communications Security Alexandria, Virginia, USA, October 2008. |
asplos'08
SWE SYS |
The Design and Implementation of Microdrivers Vinod Ganapathy, Matthew J. Renzelmann, Arini Balakrishnan, Michael M. Swift, and Somesh Jha, Proceedings of ASPLOS'08, the Thirteenth International Conference on Architectural Support for Programming Languages and Operating Systems Seattle, Washington, USA, March 2008. |
icse'07
SEC SWE |
Mining Security-Sensitive Operations in Legacy Code using Concept
Analysis Vinod Ganapathy, David King, Trent Jaeger, and Somesh Jha, Proceedings of ICSE'07, the 29th ACM/IEEE International Conference on Software Engineering Minneapolis, Minnesota, USA, May 2007. |
HotOS'07
SWE SYS |
Microdrivers: A New Architecture for Device Drivers Vinod Ganapathy, Arini Balakrishnan, Michael M. Swift, and Somesh Jha, Proceedings of HotOS'07, the 11th Workshop on Hot Topics in Operating Systems San Diego, California, USA, May 2007. |
acsac'06
SEC |
NetSpy: Automatic Generation of Spyware Signatures for NIDS Hao Wang, Somesh Jha, and Vinod Ganapathy, Proceedings of ACSAC'06, the 22nd Annual Computer Security Applications Conference Miami Beach, Florida, USA, December 2006. |
asplos'06
SWE |
HeapMD: Identifying Heap-based Bugs using Anomaly Detection Trishul M. Chilimbi, and Vinod Ganapathy, Proceedings of ASPLOS'06, the Twelfth International Conference on Architectural Support for Programming Languages and Operating Systems San Jose, California, USA, October 2006. |
Oakland'06
SEC SWE |
Retrofitting Legacy Code for Authorization Policy Enforcement Vinod Ganapathy, Trent Jaeger, and Somesh Jha, Proceedings of IEEE S&P'06, the 2006 IEEE Symposium on Security and Privacy Berkeley/Oakland, California, USA, May 2006. |
ccs'05a
SEC SWE |
Automatic Placement of Authorization Hooks in the Linux Security Modules
Framework Vinod Ganapathy, Trent Jaeger, and Somesh Jha, Proceedings of CCS'05, the 12th ACM Conference on Computer and Communications Security Alexandria, Virginia, USA, November 2005. |
ccs'05b
SEC |
An Auctioning Reputation System Based on Anomaly Detection Shai Rubin, Mihai Christodorescu, Vinod Ganapathy, Jonathon T. Giffin, Louis Kruger, Hao Wang, and Nicholas Kidd, Proceedings of CCS'05, the 12th ACM Conference on Computer and Communications Security Alexandria, Virginia, USA, November 2005. |
icse'05
SEC SWE |
Automatic Discovery of API-Level Exploits Vinod Ganapathy, Sanjit A. Seshia, Somesh Jha, Thomas W. Reps, and Randal E. Bryant, Proceedings of ICSE'05, the 27th ACM/IEEE International Conference on Software Engineering St. Louis, Missouri, USA, May 2005. |
ccs'03
SEC SWE |
Buffer Overrun Detection using Linear Programming and Static Analysis Vinod Ganapathy, Somesh Jha, David Chandler, David Melski, and David Vitek, Proceedings of CCS'03, the 10th ACM Conference on Computer and Communications Security Washington, DC, USA, October 2003. |
entcs'02
SWE |
Slicing Synchronous Reactive Programs Vinod Ganapathy, and S. Ramesh, Proceedings of the 1st Workshop on Synchronous Languages, Applications and Programming Grenoble, France, July 2002. |
Theses | |
PhD'07
SEC SWE |
Retrofitting Legacy Code for Authorization Policy Enforcement Vinod Ganapathy, Ph.D. dissertation, University of Wisconsin-Madison, Madison, Wisconsin, USA, August 2007, ISBN: 978-0-549-19468-2. Supervised by Professor Somesh Jha. The dissertation is essentially a concatenation of three conference papers: ccs'05a, Oakland'06 and icse'07. |
BTech'01
SWE |
Efficient Verification of Synchronous Programs Vinod Ganapathy, B.Tech. Project Report (Undergraduate thesis), Indian Institute of Technology Bombay, Powai, Mumbai, May 2001, Supervised by Professor S. Ramesh. |
Patents Issued | |
IN-426359 |
A Method and System for Implementing Privacy Compliance Associated with Host
Areas on Agent Devices
Vinod Ganapathy, Rakesh Rajan Beck and Abhishek Vijeev, Indian Patent Number 426,359, issued on March 22, 2023. |
US-9542216 |
Richer Model of Cloud App Markets Abhinav Srivastava and Vinod Ganapathy, US Patent Number 9,542,216, issued on January 10, 2017. |
US-8566935 |
Balancing Malware Rootkit Detection with Power Consumption on Mobile
Devices Horacio Andres Lagar-Cavilla, Jeffrey Bickford, Vinod Ganapathy, Liviu Iftode, and Alexander Varshavsky, US Patent Number 8,566,935, issued on October 22, 2013. |
US-7770153 |
Heap-Based Bug Identification using Anomaly Detection Trishul M. Chilimbi and Vinod Ganapathy, US Patent Number 7,770,153, issued on August 3, 2010. |
Funding Acknowledgments. My research has been funded by a number of grants from the Indian Department of Science and Technology, the Indian National Security Council, a Ramanujan Fellowship from the Government of India, US National Science Foundation, the US Army Research Office and US Army CERDEC, the US Air Force Office of Scientific Research, research gifts from NEC Research Laboratories America, Microsoft Research India, (the late) Sun Microsystems, and a number of internal sources at IISc and Rutgers. Their support is gratefully acknowledged. |