Curriculum Vitae - The University of Texas at Dallas

Curriculum VitaeBhavani Thuraisingham, Ph.D.February 20121. Biography 22. Major Awards 53. Synopsis of Research 74. Research Leadership 135. Resume Summary 156. Industry/Government Experience 197. Teaching Experience (Academic and Professional) 238. Academic Research Supervision 279. Research Funding 3110. Publications List (Authored works, e.g., Journals, Conferences, Books) 3611. Edited Works (e.g., Books, Proceedings, Journals) 6112. Technical Reports 6413. Presentations (e.g., Keynote addresses, panels) 7414. Software Prototypes Developed 9215. National and International Research Collaboration 9816. Intellectual Property and Patents 9917. Discussion of Published Work in Secure Dependable Data Management (1985-2010) 10118. Discussion of Complete Research and Publications (1980-Present) 11319. Professional Activities 11820. Media Reports 12221. Cyber Security Research Center and Affiliated Labs 1271

Minnesota, Java Development Certification from Learning Tree International, the Certificate in TerrorismStudies at St. Andrews University, Scotland and CISSP (Certified Information Systems SecurityProfessional) certification with ISC2.Dr. Bhavani is the founding president of “Bhavani Security Consulting, LLC”, a company providingservices in consulting and training in Cyber Security and Information Technology. She is also the founderof “Knowledge and Security Analytics, LLC”, a spin-off company from UTD developing tools in assuredinformation sharing and “Evolving Malware Security, LLC” a second spinoff company from UTDdeveloping malware detection tools. She also serves on the inaugural corporate board of AccuvantCorporation since 2011.Dr. Bhavani promotes Math and Science to high school students as well as to women andunderrepresented minorities, and is a member of the Society of Women Engineers (SWE). She hasparticipated in panels at CRA-W and has given featured addresses at conferences sponsored by WITI(Women in Technology International) and SWE. She has been involved with IEEE Computer Societyactivities for over 10 years first serving on the conferences and tutorial board and later on the awardsboard. She also serves on the ACM Policy Council advising about policy issues on privacy and intellectualproperty and on the ACM-W council promoting women in computing. She is a strong advocate forsafeguarding children and has participated in a National Academy panel on protecting children frominappropriate content on the Internet chaired by the Hon. Dick Thornburgh in 2000 and is continuing withthese efforts and recently participated in the EastWest Institute’s 1 st Worldwide Security Summit panel onprotecting our children in cyberspace. She also writes motivational articles including one on CS Careers inthe Global Economy and another on an 8E framework for promoting women in science and engineering.Articles on her efforts and her vision, as well as her team’s research, have appeared in multiple mediaoutlets including the Dallas Morning News, The Boston Globe, ABC News, D Magazine, MITRE Matters,the DFW Metroplex Technology magazine and Raytheon Technology Magazine, as well as press releasespublished by UTD, MITRE, the United States Air Force, and IBM Research Zurich among others. She hasalso appeared on DFW television giving her views on cyber security. Her additional awards include the2001 Woman of Color Research Leadership Award from Career Communications Inc. and the Fellow ofthe Society of Information Reuse and Integration (subcommittee of IEEE Systems, Man and CyberneticsSociety).4

EXTERNALSection 2: MAJOR AWARDSBest paper award, IEEE Conference on Systems Sciences, 1988 on Secure Query ProcessingStrategies (Invited paper published in IEEE Computer, March 1989)Recipient of IEEE Computer Society’s 1997 Technical Achievement Award for contributions tosecure distributed database management. As cited by IEEE, “this award is given to individualswho have made outstanding and innovative contributions in the field of computer and informationscience and engineering within the past 15 years”.IEEE Senior Member 1997 (now a Fellow)Recipient of Career Communication Inc.’s National 2001 Woman of Color Technology ResearchLeadership AwardFeatured in SiliconIndia’s May 2002 issue as one of the top seven technology innovators (theonly woman) in USA of South Asian origin (others are from Stanford, Berkeley, MIT, NASA,PARC and HP Labs). The innovation was for data and web security.Recipient of IEEE’s 2003 Fellow Award for Contributions to Secure Systems involvingdatabases, distributed systems and the web. As stated by IEEE, “each year, following a rigorousevaluation procedure, the IEEE Fellow Committee recommends a select group of recipients forone of the Institute's most prestigious honors, election to IEEE Fellow”.Recipient of AAAS (American Association for the Advancement of Science) 2003 Fellow Awardfor “Outstanding and Innovative Contributions to Secure Database Systems and Secure WebInformation Systems”Recipient of British Computer Society (BCS) 2005 Fellow Award for contributions toinformation technology IEEE Distinguished Lecturer, 2002-20052010 Research Leadership Award for Outstanding and Sustained Leadership Contributions to theField of Intelligence and Security Informatics presented jointly by the IEEE IntelligentTransportation Systems Society’s Technical Committee on Intelligence and Security Informaticsin Transportation Systems and the IEEE Systems, Man and Cybernetics Society’s TechnicalCommittee on Homeland Security2010 ACM SIGSAC Outstanding Contributions Award for seminal research contributions andleadership in data and applications security for over 25 years2010 ACM Distinguished Scientist5

2011 AFCEA (Armed Forces Communications and Electronics Association) Medal of Merit forService to AFCEA and Sustained Professional Excellence in Communications, Electronics,Intelligence and Information SystemsRecipient of 2011 SDPS (Society for Design and Process Science) Fellow Award forTransdisciplinary research in cyber securityRecipient of 2011 Society of Information Reuse and Integration (Subcommittee of IEEE Systems,Man and Cybernetics Society) Fellow Award for “outstanding research contributions andleadership in Secure Knowledge Management”INTERNALMITRE Program Achievement Awards 1997 (AWACS), 2002 and 2005 (IRS Research Credit)MITRE Director’s Awards 1997 (Data Mining), 1997 (Distributed Objects) MITRE Author of the Month Award (1997, 1999) Honeywell Computer Sciences Center Employee of the Month Award (April 1987)Control Data Corporation, Arden Hill Programming Division, CDCNET Award (September1985) NSF Program Awards (ITR 2003, Cyber Trust 2005)Louis A. Beecherl, Jr. I Distinguished Professorship in the Erik Jonsson School of Engineeringand Computer Science, The University of Texas at Dallas, 2010UTD Author Receptions (2007, 2008, 2009, 2010, for 4 books published while at UTD) UTD Invention Disclosure Awards, April 2010 UTD Invention Disclosure and Tech Transfer Award, November 20106

Section 3: SYNOPSIS OF RESEARCHMy research combines theory and practice. During the past 30+ years I have utilized my PhD research intheory of computation and complexity theory with my systems expertise in industry to develop prototypesbased on fundamental principles. Much of my research during this time was on the design anddevelopment of secure data management systems based on fundamental principles. A synopsis of myresearch follows.After I finished my PhD, starting in 1980, I continued with my research in computability theory andpublished four papers on my thesis work. They are: (i) Cylindrical Decision Problems for SystemFunctions in the Notre Dame Journal of Formal Logic in 1983; System Functions and their DecisionProblems, in Zeitschrift fur Mathematische Logik und Grundlagen der Mathematik. (Mathematical LogicQuarterly) in 1984; The Concept of N-Cylinder and its Application in Zeitschrift fur Mathematische Logikund Grundlagen der Mathematik in 1986; and Reducibility Relationships Between Decision Problems forSystem Functions in Zeitschrift fur Mathematische Logik und Grundlagen der Mathematik in 1987. Untilmy research, there was no generalized framework to study different classes of decision problems. In otherwords, recursion theoretic properties were studied for individual problems such as the halting problem, thederivability problem and the confluence problem. With my framework, we were able to study theindividual problems with the generalized classes. This was a major breakthrough at that time. I develepedcounter-examples for properties that could not be proved. This was achieved by the concept of N-Cylinderwhich I defined. N-Cylinder was an extension of Paul Young’s semi-cylinder. By using the N-Cylinder, Iwas able to show that the general confluence problem was neither recursive nor a cylinder while JohnCleave (my advisor at the University of Bristol) was unable to prove this result back in the early 1970swith the use of Young’s semi-cylinder.Between 1980 and 1983, while at the New Mexico Tech and at the University of Minnesota, I continuedto work on this topic and produced five more journal papers: Representation of One-One Degrees byDecision Problems in the Journal of Computer and Systems Sciences in 1982; Some Elementary ClosureProperties of N-Cylinders in the Notre Dame Journal of Formal Logic in 1983; The Concept of N-Cylinder and its Relationship to Simple Sets in the Notre Dame Journal of Formal Logic in 1983;Representation of One-One Degrees by N-Cylindrical Decision Problems in Zeitschrift furMathematische Logik und Grundlagen der Mathematik in 1988; and System Function Languages inMathematical Logic Quarterly in 1993. Furthermore, there were some questions that John Cleave posed inhis work in the early 1970s which I solved in the early 1980s. Particularly interesting was the followingquestion: could every one-one degree be represented by a particular decision problem? Cleave had shownthat every m-degree could be represented by a decision problem in the early 1970s which was a weakerresult. Cleave believed that the answer to this question would be a major breakthrough as this would showthe existence of decision problems that are Simple. In fact this was the first problem I worked on after myPhD. It was published in the prestigious Journal of Computer and Systems Sciences. This work wouldlater (1989) help me prove that the inference problem was unsolvable, a significant development indatabase security.Between January 1984 and January 1986, I worked at Control Data Corporation as I wanted to get realworld industrial experience working in a product development environment in computer networks anddistributed systems so that I get a feel for how systems really work. During this time I started research insecure dependable distributed systems that would complement my work at Control Data Corporation. Icollaborated with Prof. W. Tsai and his student at the University of Minnesota and together we addressedthe challenging problem of fault tolerance in a binary tree task model. Prior work had focused on a treewith a single child. We felt that binary tree model would be more realistic as tasks usually spawn multipletasks. After several years of work, we published our research in IEEE Transactions on SoftwareEngineering..Due to my increasing interest in secure systems, I joined Honeywell in January 1986 as I felt having aresearch-oriented job would strengthen my research in secure systems. I started working in the challengingarea of secure data management. I was part of a team designing one of the two prominent high assurance7

secure database systems. I was a key contributor to this design which was published in IEEE Transactionson Knowledge and Data Engineering in 1990 entitled “Design of LDV, A Multilevel Secure DatabaseManagement System”. Our team made significant contributions to building secure database systemsbased on a type enforcement mechanism to produce high assurance systems. Some of our concepts on dataclassification methods were used by Oracle and others in emerging commercial products at that time.During this time I got interested in the inference and aggregation problem and was one of three pioneerson this topic (the others being Thomas Hinke at TRW and Mathew Morgenstern at SRI). The problem isas follows: how can you prevent a user from combining unclassified pieces of data and deducingclassified data? The first paper I wrote on this topic “Security Checking in Relational Database SystemsAugmented with Inference Engines” was published in the Computers and Security Journal. While I was atHoneywell I collaborated with Professor Wei-Tek Tsai and his student at the University of Minnesota anddeveloped novel query rewriting techniques for secure query processing which addressed some aspects ofthe inference problem. This paper published in the Proceedings of the IEEE Conference on SystemsSciences in January 1988 received the best paper award and we were subsequently invited to publish anenhanced version of the paper “Secure Query Processing Strategies” in the popular IEEE ComputerMagazine in March 1989. My continued collaboration with them resulted in the first ever paper on secureobject database systems published in the Proceedings of the 1988 National Computer SecurityConference. The system was subsequently called SODA and an enhanced version was later published inComputers and Security Journal in 1989. The papers mentioned in this paragraph have several citations inGoogle scholar.While my main research at Honeywell was on data security, I also conducted some research in datamanagement. In particular, I developed technologies for integrating heterogeneous data dictionaries. Thiswas a breakthrough at that time as many of the approaches only worked with homogeneous databases anddictionaries. This work was published in the Proceedings of the National Computer Conference in 1987and transferred to Honeywell’s Residential Control Division. Later in 1988, I teamed with researchers incontrol systems and developed an expert control system called XIMKON. This work was presented in theAAAI workshop on control systems and published as a book chapter. A version was also published in theAmerican Control Systems Conference in 1989. The research was transferred to Honeywell's IndustrialAutomation Division and this gave me a lot of experience with technology transfer.In January 1989 I joined MITRE and started working on three topics. One is secure distributed databasesystems, the second is inference problem and the third is secure object systems. In the area of distributeddatabase systems we developed designs of secure query processing and secure transaction processing andimplemented the designs. The paper “Design and Implementation of a Distributed Query Processor” waspublished in the Journal of Systems and Software. The significant impact we had with this system is that itwas the first such system to connect databases in Bedford, MA, McLean, VA and Fort Monmouth, NJ in1991and the demonstration was a huge success with the Air Force, Navy, the Army and the NSA.With respect to the inference problem, I used the techniques I had developed during my PhD and duringthe early 1980s and proved that the inference problem was unsolvable in 1989. This work was presented atthe IEEE Computer Security Foundations Workshop which was a highly prestigious venue in 1990. Soonafter, at the 1990 National Computer Security Conference in Washington DC, Dr. John Campbell of NSAwrote in the Proceedings that 1990 was a great year for secure database research and stated something tothe effect “Bhavani Thuraisingham proving that the inference problem was unsolvable was the mostsignificant result in 1990”. Then in the early 1990s, together with the team, I designed and developed thefirst database inference controller and distributed database inference controller. Two papers werepublished, one in Data and Knowledge Engineering on “Design and Implementation of a DatabaseInference Controller” and another in the IEEE Transactions on Knowledge and Data Engineering on“Security Constraint Processing in a Multilevel Secure Distributed Database System”. Both these papershave several citations. Following this, I wanted to develop logic for secure databases so that systems basedon logical principles could be developed. Subsequently I developed a logic called NTML (NonmonotonicTyped Multilevel Logic). It had to be nonmonotonic as one could have different information in differentsecurity worlds. The papers from this work were published in IEEE Computer Security FoundationsWorkshop in 1991 and 1992, and this had a significant impact on the foundations work in securedatabases that was to be carried out later on. As a third approach to handling the inference problem, I used8

the concepts in semantic nets and conceptual graphs and developed methods for secure applicationsdesign. A paper titled “On the Use of Conceptual Structures for Handling the Inference Problem”published in IFIP Data Security Conference in 1991 is widely quoted and Dr. Thomas Hinke and his teambased their research on my work. At that time, the database security community was divided about theapproach to designing inference controllers. Many felt that it had to be done during database design time.However, I was perhaps one of a handful of researchers who was far-thinking. I believed that a timewould come where we would have the technologies to address the limitations we had in 1990. Therefore, Ifelt that we needed an integrated approach to study the inference problem, during query, update anddatabase design. Some researchers from the University of Texas at that time agreed with me and publishedin the Proceedings of the 1991 Computer Security Applications Conference something to the effect that“Thuraisingham’s approach was correct”. Now, almost 20 years later, it is my approach that the semanticweb community is pursuing–including Dr. Tim Finin and his team at the University of Maryland,Baltimore County and Sir Tim Berners Lee and his team at MIT. We are also developing inferencecontrollers during query processing with semantic web technologies since 2005. My research on theinference problem has resulted in three US Patents. These patents are widely cited in numerous otherpatents, and have been purchased by Intellectual Ventures from MITRE for a substantial sum of money (Iwas told that my patents were three of the four “must have” patents Intellectual Ventures wanted).As stated earlier, the third area I focused back in late 1980s was on secure objects. After working on thefirst secure object system with the team at the University of Minnesota, I felt that we had to look atexisting object models and examine security issues. My paper on SORION (which incorporated securityinto ORION) was published in the highly prestigious conference ACM OOPSLA. This paper is titled“Mandatory Security in Object Database System” and is widely cited. Prof. Elisa Bertino from Purdue hasstated that this paper is a “must read” for anyone wanting to work in object security. This was followed bythe design and implementation of a system using ObjectStore data manager and we presented the results toOntos Corporation which was developing the first commercial secure object database system with fundingfrom the Air Force.Around 1992, while continuing to work in secure databases, I then started to get into a new area and that isreal-time data management. This was because the Air Force had a critical need to modernize the oldsystems such as AWACS (Airborne Warning and Control System). Because of my strong expertise in datamanagement, I was invited to join the team. The contributions we made here are long-lasting. Wepublished papers in the main conferences and workshops in object real-time systems and they are widelycited. While working with the team to design and develop a main memory data manager based on objectsand adapt the priority ceiling concurrency control protocol for the data manager, I was the first tointroduce real-time features for Object Request Brokers. I first presented this work at the Navy’s NextGeneration Standards meeting in Newport, Rhode Island in June 1994. Then, with the team, we wrote aposition paper and presented it at OOPSLA 1994 workshop. I then used some of my ideas into buildingthe infrastructure for AWACS. In August 1995, I was invited to participate in a panel at Object World inSan Francisco. At the end of my talk I said, “It’s time for OMG (Object Management Group) to start aspecial interest group on this topic”. I was contacted by some people who attended OMG, and I gave sometechnical presentations to them and helped co-found the group. This was a huge breakthrough as thosewho were going to operationalize the prototypes we had developed would now have standards to workwith for the middleware. During this time I also wanted to combine my work in security and real-time tobuild dependable systems. I presented some ideas at a Navy meeting in December 1992, and got Prof.Sang Son from the University of Virginia interested in this topic and we collaborated on a few papers.Then I combined all my ideas together in a design of a dependable system and this paper was published inIEEE Transactions on Knowledge and Data Engineering in 1999 which spawned a new area of research.During 1995 I was given the role of managing a department in information and data management. Iintroduced data mining to MITRE Corporation in October 1995. My colleague Dr. Chris Clifton (who isnow at Purdue and who was in my department) worked with me and we put together three programs indata, text and image mining. One of the projects was jointly carried out with Prof. Jeff Ullman of StanfordUniversity and Sergey Brin (who is the co-founder of Google). Sergey had planned his thesis to be on atopic called Query Flocks. I engineered this collaboration between MITRE and Stanford which gaveMITRE tremendous visibility among the major players in data mining. The two teams published a paper9

on Query Flocks at ACM SIGMOD which is widely cited. Although I was invited to join as a co-author, Ideclined as I only put my name on a paper if I have made technical contributions to that paper. At thesame time, I got the MITRE team to write an article on data management research at MITRE and got itpublished in the highly visible ACM SIGMOD RECORD. This article instantly put MITRE on the map asa player in data management and data mining.In my position, by the late 1990s, I had to interact with people at many levels. These included researchers,government sponsors, and management at MITRE among others. In addition, I had my own research todo. Therefore, I felt that I had to write some books that would educate the high level managers andgovernment sponsors about the key concepts. Therefore, I started writing a few books on datamanagement and data mining. That has now evolved into twelve books on data management, data miningand data security. Around the late 1990s, being at MITRE I felt that I was getting more and more removedfrom what industry was doing. By that time, my six years in industry at Control Data and Honeywell inthe 1980s seemed so long ago. Therefore, when the IRS (Internal Revenue Service) consulting opportunityfor examining software research credit arose at MITRE, I took the position without any hesitation. Thisgave me insights (and continues to give me insights) into what the Fortunate 500 companies do and whatthey ought to do with respect to software. Therefore, now I have such an excellent understanding of whatindustry is doing which is helping me a lot with my own university spin-off company.In January 2001, I felt I was ready for the big move to Washington to see what it is like to be inside thegovernment. My plan was to go there for one year to manage the data management program. But I endedup spending three years. I started the data and applications security program and co-founded the cybertrust theme. I started my own research in secure semantic web and data privacy and worked with theUniversity of Milan team on XML Security. Our joint research papers were published in two prestigiousjournals: IEEE Transactions on Knowledge and Data Engineering on Third Party Publication of Data andin ACM Transactions on Information and Systems Security on Privacy for Trust Management. While atNSF, I also began to get a clear picture and understand the government’s needs. With this knowledge, Ithen joined The University of Texas at Dallas.My task at the university was to establish a cyber security research center. While I had some startup fundsfor my own research, I did not have funds to start the center. Therefore, I decided to focus on datasecurity. After 9/11, there was a huge demand for information sharing. Therefore, I started a project withthe Air Force and worked on assured information sharing. Our papers were published in several journalsincluding the Journal of Information Security and Privacy. More importantly, I wrote the one page paperthat went into the DoD MURI BAA (Department of Defense Multidisciplinary University ResearchInitiative Broad Agency Announcement). This resulted in a very large research project on this topic.While my team’s focus is on incentives-based information sharing, which is an interdisciplinary projectbetween economists, management scientists, social scientists and computer scientists, my work alsocontinued to be in policy management for semantic web and I expanded it to social networks. Our paperpublished in ACM SACMT in 2009 was one of the early papers on security for social networks based onsemantic web and an enhanced version of this paper has appeared in the Computers and Security Journal.In addition to policy management and information sharing, my research also focused on ontologyalignment and data mining for security applications. In the area of ontology alignment, we used geospatialdata as the applications domain. Our papers were published in the prestigious conference ACM GIS threeyears in a row (2007-2009) and a paper was published in the highly prestigious Journal of Web Semantics.In the area of data mining for security applications, we have made tremendous progress in developingnovel techniques as well as tools. Several papers have been published including in prestigious conferencessuch as IEEE ICDM, and ECML/PKDD as well as in ACM Transactions on Management InformationSystems and IEEE Transactions on Knowledge and Data Engineering. A patent on stream mining as wellas another on social network mining have been filed. A small part of my time is spent on investigatingissues on dependable systems and we have a paper accepted in IEEE Transactions on Reliability on thistopic.Last but not least, one of the major areas for our government sponsors is secure cloud computing. Wehave a fairly large project on this topic and are building a secure cloud infrastructure to demonstrate theassured information sharing concept. We are one of the first to get into this area and have developed10

secure query processing for cloud. Papers on this topic have appeared in prestigious conferences andjournals such as IEEE Cloud Computing and IEEE Transactions on Knowledge and Data Engineering.We have also developed secure storage for grids and this paper was published in IEEE Transactions onDependable and Secure Computing. My current challenge is to look at virtual machines and hypervisorssuch as XEN being developed at the University of Cambridge, examine security issues and bring it intoour cloud infrastructure. Due to the excellent work we have done in this area, the US Air Force did a pressrelease on our research on their web site which has given us a lot of visibility (seehttp://www.wpafb.af.mil/news/story.asp?id=123209377) Several other articles have appeared about ourwork, including some internal press releases, and some comments from external organizations andagencies. These press releases are listed in Section H.I am very pleased with the way my research has progressed over the past 30 years. Coming from industryand government has helped me to understand real world problems and address these problems in myresearch. However, I have a very strong fundamental background with a B.Sc in Mathematics and Physicsfrom the University of Ceylon (1 st class), M.Sc in Mathematical Logic from the University of Bristol, anda PhD in Computability Theory from the University of Wales, Swansea. Therefore, I believe that to buildsystems that can last and be evolvable and adaptable, we need to build them with sound theoreticalprinciples. While continuing my research at the university will be my main priority, the university spin-offcompany we have started would give us an opportunity to transfer our technologies into products and spurjob creation which is one of the challenges we are faced with today. I would also like to point out somestatistics of my work as of December 4, 2010. In Google Scholar, 339 publications are listed between1982 and 2010. These 339 publications have a total citation of 3,099. The average citation per paper is9.14. My H-Index is 27 and G-Index is 42. My research has resulted in numerous awards and fellowshipsfrom IEEE and ACM, among others. More importantly it earned me the higher doctorate degree of Doctorof Engineering at the University of Bristol (ranked #23 among the world universities by the US News andWorld Report in 2010) for my thesis consisting of my published work on secure dependable datamanagement,After spending three years at the National Science Foundation and establishing programs in data andapplication security, I joined UTD in October 2004. At UTD I have developed two areas: (i) CyberSecurity, in particular Data and Applications Security and (ii) Information Management. In the area ofData and Applications Security, I have focused on four areas. (a) Assured information sharing: My teamin the CS department collaborates with the School of Management and Economics and Policy Sciences todevelop an interdisciplinary approach for incentive-based information sharing. (b) In addition, we havealso explored research issues in secure and private social networks. (c) We also developed novel privacypreservingdata mining and data integration techniques. (d) Policy management-based on semantic webtechnologies. (e) Data mining tools for security applications. Notable among these tools are those basedon novel class detection for stream mining. In the area of Information Management, our focus has been ondeveloping technologies for national security in two major areas. (a) We have designed ontologyalignment algorithms critical for homeland security applications and (b) developed geospatial datamanagement and mining techniques. In addition to data security and information management, my teamhas also focused on secure cloud computing and in-line reference monitors. In addition to collaboratingwith two of my colleagues and contributing to assured information sharing as well as to the data miningtools, my main research has been on policy management based on semantic web technologies. Our goal isto build inference controllers based on RDF data engines and RDF reasoning engines. Essentially, thisresearch extends my earlier work on the inference problem utilizing semantic web technologies. I havealso developed prototypes for policy management in a coalition environment.We are developing a multi-pronged approach to research. Our major goal is to publish papers in the mostprestigious journals and conferences. Since 2005, I have papers published in IEEE Transactions onKnowledge and Data Engineering, IEEE Transactions on Dependable and Secure Computing, ACMTransactions on Information and Systems Security, IEEE Transactions on Systems, Man and Cybernetics,and Very Large Database Journal. Prestigious conferences include IEEE Conference on Data Mining(ICDM) and ACM Conference of Access Control and Models (SACMAT). My team has published severalmore papers in IEEE as well as in ACM Transactions. Our second goal is to build systems. We havedeveloped several prototypes and tools and have published open source software. These tools are being11

utilized by our colleagues around the world. Our third goal is to disclose inventions, develop intellectualproperty and start spin-off companies. This is something we started in 2009. Our fourth goal is tocontribute to standards and we participate in W3C and OGC standards.Since October 2005, my team has generated over $14 million in research funding and over $2m ineducation funding including a DoD MURI, two NSF Career awards, AFOSR YIP and NSF SFS. Oursponsors include AFOSR, NSF, IARPA, NGA, NASA, ONR and NIH. Our major corporate sponsor isRaytheon. We also collaborate with Tektronix. I am working toward expanding our corporate sponsorbase and we are having discussions with Lockheed, Rockwell and IBM, among others.12

Section 4: RESEARCH LEADERSHIPhttp://ecs.utdallas.edu/news-events/news/csaward-6-10.htmlComputer Science Professor Bhavani Thuraisingham received the 2010 RESEARCH LEADERSHIPAWARD For Outstanding and Sustained Leadership Contributions to INTELLIGENCE ANDSECURITY INFORMATICS jointly awarded by The IEEE Intelligent Transportation Systems SocietyTechnical Committee on Intelligence and Security Informatics in Transportation Systems and The IEEESystems, Man, and Cybernetics Society Technical Committee on Homeland Security.Intelligence and Security Informatics (ISI), a term coined by Dr. H. Chen, McClelland Professor ofManagement Information System at the University of Arizona Business School, is an interdisciplinaryfield that integrates multiple disciplines such as computer and information sciences, social sciences andmanagement sciences to support law enforcement, counterterrorism and homeland security missions ofanticipation, interdiction, prevention, preparedness and response to terrorism and violence.Thuraisingham received this award at the Eighth IEEE ISI Conference in Vancouver, British Columbia onMay 24, 2010. Previous recipients of this award include Dr. John Phillips, Chief Scientist of the CIA in2006, and Dr. Henry Lee, the world renowned Forensics Scientist in 2008. Not only has Dr.Thuraisingham been a pioneering researcher in the field of ISI for the past 25 years, she has continued toprovide extensive leadership to the US Federal Government and the research community. In the earlyyears she focused on research in data security while at Honeywell and later at MITRE and for thisresearch she received the 1997 IEEE Computer Society’s Technical Achievement Award. Since then shehas expanded her research to include data mining for cyber security and counter-terrorism applications.National Science Foundation Program Director Dr. Maria Zemankova has stated that Thuraisingham “isextremely sharp technically and also is a born leader” (Reference: MITRE Matters, March 2003). Dr.Chris Clifton, Associate Professor at Purdue University, has stated “there have been a lot of areas whereshe’s been ahead of the game”.While Thuraisingham was at the MITRE Corporation, she was an advisor to the Chief of the NationalSecurity Agency’s (NSA) INFOSEC research between 1990 and 1997, and helped establish researchprograms in data security and also collaborated with researchers at NSA and mentored the juniorresearchers at the request of the then chief of NSA/R2. In 1993 she helped the Intelligence Community toestablish the Massive Digital Data Systems (MDDS) Initiative and continued to be an advisor to thisprogram until 1999. The results of the MDDS program were briefed to a DARPA (Defense AdvancedResearch Projects Agency) Office Director in December 1997 that ultimately led to DARPA’s EELD(Evidence Extraction and Link Detection) program. During this period, she also gave tutorials andseminars at numerous federal research laboratories and agencies including at ESC (Electronics SystemsCenter), DISA (Defense Information Systems Agency), NSA, EUCOM (United States EuropeanCommand), SPAWAR (The Space and Naval Warfare Systems Center), CECOM (US ArmyCommunications-Electronics Command), AFSPC (Air Force Space Command), AMC (Air MobilityCommand), ATIS-JPO (Advanced Integration Technical Services - Joint Program Office), IRS (InternalRevenue Service) and AIA (Air Intelligence Agency). She started consulting for IRS in January 1999 andcontinues to advise on software research credit. She also consulted to the Justice Department on softwarerelatedtax cases in 2001.Dr. Thuraisingham joined NSF in October 2001 as Program Director and became involved in Inter-agencyefforts on applying Data Mining for Counter-Terrorism. She gave invited talks at the White House Officeof Science and Technology Policy, the National Academy of Sciences as well as at the United Nations in2002 so that national and international programs could be established on this important topic. At the sametime, she established the Data and Applications Security Program at NSF and in 2003 she co-founded theCyber Trust theme. While at NSF, she was also a consultant to the Department of Health and HumanServices’ States Bioterrorism Initiative.13

Since joining UTD in October 2004, she has continued to provide leadership to government programs bygiving presentations on semantic web and data security as well as on data analytics to IARPA’s(Intelligence Advanced Research Projects Activity) KDD (Knowledge Discovery and Dissemination)Program, Air Force Research Laboratory, The Central Intelligence Agency and also the Department ofHomeland Security’s USVISIT program. She has continued to give presentations and tutorials at severalAir Force Bases including at Offut, Eglin, Lackland, Edwards and Kirkland as well as to the Navy inNorfolk, VA. In addition to advising the US Government and establishing research programs,Thuraisingham has also influenced the field by giving over 70 keynote addresses at major internationalconferences since 1994. She has also provided services as an expert witness and has consulted to thefederal government through corporations.Thuraisingham’s tireless efforts have benefitted her research at UTD a great deal. Together with hercolleagues, she has established a strong research and education program at UTD in Cyber Security thatincludes DoD MURI, NSF Career, AFOSR YIP and NSF SFS (Scholarship for Service) awards. The teamhas also received grants from NIH, ONR, IARPA, NGA and NASA. Thuraisingham’s current efforts arein developing research, infrastructure and education programs in assured cloud computing. She promotesa strong customer-focused, team-oriented collaborative culture and she is working on bringing togetherthe vast number of DFW Corporations to work on interdisciplinary research programs. Most recently, sheis heading an international collaborative effort on assured sharing in a cloud environment.She promotes Math and Science to high school students as well as to women and underrepresentedminorities, and is a member of the Society of Women Engineers (SWE). She has given featured addressesat conferences sponsored by WITI (Women in Technology International) and SWE and received the 2001Woman of Color Research Leadership Award from Career Communications Inc. Articles on her effortsand her vision, as well as her team’s research, have appeared in multiple magazines including the DallasMorning News, the Boston Globe, ABC News, D Magazine, MITRE Matters the DFW MetroplexTechnology magazine. She has also appeared on DFW television giving her view on cyber security. Shehas participated in panels on education-related issues including one on protecting children frominappropriate content on the Internet chaired by Hon. Dick Thornburgh in 2000. She is continuing withthese efforts and recently participated in EastWest Institute’s 1 st Worldwide Security Summit panel onprotecting children in cyberspace.14

Section 5: RESUME SUMMARYName:Dr. Bhavani ThuraisinghamWork Address: Department of Computer ScienceThe University of Texas at Dallas, Richardson, TexasTitle:Louis A. Beecherl, Jr. I Distinguished ProfessorPhone: 972-883-4738; Fax: 972-883-2349Email:Bhavani.thuraisingham@utdallas.eduURL:http://www.utdallas.edu/~bxt043000/I. EDUCATIONHigher Doctorate: Doctor of Engineering, D. Eng, . July 2011, Thesis consisting of published work inSecure Dependable Data Management, University of Bristol, England.Ph.D. in Theory of Computation and Computability Theory; University of Wales, Swansea, UnitedKingdom, July 1979 (at age 24). Thesis: Decision Problems for System FunctionsAdvisors: Dr. Roger Hindley (Swansea), Dr. John Cleave (Bristol) – received most of the supervision atUniversity of Bristol and submitted thesis at University of Wales, Swansea due to residency requirementsM.S. in Computer Science, University of Minnesota, March 1984 (G.P.A. 4.0/4.0); Specialized in:Databases, Networks, Operating Systems. Dissertation: Transport Layer for a Token Ring Network,Advisor: Dr. William MunroeM.Sc. in Mathematical Logic and Foundations of Computer Science; University of Bristol, UnitedKingdom, January 1977; Thesis: Construction of a Universal Partial Recursive Functional; Advisors: Dr.John Cleave and Prof. John ShepherdsonB.Sc. in Pure Mathematics, Applied Mathematics, and Physics; University of Ceylon, August 1975(First Class and First in order of merit)CERTIFICATION PROGRAMS (with exams)1. JAVA Certification, Learning Tree International, 1998-2000 (5 courses)2. Certificate in Terrorism Studies, St. Andrews University, Scotland, January – May 20103. CISSP, May 2010PROFESSIONAL EDUCATION1. Management Development Program, 1996-1997, The MITRE Institute2. US Intelligence Community, AFCEA 19943. Cybil Programming Language, Control Data Institute, 1984II. HONORS AND AWARDS External: Recipient of 2011 AFCEA (Armed ForcesCommunications and Electronics Association) Medal of Merit for Service to AFCEA and SustainedProfessional Excellence in Communications, Electronics, Intelligence and Information Systems ;Recipient of 2011 SDPS (Society for Design and Process Science) Fellow Award for Transdisciplinaryresearch in cyber security; Recipient of 2011 Society of Information Reuse and Integration Fellow Awardfor “outstanding research contributions and leadership in Secure Knowledge Management”;Recipient of2010 ACM SIGSAC Outstanding Contributions Award; ACM Distinguished Scientist 2010; Recipient of2010 Research Leadership Award for Outstanding and Sustained Leadership Contribution to the Field ofIntelligence and Security Informatics; Recipient of IEEE’s 2003 Fellow Award for Contributions toSecure Systems involving databases, distributed systems and the web; Recipient of AAAS (AmericanAssociation for the Advancement of Science) 2003 Fellow Award; Recipient of British Computer Society(BCS) 2005 Fellow Award; Recipient of IEEE Computer Society’s 1997 Technical Achievement Awardfor outstanding and innovative contributions to secure distributed database management; Featured inSiliconIndia magazine (May 2002) issue as one of seven prominent technology innovators (the onlywoman) in the USA of South Asian origin; Recipient of Career Communication Inc.’s National 200115

Woman of Color Technology Research Leadership Award Best Paper Award, IEEE Conference onSystems Sciences, 1988.Internal: Louis A. Beecherl, Jr. I Distinguished Professorship, 2010; MITRE Corporation’s ProgramAchievement Award (distributed real-time systems) 1997; IRS Program Award 2002 and 2005; DirectorAwards for data mining and distributed objects, 1998.III. SIGNIFICANCE OF RESEARCHMy early research was on theory of computation and in particular, recursion theory. This research wascarried out as visiting professor at the New Mexico Institute of Technology and at the University ofMinnesota for three years. It resulted in several journal publications including in the Journal of Computerand Systems Sciences. Since 1985, my research has focused on data security. This research was carried outinitially at Honeywell, Inc. as well as the University of Minnesota as adjunct faculty of computer sciencefor over four years. I continued with this research at the MITRE Corporation starting in 1989. Significantcontributions include design and development of Lock Data Views Relational Database System, designand development of secure distributed database system, design and development of techniques to handlethe inference problem, design of NTML: a Non Monotonic Logic for Secure Data and Knowledge BasedSystems, design and development of secure multimedia and object systems, and the design anddevelopment of an object-based real-time data manager and middleware for next generation real-timecommand and control systems. I also used my background in theory and proved that the inferenceproblem was unsolvable. This work has been quoted by Dr. John Campbell of NSA as a significantdevelopment in database security in 1990. My main research now is focusing in four major areas: AssuredInformation Sharing; Securing the Semantic Web; Secure Geospatial Data Management; KnowledgeDiscovery/Data Mining for security applications and their privacy implications. I focus on developingsound theories and then build highly assured systems that are founded on theories that result in prototypes,some of which are transferred to operational systems and products.IV. WORK EXPERIENCE(i) The University of Texas at Dallas, Richardson, TX (October 2004 – Present): In October 2004, Ijoined the University of Texas at Dallas as Tenured Full Professor of Computer Science and Director ofthe Cyber Security Research Center at the Erik Jonsson School of Engineering and Computer Science.This is my first tenure track faculty appointment. Over the past seven years, I have hired and mentoredseveral junior faculty in Cyber Security in general and Data Security, in particular. Together we havesecured competitive research funding of over $14 million from several federal agencies including AirForce Office of Scientific Research, National Science Foundation, National Geospatial IntelligenceAgency, National Aeronautical and Space Administration, and Intelligence Advanced Research ProjectsAgency. This funding also includes a prestigious DoD MURI award. In addition, we have established aclose research collaboration and partnership with Raytheon Corporation in DFW. Together we have about30 Ph.D. students; I graduated my first student in 2007. Due to our efforts, we were in the first group ofuniversities to receive the NSA/DHS Center for Excellence in Research Award in 2008. My team hassignificantly enhanced UTD’s education program in Information Assurance by introducing severalcourses including Data and Applications Security, Digital Forensics, Trustworthy Semantic Web,Biometrics, Privacy, Knowledge Discovery, Cryptography and Secure Programming Languages. UTDallas is one of the top universities in the world in data security education.(ii) National Science Foundation, Arlington, VA (Oct. 1, 2001 – September 30, 2004)IPA Position: Director of Cyber Trust, Data and Applications Security, Information and DataManagement.As an IPA from the MITRE Corporation at NSF for three years, I managed programs in InformationManagement, Sensor Networks, Data and Applications Security and Cyber Trust. In addition, I initiatedthe program in data and applications security and made it a focus area.(iii) The MITRE Corporation, Bedford, MA (January 1989 – October 2004): My 15 plus yearsexperience at MITRE has given me the opportunity to work on research, development and technologytransfer projects. I secured research funding from a number of sponsors including the Air Force, Navy,16

Army, NSA, and CIA as well as consulted for the IRS. I led team research efforts and designed anddeveloped algorithms and prototypes for secure distributed database systems, secure object systems andsecure deductive systems. I proved that the inference problem was unsolvable and developed solutions tolimited aspects of this problem. We also developed distributed object-based real-time systems andtransferred the technology to the AWACS program. Additionally, I built MITRE’s programs and gavethem international visibility in data mining and data security. For 4 years, I managed a department ofabout 28 staff. I am currently a consultant to IRS through MITRE on the software research credit program.(iv) Honeywell, Inc., Golden Valley, MN (January, 1986 – January, 1989) Position: PrincipalResearch Scientist / Engineer, Corporate Systems Development Division. I conducted research,development, and technology transfer activities in database security, data management, distributedprocessing, information systems, process control systems, payoff modeling, and AI applications. Inaddition to reports and proprietary documents, papers were also published in refereed journals andconferences. Work was carried out for Honeywell internal divisions, as well as for the Air Force andNASA.(v) Control Data Corporation, Arden Hills, MN (December 1983 – January 1986) Position: SeniorProgrammer/ Analyst, Arden Hills programming Division. I was involved in the design and developmentof the CDCNET (Control Data Communications Network) product. Company proprietary documents werealso written. Specifically, I was responsible for the design and development of transport, network, sessionlayers as well as several other components of the network. Details are given under the Industry Experiencesection.V. RESEARCH ACCOMPLISHMENTSPublications Statistics: Over 100 journal papers including articles in several IEEE Transactions, VeryLarge Database Journal, ACM Transactions, Journal of Computer and Systems Sciences and Notre DameJournal of Formal Logic. Over 200 Conference/Workshop Papers (IEEE, ACM and IFIP conferences),over 70 keynote/featured presentations, 12 books authored (data security, data management and datamining), 12 books edited; 4 US patents (3 obtained and 1 filed in data security).Research Contracts/GrantsUT Dallas: Over $14 million in grants and contracts by my team in assured information sharing,geospatial information management, semantic web, data mining for security applications, and securegrids. Sponsors include AFOSR, IARPA, NSF, NASA, NGA, ONR, NIH and Raytheon. Over $2 millionin education grants in cyber security from DoD and NSF.MITRE: I initiated and led several research projects for various sponsors including Navy (securedistributed databases, secure objects, inference problem/NTML), Army (inference problem, securityconstraint processing), Air Force (secure distributed databases and real-time databases/middleware), andNational Security Agency (secure federated databases, designing secure systems and applications). Eachproject that I led consisted of about three – five staff, a third with Ph.D.’s and half with MS degrees; alsoincluded students from Carnegie Mellon University, Cornell, University of Rhode Island and NorthEastern University.Prototypes and Products: UT Dallas: My students are implementing several prototypes in secure data,information and knowledge management systems, data mining tools for security applications, geospatialsemantic webs and social network tools. Some tools were transferred to the Raytheon program and we arehaving discussions on commercializing the data mining tools. Other: Developed parts of the CDCNETproduct at Control Data Corporation (extensive implementation in Cybil language). Oversaw theimplementation of expert process control system XIMKON at Honeywell as well as Network operatingsystem and students’ implementations at University of Minnesota (mostly C). Supervised very closely theimplementation of several prototypes based on my designs at MITRE. These included secure distributeddatabase system prototypes, database inference controller prototypes for query, update, and databasedesign, multimedia system prototypes simulating security features, active real-time data managementprototype, and real-time data management hosted on an infrastructure for real-time applications anddata/text mining and knowledge management prototypes.17

Educational Activities: I have promoted Math and Science among high school students (e.g., talks atUTD), women (SWE, WITI) and disadvantaged minorities (Career Communications). At NSF, I wasactively involved in the Math Science Education Partnerships between universities and high schools. Ihave been involved in tutorials at numerous conferences since 1987, AF/Army/Navy Bases since 1992,and AFCEA (Armed Forces Communications and Electronics Association) since 1998.VI. PROFESSIONAL ACTIVITIESMajor Advisory Boards: Advisory Board, Department of Computer Science, Purdue University 2005 -2006.Advisory boards for journals. Conference and Journal Boards: IEEE Distinguished Lecturer 2002 –2005; Chair IEEE Kanai Award 2002 – 2006; Editor in Chief, Computer Standards and Interface Journal,2005 – 2009; Editorial board member IEEE Transactions on Knowledge and Data Engineering (1996 –2000) the Journal of Computer Security (1990 – 2000), Computer Standards and Interface Journal (1993– present), ACM Transactions on Information Systems Security (2004 – 2008), IEEE Transactions onSecure Dependable Computing (2004 – present); Conference Programs: Program Chair for over 15conferences; Program committee member for over 100 conferences; Government Panels: NationalScience Foundation, National Academy of Sciences, Air Force Scientific Advisory Board, Department ofHealth and Human Services, and the White House Office of Science and Technology Policy.My education and work have been influenced a great deal by my personal life. My personalstatement “From Industry to Government to Academia” can be found under the section“Motivational Articles” on my UTD web site.18

Section 6: INDUSTRY/GOVERNMENT EXPERIENCEI. The MITRE Corporation, Bedford, MA (January 1989 – June 2005) www.mitre.orgTechnical Positions:* Chief Scientist/Engineer in Data Management, Information Technology Directorate(May 1999 – September 2001)* Senior Principal Scientist/Engineer, Advanced Information Systems Center (Sept. 1996 – May 1999)* Principal Scientist/Engineer, Advanced Information Systems Center (March 1995 – Sept. 1996)* Lead Scientist/Engineer, Network and Distributed Systems Center (August 1992 – March 1995),Information Security Center (January 1989 – August 1992)Management Positions:* Section Leader (June 1995 – October 1996) and Department Head (October 1996 – May 1999) inData Management and Object Technology, Advanced Information Systems Center and InformationTechnology Division. Staff grew from ten in June 1995 to approximately twenty-eight in May 1999.Leadership/Coordination Positions:* Head, MITRE’s Corporate Research and Development Initiative in Evolvable InteroperableInformation Systems (March 1996 – September 1997, budget approximately $4 million)* Head, MITRE’s Corporate Research and Development Initiative in Data Management (September1994 – March 1996, budget approximately $1 million)* Co-Director, MITRE Database Specialty Group (October 1993 – December 1995)Technical: My sixteen years experience at MITRE gave me the opportunity to work on research,development and technology transfer projects. I have worked for a number of sponsors including the AirForce, Navy, Army, NSA, CIA and IRS. I have worked with not only researchers and defense contractors,but also with Fortune 500 corporations in Information Technology. A summary of my technicalaccomplishments is listed below.Information Security: Between January 1989 and August 1992, my work focused entirely onInformation Security. I initiated and led various database and object security projects for the Army,Navy, Air Force, and the National Security Agency. The topics included secure distributed/federateddatabase management, inference problem, secure multimedia/object-oriented data management, andsecure client-server computing. I designed and supervised the implementation of a prototype securedistributed database system that connected database systems in Bedford, MA, McLean, VA, and FortMonmouth, NJ, the first developed. I also designed centralized and distributed database inferencecontrollers and supervised the implementation of these systems. In addition, I designed a secureobject/multimedia database system and supervised its implementation. Other contributions include theproof of the unsolvability of the inference problem, use of conceptual structures to design securedatabase applications and the development of a logic for secure data and knowledge base managementsystems. Since August 1992, I worked part-time on Information Security. My focus was on theinference problem and object security. I led a team project to investigate security for distributed objectsystems and this work impacted the security standards for the Object Management Group. I providedtechnical direction to DoD projects in database security between March 1991 and September 1996,was a consultant to NSA and mentored junior staff there. Between 1996 and 2001, I continued towork in Information Security by providing direction on the Inference problem to the Air Force andalso examining security issues for XML and web information systems.Data Management, Real-time Systems and Object Technology: My work in data management atMITRE began around August 1992. Since then I have initiated and led projects in real-time databasemanagement and distributed object management for evolvable real-time command and controlsystems, massive multimedia data management for Intelligence applications, and distributed objectmanagement for heterogeneous database integration. In addition, I have initiated and contributed to19

projects in data mining and warehousing. As part of my work, I have provided direction in datamanagement to the Department of Defense and the Intelligence community. In particular, betweenOctober 1993 and March 1999, I was the lead in providing technology direction for the IntelligenceCommunity initiative on Massive Digital Data Systems. Based on results of this effort, and togetherwith the CIA sponsor, we began discussions with DARPA on data mining in December 1997 andthese discussions eventually led to the EELD program at DARPA. Also, between October 1993 andSeptember 1999, I was part of a team providing direction for next generation real-time datamanagement and object systems for the AWACS project. For this work, I received the MITREProgram Achievement award in 1997. For the work in data mining and distributed objects, I receivedtwo MITRE Director awards in 1997.Consulting in Information Technology (IRS): Between January 1999 and September 2001, Iconsulted for the Internal Revenue Service by interviewing various Fortune 500 corporations on theirresearch and development tax credits. This work utilized my extensive experience in ComputerScience and Information Technology. It also enabled me to obtain an excellent understanding of theinternal details of databases, ERP, and e-commerce software. Between May 2000 and July 2001, Iworked with a major Fortune 100 corporation and the IRS jointly to determine the products that wouldqualify for research tax credit. For this effort, I reviewed numerous products that this companyworked on during FY00 which made me intimately familiar with the commercial products of a majorcorporation in the US in Information Technology. This work was reported in the Wall Street Journalin December 2000 and also claimed by the IRS as a success story in a major IRS and Fortune 100meeting in February 2001. As a result of this work, I received the MITRE Program Achievementawards in 2002 and 2005.Consultant to Air Force: In May 1999, I was appointed chief scientist/engineer in data managementin MITRE’s Information Technology Directorate and in this position provide data managementdirection for MITRE’s programs for the Air Force, In addition, I oversaw the information technologytechnical work in the directorate in the following areas: information management, e-business and webcomputing, real-time computing, and decision support. I also consulted on MITRE's corporateinitiatives in knowledge management and e-business. Between January 2001 and September 2001, Iwas Vice Chair of the Database Migration Panel to the AF Scientific Advisory Board (SAB).Other Consulting: In the 1990s, I consulted on several MITRE projects involving information anddata management sponsored by the Intelligence Community, NASA (EOS project) and FAA.Other Information: My work has resulted in IEEE Computer Society’s 1997 Technical AchievementAward, IEEE’s 2003 Fellow Award, AAAS 2003 Fellow Award, British Computer Society’s 2005Fellow Award, over 300 publications including over 90 journal articles, 3 software patents and 12books (10 published and 2 in preparation). I give tutorials to sponsors at conferences, and at theMITRE Institute in relational database management, distributed database management, heterogeneousdatabase integration, real-time data management, secure data management, object-oriented databasemanagement, and data mining. I have also participated in standards efforts including Department ofthe Navy’s Database Interface Standard and Object Management Group’s real-time and C4I standards.I have given over 150 professional presentations including 30 keynote/featured addresses at majorconferences. In addition, I participated in panels at the National Academy of Sciences and the AirForce Scientific Advisory Board.Leadership, Coordination: Between March 1996 and September 1997, as head of the EvolvableInteroperable Information Systems (EIIS) Initiative at MITRE reporting to the Vice President of Researchand Technology, I was responsible for research in data management, real-time systems, software reverseengineering, economic analysis for information system evolution and interoperation, and objecttechnology and architectures. I worked with the leaders in each of these areas. Prior to this responsibility,I led the corporate initiative in data management from September 1994 to March 1996 (which is part ofEIIS). As a co-director between October 1993 and December 1995, I organized meetings in data20

management to discuss projects as well as conferences at MITRE. Between October 1995 and May 1999,I was actively involved in promoting object technology within MITRE. In this role, I was part of aMITRE team working in distributed object management, attending Object Management Group meetingsand participating in the real-time SIG at OMG. I introduced real-time issues for the common objectrequest broker architecture at Object World West 1995, founded the C4I SIG at OMG in 1996, andorganized object technology conferences at MITREManagement: Between June 1995 and May 1999, as a department manager reporting to the Director ofthe Division, I developed the skills in my department of about thirty people in relational data management,object-oriented data management, distributed object management, distributed database management,heterogeneous database integration, multimedia data management, data warehousing, migrating legacydatabases, data mining, web technology, data security, and knowledge management. I formed four groupsin my department each focusing on a subset of the above technologies with security cutting across allareas. I initiated and continued projects each year at MITRE totaling 3 - 4 staff years. I was activelyinvolved in mentoring staff and helping them in leadership and coordination positions such as providingdirection for MITRE's research as well as organizing internal conferences in data management and objecttechnology. Between May 1999 and September 2001, as chief engineer, I had oversight of the technicalwork in MITRE's Information Technology Directorate for about 200 staff.II. National Science Foundation, Arlington, Virginia (Oct. 1, 2001 – September 30, 2004)IPA Position from the MITRE Corporation: Director of Information Cyber Trust, Data andApplications Security, Information and Data ManagementI completed a three year IPA from the MITRE Corporation at the National Science Foundation. At NSF,during 2002, I was program director for information and data management. This is approximately a $10million program a year and funds research in various aspects of information and data managementincluding data mining, information retrieval and information systems. I also participated in interdirectorateactivities on providing direction in Bioinformatics and Geoinformatics. In addition, I wasinvolved in the Math Science Partnership program with the Education Directorate. During 2003, I initiateda new program in Data and Applications Security ($2 million/year) and also managed the InformationManagement component of ITR (approximately $50 million) and Information Management for the SensorInitiative (approximately $2 million). During 2004, I was a member of NSF’s Cyber Trust Theme(approximately $30 million).During 2002 and 2003, I supported the Department of Health and Human Services on planning forinformation technologies to combat bioterrorism as part of the States’ Bioterrorism Initiative. In 2004, Iparticipated in an interagency study on Hard Problems in Cyber Security and completed a draft inSeptember (a version was later published by the government in 2006). The study report was used byagencies to fund future research in Information Security. Beginning in October 2001, I was active incounter-terrorism-related research especially on the use of data mining. I gave talks not only atconferences, but also at the White House Office of Science and Technology Policy and the United Nationsand participated in National Academy of Science activities in this area. I was a member of interagencyplanning on data mining for counter-terrorism. As an IPA, I also conducted research at MITRE, focusingon privacy, secure semantic web and secure sensor information management.III. Honeywell Inc., Golden Valley, MN (January 1986 - January 1989)http://www51.honeywell.com/honeywell/Position: Principal Research Scientist / Engineer, Corporate Systems Development DivisionI conducted research, development, and technology transfer activities in database security, datamanagement, distributed processing, information systems, process control systems, payoff modeling, andAI applications. In addition to reports and proprietary documents, papers were also published in refereedjournals and conferences. Work was carried out for Honeywell internal divisions as well as for the AirForce and NASA. Specific projects included the following: Design of a Multilevel Secure Database21

Management System (Rome Laboratory); Development of Engineering Information Systems (WrightLaboratory); Design of a Distributed Data Dictionary System (Honeywell’s Residential Control Division);AI Applications in Process Control Systems (Honeywell Industrial Automation Systems Division);Design of a Network Operating System for a Multicompatible Network Interface Unit (NASA);Development of a Payoff Model of Alternative Communication Strategies (Honeywell Corporate); Designof Innovative Software Architectures for Industrial and Buildings Control Systems (Honeywell BuildingControls Systems); and Design of Knowledge Transformation Strategies (Honeywell IndustrialAutomation Systems Division).IV. Control Data Corporation, Arden Hills, MN (December 1983 - January 1986)http://en.wikipedia.org/wiki/Control_Data_CorporationPosition: Senior Programmer/Analyst, Arden Hills Programming DivisionI was involved in the design and development of the CDCNET (Control Data Communications Network)product. Company proprietary documents were also written. Specifically, I was responsible for thefollowing: design, development and testing of CDCNET Transport layer (Generic and Xerox transportprotocols); design, development and testing of the first version of the CDCNET session layer, whichenabled the ASYNC Terminal Interface Program to communicate with the Cyber 170 Gateway; design,development and testing of X25 support for CDCNET, which would enable CDCNET to communicatewith an X25 Network; development and testing of CDCNET Network Layer; implementation of theIntranetwork layer, which supported HDLC, Ethernet and MCI Networks; design, and development andtesting of a set of command processors (transport Status command processor), which gathered informationabout the Transport connections, and also a set of command processors to configure an MCI network;development and testing of CDCNET memory management unit, which was responsible for releasing thebuffers depending on the congestion; acting as the Task Lead for testing CDCNET with other Cyberproducts. (Official start date of January 1984; consulted in December 1983)V. Bhavani Security Consulting (June 2005 – Present) www.dr-bhavani.orgI am the founding president of Bhavani Security Consulting, a consulting and training company. I consultfor the Department of Treasury through a contract from the MITRE Corporation on corporate researchcredit as well as being an expert witness in software. I also handle patent litigation cases as an expertwitness. I teach AFCEA (Armed Forces Communications and Electronics Association) courses in datamanagement, data mining for counter-terrorism and data security. Through AFCEA, I teach classes at AirForce bases including Offutt, Eglin, Lackland, Edwards and Kirkland. I consult for corporations intechnology futures and write books on data management and data security.VI. Knowledge and Security Analytics, LLC (UTD spin-off)http://www.knowledge-security.com/home.htmlA spin-off company was established in August 2010 based on UT Dallas research, focusing on datasecurity, geospatial data management, data mining and social networking. Partners: Dr. Latifur Khan andDr. Murat Kantarcioglu.VII. Evolving Malware Security, LLC (UTD Spin-off)www.evolvingmalwaresecurity.comA second spinoff company was established in September 2011 to commercialize our malware products.Dr. Latifur Khan is the main technical lead for this company.VII. Personal Tutors, England (1979-1980)http://www.personal-tutors.co.uk/home.htmlTaught high school students Mathematics and prepared them for GCE OL and GCE AL exams.Section 7: TEACHING EXPERIENCEI. Academic Teaching Experience (1980 – Present)22

Current (2004 – Present)The University of Texas at DallasPosition: Professor of Computer Science and Director of Cyber Security Research Center Data and Applications Security, Spring 2005, Spring 2006, Spring 2007, Spring 2008, Spring2009, Fall 2009, Fall 2010, Fall 2011 (based on my book Database and Applications Security:Integrating Data Management and Information Security, CRC Press/Auerbach, June 2005)Graduate level Biometrics, Fall 2005, Graduate level Building Trustworthy Semantic Webs, Fall 2006, Fall 2008, Spring 2010, Spring 2011 (based onmy book Building Trustworthy Semantic Webs, CRC Press, 2007) Ph.D. level Data and Applications Security, Spring 2007, Spring 2008, Spring 2011 (Information Assurance,Minor Core course) Undergraduate level Digital Forensics, Fall 2007, Fall 2008, Fall 2009, Fall 2010, Fall 2011 (Information AssuranceMinor, Core course) Undergraduate level Information and Security Analytics, (based on CISSP 10 Domains) Summer 2010, Summer 2011 Information Assurance, Minor: Data and Applications Security, as well as Digital Forensics, aretwo of the three mandatory security courses for a minor in Information Assurance at theUndergraduate level. Students work with ENCASE tool and conduct forensics analysis. Information Assurance Masters TrackPrevious (1980 – 2001)(i) New Mexico Institute of Technology, Socorro, New MexicoPosition: Visiting Professor 1980 – 1981Dept. Head: Prof. Tom Nartker (now at UNLV)1. Department of Computer ScienceTheory of ComputationPh.D. level course on theory of computation covering topics such as automata theory, complexitytheory and recursion theory, using the text book Theory of Computation by Barinard andLandweberDate: Fall Semester 1980 (August – December 1980)Mathematical Logic for Computer ScientistsSenior undergraduate/ 1 st yr MS level course covering logic, theorem proving. Developed my ownlecture notes. References used: Theorem Proving by Chang and Lee, Mathematical Logic by E.MendelssohnDate: Spring Semester 1981 (January – May 19812. Department of MathematicsCalculusUndergraduate level course in calculusDate: Spring Semester, 1981 (January – May 1981)(ii ) University of MinnesotaPosition: Visiting Professor, 1981 – 1982Adjunct Professor and Member of the Graduate Faculty, September 1984 – December 1988Schedule Coordinator: Prof. Sartaj Sahni (now at University of Florida)1. Department of Computer ScienceFortran ProgrammingUndergraduate course in FORTRAN programming23

Date: Fall Quarter 1984, Winter 1985, Spring 1985, Fall 1985, Winter 1986, Spring 1986, Fall1986, Winter 1987, Spring 1987, Summer I and II 1987, Fall 1987, Winter 1988, Spring 1988,Summer I and II 1988Basic and Advanced Assembly Language ProgrammingJunior and senior undergraduate as well as 1 st year MS level course in M68000 programmingDate: Fall 1985, Winter 1986, Spring 1986, Fall 1986Algorithms and Data StructuresJunior undergraduate course in algorithmsDate: Winter 1987, Winter 1988Programming Languages using SchemeJunior undergraduate course in Scheme programming and principlesDate: Spring 1987, Spring 1988Discrete Structure of Computer ScienceJunior undergraduate course in Combinatorial mathematics for computer scientistsDate: Summer I, 1986Principles of Programming LanguagesSenior undergraduate/1 st year MS level course on principles of programming languages includingprinciples of FORTRAN, Pascal, Algal, Lisp, Prolog, and SmalltalkDatabase Security, Ph.D. level seminar; Date: Fall 19872. Department of MathematicsCalculus and AlgebraUndergraduate level courses on calculus and algebraDate: Fall 1981, Winter 1982, Spring 1982, Spring 1985, Fall 1985, Winter 1986(iii) Boston UniversityPosition: Adjunct Professor of Computer Science, 1999 – 2001Point of Contact: Linda Goldberg1. Department of Computer ScienceAdvanced Data ManagementGraduate level course which covered relational databases, object databases, distributed databasesheterogeneous databases, migrating legacy databases, data mining, data warehousing, webdatabases.Based on my two books Data Management System Evolution and Interoperation, CRC Press,May 1997, and Data Mining, Technologies, Techniques, Tools and Trends, CRC Press, December1998Date: Spring Semester 2000, Spring Semester 2001.II. Professional Teaching Experience (1990 – Present)(i) The MITRE Institute (1990 – 2000)Position: InstructorSchedule Coordinator: Phil TrudeauCourses taught:Database Security (Four two hour lectures, 1990)Introduction to Databases (3 hour, 10 week course, 1992, 1993)Heterogeneous Database Integration (1 day course taught several times in 1993 – 1994)24

Object Databases (1 day course taught several times in 1993 – 1994)Real-time Databases (1 day course taught several times in 1994)Data Management Systems Evolution and Interoperation (2 day course taught several times in1997 -1999), based on my bookData Mining (1 day course taught several times in 1998 – 2000), based on my bookThrough the MITRE Corporation, I taught courses to several government agencies(1992 – 2000)Topics: secure databases, data management and data mining (based on my books)US Government (DoD and Intelligence)Agencies: Air Force (ESC, AIA, SPACECOM), Navy (SPAWAR, NRaD), Army (CECOM),Other: DISA, DISA/JPO, NSA, EUCOM(ii) AFCEA Professional Development Center (1998 – Present)Position: Instructor (helps in developing contacts with the DoD)Schedule Coordinator: Ann BeckhamCourses Taught (all courses based on my books – see publications)Data Management (3 day course in September 1998, June 1999)Data Management, Data Mining and E-Commerce (3 day course in October 2000)Data Management, Information Management and Knowledge Management (3 day course inOctober 2001, October 2002, October 2003, September 2004, October 2005)Data Mining (3 day course in June 2003, December 2003, December 2004, March 2006,December 2006, November 2007, May 2008, November 2008)Knowledge Management through Semantic Web and Social Network (April 2008, October 2009,April 2010, October 2010)Data Mining for Counter-terrorism (3 day course, June 2010)Data Management, Information Management and Knowledge Management: to the Air Forcethrough AFCEA (3 day course)Offutt AFB, October 2004Eglin AFB, March 2005Lackland AFB, August 2006Edwards AFB, June 2006Kirkland AFB, September 2006(iii) University of California, San Diego (2008)Security for Service Oriented Architecture portion of the Certificate Course on Systems Engineering,offered at UCSD under the directorship of Prof. Hal Sorenson. This course was also taught as part of theArchitecture course at AFCEA under the directorship of Prof. Alex Levis.(iv) The University of Texas at DallasCyber Security Certificate Course, Planned in 2012 (Course utilizing Shon Harris’ CISSP Trainingbook). Students will learn the 10 CISSP domains.NSF Scholarship for Service (SFS) Award 2010 - 2013In January 2010, I worked with my colleagues and submitted a proposal to the NSF SFS Program whichwas subsequently awarded. I visited several universities (e.g., NYU Poly, Mississippi State andUniversity of Tulsa) to learn from their successful experiences to put together this proposal.25

NSF Capacity Building on Assured Cloud Computing 2011-2013In January 2011, I worked with colleagues and submitted a proposal to NSF SFS for capacity buildingin assured cloud computing. This project was funded in September 2011. We are working on building aprogram in assured cloud computing.26

Section 8: ACADEMIC RESEARCH SUPERVISIONFor details of the projects, please see the Cyber Security Research Center website athttp://csrc.utdallas.edu/.The University of Texas at Dallas (October 2004 – Present)Ph.D. Students Graduated:Li Liu (2004 – 2008) Privacy Preserving Data Mining; May 2008 (formerly Senior SecurityStrategist at EBay; Currently Senior Cyber Security Risk Analyst at DTCC Corporation, WallStreet) Ryan Layfield (2004 – 2008) Social Network and Game Theory Applications, December 2008(Senior Research Scientist at CISCO) Zhong Wang (2007 – 2010) Complexity Results in Secure Wireless Networks, December 2010(Current research member Shanghai Jiao Tong University)M. Farhan Husain (2006 – 2011) Secure Geospatial Data Management, May 2011 (Currently withAmazon Cloud project)Tyrone Cadenhead (2008 – 2011) Secure Data Provenance Using Semantic Web Technologies,August 2011(currently research scientist at UTD)Wei-She, (2006 – 2011), Secure Web Services, December 2011 (currently research scientist atUTD)Jeffrey Partyka, 2007 – 2011, Geospatial Semantic Web, December 2011, (Raytheon Research)MS Students with Thesis Graduated (supported as RAs):Gal Lavee (December 2005) Suspicious Event Detection, Ph.D. at Technion-IsraelVibha Sethi (August 2006) Secure Sensor Networks, MotorolaAbinanthan (May 2007) Fingerprinting Biometrics and RFID, OracleSrinivasan (May 2007) Trust Management for Assured Information Sharing, Hewlett PackardPavan Chittamala (May 2007) Geospatial Data Management - MicrosoftJungin Kim (August 2007) Dependable Information Management, Samsung KoreaGanesh Subbiah (December 2007) Trust Negotiation for Semantic Web, ESRIYashashwini Harshakumar (2007) Assured Information Sharing, AmazonSonia Chib (2009) Geospatial Proximity for Blackbook, ESRIPranav Parikh (2009) Secure Amazon.com Web Services, YahooPankil Doshi (December 2010) SPARQL over Hadoop, Research in MotionPh.D. Students (supported as RAs):Vaibhav Khadilkar (2008) Managing Large RDF Graphs (completion 2013)Neda Alipanah (2007) Geospatial Semantic Web (completion 2012)Jyothsna Rachapalli (2009) Ontology Alignment and Development for NVD (completion 2013)Parveen Pallabi (2010) Secure Semantic Web (completion 2012)Lidan Fan (2011) Exploring research topics (completion 2014)Other StudentsAlam Ashraful (2005 – 2007) Geospatial Data Management (First job AT&T and now at Texas Energy)Natalie Tsublinik (2005 – 2008) Peer to Peer data management (Microsoft)Other Ph.D. students I have sponsored and/or mentored:27

Mehedy Masud, Stream Mining, Defended Thesis, October 2009Satyen Abrol, 2009 – PresentSunitha Ramanujam Toward an Integrated Semantic Web Interoperability Between Data Models(completed December 2011)James McGlothlin, Efficient Semantic Web Knowledge Management (completed December 2011)Non-Thesis MS Students (supported as Students Workers/RAs; with research papers):Parveen Pallabi (2005 – 2006) Face Recognition, RFID, Graduated, Texas InstrumentsAlam Ashraful (2006) Secure Geospatial Data Management, Graduated, AT&TSai Chatanya (2006) Privacy Preserving SurveillanceDilshad Cavus (2006) Data Mining for Assured Information SharingAmy Tan (2007) Mining Massive Data SetsRamaya Natarajan (2007) Secure Motion ManagementJyothsna Rachapalli (2008 – 2009) Semantic WebGreg Hellings (2009) Geospatial Data ManagementClay Woolam (2009) Data MiningOther non-Thesis MS Students on IARPA Project:Geospatial Proximity Team (2008 – 2009)Aniruddh Bajirao, Siddharth Manu, Laveesh BansalLucene & Hadoop Model Team (2008 – 2009)Phillip White, Abhishek Shanbhag, John George, Julie RauerSPARQL over Hadoop Team (2008 – 2009)Asif MohammedVariable Ontology Team (2008 – 2009)Mohit Pawar, Vijay Bahirji, Gaurav Kumar, Nilesh Singhania, Abhilash Kannan, Sandip GaikwadSemantic Support and Software Professionalization Team ( 2008 – 2010)Pralabh Kumar, Sharath JagannathCVE/NVD on Blackbook (Collaboration with NIST on the NVD Project) (2008 – 2009)Aniruddh BajiraoPost-Doctoral Research Associates:Dr. Mamoun Awad (February 2006 – August 2006) Assured Information Sharing, Ph.D. UT Dallas(currently Associate Professor U of UAE)Dr. Chuan Li (September 2006 – December 2006) Geospatial Data Mining, Ph.D. UT Dallas (JoinedBrown University as Post Doctoral Research Associate)Dr. Ebru Celikel (June 2006 – June 2007) Risk-based Access Control, Ph.D. Turkey (Senior Lecturer,UNT)Dr. Greg Lee (August 2007 – July 2009) Surgical/Secure Robots, Ph.D. University of Washington (Asst,Prof. Case Western)Dr. Mehedy Masud (March 2010 –December 2011) Malware Detection, Ph.D. UT Dallas (Joining as Asst.Prof. U of UAE)Research Scientist:Irina Sakharova (2010 – Present) Tracking Terrorist FinancingDr. Yan Zhou (2010 – Present) Data Security and Privacy, Ph.D. Washington University, St. LouisDr. Tyrone Cadenhead (2011 – Present) Data Provenance and Assured Cloud Computing, Ph.D., UTDallasVisiting Scholar:Dr. Jan Kallberg (2011-Present), Social and Policy Aspects of Security28

Thesis Committees: Serving/served on numerous internal and external MS and Ph.D. Committees sincejoining UT Dallas. External committees include University of Milan (2005 – 2009), University of Ottowa(2006), University of Maryland, Baltimore County (2005 – 2007).Research is proceeding in the following areas: Data and Applications Security and Privacy (AssuredInformation Sharing, Secure Geospatial Data Management, Data Mining for Security Applications,Secure Grid, Storage and Web Services, Secure Social Networks) and Information Management(Semantic Web, Information Integrating). Topics include the following:1. Data Security and PrivacyArea 1: Assured Information SharingTrustworthy partners experimentation, semi-trustworthy partners and game theory, untrustworthy partnersand worm detection, agent-based trust management, peer-to-peer trust management, data integrity andprovenance, risk-based access control and data sharingArea 2: Secure Geospatial Data ManagementSecure geospatial semantic web and web services, geospatial data management for emergencypreparedness, privacy for geospatial dataArea 3: Secure Semantic Web and Social NetworksPolicy management, inference control, security and privacy for social networksArea 4: Data Mining for Security ApplicationsIntrusion, buffer overflow and worm detection, automatic face recognition and RFID technologies, datamining for surveillance applications, secure robots for disaster recovery, data mining for fault detection,privacy preserving data miningArea 5: Secure Grid, Clouds, and Web ServicesAccountability for grids, delegation-based model for secure web servicesOther: Complexity TheoryExamining complexity results for sensor networks and security problems.2. Information ManagementOntology Alignment for Semantic Web, Geospatial Data Mining, Knowledge Management, ManagingLarge RDF graphs, Query Processing in Clouds, Geospatial Data MiningResearch Supervision: Previous (1980 – 2004)New Mexico Institute of TechnologyWhile I taught courses in theory of computation and Mathematics Logic, I conducted research inComplexity theory and published several journal papers including ones in the Journal of Computer andSystems Sciences and the Notre Dame Journal of Formal Logic. I developed a concept called SystemFunction Language in 1981 which was published later in 1993 in the Journal of Mathematical Logic.University of MinnesotaAs a member of the graduate faculty, together with Prof. Wei-Tek Tsai (now at Arizona State University),I co-supervised the following students from 1984 to 1988.Tom Keefe, Ph.D.29

Secure query processing and SODA system (several journal and conference papers, see publications –IEEE Computer Computers and Security)K. Hwang, Ph.D.Distributed system and networks; Conference paper in IEEE Local Area Networks 1987S. Chen, Ph.D.Fault Tolerant Distributed SystemsPaper in IEEE Transactions on Software EngineeringD. Thomsen, M.S.Prototyping secure database systemsJournal paper and conference papers (e.g. Computers and Security)Other Research: While I worked in the Mathematics Department in the early 1980s, I conducted researchwith Prof. Marian Pour-El on Algorithmic Information Theory and gave seminars at the University.The MITRE CorporationCollaborated with universities and supervised many students for senior undergraduate research projectsand graduate MS level students. In particular, collaborated with the following universities:Carnegie Mellon UniversityAmiel Kamon: Secure Distributed Query Processing, research funded by Navy-SPAWAR, Summer 1989,senior undergraduateJonathan O’Keefe: Constraint Processing in Secure Databases systems, research funded by Navy-SPAWAR (papers and patents) Summer 1990, Winter 1991, senior undergraduateCornell UniversityDavid Foti: Secure Distributed Databases, research funded by Army – CECOM, Summer 1992,undergraduateNortheastern UniversityGary Gengo: Active Real-time Data Management, research funded by Air Force (ESC) 1994, MSUniversity of Rhode IslandJointly with Professor Victor Wolfe supervised the following students:Michael Squadrito: MS (1994-1996) Research on Real-time Transaction Processing, research funded byAir Force (ESC)Roman Ginis: senior undergraduate (1996) Research on Real-time Data Management, research funded byAir Force (ESC)Massachusetts Institute of TechnologyCo-supervised MS students with Prof. Amar Gupta in secure e-commerce (2000-2001)(Journal paper in Knowledge management journal and conference papers)University of Milan, ItalyWith Prof. Elisa Bertino, I supervised two students, Barbara Carminati and Anna Squicciarini, in XMLSecurity (2000 – 2004)(Journal paper in TKDE and conference papers, e.g., EDBT)Thesis CommitteesIn addition to serving on the committees of many of the students I supervised, I also served on thecommittee for Ph.D. thesis at University of Minnesota, Latrobe University, Australia and University ofMilan, Italy (1999 – 2004).30

Section 9: RESEARCH FUNDINGI have obtained research funding at The University of Texas at Dallas, The MITRE Corporation, andHoneywell, Inc. My team at UT Dallas has brought in over $14 million in grants and contracts sinceOctober 2005 and over $2 million in education funding. Below I list only the federal funding I haveobtained. My team has also obtained research funding from commercial corporations.The University of Texas at Dallas (October 2004 – Present)1. Air Force Office of Scientific Research, 2005 – 2008 (PI)Topic: Information Operations Across Infospheres: Assured Information SharingResponse to BAA: Air Force Office of Scientific Research BAA 2005-ISubcontract to UTSAAmount: $300,0002. CH2MHILL, 2005 – 2007 (co-PI)Topic: Geospatial Data Management Equipment GrantPI: D. HarrisAmount: $50,0003. Raytheon Corporation, 2006 – 2009 (PI)Topic: Geospatial Semantic Web Research, Data Mining and SecurityRaytheon University Research ProgramAmount: $400,0004. Raytheon Corporation, 2007 – 2008 (co-PI)Topic: Geospatial Semantic Web Development for Security ApplicationsPI: L. KhanAmount: $100,0005. Air Force Office of Scientific Research, 2006 – 2009 (co-PI)Topic: System Integrity ControlResponse to BAA: Air Force Office of Scientific Research BAA 2006-ISubcontract from Purdue UniversityPI: M. KantarciogluAmount: $150,0006. The National Science Foundation, 2007 – 2009 (PI)Topic: A Semantic Framework for Policy Specification and EnforcementResponse to Program Solicitation: 07-500Collaboration with UMBC and UTSAAmount: $590,0007. The National Science Foundation, 2007 – 2008 (PI)Topic: Data and Applications Security WorkshopAmount: $50,0008. National Geospatial Intelligence Agency, 2007 – 2010 (co-PI)Topic: Geospatial Data Mining for Crime AnalysisResponse to Program Solicitation NURI-007Subcontract from University of MinnesotaPI: L. KhanAmount: $150,0009. National Aeronautic Space Administration, 2008 – 2010 (co-PI)31

Topic: Data Mining of Fault ReportsResponse to BAA: NASASubcontract from University of Illinois, Urbana ChampaignPI: L. KhanAmount: $360,00010. Department of Defense, 2008 – 2013 (PI: 2008-10, Co-PI: 2010-13)Topic: Assured Information SharingMulti-university research initiative (MURI) funded by the DoD/AFOSRResponse to BAA: MURI 2007 (Subcontract from UMBC)Amount: $1 million11. Department of Defense, 2008 – 2012 (PI)Topic: Secure Grid/Cloud Information ManagementMulti-university research initiative (MURI) funded by the DoDSubcontract to UTA and Purdue UniversityAmount: $2.2 million12. Department of Defense, 2009 – 2013PI: 2009-2011; Co-PI: 2011-2013Topic: Secure Social and Sensor NetworksSubcontracts to Purdue; Collin County, TXAmount: $1.55 million13. National Science Foundation, 2009 (PI)Topic: Intelligence and Security Informatics (Student Scholarships)Amount: $10,00014. Air Force Office of Scientific Research, 2009 – 2012 (Senior Personnel)Topic: Malware DetectionPI: Kevin Hamlen, co-PI: Latifur KhanAmount: $450,00015. National Science Foundation, 2009 (co-PI)Topic: Secure Peer to Peer Data Management (EAGER)PI: Kevin HamlenAmount: $80,00016. National Science Foundation, 2010 – 2013 (Senior Personnel)Topic: Privacy Preserving Ontology Alignment (TC: Small)PI: M. KantarciogluAmount: $260,00017. National Science Foundation, 2010 – 2013 (co-PI)Topic: Scholarship for ServicePI: Kamil SaracAmount: $1.8 million18. Air Force Office of Scientific Research, 2010 – 2011 (PI)Topic: Assured Cloud ComputingCo-PI: L. Khan, M. KantarciogluAmount: $44,00019. Air Force Office of Scientific Research, 2011 (Co-PI)Topic: Assured Cloud Computing Equipment32

PI: L. KhanAmount: $260,00020. National Science Foundation, 2011 – 2013 (PI)Topic: Capacity Building for Assured Cloud ComputingCo-PI: K. Hamlen, M. Kantarcioglu, K. Sarac, L. KhanAmount: $280,00021. National Science Foundation, 2011 – 2016 (Co-PI)Topic: Privacy-Enhanced Secure Data Provenance (TC: Large)PI: M. KantarciogluAmount: $912,00022. Texas Enterprise Research Funds, 2004 – 2008Topic: Data and Applications SecurityPart of technology funds awarded to UT Dallas by Texas Instruments and State of TexasAwards Received by Team Members (2006 – Present)Kevin Hamlen: Air Force Young Investigator Award, 2007, 350KMurat Kantarcioglu: NSF CAREER Award, 2009, 400KMurat Kantarcioglu: Botnet, ONR (subcontract from Purdue) , 2009, 60KMurat Kantarcioglu: Privacy in Genomic Databases, NIH (subcontract from Vanderbilt), 2009, 350KMurat Kantarcioglu: Provenance for Sensor Data, NSF NeTS, 2010, 260KKevin Hamlen: NSF Career, 2011, 500KKevin Hamlen: Medium Trustworthy Computing, 2011, 550KLatifur Khan, Tektronix, 100KLatifur Khan, NSF Workshop, 20KDoD IASP Capacity Building and Scholarship, 2006 – Present, approx. 75K/year (Kamil Sarac, MuratKantarcioglu, Kevin Hamlen, Latifur Khan)The MITRE Corporation (January 1989 – 2004)MITRE is a Not-for-Profit federally funded research and development center and therefore the researchprojects that are externally funded are internally completed. One staff year is approximately $200,000.I. Principal Investigator for the following research projects at MITRE:1. Secure Distributed Data ManagementUS Navy, SPAWAR, FY89 (1 staff year)Team members: Bhavani Thuraisingham, Amiel KamonUSAF Rome Air Development Center, FY90, FY91, FY92 (1 staff year/yr)2. Inference Problem/Constraint ProcessingUS Navy, SPAWAR, FY90 (1.5 staff years)Team Members: Bhavani Thuraisingham, William Ford, Marie Collins, Jonathan O’KeeffeUS Army CECOM, FY91 – FY95 (1.5 staff years/yr approx.)Continued to work on project FY96 and 97Team Members: Bhavani Thuraisingham, William Ford, Harvey Rubinovitz, Marie Collins,David FotiUS AirForce, FY99 (1 staff year)Team Members: Bhavani Thuraisingham, Harvey Rubinovitz3. Secure Multimedia/Object Database ManagementUS Navy SPAWAR, FY91 – FY93 (2 staff years/yr approx.)Continued to work on project FY94, FY9533

Team Members: Bhavani Thuraisingham, William Herndon, Arnon Rosenthal, Richard Graubart,Jim Williams4. Secure Client Server ComputingUS Army CECOM, FY94 (1 staff year)Investigated security issues for client-server computing and identified security for object requestbrokers.Team Members: Bhavani Thuraisingham, Brian Kahn5. Research Directions in Database Security, Special topics in Database Security(Secure Federated Data Management, Foundations of Inference Problem, Data Mining andPrivacy)NSA FY91 (0.5 staff year), FY92 (1.5 staff years), FY93 – FY95 (0.5 staff year/yr), FY96 (1 staffyear). Project continued under Dr. Chris Clifton, FY97Team Members: Bhavani Thuraisingham, Mark Nadel, Leonard Monk, Chris CliftonNSA Team Members: Leonard Binns, Don Marks, Peter Sell6. Research Directions in Massive Digital Data Systems (MDDS), Data Mining for Text DatabasesCIA MDDS FY93 – FY99 (1.5 staff year/yr)Text mining (initiated project for 2 staff years/yr in FY96 – subcontractor: Stanford University,project managed by Dr. Chris Clifton and continued until FY99)Team Members: Bhavani Thuraisingham, Maria Zemankova, Beth Lavender, Henry Bayard,Marcia Kerchner, Manette Lazar, Chip Paradise, Chris Clifton, Arnon Rosenthal7. Research in Real-time Data Management and Real-time MiddlewareUSAF Rome Lab, FY93 – FY99 (Principal investigator for Real-time Data Management portionof project: 2 staff year/yr). Part of larger project, approx. 5 – 7 staff year/yr managed by JohnMaurer)Team members: Bhavani Thuraisingham, Alice Shafer, Gary Gengo, Mike Squadrito, RomanGinis, Victor Fay-Wolfe, Steve Wohlever, Eric Hughes8. Research Directions in Data ManagementMITRE Research FY95 – FY97 (1 staff year/yr)Team Members: Bhavani Thuraisingham, Barbara Blaustein, Arnon Rosenthal, Len Seligman,Penny Chase, Tom Mowbray9. XML SecurityPart of independent research from NSF IPA (20% of my time, FY02 – FY04)II. Other Research Analysis/Technology Transfer Projects:1. Treasury research credit (evaluated research conducted by Fortune 100 corporations FY99 –FY01), work report in Wall Street Journal, December 2000. Part of a team instrumental inbringing this project to MITRE FY99 – FY01.2. Technology Transfer to Services: (i) Air Force: AWACS project; Secure Distributed Queryprocessing – IMOM Application (ii) Navy: Inference problem analysis for operational systems;and (iii) Army: Technology transfer of secure distributed database researchIII. Research Management1. MITRE: Department Head of MITRE, managed budget of approx. $5 million/yr for 4+ years.2. MITRE: Head, MITRE’s research in IT, managed a budget of approx. $4million/yr for 3 years.34

3. CIA: As manager of fifteen research projects for CIA, managed a budget of approx. $3 million/yrfor 6 years.Honeywell Inc. (1986 – 1989)1. Air Force, Response to BAA: Secure Distributed Data ViewsAs project contributor, worked on proposals for various research projects and contributed toprojects, e.g. Secure Distributed Data Views (SDDS), RADC. Became the principal investigatorduring the 2 nd year of the three year SDDS project. (January 1986 – December 1988); managed 3staff years/yrTeam Members: Pat Dwyer, Emanual Oneugbe, Paul Stachour, Tom Haigh, Earl Boebert, BlairDillaway2. Air Force, Response to BAA: Engineering Information Systems As project contributor, led thedata modeling part of the project for Engineering Information Systems; project funded by WrightPatterson AFB (October 1987 - December 1988); managed 2 staff years /yr (Team member:Venkat Venkatraman)3. NASA, Response to BAA: Distributed Systems Project contributor on the distributed systemsproject for NASA; principal investigator of the Network Operating Systems portion of the project(November 1986- October 1987); managed 2 staff year /yr4. Internally funded research projects:Distributed Data Dictionary Systems: Honeywell’s Residential Controls Division, 1986 – 1987Team members: Krishna Mikkileneni, Hongjun LuExpert Systems for Control Systems, Honeywell Industrial Automation Systems Division 1987 –1988Team members: Ferit Konar, Paul FelixExpert Systems for Network Management: Honeywell Building Controls Division, 1987 – 1988Object Technology for Building Control Systems, Honeywell’s Building Controls Division, 1987– 1988Cost Modeling of Software Strategies, Honeywell Corporate, 1987 – 1988Team member: Ron CroweHeterogeneous Knowledge Integration, Honeywell Industrial Automation Systems Division, 1988– 1989Infrastructure Development FundingI have supported my colleagues in the NSA Capacity building efforts for 2007 (Murat Kantarcioglu), 2008(Kevin Hamlen) and 2010 (Latifur Khan). In 2011, we received infrastructure funding from AFOSR. In2011 w also received capacity building funds from NSF SFS (for courses in assured cloud computing)35

I. JOURNAL PAPERSData and Applications SecuritySection 10: PUBLICATIONSAuthored Works (Journals, Conferences, Books, etc.)1. Multilevel Security in Database Management Systems, Computers and Security Journal, June 1987(North Holland), Vol. 6, No. 3, pp. 252-260, (co-authors: P. Dwyer, G. Jelatis).2. Security Checking in Relational Database Management Systems Augmented with Inference Engines,Computers and Security Journal, December 1987 (North Holland), Vol. 6, No. 6, pp. 479-492.3. Multilevel Security Issues in Distributed Database Management Systems, Computers and SecurityJournal August 1988 (North Holland), Vol. 7, No. 4, (co-author: J. McHugh).4. Secure Query Processing Strategies, IEEE Computer, March 1989, Vol. 22, No. 3 (invited paper, coauthors:T. F. Keefe and W. T. Tsai).5. SODA - A Secure Object-Oriented Database System, Computers and Security Journal, Vol. 8 , October1989 (co-authors: W. T. Tsai and T. F. Keefe).6. Prototyping to Explore MLS/DBMS Design, Computers and Security Journal, May 1989 (Elsevier,formerly North Holland), Vol. 8, No. 3(co-authors: W. T.Tsai and D. Thomsen).7. A Functional View of Multilevel Databases, Computers and Security Journal (Elsevier), Vol. 8, No. 8,December 1989.8. Towards the Design of a Secure Data/Knowledge Base Management System, Data and KnowledgeEngineering Journal, March 1990, (North Holland), Vol. 5, No. 1.9. Security in Object-Oriented Database Systems, Journal of Object-Oriented Programming, March/April1990, Vol. 2, No. 6. (also reprinted in book on object-oriented database management systems by SIGpublishers).10. Design of LDV - A Multilevel Secure Database Management System, IEEE Transactions on Knowledgeand Data Engineering, June 1990, Vol. 2, No. 2 (co-author: P. Stachour).11. SQL Extensions for Security Assertions, Computer Standards and Interfaces Journal, 1990 (NorthHolland), Vol. 11, No.1, 5-14 (co-author: P. Stachour).12. AI Applications in Multilevel Database Security, Computer Security Journal, , 1990 (Miller FreemanPublishers), Vol. 6, No. 1, (co-authors: W. Tsai, T. Keefe, and D. Thomsen)13. Multilevel Secure Object-Oriented Data Model - Issues on Noncomposite Objects, Composite Objects,and Versioning, Journal of Object-Oriented Programming, Volume 4, November/December 1991.(Version of the article reprinted by the MITRE Journal, 1992.) (Also reprinted in book on objectorienteddatabase management systems by SIG publishers.)14. Multilevel Security Issues in Distributed Database Management Systems – II, Computers and SecurityJournal (Elsevier), Volume 10, No. 8, December 1991.36

15. Multilevel Security Issues in Distributed Database Management - III, Computers and Security(Elsevier), Vol. 11, November 1992 (co-author: H. Rubinovitz).16. Design and Implementation of a Distributed Query Processor for a Trusted Distributed DatabaseManagement Systems, Journal of Systems and Software, April 1993 (North Holland), Vol. 21, No. 1(co-author: Harvey Rubinovitz).17. Design and Implementation of a Database Inference Controller, Data and Knowledge EngineeringJournal, December 1993 (North Holland), Vol. 11, No. 3, p. 271 – 297, (co-authors: W. Ford, M.Collins, J. O'Keeffe); (Article reprinted by the MITRE Journal, 1994).18. Integrating Intelligent Database Technology and Trusted Database Technology, Computer SecurityJournal, 1993 (Miller Freeman Publishers).19. Simulation of Join Query Processing Algorithms for a Trust Distributed Database ManagementSystem, Information and Software Technology Journal (Chapman and Hall), Vol. 35, No. 5, 1993(co-author: Harvey Rubinovitz) (version of conference paper published in Simulation Conference,1991).20. Towards Developing a Standard Multilevel Relational Data Model for Representing a MultilevelUniverse, Computer Standards and Interfaces Journal (North Holland), Vol. 15, No. 1, 1993 (alsopublished by Computer Standards Interface Journal special issue in 1999 as one of the seminalpapers to appear in the journal).21. Multilevel Security for Information Retrieval Systems, Information and Management Journal (NorthHolland) Vol. 24, 1993.22. User-Role Based Security for Collaborative Computing Environment, Multimedia Review: TheJournal of Multimedia Computing (Penton Media publishers), Summer 1993 (co-authors: S.Demurjian and T.C. Ting).23. Security Issues for Federated Database Systems, Computers and Security (North Holland), Vol. 13,No. 6, p. 509 – 525, December 1994.24. Multilevel Security in Information Retrieval Systems - II, Information and Management Journal(North Holland), Vol. 28, No. 1, 1995.25. Security Constraint Processing in a Multilevel Secure Distributed Database Management System,IEEE Transactions on Knowledge and Data Engineering, April 1995 (co-author: W. Ford).26. Towards the Design of a Multilevel Secure Object-Oriented Database Management System, Journalof Object-Oriented Programming, June 1995.27. MOMT: A Multilevel Object Modeling Technique for designing Secure Database Applications,Journal of Object-Oriented Programming, 1996 (co-authors: D. Marks and P. Sell).28. Adaptable Object Request Brokers for Information Survivability for Real-time Command andControl Systems, Distributed Computer Systems, 1999, p. 242 – 245 (co-author: J. Maurer).29. Secure Distributed Database Systems, Information Security Journal (Elsevier Science special issue inDatabase Security), 2001.30. Selective and Authentic Third-Party Publication of XML Documents, IEEE Transactions onKnowledge and Data Engineering, Vol. 16, No. 10, p. 1263 – 1278, 2004 (co-author: E. Bertino et37

al). (version also published as MIT Working Paper, 2002)31. Secure Sensor Information Management & Mining, IEEE Signal Processing, May 2004.32. Security and Privacy for Sensor Databases, Sensor Letters, Inaugural Issue (American Scientific),Vol. 2, No.1, March 2004.33. Security and Privacy for Multimedia Database Management Systems, Multimedia Tools (Kluwer),Vol. 33, No. 1, October 2007 (keynote at IEEE Multimedia Software Engineering and DistributedMultimedia 2003).34. Privacy-preserving Data Mining: Developments and Directions, Journal of Database Management,(special issue in Database Technologies for National Security), p. 75 – 87, March 2005.35. Privacy Constraint Processing in a Privacy-Enhanced Database Management System, Data andKnowledge Engineering Journal, Vol. 55, No. 2, p. 159 - 188 (North Holland), 2005.36. Security Standards for the Semantic Web, Computer Standards and Interface Journal (NorthHolland), Vol. 27, p. 257 – 268, March 2005 (version of COMPSAC Conference workshop paper,2003).37. Access Control for Web Data: Models and Policy Languages, Invited Paper - Annales desTelecommunications, p. 245, Vol. 61, No. 3-4, March/April 2006 (co-authors: B. Carminata, E.Ferrari).38. Directions for Security and Privacy for Semantic E-Business Applications, Invited Paper,Communications of ACM, December 2005.39. A New Intrusion Detection System using Support Vector Machines and Hierarchical Clustering,VLDB Journal, Vol. 16, No. 1, January 2007 (co-authors: M. Awad et al).40. A Framework for a Video Analysis Tool for Suspicious Event Detection, Multimedia Tools, Vol. 35No. 1, October 2007 (co-author: G. Lavee et al).41. Standards for Secure Data Sharing Across Organizations, Computer Standards and InterfaceJournal, Vol. 29, No. 1, January 2007 (co-author: D. Harris et al).42. Secure Knowledge Management: Confidentiality, Trust and Privacy, IEEE Transactions on Systems,Man and Cybernetics, May 2006 (co-authors: E. Bertino et al) (based on keynote presented at SKM2004).43. PP-trust-X: A System for Privacy Preserving Trust Negotiation, ACM Transactions on Informationand Systems Security, Vol. 10, No. 3, Article 12, July 2007 (co-author: E. Bertino et al).44. Administering the Semantic Web: Confidentiality, Privacy and Trust Management, InternationalJournal of Information Security and Privacy, January 2007 (co-author: N. Tsybulnik, A. Ashraful).45. Secure Grid Computing, International Journal of Computer Science and Network Security, August2006 (co-author: J. Zhu).46. Security for ERP Systems, Information Systems Security Journal, May 2007 (co-author: W. She).47. Secure Data Warehousing, Data Warehousing Journal, IDEA Press, 2007 (co-authors: Srinivasan, M.Kantarcioglu).38

48. E-Mail Worm Detection Using Data Mining. Mohammad M. Masud, Latifur Khan, Bhavani M.Thuraisingham: IJISP 1(4):47-61 (2007)49. Design and Implementation of a Framework for Assured Information Sharing AcrossOrganizational Boundaries, International Journal of Information Security and Privacy, 2008.(co-authors: Y. Harsha Kumar et al).50. A Scalable Multi-level Feature Extraction Technique to Detect Malicious Executables,Information Systems Frontiers, (Springer Netherlands), Vol. 10, No. 1, Page 33-45, March2008 (co-authors: M. Masud, L. Khan).51. The Applicability of the Perturbation Based Privacy Preserving Data Mining for Real-WorldData,, " Data and Knowledge Engineering (DKE), Vol. 65, No. 1, p.5-21, 2008 LeadingJournal (co-authors: L. Liu, M. Kantarcioglu).52. A Risk Management Approach to RBAC, Risk and Decision Analysis Journal, 2008 (coauthors:E. Celikel, M. Kantarcioglu, E. Bertino).53. Exploiting an Antivirus Interface, Computer Standards & Interfaces, Vol. 31, No. 6, p. 1182-1189, November 2009 (co-authors: K. Hamlen, V. Mohan, M. Masud, L. Khan).54. Privacy Preservation in Wireless Sensor Networks: A State-of-the-art Survey, Ad-HocNetworks Journal, Vol. 7, No. 8, November 2009 (co-authors: L. Na et al).55. Design and Implementation of a Secure Social Network System, Computer Systems Scienceand Engineering, Vol. 24, No. 2, March 2009 (co-authors: R. Layfield et al).56. Delegation Model for Web Services, Journal of Web Services Research 2009 (co-authors: W.She, I. Yen).57. Relationalization of Provenance Data in Complex RDF Reification Nodes, Special Issue of ElectronicCommerce Research Journal on Trust and Privacy Aspects of Electronic Commerce, 2009 (coauthors:S. Sriram et al).58. Classification and Novel Class Detection in Concept-Drifting Data Streams under TimeConstraints, Accepted and to appear in IEEE Transactions on Knowledge and Data Engineering,2010 (co-authors: M. Masud, L. Khan, J. Han).59. Semantic Web, Data Mining and Security, IEEE Intelligent Systems Special Issue, 2010 (coauthors:M. Kantarcioglu and L. Khan).60. Secure Data Objects Replication in Data Grid, IEEE Transactions on Dependable and SecureComputing, January 2010 (co-authors: Manghui Tu, Peng Li, I-Ling Yen, Bhavani Thuraisingham,and Latifur Khan).61. Security Issues for Cloud Computing, Journal of Information Security and Privacy, Vol. 4, No. 2,2010, p. 36 – 48 (coauthors: K. Hamlen, L. Khan, M. Kantarcioglu).62. Policy Management for Assured Information Sharing, Journal of Information Security and Privacy,September 2010 (co-authors: M. Awad et al).39

63. Privacy-Preserved Social Network Integration and Analysis for Security Informatics IEEEIntelligent Systems Special Issue, Vol. 25, No. 5, p. 88 – 90, 2010 (co-author: C. Yang).64. Geospatial Resource Description Framework (GRDF) and security constructs, Computer Standards& Interfaces, Vol. 33, No. 1, p. 35-41, 2011 (co-authors: Ashraful Alam, Latifur Khan).65. Semantic Web-based Social Network Access Control, Computers and Security, Vol. 30, No. 2 – 3,2011 (special issue for SACMAT conference) (co-authors: B. Carminati et al).66. Adaptive Information Coding for Secure and Reliable Wireless Telesugery Communications,Journale of Mobile Networks and Applications (MONET), Springer online(http://www.springerlink.com/content/r71p755326k68814/), July 2011.67. Cyberphysical Systems Security Applied to Telesurgical Robotics, Computer Standards &Interfaces, Vol. 34, No. 1, p. 225-229, January 2012 (co-author: Gregory S. Lee).68. Data Security Services, Solutions and Standards for Outsourcing, To appear in Computer Standardsand Interfaces Journal, 2012 (co-author: K. Hamlen).69. Security-aware Service Composition with Fine-grained Access and Information Flow Control, Toappear in IEEE Transactions on Services Computing, 2012 (co-authors: W. She et al).70. Database Inference Controller for 3D Motion Capture Database, To appear in Journal ofInformation Security and Privacy, 2012 (co-author: R. Natarajan et al).71. Effective Software Fault Localization using an RBF Neural Network, To appear in IEEETransactions on Reliability, 2012 (co-authors: W. E. Wong, V. Debroy, R. Golden, X. Xu).72. Secure Semantic Computing, To appear in the Semantic Computing Journal 2012 (co-author: K.Hamlen).73. Malware Detection in the Cloud, To appear in the ACM Transactions on Management InformationSystems, 2012 (coauthor: M. Masud et al).Distributed Systems/Data Management/AI Applications/Real-time Systems74. AI Applications in Distributed System Design Issues, 1988, IEEE Network, Vol. 2, No. 6, (co-author:J. Larson).75. Recovery Point Selection on a Reverse Binary Tree Task Model, August 1989, IEEE Transactions onSoftware Engineering, Vol. 15, No.8, (co-authors: W. T. Tsai and S. K Chen).76. From Rules to Frames and Frames to Rules, October 1989, AI Expert (Miller Freeman Publishers)Volume 2, No. 10. (Reviewed by Editorial Board).77. A New View of Information Modeling: A Bridge Between Data and Information, InformationSystems Management Journal (Auerbach), Vol. 9, No., Spring 1992 (co-author: V. Venkataraman;also reprinted in Handbook of Data Management 1993, Editor: von Halle and Kull).78. On Developing Multimedia Database Management Systems Using the Object-Oriented Approach,Multimedia Review: Journal of Multimedia Computing, Vol. 3, No.2, 1992.40

79. Information Demands Drive Data Base Interoperability, SIGNAL Magazine: AFCEA Journal,December 1995.80. Web Information Management and Its Application to Electronic Commerce, International Journal onArtificial Intelligence Tools (World Scientific), Vol. 8, No. 2, June 1999.81. Real-time Transaction Processing, Computer Systems: Science and Practice (Chapman and Hall),1999 (co-authors: L. DiPippo, V. Wolfe et al).82. A Primer for Understanding Data Mining, IEEE ITPro, Vol., 2, No. 1, January/February 2000.83. Real-time CORBA, IEEE Transactions on Parallel and Distributed Systems, Vol. 11, No. 10, October2000 (co-author: V. Wolfe et al).84. Scheduling and Priority Mapping for Static Real-Time Middleware, Real-time Systems Journal(Kluwer), Vol. 20, p. 155 -182, 2001 (co-author: V. Wolfe, L. DiPippo et al).85. Emerging Standards for Data Mining, Computer Standards and Interface Journal (North Holland),Vol. 23, No. 3, 2001 (co-author: C. Clifton).86. Foundations of Data Mining: Position Paper, Communications of Institute for Information andComputing Machinery (Taiwan Journal), May 2002. (PAKDD 2002 workshop paper published asspecial issue in journal).87. Collaborative Commerce and Knowledge Management, Knowledge Management Journal (WileyInterscience), 2002.88. Managing and Mining Multimedia Databases, International Journal of Artificial Intelligence Tools(World Scientific), Vol. 13, No. 3, 2004 (keynote at ICTAI99).89. Predicting WWW Surfing Using Multiple Evidence Combination, VLDB Journal, May 2008 (coauthor:M. Awad et al).90. A Framework for Automated Image Annotation, International Journal of Computer Systems Scienceand Engineering, Vo1. 22, No. 1 – 2, 2007, (co-author: L Wang et al).91. A Scalable Clustering Method Based on Density, WSEAS Transactions on Computing Research, 2008(co-authors: L. Khan and S. Bereg).92. Emergency Response Applications: Dynamic Plume Modeling and Real-Time Routing, IEEE InternetComputing, Vol. 12, No. 1, p. 38-44, January - February 2008,(co-authors: P. K. Chitumalla, D.Harris, L. Khan).93. R2D: A Bridge Between the Semantic Web and Relational Visualization Tools, Semantic ComputingJournal, 2009. (co-authors: S. Sriram et al).94. Necessary and Sufficient Conditions for Transaction-consistent Global Checkpoints in a DistributedDatabase System, Information Sciences, Vol. 179, No. 20, p. 3659 – 3672, September 2009, (coauthors:J. Wu, D. Manivannan).95. Update Enabled Triplification of Relational Data into Virtual RDF Stores International Journal ofSemantic Computing, World Scientific, Vol. 4, No. 4 December 2010, p. 423 – 451 (selected fromProc. of Fourth IEEE International Conference on Semantic Computing [IEEE ICSC 2010],41

September 22-24, 2010, Carnegie Mellon University, Pittsburgh, PA, USA). (co-authors: S.Ramanujam, V. Khadilkar, L. Khan, S. Seida, M. Kantarcioglu).96. Heuristics-Based Query Processing for Large RDF Graphs Using Cloud Computing, IEEETransactions on Knowledge and Data Engineering, Vol. 23, No. 9, p. 1312-1327, 2011 (co-authors:Mohammad Farhan Husain, James P. McGlothlin, Mohammad M. Masud, Latifur R. Khan).97. Enhanced Geographically Typed Semantic Schema Matching, Journal of Web Semantics, Vol. 9, No.1, p. 52-70, 2011 (co-authors: Jeffrey Partyka, Pallabi Parveen, Latifur Khan, Shashi Shekhar).Computability/Complexity Theory98. Representation of One-One Degrees by Decision Problems, 1982, Journal of Computer and SystemsSciences (Academic Press), Vol. 24, p. 373-377.99. Some Elementary Closure Properties of N-Cylinders, 1983, Notre Dame Journal of Formal Logic,Vol. 24, No. 2, p. 242-253.100. The Concept of N-Cylinder and its Relationship to Simple Sets, 1983, Notre Dame Journal of FormalLogic, Vol. 24, No. 3, p. 328-336.101. Cylindrical Decision Problems, 1983, Notre Dame Journal of Formal Logic, Vol. 24, , No. 2, p. 188-198.102. System Functions and their Decision Problems, 1984, Zeitschrift fur Mathematische Logik undGrundlagen der Mathematik, Vol. 30, No. 7 - 8, p. 119-128. (now Journal of Mathematical Logic)103. The Concept of N-Cylinder and its Application , 1986, Zeitschrift fur Mathematische Logik undGrundlagen der Mathematik, Vol. 32, No. 13 - 16, p. 211-219.104. Reducibility Relationships Between Decision Problems for System Functions, 1987, Zeitschrift furMathematische Logik und Grundlagen der Mathematik, Vol. 33, No. 4, p. 305-312.105. Representation of One-One Degrees by N-Cylindrical Decision Problems, 1988, Zeitschrift furMathematische Logik und Grundlagen der Mathematik, Vol. 34, No. 6.106. System Function Languages, Mathematical Logic Quarterly, Vol. 39, No. 1, 1993.107. A Construction of Cartesian Authentication Codes from Orthogonal Spaces over a Finite Field ofOdd Characteristic, Discrete Mathematics, Algorithms and Applications, Vol. 1, No. 1, March 2009(co-authors: Z. Li et al).108. A Better Approximation for Minimum Average Routing Path Clustering Problem in 2-D UnderwaterSensor Networks, Discrete Mathematics, Algorithms and Applications, Vol. 1, No. 2, June 2009 (coauthors:W. Wang et al).II. CONFERENCES PAPERSData and Applications Security1. Secure Query Processing Using AI Techniques, January 1988, Proceedings of the IEEE HawaiiInternational Conference on Systems Sciences, p. 561-570, (co-authors: W. T. Tsai and T. F. Keefe)- Best Paper Award for Software Tracks (enhanced version in IEEE Computer 1989).42

2. Foundations of Multilevel Databases, May 1988, Proceedings 1st RADC Database SecurityInvitational Workshop, Menlo Park, CA, (Proceedings published by Springer Verlag, 1992, Ed: T.Lunt – Book Chapter).3. Design of an Update Processor for MLS/DBMS, October 1988, Invited paper, Proceedings of the 11thNational Computer Security Conference, Baltimore, MD; addendum to Proceedings (co-authors: P.Stachour and P. Dwyer).4. Query Processing in LDV: A Secure Database System, December 1988, Proceedings of the 4th IEEEAerospace Computer Security Conference, Orlando, FL (co-authors: P. Dwyer, E. Onuegbe and P.Stachour).5. A Multilevel Security Model for Object-Oriented Systems, October 1988, Proceedings of the 11thNational Computer Security Conference, Baltimore, MD, (co-authors: W. T. Tsai and T. F. Keefe).6. Prototyping as a Research Tool for MLS/DBMS, October 1988, Proceedings of the IFIP WG 11.3Conference on Database Security, Kingston, Ontario, Canada, (also published as book chapterby North Holland, 1989: Database Security II: Status and Prospects) (co-authors: W. Tsai and D.Thomsen).7. Security Checking with Prolog-Extensions, May 1989, Proceedings of the 2nd RADC DatabaseSecurity Invitational Workshop, Franconia, NH.8. Mandatory Security in Object-Oriented Database Systems, October 1989, Proceedings of the ACMConference on Object-Oriented Programming, Systems, Languages and Applications (ACMOOPSLA) Conference, New Orleans, LA.9. A Multilevel Secure Object-Oriented Data Model, October 1989, Proceedings of the 12th NationalComputer Security Conference, Baltimore, MD.10. Secure Query Processing in Intelligent Database Management Systems, December 1989, Proceedingsof the 5th IEEE Computer Security Applications Conference Tucson, AZ.11. Novel Approaches to Handle the Inference Problem, June 1990, Proceedings of the 3rd RADCDatabase Security Workshop, New York.12. The Inference Problem in Multilevel Secure Database Management Systems, June 1990, Proceedingsof the 3rd RADC Database Security Workshop, New York (co-authors: W. Ford, M. Collins, J.O'Keeffe).13. Trusted Distributed Database Management Systems, June 1990, Proceedings of the 3rd RADCDatabase Security Workshop, New York, (co-author: H. Rubinovitz).14. Recursion Theoretic Properties of the Inference Problem in Database Security, June 1990, Presentedat the 3rd IEEE Foundations of Computer Security Workshop, Franconia, NH (public release was notobtained in time for proceedings; printed as MITRE Paper M291 May 1990).15. Multilevel Security for Multimedia Database Systems, September 1990, Proceedings of the 4th IFIPWG 11.3 Conference on Database Security, Halifax, England, (also published as book chapter byNorth Holland, 1991, p. 99 - 116).16. Secure Query Processing in Distributed Database Management Systems - Design and PerformanceStudy, December 1990, Proceedings of the 6th IEEE Computer Security Applications Conference,Tucson, AZ, (co-author: A. Kamon).43

17. A Note on Security Constraint Processing in a Multilevel Secure Database Management System,April 1991, Proceedings of the 4th RADC Database Security Workshop, Little Compton, RI (coauthor:W. Ford, M. Collins).18. Trusted Distributed Database Management Systems R & D - A Progress Report, April 1991,Proceedings of the 4th RADC Database Security Workshop, Little Compton, RI, (co-authors: H.Rubinovitz).19. Handling Security Constraints During Multilevel Database Design, April 1991, Proceedings of the4th RADC Database Security Workshop, Little Compton, RI.20. Implementation and Simulation of Secure Distributed Query Processing Algorithms, Proceedings ofthe 1991 Computer Simulation Conference, Baltimore, MD, (co-author: H. Rubinovitz).21. A Nonmonotonic Typed Multilevel Logic for Multilevel Secure Data/Knowledge Base ManagementSystem - II, June 1991, Proceedings of the 4th IEEE Computer Security Foundations Workshop,Franconia, NH.22. Issues on the Design and Implementation of an Intelligent Database Inference Controller,Proceedings of the 1991 IEEE International Conference on Systems, Man, and Cybernetics,Charlottesville, VA (co-author: W. Ford).23. The Use of Conceptual Structures to Handle the Inference Problem, Proceedings of the 5th IFIP WG11.3 Conference on Database Security, Shepherdstown, VA. , November 1991 (Also published byNorth Holland, 1992)24. Security Constraint Processing During the Update Operation in a Multilevel Secure DatabaseSystem, Proceedings of the 7th IEEE Computer Security Applications Conference, San Antonio, TX,December 1991 (co-authors: M. Collins, W. Ford).25. Design and Simulation of Secure Distributed Concurrency Control Algorithms, Proceedings of the1992 Computer Simulation Conference, Nevada, July 1992. (co-author: H. Rubinovitz).26. A Nonmonotonic Typed Multilevel Logic for Multilevel Database Management Systems - II, June1992, Proceedings of the 5th IEEE Computer Security Foundations Workshop, Franconia, NH.27. Knowledge-based Inference Controlin a Multilevel Secure Database Management System,Proceedings of the 15th National Computer Security Conference, Baltimore, MD, October 1992.28. A Note on the Security Impact on Real-time Database Management Systems, Proceedings of the 5thRADC Database Security Workshop, New York, October 1992.29. Secure Computing with the ACTOR Paradigm, Presented at the ACM/SIGSAC New ComputerSecurity Paradigms Workshop, Little Compton, RI, September 1992. (Proceedings published byACM Press, 1993)30. An Object-Oriented Approach to Modeling Multilevel Database Applications, Proceedings of theACM Conference Workshop on Object-Oriented Programming Language, Systems, and Applications,Vancouver, B.C., October 1992 (co-author: P. Sell).31. Towards the Design and Implementation of a Multilevel Secure Deductive Database ManagementSystem, Proceedings of the 26th Hawaii International Conference on Systems Sciences, January 1993.44

32. Parallel Processing and Trusted Database Management Systems - Applying One Technology to theOther, Proceedings of the 1993 ACM Conference in Computer Science, Indianapolis, Indiana (coauthor:W. Ford).33. Security and Integrity Constraint Processing in a Multilevel Secure Distributed Environment,MILCOM 93, October 1993 (classified session) (co-authors: A. Abreu, H. Rubinovitz, M. Collins).34. Towards a Multilevel Secure Database Management System for Realtime Applications, Proceedingsof the First IEEE Workshop in Realtime Computing, May 1993 (co-author: S. Son).35. Design and Implementation of a Distributed Database Inference Controller, Proceedings of the 17thIEEE COMPSAC Conference, November 1993. (co-authors: H. Rubinovitz, D. Foti, A. Abreu).36. Security and Integrity in Distributed Database System, Database Colloquium 93, San Diego, CA,August 1993 (co-authors: D. Small, D. Goldsmith) (proceedings available in electronic media).37. Applying OMT for Multilevel Database Applications, Proceedings of the 7th IFIP WorkingConference on Database Security, Huntsville, Alabama, September 1993. (co-author: P. Sell) (alsopublished as book chapter by North Holland, 1994).38. Object-oriented Approach to Interconnecting Trusted Database Management Systems, September1993, ACM OOPSLA-93 Conference Workshop on Object Persistence in Heterogeneous DatabaseEnvironments, Washington D.C. (co-author: H. Rubinovitz).39. Security Constraint Processing in a Distributed Database Environment, Proceedings of the 1994ACM Computer Science Conference, Phoenix, AZ, March 1994. (co-author: H. Rubinovitz).40. Database Inference Control, Proceedings of the DoD Database Security Workshop, Maine, June1994 (co-authors: M. Collins and H. Rubinovitz).41. MLS Database Application Design, Proceedings of the DoD Database Security Workshop, Maine,June 1994 (co-authors: S. Lewis, D. Marks, P. Sell, S. Wiseman).42. Hypersemantic Data Modeling for Inference Analysis, Proceedings of the 8th IFIP WorkingConference in Database Security, Hildesheim, Germany, August 1994. (co-authors: D. Marks, L.Binns) (also published as book chapter by North Holland 1995).43. A Fine-grained Access Control Model for Object-oriented DBMS, Proceedings of the 8th IFIPWorking Conference in Database Security, Hildesheim, Germany, August 1994 (co-authors: A.Rosenthal et al) (also as book chapter by North Holland, 1995).44. An Adaptive Policy for Improved Timeliness in Secure Database Systems, Proceedings of the 9th IFIPWorking Conference in Database Security, New York, August 1995. (co-authors: S. Son and R.David, also as book chapter by North Holland 1996).45. Design and Implementation of a Database Inference Controller Utilizing a Deductive Object-Oriented Data Model, Proceedings of the 13th DOD Database Colloquium, San Diego, CA, August1996. (co-authors: M. Collins, D. Marks, B. Newman).46. Survivability Issues for Evolvable Real-time Command and Control Systems, Proceedings of theInformation Survivability Workshop, February 1997 (co-authors: P. Krupp, J. Maurer).47. Adaptable Object Request Brokers for Information Survivability of Command and Control Systems,Proceedings of the Information Survivability Workshop, October 1998 (co-author: J. Maurer et al).45

48. Data Mining, Data Warehousing and Security, Proceedings of the IFIP Conference Book, Chapmanand Hall, 1997 (version of keynote address at conference, 1996; editor: P. Samarati and R. Sandhu)(also presented at CODATA Conference, Paris, June 1999).49. Adaptable Object Request Brokers for Information Survivability of Evolvable Real Time Commandand Control Systems, proceedings IEEE FTDCS Conference, Cape Town, South Africa, December1999 (co-author: J. Maurer).50. Directions for Web and E-Commerce Security, Proceedings WET ICE June 2001, Boston, MA (coauthors:C. Clifton, E. Bertino et al).51. Data and Applications Security: Developments and Directions Proceedings IEEE COMPSAC, 2002,Oxford, UK.52. Building Secure Survivable Semantic Webs, Proceedings IEEE ICTAI 2002, Washington DC. .53. Security Issues for the Semantic Web, Proceedings IEEE COMPSAC 2003, Dallas, TX.54. Dependable Computing for National Security: A Position Paper, Proceedings of the 6 th InternationalSymposium on Autonomous Decentralized Systems, April 2003, Pisa, Italy (ISADS).55. Data and Applications Security: Past, Present and Future, Proceedings of IFIP Conference Book(Kluwer), 2004 (version of keynote address at conference, Colorado, 2003; editor: I. Ray)56. Security and Privacy for Web Databases and Services, Proceedings of the EDBT Conference, March2003, Crete, Greece (co-author: E. Ferrari) (based on keynote address at EDBT).57. Using RDF for Policy Specification and Enforcement, Proceedings of the DEXA Workshop on WebSemantics, Zaragoza, Spain, August 2004 (co-author: B. Carminati et al).58. On the Complexity of the Privacy Problem in Databases, Proceedings Foundations of Data Mining,Workshop, England, 2004 (Proceedings by lecture notes, Springer).59. Towards Access Control for Visual Web Model Management, Proceedings IEEE E-CommerceWorkshop, Hong Kong, May 2005 (co-author: G. Song et al).60. Trust Management in a Distributed Environment, Proceedings of the 29 th Annual InternationalComputer Software and Applications Conference (COMPSAC), Edinburgh, Scotland, July 2005.61. Secure Model Management Operations for the Web, Proceedings IFIP Data and Applications SecurityConference, Connecticut, August 2005 (co-authors: G. Song et al).62. Multilevel Secure Teleconferencing over Public Switched Telephone Network, IFIP Data andApplications Security Conference, Connecticut, 2005 (co-author: I. Youn et al).63. Dependable Real-time Data Mining, Proceedings ISORC 2005, Seattle (co-author: L. Khan et al).64. A Framework for a Video Analysis Tool for Suspicious Event Detection, ACM SIGKDD MultimediaData Mining Workshop, Chicago, IL 2005 (co-author: G. Lavee et al).65. Message Correlation in Automated Communication Surveillance through Singular ValueDecomposition, Proceedings ACM MM Workshop, Chicago, IL, 2005 (co-author: R. Layfield, et al).46

66. Privacy Preserving Data Mining, Proceedings IEEE ICDM Workshop on Privacy preserving DataMining, Houston, TX, 2005.67. Dependable and Secure TMO Scheme, Proceedings of the 9th IEEE ISORC, Gyeongju, South Korea,April 2006 (co-author: J. Kim).68. Design of a Secure CAMIN Application Systems based on Secure and Dependable TMO, ProceedingsISORC, May 2007, Santorini, Greec, (co-author: J. Kim).69. Security for Web Services, Proceedings ACM Workshop in Secure Web Services, May 2006 (coauthor:C. Farkas et al) (California)70. Detection and Resolution of Anomalies in Firewall Policy Rules, Proceedings IFIP Data andApplications Security Conference, Sophia Antipolis, France, 2006 (co-author: M. Abedin et al).71. A Knowledge Based Approach to Detect New Malicious Executables, Proceedings Second SKMWorkshop, Brooklyn, NY, September 2006 (co-author: L. Khan et al; enhanced version appeared inInformation Systems Frontiers).72. Access Control for Geospatial Web Services, Proceedings ACM CCS Conference Workshop, andNovember 2006. Fairfax, VA (co-author: A. Ashraful et al).73. Geospatial RDF, ISWC Conference on Geospatial Semantic Web, Athens, GA, Nov. 2006 (coauthor:A. Ashraful).74. Face Recognition Using Multiple Classifiers, IEEE ICTAI Conference Proceedings, November 2006Washington DC, (co-author: P. Parveen).75. The Applicability of the Perturbation Model-based Privacy-preserving Data Mining, ProceedingsIEEE ICDM Conference Workshop on Privacy Preserving Data Mining, Hong Kong, December2006. (enhanced version appeared in DKE 2008) (co-author: L. Liu).76. Design and Simulation of Trust Management Techniques for a Coalition Data Sharing Environment,Proceedings FTDCS, 2007, Sedona, Arizona (co-author: S. Iyer).77. Fingerprint Matching Algorithm, Proceedings ARES, Vienna, Austria, April 2007.78. Extended RBAC - Based Design and Implementation for a Secure Data Warehouse, ProceedingsARES, April 2007, Vienna Austria, (enhanced version appeared in data warehousing journal) (coauthor:S. Iyer).79. Risk Management and Security, Proceedings Decision and Risk Analysis Conference, Richardson,TX, May 2007.80. Geospatial Data Mining for National Security, Proceedings ISI, New Brunswick, NJ, May 2007 (coauthor:Chuanjun et al).81. Confidentiality, Privacy and Trust Policy Enforcement for the Semantic Web, Proceedings of the 8 thIEEE International Workshop on Policies for Distributed Systems and Networks (POLICY), Bologna,Italy, June 2007.82. A Hybrid Model to Detect Malicious Executables, Proceedings ICC 2007, Glasgow, Scotland (coauthors:M. Masud, L. Khan).47

83. Enforcing Honesty in Assured Information Sharing within a Distributed System, Proceedings IFIPData and Applications Security, Redondo Beach, CA, July 2007 (co-authors: R. Layfield et al).84. SCRUB-tcpdump: A Multilevel Packet Anonymizer Demonstrating Privacy and Analysis Tradeoffs,Proceedings SecureComm, Nice, France, September 2007 (co-authors: W. Yurcik, et al).85. Secure Peer-to-Peer Networks for Trusted Collaboration, Proceedings of the 2 nd IEEE InternationalWorkshop on Trusted Collaboration (TrustCol), White Plains, NY November 2007.86. Centralized Security Labels in Decentralized P2P Networks, Computer Security ApplicationsConference, Miami Beach, FL, December 2007 (ACSAC) (co-authors: N. Tsybulnik and K. Hamlen)87. Delegation-Based Security Model for Web Services, IEEE International Symposium on HighAssurance Systems Engineering (HASE), p. 82-91, Dallas, TX, November 2007 (co-authors: WeiShe, I. Yen).88. Building Secure Applications for Peer to Peer Systems, Proceedings TRUST workshop, New York,November 2007.89. Detecting Remote Exploits Using Data Mining, Proceedings IFIP Digital Forensics Conference,Kyoto, Japan, January 2008 (co-author: M. Masud et al).90. Geospatial Resource Description Framework (GRDF) and Security Constructs, Proceedings ICDEConference Workshop in Secure Semantic Web, April 2008, Cancun, Mexico (co-author: A. Alam etal).91. Toward Trusted Sharing of Network Packet Traces Using Anonymization: Single-FieldPrivacy/Analysis Tradeoffs, Computing Research Repository (CoRR), abs/0710.3979: (2007) (coauthors:William Yurcik, Clay Woolam, Greg Hellings, Latifur Khan).92. Measuring Anonymization Privacy/Analysis Tradeoffs Inherent to Sharing Network Data, NetworkOperations and Management Symposium (NOMS) 2008, p. 991-994, Salvador, Brazil (co-authors:W. Yurick et al).93. The SCRUB Security Data Sharing Infrastructure, Network Operations and Management Symposium(NOMS) 2008: 630-644, Salvador, Brazil (co-authors: Y. Yurick et al) (also software available asOpensource).94. Making Quantitative Measurements of Privacy/Analysis Tradeoffs Inherent to Packet TraceAnonymization, Financial Cryptography and Data Security, 2008, p. 323-324, Cozumel, Mexico (coauthors:W. Yurick et al).95. Privacy/Analysis Tradeoffs in Sharing Anonymized Packet Traces: Single-Field Case, InternationalConference on Availability, Reliability and Security (ARES) 2008, p. 237-244, Barcelona, Spain (coauthors:W. Yurick et al).96. ROWLBAC - Representing Role Based Access Control in OWL, Proceedings ACM SACMAT June2008, Colorado, (co-authors: T. Finin, L Kagal et al).97. Accountability for Grid, DOE Conference on Cyber Security, Knoxville, TN, (co-author: E. Bertino)98. Role Based Access Control and OWL, Proceedings of the Fourth OWL: Experiences and DirectionsWorkshop, April 2008, Washington, DC (co-author: T. Finin et al).48

99. Data Mining for Cyber Security Applications, The 3rd International Workshop onTrustworthiness, Reliability and Service in Ubiquitous and Sensor Networks (TRUST), EUC2008, Shanghai, China, (co-authors: L. Khan, K. Hamlen et al).100. Trustworthy Semantic Web Technologies for Secure Knowledge Management, TSP 2008,Shanghai, China (co-author: P. Parikh).101. Secure, Highly Available, and High Performance Peer-to-Peer Storage Systems, IEEE HighAssurance Systems Engineering Symposium (HASE) 2008, Nanjing, China (co-author: Y. Yeet al).102. Enhancing Security Modeling for Web Services Using Delegation and Pass-On,The IEEE International Conference on Web Services (ICWS) 2008, Beijing, China (co-author: She,Wei; Yen, I-Ling).103. Flow-based Identification of Botnet Traffic by Mining Multiple Log Files, In proceedings of theInternational Conference on Distributed Frameworks & Applications (DFMA), Penang, Malaysia,Oct. 2008, (co-authors: M. Masud, T. Al-khateeb, L. Khan, K. Hamlen).104. Incentive and Trust Issues in Assured Information Sharing, Invited Paper, CollaborateCom, Orlando,FL, November 2008 (co-authors: R. Layfield and M. Kantarcioglu).105. Privacy Preserving Decision Tree Mining from Perturbed Data, HICSS 2009, Hawaii: 1-10,Nominated for best paper award (co-authors: Li Liu and Murat Kantarcioglu).106. Effective and Efficient Implementation of an Information Flow Control Protocol for ServiceComposition, Proceedings of the Service Oriented Computing And Applications Workshop, Taipei,Taiwan, Jan. 2009 (co-authors: W. She, I. Yen, E. Bertino).107. The SCIFC Model for Information Flow Control in Web Service CompositionThe IEEE International Conference on Web Services (ICWS) 2009, Los Angeles, CA (co-authors: W.She, I. Yen, E. Bertino).108. Design and Implementation of a Secure Social Network System, IEEE ISI Conference Workshop onSocial Computing, 2009, Dallas TX (co-authors: R. Layfield et al).109. Assured Information Sharing Life Cycle, IEEE ISI Conference workshop on Social Computing, 2009(co-author: T. Finin et al), Dallas, TX.110. A Semantic Web Based Framework for Social Network Access Control, SACMAT 2009: Italy, 177-186, (co-authors: E. Ferrari, B. Carminati, , R. Heatherly, M. Kantarcioglu).111. Inferring Private Information Using Social Network Data, World Wide Web (WWW) Conference2009, p. 1145-1146, Madrid, Spain (co-authors: J. Lindamood et al).112. Policy-Driven Service Composition with Information Flow Control, The IEEE InternationalConference on Web Services (ICWS) 2010, Miami, FL (coauthors: W.She, I. Yen and E. Bertino)113. Scalable and Efficient Reasoning for Enforcing Role-based Access Control, IFIP 11.3, Rome, Italy2010 (co-authors: T. Cadenhead, M. Kantarcioglu, and B. Thuraisingham).114. A Token-based Access Control System for RDF Data in the Clouds, IEEE CloudCom 2010,Indianapolis, IN (co-authors: M. Farhan Husain, K. Hamlen et al).49

115. Secure Data Storage and Retrieval in the Cloud, CollaborateCom 2010, Chicago, IL (co-authors: V.Khadilkar et al)116. An Evaluation of Privacy, Risks and Utility with Provenance, Proceedings, Secure KnowledgeManagement (SKM) Workshop, November 2010, New Brunswick, NJ (co-authors: T. Cadenhead etal)117. Identity Management for Cloud, Proceedings Cyber Security and Information Intelligence ResearchWorkshop, Oak Ridge National Laboratory, Oak Ridge, TN, October 2011.118. A Language for Provenance Access Control, Proceedings of 1 st ACM Conference on Data andApplication Security and Privacy (CODASPY) 2011, San Antonio, TX (co-authors: T. Cadenhead,V. Khadilkar, M. Kantarcioglu).119. Differentiating Code from Data in x86 Binaries, Proceedings of ECML/PKDD 2011 (Vol. 3) p. 522 -536, Athens, Greece (co-authors: R. Wartell, Y. Zhou, K. Hamlen, M. Kantarcioglu).120. Transforming Provenance Using Redaction, Proceedings of SACMAT 2011, Innsbruck, Austria (coauthors:T. Cadenhead, V. Khadilkar, M. Kantarcioglu).121. Secure Data Processing in a Hybrid Cloud, Computing Research Repository (CoRR) abs/1105.1982,2011 (co-authors: V. Khadilkar, M. Kantarcioglu, S. Mehrotra).122. On Secure and Resilient Telesurgery over Unreliable Networks, The First International Workshop onCyber-Physical Networking Systems, p. 725 – 730, Shanghai, China, April 2011, (co-authors: M. E.Tozal, Y. Wang, E. Al-Shaer, K. Sarac, B. Chu).Real-time Processing: Objects, Data Management and Networks123. Implementing a Real Time System on Local Area Network, October 1987, Presented at the 12th IEEELocal Computer Network Conference, Minneapolis, MN, Proceedings, pp. 142 (co-authors: W. T.Tsai, K. W. Hwang, abstract in proceedings, paper distributed at conference).124. MCNIU- A High Performance FDDI Local Area Network for Space Station Application, October1987, Proceedings of the Fiber Optic Communication Local Area Network Conference (FOC/LAN),Anaheim, CA, pp. 69-73, (co-authors: P. Gonia, D. Myers and T. Chan).125. RT-OMT: A Real-time Object Modeling Technique for Designing Real-time Database Applications:A Position Paper, Proceedings of the 2nd IEEE Realtime Systems Applications Workshop, July 1994,Maryland, (co-author: A. Schafer).126. On Realtime Extensions to the Common Object Request Broker Architecture, Proceedings of theOOPSLA 94 Conference Workshop on CORBA, Portland, OR. September 1994, (co-authors: P.Krupp, A. Schafer, V. Wolfe)127. An Integrated Architecture for Constraint Processing in Real-time Database Management Systems,Proceedings of the 1995 High Performance Computing Symposium, Phoenix, AZ, April 1995.128. Evolvable Real-time C3 Systems, Proceedings of the 1st IEEE Complex Systems Conference,November 1995, Florida,(co-authors: E. Bensley et al).129. Real-time Extensions to Remote Procedure Call, Proceedings of the IEEE High PerformanceComputing Conference, December 1995, India, (co-authors: V. Wolfe et al).50

130. Object-oriented Implementation of an Infrastructure and Data Manager for Real-time Command andControl Systems, Proceedings of the IEEE Workshop on Object-Oriented Real-time DependableSystems (WORDS 1996), Laguna Beach, CA, February 1996, (co-author: E. Bensley et al).131. Design and Implementation of an Active Real-time Database Management System, Proceedings of theIntelligent Information Systems Management Conference, June 1996, Washington DC, (co-authors:G. Gengo).132. Towards Priority Ceilings in Object-based Semantic Real-time Concurrency Control, Proceedings ofthe 1st Real-time Database Workshop, March 1996, Newport Beach, CA (co-authors: V. Wolfe).133. Evolvable Real-time C3 Systems - II, Proceedings of the 2nd IEEE Complex Systems Conference,October 1996, Montreal, Canada (co-authors: E. Bensley et al).134. Active Real-time Data Management for Command and Control Applications, Proceedings DARTWorkshop, CIKM Conference, Maryland, November 1996, (co-author: E. Hughes et al).135. Object Technology for the Integration of the Infrastructure, Data Manager, and Tracker forCommand and Control Applications, Proceedings of the IEEE Workshop on Object-Oriented RealtimeDependable Systems (WORDS), Newport Beach, CA, February 1997 (co-authors: M. Gates)136. Data Manager for Evolvable Real-time Command and Control, Proceedings VLDB 1997, Athens,Greece (co-author: R. Ginis et al).137. Object-oriented Data Management and Distribution for Real-time Command and Control Systems,Proceedings International Workshop on Real Time Databases 1997, Burlington, VT (co-author: R.Ginis, E. Hughes, et al).138. Schedule and Priority Mapping for Static and Real-time Middleware, Proceedings RT Middlewareworkshop, San Francisco, CA 1997, (also published in Springer book: Real Time Systems, Vol. 20,No. 2, March 2001) (co-authors: V. Wolfe et al).139. Concurrency Control in Real-time Object-oriented Systems, Proceedings IEEE ISORC, Kyoto, April1998, (co-authors: M. Squadrito, et al).140. Distributed Adaptable Object-based Architecture for Evolvable Command and Control Systems, WebProceedings of the DARPA/OMG Workshop on Compositional Software Architecture, January 1998(co-author: P. Krupp et al), Monterey, CA.141. Adaptable Real-time Distributed Object Management for Command and Control Systems,Proceedings of the IEEE ISADS Conference, March 1999, Tokyo, Japan (co-author: J. Maurer et al).142. CORBA-based Real-time Trader Service for Adaptable Command and Control Systems, Proceedingsof the IEEE ISORC Conference, May 1999, St. Malo, France (co-author: S. Wohlever et al).143. Dependable Objects for Databases, Middleware, and Methodologies, Proceedings IEEE WORDS99F, Monterey, CA. (co-author: Dr. Marion Ceruti).144. Towards a Real-time Agent Architecture: A White Paper, Proceedings IEEE WORDS 99F, Monterey,CA, (co-author: L. DiPippo).145. Benchmarking Distributed Real-time Objects, Proceedings IEEE ISORC 2000, Newport Beach, CA(co-author: John Maurer et al).51

146. Real-time Data Mining of Multimedia Data Objects, Proceedings IEEE ISORC, ISORC, 2001,Magdeburg, Germany (co-author: M. Ceruti et al).147. Dependable Semantic Web, Proceedings IEEE WORDS 2002, San Diego, CA (keynote addresspublished as paper, also version appeared in IEEE ICTAI 2002, Washington DC) (co-authors: E.Hughes et al)148. Dependable Infrastructures and Data Managers for Sensor Networks, Proceedings IEEE WORDS2003F, Capri Island, Italy149. QOS Aware Dependable Distributed Steam Processing, ISORC 2008: 69-75 , (co-authors: V.Kalogeraki, D. Gunopulos, R. Sandhu), Orlando, FL.150. Difference in Fitts’ Law Task Performance, EuroHaptics 2008: 295-300, Madrid, Spain (co-author:G. Lee).151. Real-time Knowledge Discovery and Dissemination for Intelligence Analysis, Proceedings HICCS2009, Hawaii (co-author: J. Han et al) Nominated for best paper award.152. Dynamic Service and Data Migration in the Clouds, Proceedings IEEE International ComputerSoftware and Applications Conference (COMPSAC) Workshop, July 2009, Seattle, WA (coauthors:W. Hao, I. Yen).153. Secure Semantic Service Oriented Grid for Cyber Physical System and Applications, ProceedingsDHS/CPS Workshop on Cyber Physical Systems Security, Newark, NJ, July 2009 (co-authors: I.Yen et al).154. Classification and Novel Class Detection in Data Streams with Active Mining, Proceedings of 14thPacific-Asia Conference on Knowledge Discovery and Data Mining, 2010, p. 311 – 314,Hyderabad, India. (co-authors: M. Masud, J. Gao, L. Khan, J. Han).155. Addressing Concept-Evolution in Concept-Drifting Data Streams, IEEE International Conference onData Mining (ICDM) Conference, December 2010, p. 929 – 934, Sydney, Australia,. (co-authors: M.Mehedy, L. Khan, J. Han, C. Agrawal et al).156. Rule-Based Run-Time Information Flow Control in Service Cloud, Proceedings of IEEEInternational Conference on Web Services (ICWS 2011), July 2011, Washington DC (co-authors:Wei She, I-Ling Yen, San-Yih Huang).Data Management and Mining/Geospatial Information Systems/Semantic Web157. Design of a Distributed Data Dictionary System, June 1987, Proceedings of the National ComputerConference, Chicago, IL, pp. 583-590, (co-authors: H. Lu and K. Mikkilineni).158. Knowledge-Based User Interface Design Issues for Heterogeneous Networks, September 1988,Proceedings of the Australian Computer Conference, Sydney, Australia.159. Knowledge-Based Support for the Development of Database-centered Applications, February 1989,Proceedings of the 5th IEEE International Conference on Data Engineering, Los Angeles, CA, (coauthors:R. Bell and H. Atchan).160. XIMKON: An Expert Simulation and Control Program, AAAI Conference Workshop on AI inProcess Engineering, St Paul, MN (co-authors: F. Konar, 1988).52

161. XIMKON- An Expert Simulation and Control Program, June 1989, Proceedings of the AmericanControl Conference (enhanced version of AAAI Workshop 1988 paper) Pittsburgh, PA (coauthors:F. Konar and P. Felix).162. Expert Network Simulation and Control, March 1989, Proceedings of the 7th Applications ofArtificial Intelligence Conference, Orlando, FL.163. Applying OMT for Designing Medical Database Applications, September 1993, Proceedings of theOOPSLA Conference Workshop on Information Modeling, Washington D.C.164. Extending an Object-Oriented Data Model for Representing Multimedia Database Applications,Proceedings of the OOPSLA 94 Conference Workshop on Precise Behavioral Specificiation inObject Oriented Information Modeling, Portland, OR. October 1994, (co-author: K. Nwosu).165. Object-Oriented Approach for the Interoperability of Persistent Database Systems, Proceedingsof the OOPSLA 94 Conference Workshop on Persistence in Heterogeneous Database Systems,Portland, OR. October 1994, (co-author: R. Nemec).166. Consistent Data Access in a Distributed Database Management System for Command and ControlApplications, Proceedings of the High Performing Computing Symposium, April 1994. San Diego,CA (co-authors: D. Small, D. Goldsmith).167. Distributed Database Technology for Mobile Computing and Communications Systems, Proceedingsof the IEEE Technology Dual Use and Applications Conference, Utica, NY, May 1994.168. Applying OMT for Designing Multimedia Information Systems Applications, Proceedings of theIEEE Technology Dual Use and Applications Conference, Utica, NY, May 1994. (co-author: K.Nwosu)169. Distributed Multimedia Database Systems, Proceedings of the AIPASG Symposium, March 1994,(Abstract in Proceedings; co-author: B. Lavender).170. Object-Oriented Approach to Federated Data Management, Proceedings of the ISMM InternationalConference on Intelligent Information Management Systems, Washington D.C., June 1994, (coauthor:N. Idris).171. On Dynamic Reallocation of Parallel Retrievable Objects, Proceedings of the DistributedMultimedia Systems Applications Conference, Honolulu, HI, August 1994, (co-author: P. Bobbie).172. Maintaining Integrity in a Distributed Heterogeneous Database Systems, Proceedings of the DODDatabase Colloquium 94, San Diego, CA, August 1994, (co-author: D. Goldsmith).173. The Role of Standards in the Interoperability of Heterogeneous Database Systems, Proceedings of theDOE Office Information Technology Conference, August 1994 (abstract and presentation publishedin Proceedings) (co-author: M. Zemankova).174. Distributed Database Management for C3I Systems, Proceedings of the MILCOM 94 Conference, Ft.Monmouth, NJ, October 1994, (co-authors: A. Grasso, M. Collins; classified session).175. Application of Object-Oriented Technology for Integrating Heterogeneous Database Systems,Proceedings of the ACM Computer Science Conference, Nashville TN, March 1995.53

176. Data Allocation and Spatio Temporal Implication for Video on Demand Systems, Proceedings of theIEEE Phoenix Conference on Computers and Communications, Scottsdale, AZ March 1995, (coauthor:K. Nwosu).177. Intelligence Community Initiative in Massive Digital Data Systems, Proceedings of the AIPASGSymposium, March 1995, (co-authors: R. Kluttz, et al); an update published in AIPASGSymposium, March 1996, (co-author: H. Curran et al) Tysons Corner, VA178. Massive Data and Information Systems Initiative at MITRE, Proceedings of the AIPASG SymposiumMarch Tysons Corner, VA, 1995 (also versions given at MITRE conferences).179. Applying OMT to design Medical Information Systems Applications, Proceedings of the IntelligentInformation Systems Management Conference, Washington D.C. June 1995.180. Object oriented Technology for Integrating Distributed Heterogeneous Database System,Proceedings of the 1995 DOD Database Colloquium, San Diego, CA (co-authors: M. Ceruti et al).181. Data Mining and Data Visualization, A Position Paper, Databases Issues for Data VisualizationWorkshop, Atlanta, GA, Oct. 1996 (Springer Verlag, 1996) (co-author: G. Grinstein).182. Interactive Data Mining and its Impact on the World Wide Web, Proceedings Compugraphics andVisualization Techniques, Paris, France December 1996.183. Data Mining in Text, AIPASG, 1997, McLean, VA, (co-author: C. Clifton et al).184. Text Mining and Visualization, Proceedings of the KDD Workshop on Data Mining andVisualization, Newport Beach, CA, August 1997 (also in IEEE Visualization workshop, October1997: Role of Visualization in Texas Mining).185. Understanding Data Mining and Applying it to C3I Environments, Proceedings IEEE COMPSAC2000, Taipei, Taiwan, (co-author: M. Ceruti).186. Data Management for Global Command and Control Systems, AFCEA Database Colloquium 2000,San Diego, (co-author: J. Putman et al).187. Data Mining for E-commerce, Proceedings SPIE, 2000, Orlando, FL, (co-author: A. Grasso et al).188. Neural Networks and Data Mining, AFCEA 2001, San Diego, CA, (co-author: C. Clifton).189. Data Management for the 21 st Century, Proceedings IEEE Systems, Man & Cybernetics, July 2002,Hammamet, Tunisia (co-author: M. Ceruti).190. Data Quality, Kluwer 2002 (based on keynote address at IFIP Integrity, November 2001, Brussela,Belgium, (co-author: E. Hughes).191. Reasoning with Semantics-aware Access Control Policies for Geospatial Web Services, Proceedingsof ACM SWS, November 2006, Fairfax, VA, (co-authors: A. Alam et al).192. Geospatial Data Qualities as Web Services Performance Metrics, Proceedings ACM InternationalWorkshop on Advances in Geographic Information Systems (GIS), November 2007, Seattle WA(co-author: G. Subbiah et al).193. DAGIS: A Geospatial Semantic Web Services Discovery and Selection Framework, GeoS 2007,Mexico City, Mexico, November 2007, (co-author: A. Alam et al).54

194. Ontology Alignment Using Multiple Contexts. International Semantic Web Conference (Posters &Demos) 2008 (co-authors: J. Partyka et al), Germany.195. Content-based Ontology Matching for GIS Datasets, ACM International Workshop on Advances inGeographic Information Systems (GIS) 2008, Irvine, CA(co-authors: J. Partyka et al).196. A Practical Approach to Classify Evolving Data Streams: Training with Limited Amount of LabeledData, ICDM 2008 (co-authors: M. Masud et al), Pisa, Italy197. A Multi-Partition Multi-Chunk Ensemble Technique to Classify Concept-Drifting Data Streams,PAKDD 2009, Bangkok, Thailand (co-author: M. Masud et al).198. Simulating Bioterrorism Thru Epidemiology Approximation, IEEE International Conference onIntelligence and Security Informatics 2008, (co-authors: Ryan Layfield, Murat Kantarcioglu),Taipei, Taiwan.199. An Effective Evidence Theory Based K-Nearest Neighbor (KNN) Classification, Web Intelligence2008:797-801, Sydney, Australia (co-authors: Lei Wang, Latifur Khan).200. Inferring Private Information Using Social Network Data, World Wide Web (WWW) Conference2009: 1145-1146, Madrid, Spain (co-authors: J. Lindamood et al).201. A Relational Wrapper for RDF Reification, Third IFIP WG 11.11 International Conference on(IFIPTM), West Lafayette, USA, June 15-19, 2009, (co-authors: S. Ramanujam, A. Gupta, L. Khan,and S. Seida).202. “Relationalizing RDF Stores for Tools Reusability” ACM 18th International World Wide WebConference (WWW 2009—Poster Session), Madrid, Spain, April 2009 (co-authors: S. Ramanujam,A. Gupta, L. Khan, and S. Seida).203. On the Mitigation of Bioterrorism through Game Theory, ISI 2009 (co-authors: Ryan Layfield andMurat Kantarcioglu) Dallas TX204. Social Network Classification Incorporating Link Type, ISI 2009 (co-authors: Raymond Heatherlyand Murat Kantarcioglu). Dallas TX205. Design of a Temporal Geosocial Semantic Web for Military Stabilization and ReconstructionOperations, Proceedings SIGKDD Conference Workshop on Intelligence and Security Informatics,2009 (co-authors: L. Khan et al).206. R2D: Extracting Relational Structure from RDF Stores, IEEE WIC/ACM Conference on WebIntelligence, September 2009 (co-authors: Sunitha Ramanujam, Anubha Gupta, Latifur Khan, andSteven Seida).207. Integrating Novel Class Detection with Classification for Concept-Drifting Data Streams, PKDD,September 2009 (co-authors: M. Masud et al).208. Semantic Schema Matching Without Shared Instances, Proceedings IEEE Semantic ComputingConference, 2009, short paper (co-authors: J. Partyka et al)).209. R2D: A Bridge between the Semantic Web and Relational Visualization Tools, Proceedings IEEEInternational Conference on Semantic Computing, 2009, long regular paper (co-authors: S.Ramanujam et al).55

210. Semantic Web for Content Based Video Retrieval, Proceedings IEEE International Conference onSemantic Computing, Berkeley, CA, 2009 (short paper – co-author: B. Prabhakaran et al).211. Geographically-typed Semantic Schema Matching, GIS 2009: 456-459 (co-authors: Jeffrey Partyka,Latifur Khan).212. Storage and Retrieval of Large RDF Graph Using Hadoop and MapReduce. CloudCom 2009,Beijing, China (co-authors: M. Husain, P. Doshi, and L. Khan).213. Bi-directional Translation of Relational Data into Virtual RDF Stores, Proceedings IEEE SemanticComputing Conference, September 2010, p. 268 - 276 (coauthors: L. Khan et al)214. Classification and Novel Class Detection of Data Streams in a Dynamic Feature Space, ProceedingsEuropean Conference on Machine Learning (ECML), Barcelona, Spain, 2010 (co-authors: L. Khanet al)215. Data Intensive Query Processing for Large RDF Graphs Using Cloud Computing Tools, IEEECloud Computing, Miami, July 2010 (co-authors: M. Farhan Husain et al)216. Ranking Ontologies Using Verified Entities to Facilitate Federated Queries, Web Intelligence 2010,p. 332 – 337, Toronto, Canada (co-authors: Neda Alipanah, Piyush Srivastava, Pallabi Parveen).217. Efficient Processing of Large RDF Streams Using Memory Management Algorithms, TheInternational Semantic Web Conference (ISWC) 2010, Shanghai, November 2010 (co-authors: V.Khadilkar et al)218. Geospatial Schema Matching with High-Quality Cluster Assurance and Location Mining fromSocial Network, Proceedings of the International Conference on Data Mining (ICDMW) WorkshopsDecember 2010, p. 517 (co-authors: Latifur Khan, Jeffrey Partyka, Satyen Abrol).219. Ontology-driven Query Expansion Methods to Facilitate Federated Queries, Proceedings of IEEEInternational Conference on Service-oriented Computing and Applications (SOCA) 2010, p. 1-8,(co-authors: Neda Alipanah, Pallabi Parveen, Sheetal Menezes, Latifur Khan, Steven Seida).220. RDFKB: A Semantic Web Knowledge Base, Proceedings of the 22nd International Joint Conferenceon Artificial Intelligence (IJCAI 2011), p. 2830 - 2831, July 2011, Barcelona, Catalonia, Spain (coauthors:James P. McGlothlin, Latifur Khan).221. Scalable Complex Query Processing Over Large Semantic Web Data Using Cloud, Proceedings ofthe IEEE International Conference on Cloud Computing (CLOUD 2011), p. 187 – 194, July 2011,Washington DC (co-authors: Mohammad Farhan Husain, James McGlothlin, Latifur Khan).222. Ontology-Driven Query Expansion using Map/Reduce Framework to Facilitate Federated Queries,Proceedings of the IEEE International Conference on Web Services (ICWS 2011), p. 712 – 713, July2011, Washington, DC (co-authors: Neda Alipanah, Pallabi Parveen, Latifur Khan).223. Identification of Related Information of Interest Across Free Text Documents, Proceedings of theIEEE International Conference on Intelligence and Security Informatics (ISI 2011), Beijing, China,p. 107 – 112, (co-authors: James R. Johnson, Anita Miller, Latifur Khan, Murat Kantarcioglu).224. Extraction of Expanded Entity Phrases, Proceedings of the IEEE International Conference onIntelligence and Security Informatics (ISI 2011), p. 101 – 106, , Beijing China (co-authors: JamesR. Johnson, Anita Miller, Latifur Khan, Murat Kantarcioglu).56

225. RETRO: A Framework for Semantics Preserving SQL-to-SPARQL Translation, Proceedings ofInternational Semantic Web Conference Workshop, October 2011, Bonn, Germany (co-authors: J.Rachapalli, V. Khadilkar, Murat Kantarcioglu).III. BOOKS AUTHOREDSeries 1: Data Management, Data Mining, Data Security for Technical Managers1. Data Management Systems Evolution and Interoperation, CRC Press, May 19972. Data Mining, Technologies, Techniques Tools and Trends, CRC Press December 19983. Web Data Management and Electronic Commerce, CRC Press, June 20004. Managing and Mining Multimedia Databases, CRC Press, June 20015. XML, Databases and Semantic Web, CRC Press, March 20026. Web Data Mining and Counter-terrorism, CRC Press, June 20037. Database and Applications Security: Integrating Data Management and Information Security, CRCPress/Auerbach, June 20058. Building Trustworthy Semantic Webs, CRC Press/Auerbach, 20079. Secure Semantic Service Oriented Systems, CRC Press, 201010. Building and Securing the Cloud, CRC Press, expected publication, 2012.Series 2: Research from PhD/MS Thesis of Students11. Design and Implementation of Data Mining Tools, CRC Press, June 2009(co-authors: L. Khan, M. Awad, L. Wang).12. Data Mining Tools for Malware Detection, CRC Press, December 2011 (co-authors: L. Khan, M.Masud).13. Reactively Adaptive Malware and Stream Mining, CRC Press (contract to be signed November2012, Expected publication 2013) (co-authors: Kevin Hamlen, Mehedy Masud, Latifur Khan)IV. BOOK CHAPTERS (not including reprints from conference proceedings)1. Expert System to Design Control Systems, May 1990, Artificial Intelligence in Process Engineering,Academic Press, ed: M. Mavronopoulos (co-authors: F. Konar and P. Felix).2. Distributed Database Management Systems: Developments and Challenges, Local Area NetworkHandbook 1993 (Auerbach Publishers, invited paper, ed: J. Sloane and A. Drinan).3. Object-Oriented Approach to the Interoperability of Heterogeneous Database Management Systems,Local Area Network Handbook, 1994 (Aurebach Publishers, invited paper, ed: J. Sloane).57

4. Distributed Object Management System Approach to Integrating Heterogeneous Database Systems,Local Area Network Handbook, 1995 (Auerbach Publishers, invited paper, ed: R. Maybry).5. Internet Database Management, Database Management, 1996 (Auerbach Publishers, ed: R. Mabry).6. Secure database management, Handbook of Database Management, McGraw Hill 1996 (Ed: P.Fortier, co-author: S. Son et al).7. Multimedia database management, Handbook of Database Management, McGraw Hill, 1996 (Ed: P.Fortier, co-author: S. Dao).8. Secure Database Systems, Advances on Data Management, 2000 (Editor: O. Diaz and M. Piattini; coauthor:E. Ferrari - Artech House).9. KM for Heterogeneous information exchange, Kluwer Book (co-author: A Gupta et al), 2002.10. Managing Cyber Threats: Issues and Challenges, Kluwer (editor: V. Kumar et al), 2004.11. Data Mining for Counter-terrorism, AAAI Press (editor: H. Kargupta et al), 2004 (MGDMConference, 2002).13. Secure Semantic Grids, Web and Information Systems Security, co-author: L. Khan (editors: E.Ferrari et al) Idea Group.14. Assured Information Sharing Across Organization Boundaries, Data Mining for Counter-terrorism,Springer, 2006 (editor: H. Chen).15. Secure Semantic Web Services, Springer, (editor: M. Gertz), 200816. Assured Information Sharing: Technologies, Challenges and Directions,Intelligence and Security Informatics 2008: 1-15.17. Secure Semantic Web Services, Handbook of Database Security, Springer, 2008, p. 231 - 245 (Editor:S. Jajodia and M Gertz)18. Policy Management for the Semantic Web, Handbooks in Information Systems, Volume 4, Ch. 6, p.159 – 191, 2009, Elsevier (Editors: H. Raghav Rao, Shambhu Upadhyaya)19. Security and Privacy for Social Networks, Springer, co-authors: B. Carminati et al (Editor: E. Ferrari)V. TECHNICAL ARTICLES1. Decision Problems for System Functions, March 1980, Recursive Function Theory Letters.2. Recent Developments in Database Security, September 1989, Tutorial Proceedings of the IEEECOMPSAC Conference, Orlando, FL.3. An Object-Oriented Approach for Designing Secure Systems, Fall 1989, IEEE CIPHER (co-author:F.Chase).4. Computing Transitive Closures of Multilevel Relations, September 1990, ACM SIGMOD Record,Vol. 19, No. 3.58

5. Inference Problem in Database Security, IEEE CIPHER, Winter 1991.6. Recursion Theoretic Properties of the Inference Problem, IEEE CIPHER, Winter 1991.7. A Note on the Recursive Enumerability of the Inference Problem in Multilevel Secure DatabaseManagement Systems, Recursive Function Theory Letters, 19928. Current Status of R&D in Trusted Database Management Systems, ACM SIGMOD Record, Vol. 21,#3, September 1992.9. Concurrency Control in Trusted Database Management Systems, ACM SIGMOD Record, December1993 (co-author: H. Ko).10. Engineering Real-time Complex Systems, IEEE Complex Systems, 1994/1995, (co-authors: P. Krupp,A. Kanevsky).11. Data Management Research at the MITRE Corporation, ACM SIGMODRecord, September 1995 (co-authors: Rosenthal, et al).12. Improving Timeliness in Real Time Secure Database Systems, ACM SIGMOD Record. 1996 (coauthor:S. Son et al).13. Data Mining, National Security, Privacy and Civil Liberties, ACM SIGKDD, December 2002.14. Semantic Web, Encyclopedia of Human Computer Interaction, Berkshire Publishers, (Editor: W.Bainbridge), 2004.15. Security, Encyclopedia of Human Computer Interaction, Berkshire Publishers, Editor: W. Bainbridge,2004.16. Homeland Security, Data Mining Link Analysis for National Security, Essays in the Encyclopedia ofData Warehousing and Mining, Editor: J. Wang, 2005.17. Security and Privacy for Geospatial Data Management, Encyclopedia of Geospatial DataManagement, Springer, 2007 (co-authors: L. Khan et al).18. Managing and Mining Multimedia Data, Animations and Annotations, Proceedings WileyEncyclopedia, 2007 (co-authors: B. Prabhakaran, L. Khan).19. Multilevel Secure Data Management, Encyclopedia on Database Security, (Editor: E. Ferrari), 2007.20. Mandatory Security, Encyclopedia of Information Security, (Editor: E. Ferrari).20. Privacy and Security Challenges in GIS, Encyclopedia of GIS (Springer)2008: 898-902 (co-authorsLatifur Khan, Ganesh Subbiah, Ashraful Alam, Murat Kantarcioglu).21. Geospatial Semantic Web, Definition. Encyclopedia of GIS 2008: 398 (co-authors: Latifur Khan,Ganesh Subbiah, Ashraful Alam, Murat Kantarcioglu).22. Data Mining for Security Applications and Its Privacy Implications, Lecture Notes in ComputerScience, Springer Verlag, (Based on keynote address at SIGKDD workshop 2008).59

23. Challenges and Future Directions of Software Technology: Secure Software Development.COMPSAC 2010, Bhavani M. Thuraisingham, Kevin W. Hamlen24. Secure Semantic Sensor Web and Pervasive Computing. Bhavani M. Thuraisingham, Kevin W.Hamlen SUTC/UMC 2010: 5-10VI. MITRE JOURNALS1. Multilevel Secure Object-Oriented Data Model - Issues on Noncomposite Objects, CompositeObjects, The MITRE Journal, 1992 (Version of Journal of Object-Oriented Programming paper,1991).2. Object-Oriented Approach to PACS Applications, MITRE Information Systems Engineering Journal,Fall 1993.3. Design and Implementation of a Database Inference Controller, the MITRE Journal, 1994, (coauthors:W. Ford, M. Collins, J. O'Keeffe; version of Data and Knowledge Engineering Paper, 1993).60

I. JOURNAL SPECIAL ISSUES EDITEDSection 11: EDITED WORKS1. Special issue in Security and Standards, Computer Standards and Interface Journal, 1995 (coeditor:J. Williams, editorial introduction).2. Special issue in Secure Database Systems Technology, IEEE Transactions on Knowledge and DataEngineering, February 1996 (co-editor: T. Ting, editorial introduction).3. Special issue in Multimedia Database Management, Multimedia Tools and Applications Journal,1997, (co-editors: K. Nwosu, B. Berra – also version published as book by Kluwer).4. Special issue in Multimedia Databases, IEEE Multimedia (co-editors: Nwosu, Berra, editorialintroduction), 19975. Special Issue in Data and Applications Security, Data and Knowledge Engineering Journal,November 2002 (co-editor: R. van der Riet).6. Special Issue in Data and Applications Security, Journal of Computer Security, 2003 (co-editor R.van der Riet).7. Special Issue in Data and Applications Security, Journal of Intelligent Information Systems, 2004.8. Privacy-preserving Data Management, VLDB Journal, September 2006 (co-editor: E. Ferrari).9. Data and Applications Security, International Journal of Information Security (co-editor: E. Ferrari).10. Editorial for Computer Standards and Interface Journal as Editor-in-Chief, November 2006.11. Foreword for book on Security Standards for Web Services (Editor: Eduardo Fernandez-Medina).12. Special Issue ACM Transactions on Information and System Security (TISSEC) 2010.13. Information and Communications Security, Privacy and Trust: Standards and Regulations. ComputerStandards & Interfaces, Elsevier, Vol. 32, No. 5-6, 2010 (co-editor: Stefanos Gritzalis).14. Special Issue Computer Standards and Interface Journal on Secure Semantic Web, 2012 (co-editor:Barbara Carminati)15. Special Issue on Data Security, IEEE Transactions on Dependable and Security Computing, 2012(co-editor: E. Ferrari).II. BOOKS EDITED1. Database Security VI: Status and Prospects, 1993, Book by North Holland (co-editor: C.Landwehr). (Enhanced version of Proceedings of 6th IFIP 11.3 Working Conference in DatabaseSecurity, 1992).2. Security for Object-Oriented Systems, Book by Springer Verlag, 1994 (co-editor: R. Sandhu, T.C.Ting, Enhanced version of ACM OOPSLA Workshop Proceedings on Secure Object Systems).61

3 Multimedia Database Management Systems, Kluwer Publications, 1996 (co-editors: B. Berra, K.Nwosu).4. Data Management Handbook Supplement, Auerbach Publications, 1996 (Guest Editor).5. Directions in Multimedia Database Management, Kluwer, 1997 (co-editors: B. Berra, K. Nwosu).6. Data Management Handbook, 1998 (Consulting Editor).7. Knowledge Management, MIT Press, 2001 (co-editors: M. Maybury et al).8. Data and Applications Security, Kluwer 2001; enhanced version of Proceedings of IFIP DatabaseSecurity Conference, 2000 (co-editors: R. van der Riet et al).9. Heterogeneous Information Exchange, Kluwer 2002, editorial introduction, 2002 (co-editors: H.Bestegoff et al).10. Web Information Management Security, Artech House, 2005 (co-editor: E. Ferrari).11. System Integrity and Control, Springer, 2006 (co-editor S. Wang et al).III. CONFERENCE AND WORKSHOP PROCEEDINGS EDITED1. Proceedings of the 3rd RADC Database Security Workshop, Published as MITRE Technical Report,MTP 385, May 1991.2. Proceedings of the 6th IFIP 11.3 Working Conference in Database Security, August 1992.3. Proceedings of the OOPSLA-93 Conference Workshop on Integrating Object-oriented technologyand Security Technology, September 1993 (co-editors: R. Sandhu and T.C. Ting).4. Proceedings of the Massive Digital Data Systems Workshop, March 1994, published by theCommunity Management Staff, Intelligence Community (co-authors: B. Lavender et al).5. Proceedings of the OOPSLA 94, 95, and 96 Conference Workshop on Object-Oriented Technologyfor Medical Information Systems, October 1994, 95, 96 (co-editor: M. Ibrahim et al).6. Proceedings of the ACM Multimedia Conference Workshop on Multimedia Database ManagementSystems, October 1994, November 95 (co-editors: B. Berra, K. Nwosu).7. Proceedings WORDS 1999 by IEEE CS Press, August 1999 (also edited preliminary conferenceproceedings in January 1999).8. Proceedings of the 14th IFIP 11.3 Working Conference in Database Security, August 2000. (coeditor:R. van der Riet et al).9. Proceedings ISI Conference, Springer, 2006 (co-editor: H. Chen et al).10. SACMAT 2007, 12th ACM Symposium on Access Control Models and Technologies, SophiaAntipolis, France, June 20-22, 2007, Proceedings ACM 2007 (co-editor: V. Lotz)11. NSF Data and Applications Security Workshop, February 200962

12. Proceedings ISI Conference, IEEE, 2009 (co-editor: H. Chen et al).IV. WORKSHOP AND SPECIAL SESSION REPORTS1. Workshop Summary, 7th IFIP 11.3 Database Security Conference, IFIP Transactions in DatabaseSecurity VII, North Holland, 1994 (Editors: Keefe and Landwehr).2. Workshop Summary, OOPSLA-93 Conference Workshop on Security for Object-Oriented Systems,Addendum to the Proceedings of the ACM OOPSLA 93 Conference, OOPS Messenger, Vol. 5, No.2,April 1994.3. Panel Summary, ACM OOPSLA-93 Conference Panel on Integrating Object-Oriented and SecurityTechnologies, Addendum to the Proceedings of the OOPSLA 93 Conference, OOPS Messenger, Vol.5, No.2, April 1994.4. Workshop Summary, ACM OOPSLA-94 Conference Workshop on Object Technology in HealthcareInformation Systems, Addendum to the Proceedings of the ACM OOPSLA 94 Conference, ACMOOPS Messenger, 1995 (co-authors: M. Ibrahim, S. Arora, T. C. Ting).5. Workshop Summary, ACM Multimedia '94 Conference Workshop on Multimedia DatabaseManagement Systems, ACM SIGMOD Record, 1995.6. Interactive Data Mining, Workgroup Session Report, Databases in visualization workshop 1995,Springer Verlag, 1996.7. Data Mining and Security, Special session at the 1995 IFIP Database Security Conference, Jointarticle in conference proceedings book chapter published by Chapman and Hall, 1996. (co-authors:T.Y. Lin, T. Hinke, D. Marks).8. Workshop Discussion, Interactive Data Mining, IEEE Database and Visualization workshop, Atlanta,GA (proceedings published by Springer), 1996.9. Workshop Summary, Data and Applications Security, IFIP 11.3, August 2001.10. Workshop Summary, Secure Semantic Web, ICDE Conference, 2008 (Co-chair: B. Carminati)V. MITRE Publications Edited1. Special Issue Editorial, Edge Data Mining Issue, MITRE, 20002. Conferences Co-Chaired: First Applied Database Technology Day, 1994; First Database Vendor Day1995, Second Applied Database Technology Day, 1995, First Object technology Day, 199663

Section 12: TECHNICAL REPORTSI. TECHNICAL REPORTS at The University of Texas at DallasUTDCS-05-05UTDCS-39-05Data Mining Techniques for BiometricsSystemsUncertainty: An Extra Layer of SecurityFor Unauthorized Traffic Based WebServicesLatifur KhanBhavani ThuraisinghamParag AgarwalB. PrabhakaranBhavani ThuraisinghamUTDCS-02-06 Dependable and Secure TMO Scheme Jung-In KimBhavani ThuraisinghamUTDCS-03-06UTDCS-04-06UTDCS-05-06UTDCS-06-06UTDCS-13-06UTDCS-14-06UTDCS-15-06UTDCS-22-06UTDCS-27-06UTDCS-32-06UTDCS-39-06UTDCS-40-06UTDCS-43-06UTDCS-44-06Geography Resource DescriptionFramework (GRDF) and Secure GRDF(S-GRDF)An Adaptable Perturbation Model ofPrivacy Preserving Data MiningFace Recognition Using VariousClassifiers: Artificial Neural Network,Linear Discriminant and PrincipalComponent AnalysisAdministering The Semantic Web: CPT:Confidentiality, Privacy and TrustManagementOn the Complexity of the PrivacyProblem in DatabasesInference Control for Document Releaseand DisseminationIndividually Adaptable PerturbationModel for Privacy Preserving DataMiningDesign and Implementation of a SecureSocial Network SystemDetecting New Malicious ExecutablesUsing Data MiningFingerprint Matching Algorithm BasedOn Tree Comparison Using Ratios ofRelational DistancesA Scalable Clustering Method Based onDensityDetecting Malicious Executables UsingAssembly Feature RetrievalAssured Information Sharing:Technologies, Challenges and DirectionsDesign and Implementation of PolicyEnforcement, Data Sharing and MiningComponents for Trustworthy CoalitionsAshraful AlamBhavani ThuraisinghamLi LiuBhavani ThuraisinghamMurat KantarciogluLatifur KhanPallabi ParveenBhavani ThuraisinghamNathalie TsybulnikBhavani Thuraisingham02/0512/0501/0601/0601/0601/0602/06Bhavani Thuraisingham 03/06Bhavani Thuraisingham 03/06Li LiuMurat KantarciogluBhavani ThuraisinghamRyan LayfieldBhavani ThuraisinghamMohammad M. MasudLatifur KhanBhavani ThuraisinghamMamoun A. AwadAbinandhan ChandrasekaranBhavani ThuraisinghamKathryn BeanSergey BeregLatifur KhanBhavani ThuraisinghamMohammad M. MasudLatifur KhanBhavani Thuraisingham03/0604/0607/0607/0609/0609/06Bhavani Thuraisingham 10/06Mamoun AwadDilsad CavusLatifur KhanManjunath Reddy10/0664

Bhavani ThuraisinghamUTDCS-45-06UTDCS-46-06UTDCS-47-06UTDCS-48-06UTDCS-51-06UTDCS-58-06UTDCS-60-06UTDCS-61-06Design and Simulation of Agent-basedTrust Management Techniques for aCoalition EnvironmentResearch and Simulation of GameTheoretical Techniques for Data SharingAmong Semi-Trustworthy PartnersDefensive Information Operations:Detecting Malicious Executables UsingAssemble Feature Retrieval in anUntrustworthy EnvironmentInformation Operations AcrossInfospheres: Volume 1A Novel Privacy Preserving DecisionTree AlgorithmFace Segmentation for PrivacyPreserving Video SurveillanceA Comparative Study of a KeyAgreement Protocol Based on ECC andRSARFID Technologies and TheirApplicationsSrinivasan IyerBhavani ThuraisinghamRyan LayfieldMurat KantarciogluBhavani ThuraisinghamM. Mehedy MasudLatifur KhanBhavani ThuraisinghamBhavani ThuraisinghamLatifur KhanMurat KantarciogluMamoun AwadDilsad CavusRyan LayfieldMehedy MasudSrinivasan IyerLi LiuMurat KantarciogluBhavani ThuraisinghamSai ChaitanyaBhavani ThuraisinghamVibha SethiBhavani ThuraisinghamAbinandhan ChandrasekaranBhavani ThuraisinghamUTDCS-64-06 Secure Grid Computing Jianmin ZhuBhavani ThuraisinghamUTDCS-65-06UTDCS-66-06UTDCS-68-06UTDCS-01-07UTDCS-02-07UTDCS-03-07UTDCS-33-07Face Recognition Using MultipleClassifiersA Framework for a Video Analysis Toolfor Suspicious Event DetectionA Model for Risk Adaptive AccessControl in RABC Employed DistributedEnvironmentsAn Integrated Platform for SecureGeospatial Information ExchangeThrough the Semantic WebOracle 10 G XE Tutorial (Product ofOracle Corporation)Geospatial Data Mining for NationalSecurity: Land Cover Classification AndGrouping for Semantic AssessmentSecurity for Enterprise ResourcePlanning SystemsPallabi ParveenBhavani ThuraisinghamGal LeveeLatifur KhanBhavani ThuraisinghamGal LeveeLatifur KhanBhavani ThuraisinghamBhavani ThuraisinghamAlam AshrafulGanesh SubbiahLatifur KhanSrinivasan IyerBhavani ThuraisinghamChuanjun LiLatifur KhanM. HusainBhavani ThuraisinghamShaofei ChenFang QiuWei-SheBhavani Thuraisingham10/0610/0610/0610/0610/0611/0611/0611/0612/0612/0612/0612/0601/0702/0703/0708/0765

UTDCS-34-07 Secure Semantic Web Services Bhavani Thuraisingham 08/07UTDCS-35-07Extended RBAC-Based Design andImplementation for A Secure DataWarehouseBhavani ThuraisinghamMurat KantarciogluSrinivasan Iyer09/07UTDCS-39-07Architecture for a Trusted ComputingBase For need-to-share in case ofemergenciesYashaswini Harsha KumarBhavani ThuraisinghamLatifur Khan11/07UTDCS-40-07Enforcing Honesty in AssuredInformationSharing within a DistributedSystemRyan LayfieldMurat KantarciogluBhavani Thuraisingham11/07UTDCS-41-07Data Mining for DefensiveOperationsMohammad MasudLatifur KhanBhavani Thuraisingham11/07UTDCS-45-07Information Operations AcrossInfospheres: Volume 2Latifur KhanBhavani ThuraisinghamMurat KantarciogluYashaswini Harsha KumarMehedy MasudRyan Layfield12/07UTDCS-01-08Trusted Computing Base for AssuredInformation SharingYashaswini Harsha KumarBhavani ThuraisinghamLatifur Khan01/08UTDCS-02-08Delegation-based Security Model ForWeb ServicesWei SheBhavani ThuraisinghamI-Ling Yen01/08UTDCS-05-08Mining Concept-Drifting Data StreamTo Detect Peer to Peer Botnet TrafficMohammad M. MasudJing GaoLatifur KhanJiawei HanBhavani Thuraisingham03/08UTDCS-13-08Content-based Ontology Matching forGIS DatasetsJeffrey L. PartykaLatifur KhanBhavani ThuraisinghamNeda AlipanahShashi Shekhar05/08UTDCS-18-08Surgical Haptics and Robotics: Influenceof Mismatched Haptic and VisualDisplay ScalesGregory S. LeeBhavani Thuraisingham07/08UTDCS-20-08Synthesize Virtual World Motions From2D Video RecognitionYohan JinMyunghoon SukB. PrabhakaranBhavani Thuraisingham07/08UTDCS-22-08Content-based Ontology Matching ForGIS DatasetsJeffrey PartykaNeda AlipanahLatifur KhanBhavani ThuraisinghamShashi Shekhar07/08UTDCS-23-08Secure Haptics and SurgicalRobotics: Adaptation to Fitts’ LawPerformance Measure for Multi-TargetTask ComparisonsGregory S. LeeBhavani Thuraisingham08/0866

UTDCS-32-08A Practical Approach to ClassifyEvolving Data Streams: Training withLimited Amount of Labeled DataMohammad M. MasudBhavani ThuraisinghamJing GaoLatifur KhanJiawei Han10/08UTDCS-40-08A Framework for the RelationalTransformation of RDF DataSunitha RamanujamAnubha GuptaLatifur KhanSteven SeidaBhavani Thuraisingham12/08UTDCS-01-09A Fine Grained Model for InformationFlow Control in Web ServiceCompositionWei SheI-Ling YenBhavani Thuraisingham01/09UTDCS-03-09Preventing Private Information InferenceAttacks on Social NetworksRaymond HeatherlyMurat KantarciogluBhavani Thuraisingham02/09UTDCS-09-09Design of a Temporal GeosocialSemantic Web for Military Stabilizationand Reconstruction OperationsBhavani ThuraisinghamLatifur KhanMurat Kantarcioglu04/09UTDCS-13-09Integrating Novel Class Detection withClassification for Concept-Drifting DataStreamsMohammad M. MasudJing GaoLatifur KhanJiawei HanBhavani Thuraisingham06/09UTDCS-25-09Design and Implementation of RestfulWeb Services for BlackbookPranav ParikhMurat KantarciogluLatifur KhanBhavani Thuraisingham08/09UTDCS-28-09A Case Study on Geospatial DataManagement with BlackbookSonia ChibJyothsna RachapalliBhavani ThuraisinghamLatifur KhanMurat Kantarcioglu09/09UTDCS-36-09Enhanced Information Flow Controlfor Service Composition and ItsImplementationWei SheI-Ling YenBhavani ThuraisinghamElisa Bertino09/09UTDCS-40-09Cost-based Query Processing for LargeRDF Graph Using Hadoop andMapReduceMohammad HusainPankil DoshiLatifur KhanSyeda A. RizviMurat KantarciogluBhavani Thuraisingham11/09UTDCS-41-09Efficient Query Processing forLarge RDF Graphs Using Hadoop andMapReduceMohammad HusainPankil DoshiJames McGlothlinLatifur KhanBhavani ThuraisinghamMurat Kantarcioglu11/0967

UTDCS-51-09UTDCS-01-10Secure Dependable and HighPerformance Cloud StorageSemantic Web ImplementationScheme for National VulnerabilityCommon Platform Enumeration DataYunqi YeI-Ling YenLiangliang XiaoFarohk Bastani,Bhavani ThuraisinghamVaibhav KhadilkarJyothsna RachapalliBhavani ThuraisinghamUTDCS-02-10 Security Issues for Cloud Computing Kevin HamlenLatifur KhanMurat KantarciogluBhavani ThuraisinghamUTDCS-03-10 Securing the Execution Environment Elisa Bertino, Gabriel Ghinita ,Kevin Hamlen, Murat Kantarcioglu,Hsien-Hsin S. Lee, Ninghui LiCalton Pu, Ravi Sandhu, WaleedSmari, Bhavani ThuraisinghamGene Tsudik, Dongyan XuShouhuai Xu11/0901/1001/1002/10UTDCS-04-10Ranking Entities from MultipleOntologies to Facilitate FederatedQueriesNeda Alipanah, Julie RauerLatifur Khan, Steven B. SeidaBhavani Thuraisingham02/10UTDCS-13-10Bi-Directional Translation of RelationalData into Virtual RDF StoresSunitha Ramanujam, VaibhavKhadilkar, Latifur Khan, StevenSeida, Murat Kantarcioglu, BhavaniThuraisingham05/10UTDCS-19-10Selected Papers in Security StudiesVolume 1: Terrorism Tactics, Trendsand TechnologiesBhavani Thuraisingham07/10UTDCS-20-10RBF Neural Network-based FaultLocalizationW. Eric Wong, Vidroha Deboy,Bhavani Thuraisingham, RichardGolden07/10UTDCS-23-10Selected Papers in Security StudiesVolume 2: Information SharingStrategies of the United States FederalGovernment and Its Allies andOur Contributions TowardsImplementing These StrategiesBhavani Thuraisingham08/10UTDCS-24-10A Comparison of Approaches for Large-Scale Data MiningAmy Xuyang TanValerie Li LiuMurat KantarciogluBhavani Thuraisingham08/10UTDCS-27-10Ontology-driven Query ExpansionMethods to Facilitate Federated QueriesNeda Alipanah, Parveen Pallabi,Sheetal Menezes, Latifur Khan,Steven Seida, BhavaniThuraisingham09/10UTDCS-12-11Federated Query Processing UsingOntology Structure and Ranking In aService Oriented EnvironmentNeda Alipanah, Parveen Pallabi,Latifur Khan, BhavaniThuraisingham03/11UTDCS-22-11RETRO: A Framework for SemanticsPreserving SQL-to-SPARQL TranslationJyothsna Rachapalli, VaibhavKhadilkar, Murat Kantarcioglu, andBhavani Thuraisingham08/1168

UTDCS-27-11Towards the Design and Implementationof a Cloud-Centric Assured InformationSharingBhavani Thuraisingham, VaibhavKhadilkar, Tyrone Cadenhead,Jyothsna Rachapalli, MuratKantarcioglu, Kevin Hamlen09/11UTDCS-30-11Optimized Ontology-Driven QueryExpansion Using Map-ReduceFramework to Facilitate FederatedQueriesNeda Alipanah, Latifur Khan andBhavani Thuraisingham11/11UTDCS-31-11Risk-Aware Data Processing in HybridCloudsBhavani Thuraisingham, VaibhavKhadilkar, Kerim Yasin Oktay, BijitHore, Murat Kantarcioglu andSharad Mehrotra,11/11UTDCS-35-11Selected Papers in Security StudiesVolume 6: The Continued War onTerrorism – How to Maintain Long-Range Terrorist DeterrenceJan Kallberg, BhavaniThuraisingham11/11UTDCS-36-11Selected Papers in Security StudiesVolume 7: Supply Chain Managementfor Inctive and Risk-based AssuredInformation SharingBhavani Thuraisingham12/11II. Technical Reports at MITRE1. Security Issues in Distributed Database Management Systems, September 1989, Technical Report,M89-52, Vol. 1.2. Research Directions in Distributed Database Management Systems, September 1989, TechnicalReport, M89-52, Vol. 2).3. The Inference Problem in Database Security, September 1989, Technical Report, M89-52, Vol. 3.4. Directions for Future Research and Development in Trusted Distributed Database ManagementSystems, September 1989, Technical Report, M89-52, Vol. 4,5. Recursion Theoretic Properties of the Inference Problem in Database Security, May 1990, TechnicalReport, MTP-291, (From Report No. 190).6. Secure Query Processing in Trusted Database Management Systems - Design and PerformanceStudies, May 1990, Technical Report, MTP-292, (From Report No. 189).7. Mathematical Formalisms for Multilevel Object-Oriented Systems, June 1990, Technical Report,MTP-291.8. Multilevel Security Issues in Distributed Database Management Systems, July 1990, TechnicalReport, MTP-297, (From Reports No. 188, No. 189).9. Handling Association Constraints in Multilevel Databases, July 1990, Technical Report, WP-28904.10. A Nonmonotonic Typed Multilevel Logic for Formalizing Multilevel Database Systems, June 1990,Technical Report, MTR-10935.69

11. Secure Distributed Query Processing Strategies, June 1990, Technical Report, WP 28891, (coauthors:H. Rubinovitz and M. Collins)12. The Use of Conceptual Structures in Handling the Inference Problem in Database Security, August1990, Technical Report, M90-55. Database Inference Controller - An Overview, Technical Report,August 1990, MTR-10963, (co-authors: W. Ford, J. O'Keeffe).13. Secure Distributed Query Processor - An Overview, August 1990, Technical Report, MTR-10969,Volume 1 (co-author: H. Rubinovitz) (also published as RADC Technical Report).14. Issues on Developing a Multilevel Secure Object-Oriented Data Model, Technical Report, MTP 384,December 1990.15. Security Issues for Federated Database Systems to Manage Distributed, Heterogeneous, andAutonomous Multilevel Databases, Technical Report, M91-78, November 1991.16. Enhancements to the Secure Distributed Query Processor Prototype to function in a LimitedHeterogeneous Environment, Technical Report, M91-86, December 1991.17. Security Constraint Processing in a Multilevel Secure Distributed Environment, Technical Report,MTR 11239, April 1992 (co-author: W. Ford).18. Simulation of Query Processing and Concurrency Control Algorithms for a Trusted DistributedDatabase Management System, June 1992, MTR92B0000077.19. COMPUSEC Training Course: Database Security and Issues, Technical Report, M92B0000102,Vol. 8, September 1992. (Based on half a day course given to AFCSC - see publication #270).20. Concurrency Control in Trusted Database Management Systems, Technical Report, M92B0000109,September 1992 (co-author: Hai-Ping Ko).21. Design and Implementation of a Distributed Database Inference Controller - I, Technical Report,MTR92B0000168, December 1992 (co-authors: Harvey Rubinovitz, D. Foti).22. Multilevel Security for Object-Oriented Database Management Systems, Technical ReportWP92B0000375, February 1993 (co-authors: A. Rosenthal, W. Herndon, R. Graubart).23. Selected Research Topics on the Inference Problem, M93B0000024, Technical Report, March 1993.24. A Framework for Specifying MLSDB Requirements, MTR 93B0000089, Technical Report, June 1993(co-authors: L. Monk and M. Nadel).25. A Seminar on Object-Oriented Database Management Systems, Technical Report M93B0000175,December 1993.26. A Seminar on Distributed and Heterogeneous Database Systems, Technical Report M93B0000176,December 1993.27. Applying OMT for Designing Multilevel Database Applications, Technical Report, M93B0000180,December 1993, (co-authors: P. Sell and D. Marks).28. Design and Implementation of a Distributed Database Inference Controller - II, Technical Report,MTR94B0000057, June 1994 (co-authors: Harvey Rubinovitz, M. Collins).70

29. A Seminar on Real-time Database Management Systems, Technical Report, MP 94B 0000124 July1994.30. Evolvable Systems Initiative for Real-time C3: Infrastructure Requirements: MTR 94B0000116, (coauthors:E. Bensley et al), September 1994 (Unclassified, NOFORN).31. Design and Implementation of an Active Real-time Database System, MP 94B 0000167, December1994 (co-authors: G. Gengo and A. Schafer).32. Massive Digital Data Systems Issues MP 94B0000169, September 1994, (co-authors: H. Bayard, B.Lavender, M. Zemankova).33. Directions for Data Management Technology Research at MITRE, MP 95B0000112, March 1995,(co-authors: B. Blaustein, L. Seligman, and A. Rosenthal).34. Final Report on the Inference Problem, Technical Report, June 1995 (co-authors: M. Collins, H.Rubinovitz).35. Program Plan for the Massive Digital Data Systems Initiative, Technical Report, May 1995.36. Toward Developing a Testbed for MDDS, Technical Report, September 1995.37. Plan for ORD Laboratory, Technical Report, September 1995 (co-author: C. Clifton et al.).38. Secure Client Server Computing, Working Note, MITRE, June 1995 (co-author: B. Kahn).39. Evolvable Systems Initiative for Real-time C3: Design and Implementation of the Infrastructure, DataManagement, and Application, Technical Report (co-authors: E. Bensley et al), September 1995.40. Evolvable Systems Initiative for Real-time C3: Integration of the Infrastructure, Data Manager, andTracker Technical Report (co-authors: M. Gates et al), September 1996.41. Evolvable Interoperable Information Systems Initiative at MITRE, Technical Report, September 1996(co-authors: P. Chase et al).42. Evolvable Interoperable Information Systems Initiative at MITRE: Final report, Technical Report,September 1997 (co-authors: P. Chase et al).43. Adaptable real-time CORBA, Technical report, Volume 1 September 1997 (co-author: R. Ginis, etal).44. Adaptable Real-time CORBA, Technical report, Volume 1I September 1998 (co-author: S. Wohleveret al).45. MDDS, Volume 1, Program Overview, MITRE Report May 1998.46. MDDS, Volume 2, Technology Overview, MITRE Report. June 1998.47. MDDS, Volume 3, Data Mining, MITRE Report July 1998.48. MDDS, Volume 4, Multimedia Databases, MITRE Report, August 1998.49. MDDS, Volume 5, Web Technologies, MITRE Report September 1998.71

50. MDDS: Interviews, Concept of Operation, Scenarios and Technologies, MITRE Report, 1999.51. Adaptable Real-time Object Request Brokers, Volume 3, MITRE tech Report, September 1999 (coauthor:S. Wohlever et al)52. Inference Problem, MITRE Technical Report, 1999. (co-author: H. Rubinovitz)IV. Other Significant Technical Reports1. Multilevel Security for Database Management Systems, October 1986, Technical Report, HoneywellComputer Sciences Center, Minneapolis, MN, (co-authors: P. Dwyer, G. Jelatis).2. Security Policy for LDV, 1989, Technical Report, Honeywell Secure Computing Technology Center,Minneapolis, MN, (co-authors: E. Boebert, B. Dillaway, P. Dwyer, T. Haigh) (also published asRADC Technical report).3. Implementation Specifications for LDV, 1989, Technical Report, Honeywell Secure ComputingTechnology Center, Minneapolis, MN, (co-authors: P. Dwyer, T. Haigh, E. Onuegbe, P. Stachour)(also published as RADC Technical report).4. Deficiencies Analysis for LDV, 1989, Technical Report, Honeywell Secure Computing TechnologyCenter, Minneapolis, MN, (co-authors: R. O'Brien, T. Haigh, J. Payne, P. Stachour, D. Toups).5. Optimal Placement of Recovery Points in Distributed Environments, 1986,Technical Report TR86-43, University of Minnesota, Minneapolis, MN, (co-authors: S. Chen, W. Tsai).6. On the Optimal AT and RP Assignment, 1987, Technical Report TR86-47, University of Minnesota,Minneapolis, MN, (co-authors: W. Tsai, et al.).7. Secure Query Processing Using AI Techniques, 1987, Technical Report TR87-37, Department ofComputer Science, University of Minnesota, Minneapolis, MN, (co-authors: W. T. Tsai, T. Keefe).8. Multilevel Security in Object-Oriented Systems, January 1988, Technical Report TR88-8, Universityof Minnesota, Minneapolis, MN, (co-authors: T. Keefe, W. T. Tsai).9. Artificial Intelligence Applications in Database Security, 1988, Technical Report TR88-31,University of Minnesota, Minneapolis, MN, (co-authors: W. T. Tsai, T. Keefe, D. Thomsen) (alsoappeared in Computer Security Journal, 1988).10. SODA - A Secure Object-Oriented Database System, 1989, Technical Report, University ofMinnesota, Minneapolis, MN, (co-authors: W. T. Tsai, T. Keefe).11. Real-time Method Invocations in Distributed Environments, TR95-244, January 1996 (co-author: V.Fay. Wolfe et al).12. Real-time CORBA Development at MITRE, NRad, TriPacific and URI, TR99-272, December 1997(co-author: G. Cooper et al).13. Scheduling and Priority Mapping for Static Real-Time Middleware, TR98-261, September 1998 (coauthors:L. DiPippo et al).72

14. Concurrency Control in Real-time Object-Oriented Systems: The Affected Set Priority CeilingProtocols, TR98-262 (co-author: M. Squadrito et al); April 1998.15. Towards a Real-time Agent Architecture – A White Paper, WORDS 1999 Fall, November 1999 (coauthor:L. DiPippo et al).16. Real-time CORBA, University of Rhode Island, TR00-276, October 2000 (co-author: V. Wolfe et al).17. Database Migration for Command and Control, AF Summer Study Report, 2001 (Vice Chair ofPanel; co-author: J. Hendler et al)) .18. Knowledge Management, MIT Sloan School Working Paper, 2002 (co-author : A. Gupta et al).19. XML Security, MIT Sloan School Working Paper, 2002 (co-author: A. Gupta et al).73

Section 13: PRESENTATIONS(Keynote addresses, panels, etc.)I. KEYNOTE/FEATURED PRESENTATIONS1. Interoperability of Heterogeneous Database Systems: Developments and Challenges, keynoteaddress given at the Plenary session at the AFCEA Database Colloquium, San Diego, CA, August 29,1994 (followed keynote presentation by General Edmonds, Director DISA - abstract published inproceedings).2. Application of Object Technology in Data Management, keynote address given at the Plenary sessionat the AFCEA Database Colloquium, San Diego, CA, August 28, 1995 (following keynotepresentation by Ms Diane McCoy, Deputy Director, DISA - abstract published in proceedings).3. Application of Object Technology in Data Management, version also given at FEDOOTS,Washington DC, October 1995 (abstract, charts in proceedings).4. Data Warehousing, Data Mining, and Security, keynote address given at the 10th IFIP 11.3 DatabaseSecurity Conference, Como, Italy, July 1996. (Paper in Chapman and Hall book 1997).5. Data Warehousing, Data Mining, and Security, also keynote address at PAKDD Data MiningConference, Melbourne, Australia, April 1998.6. Data Warehousing, Data Mining, and Security, featured address at WITI (Women in TechnologyInternational), Carey, North Carolina, September 1999.7. Implementing Real-time Object-Oriented Applications, featured presentation at Object World East,Hynes Convention Center, Boston, MA, May 1996.8. Implementing Real-time Object-Oriented Applications, Object World West, San Jose, CA, August1996 (briefing in proceedings).9. Implementing Real-time Object-Oriented Applications, Object World East March 1997 Boston, MA10. Implementing Real-time Object-Oriented Applications, Object World West July 1997 (charts inproceedings), San Francisco, CA11. Data Mining and Data Warehousing: Developments and Challenge, keynote address given atAFCEA DOD Database Colloquium, San Diego, CA, August 27, 1996 (abstract in proceedings).12. Data Mining and Data Warehousing: Developments and Challenges, featured address at IEEEEngineering Solutions: From Desktop to Internet Conference and Exposition, Hynes ConventionCenter, Boston, September 1996 (charts in proceedings).13. Data Mining Developments and Challenges, featured address at the Data Warehousing and Year 2000Symposium, November 1996, Orlando, FL.14. Data Mining Developments and Challenges, keynote address at ACM SAC Conference, February1997, San Jose, CA.15. Data Mining Developments and Challenges, also keynote address at IEEE Artificial NeuralNetworks, 1999, St Louis, MO.16. Data Mining Developments and Challenges, June 1997, Atlantic City, NJ (charts in proceedings).74

17. Data Management Systems Evolution and Interoperation, featured address at DoD DatabaseColloquium, September 1997, San Diego, CA (based on book by CRC Press, 1997).18. Web Database Management, featured address at DoD Database Colloquium, September 1998(abstract in proceedings), San Diego, CA.19. Evolvable Interoperable Real-time Command and Control Systems, featured address at DoD DatabaseColloquium, September 1999 (following keynote address by Dr. Marv Langston), (abstract inproceedings), San Diego, CA.20. Multimedia Data Management and Mining, keynote address at SAS Institute Conference, 1999(preceded keynote by Dr. Jim Goodnight) Carey, North Carolina.21. Multimedia Data Management and Mining also keynote at IEEE ICTAI, 1999, Chicago, IL.22. Multimedia Data Management and Mining, IASTED AI Conference, February 2002 (presentation inproceedings) Innsbruck, Austria.23. Data Management for the 21 st Century, AFCEA Database Colloquium, 2000 (abstract in proceedings,enhanced paper presented at another conference), San Diego, CA.24. Data Management for Biotechnology Applications, AFCEA Database Colloquium, August 2001(abstract in proceedings), San Diego, CA.25. Secure Semantic Web, keynote address at IEEE SRDS Conference Workshop on Data Warehouse andSecurity, October 2001, New Orleans, LA.26. Secure Semantic Web, NSF/EU Workshop on Semantic Web, Sophia Antipolis, France.27. Data Quality: Developments and Directions, IFIP 11.5 Conference, Brussels, Belgium, November2001 (paper in Kluwer Book).28. XML security (with E. Bertino et al), keynote address at NSF PI Conference , Fort Worth, TX, April2001.29. Semantic Web and Dependable Computing, WORDS 2002, San Diego, CA (paper in proceedings).30. Data Mining for National Security and Counter-terrorism, keynote address at the White House,Office of Science and Technology Policy, February 2002. Washington, DC.31. Data Mining for National Security and Counter-terrorism, luncheon address at IEEE COMPSACConference, Oxford University, August 2002.32. Data Mining for National Security and Counter-terrorism, featured address at United Nations,September 2002, New York.33. Web Data Mining and Applications in Counter-terrorism, keynote address at SIAM Data MiningConference Workshop on Web Mining, April 2002, Washington, DC.34. Web Data Mining and Applications in Counter-terrorism, keynote address at IEEE ICTAI 2002.Washington DC/Crystal City, VA.75

35. Sensor Web and Sensor Data Management, keynote address at ISE, San Diego, July 2002. (ReceivedSCSC award for this keynote, abstract in proceedings).36. Federated Databases for Bioinformatics, 4 th Annual Bioinformatics Conference, September 2002,Boston, MA.37. Security for Multimedia Database Management, IEEE Multimedia Software Engineering,Conference, December 2002, Newport Beach, CA.38. Security for Multimedia Database Management, Distributed Multimedia Conference, Miami,Florida, September 2003.39. Secure Semantic Web, XML Security and Privacy, keynote address at Conference on AppliedInformatics, Innsbruck, Austria, February 2003.40. Secure Semantic Web, XML Security and Privacy, featured address at Knowledge ManagementConference, Washington DC, March 2003.41. Secure Semantic Web, XML Security and Privacy keynote address at ICCS Las Vegas, April 2003.42. Dependable Sensor Information Management, featured address IEEE WORDS, Capri Island, Italy,October 2003.43. Data Mining and Cyber Security, keynote address at Quality Software Conference, Dallas, Texas,November 2003 (abstract in proceedings).44. Data Mining and Cyber Security, keynote at 3 rd Applied Technology Conference, University ofArkansas, Little Rock, February 2004.45. Data Mining for Biometrics, featured address at Society for Women Engineers Conference,Baltimore, MD, March 2004.46. Security and Privacy for Web Databases and Services, keynote address, EDBT Conference, Crete,Greece, March 2004 (complete paper in EDBT Proceedings Springer, co-author: E. Ferrari).47. Access Control in Databases: Developments and Directions, keynote address at ACM SACMAT,New York, June 2004.48. Secure Knowledge Management, NSF Workshop on Secure Knowledge Management, SUNYBuffalo, September 2004.49. Data Mining for Security Applications, keynote address, International Conference on MachineLearning, Louisville, Kentucky, December 2004.50. Sensor Information Management, featured address, MITRE Community Workshop, Tyson’s Corner,October 2005.51. Voice Over IP Security, IASTED Conference on Communications, Phoenix, AZ, November 2005.52. Data Mining for Counter-terrorism Applications, featured address, SAS Data Mining Conference,Las Vegas, October 2005.53. Data Mining for Malicious Code Detection, keynote address, ASTRNET Workshop, Kings College,London, April 2006.76

54. Data Mining for National Security Applications, keynote address, Pacific Asia Data MiningConference Workshop, Singapore, April 2006 (proceedings abstract).55. Data Mining for Surveillance Applications, featured address, Pacific Asia Data Mining Conference,Singapore, April 2006 (proceedings abstract).56. Identity Management and RFID Technologies, keynote address, Identity Solutions Conference,Jonesboro, Arkansas, February 2007.57. Data Mining for Cyber Security Applications, ARES Conference, Vienna, Austria, April 2007.58. CPT for the Semantic Web, IEEE Policy, Bologna, Italy, June 2007. (proceedings paper).59. Multimedia Systems Security, ACM Multimedia Systems Security Workshop, Dallas, TX, September2007 (proceedings abstract).60. Privacy Preserving Data Mining, ICDM Workshop, Omaha, Nebraska, October 2007.61. Information Security, Privacy and Governance for Assured Information Sharing, featured address,ISIG 1 st International Conference on Global Information Governance, Pisa, Italy, March 2008.62. Data Mining for Cyber Security Applications, Invited Plenary Talk, Cyber Security Symposium,Arizona State U, Tempe, AZ, April 2008.63. Data Analytics for Security Applications, Intelligence and Security Informatics, Taipei, Taiwan, 2008.64. Confidentiality, Privacy and Trust for Data Mining, ACM KDD Workshop on Privacy and DataMining, Las Vegas, NV, August 2008 (proceedings published by Springer Verlag).65. Data Mining for Malicious Code Detection and Security Applications, TRUST, Shanghai, Cjina,December 2008.66. Building Trustworthy Semantic Webs, TSP, Shanghai, China, December 2008.67. Assured Information Sharing, ASIA-CCS, Sydney, Australia, March 2009.68. Assured Information Sharing for Trustworthy, Untrustworthy and Semi-trustworthy Partners, DoECyber Security Conference, Knoxville, TN April 2009.69. Geosocial Semantic Web for Military Stabilization and Reconstruction, Pacific Asia Intelligence andSecurity Informatics, Bangkok, Thailand, April 2009.70. Security Engineering: Developments and Directions, IEEE International Conference on SecureSoftware Integration and Reliability Improvement (SSIRI), Shanghai, China, July 2009.71. Data Mining for Security Applications, WI/IAT Conference, Milan, Italy September 2009.72. Trustworthy Semantic Webs, IEEE Conference on Information Reuse and Integration, Las Vegas,NV, August 2009.73. Data Security and Integrity: Developments and Directions, SIGKDD workshop on Intelligence andSecurity Informatics, Paris, France, June 2009.77

74. Building a Geospatial Semantic Web, 4th International Conference on Frontier of Computer Scienceand Technology, Shanghai, China, December 2009.75. Assured Information Sharing: Opportunities and Challenges for Indo-US Collaboration, Presented atthe Info-US Summit on Infrastructure Security, Bangalore, India, January 2010 (sponsored by NSFand IUSSTF).76. Secure Semantic Sensor Web and Pervasive Computing, keynote address, IEEE InternationalConference on Sensor Networks, Ubiquitous, and Trustworthy Computing (SUTC), Newport Beach,CA, June 2010 (presented by Prof. Latifur Khan).77. Assured Information Sharing: Detecting Malicious Code, keynote address at the PAKDD PAISI,Hyderabad, India, June 2010.78. Assured Cloud Computing, keynote address, IEEE COMPSAC Conference Workshop on Securityand Privacy, Seoul, South Korea, July 2010.79. Building Trustworthy Semantic Web, IEEE Semantic Computing Conference, Pittsburgh, September2010 (Mini-keynote: special session with Profs. Tom Mitchell and Manuela M. Veloso).80. Cloud Computing, NIT Warangal, India. Technozion 2010, Video Keynote given from Dallas TX,September 2010.81. Secure Cloud Data Management, CloudCom Security Workshop, November 2010, Indianapolis, IN.82. Data Mining for Malware Detection, SDPS Annual Conference, Jeju Island, S. Korea, June 2011.83. Data Mining for Malware Detection, European Intelligence and Security Informatics, September2011, Athens, Greece.84. Data Mining for Malware Detection, DFW MetroCon, October 2011, Arlington, TX.85. Assured Cloud-based Information Sharing, IEEE International Conference on Dependable,Autonomic and Secure Computing (DASC), December 2011, Sydney, Australia.II. PANEL PAPERS AND PRESENTATIONS(some presentations published as proceeding papers)1. Inference Problem in Database Security, Panel presentation at the 1st RADC Database SecurityWorkshop, (Chair: M. Morgenstern) 1988. Proceedings paper published by Springer Verlag, MeloPark, CA, 1992 (Editor: T. Lunt).2. Issues in Trusted Distributed Database Management Systems - A Position Paper, Proceedings of the13th National Computer Security Conference, Washington DC, October 1990 (Chair: J. Campbell).3. Issues in Multilevel Secure Object-Oriented Database Management Systems - A Position Paper,Proceedings of the 13th National Computer Security Conference, Washington, DC , October 1990(Chair: R. Sandhu).4. Database Security - Threats, Solutions, Designs and Products, Panel presentation at the 6thInternational Data Engineering Conference, Los Angeles, CA, February 1990 (Chair: I. Kameny).78

5. Recent Developments in Some Trusted Database Management Systems, Proceedings of the 14thNational Computer Security Conference, Washington DC, October 1991 (Chair: J. Campbell).6. Approaches to Handling the Inference Problem, Proceedings of the 14th National Computer SecurityConference, Washington DC, October 1991 (Chair: T. Lunt).7. Security Issues for Federated Database Systems, Presented at the 5th IFIP WG 11.3 Conference onDatabase Security, November 1991, Proceedings by North Holland, 1992, Shepherdstown, WV(Chair: M. Morgenstern).8. Security Issues for Heterogeneous Database Systems, Presented at the 11th Phoenix IEEEInternational Conference on Computers and Communications, April 1992, Phoenix AZ (Chair: O.Sheng).9. Secure Distributed Database Management Systems, Presented at the 6th IFIP WG 11.3 Conference onDatabase Security, Vancouver, BC, Canada, August 1992 (Chair: C. McCollum).10. Approaches to Designing Trusted DBMSs, Presented at the 18th International Conference on VeryLarge Databases (VLDB), Vancouver, BC, Canada, August 1992 (Chair: M. Morgenstern).11. Object-oriented Approach to the Interoperability of Trusted Database Management Systems,Proceedings of the 16th National Computer Security Conference, Baltimore, MD, September 1993(Chair: J. Williams).12. Integrating Object-oriented and Security Technologies, Panel Chair, OOPSLA Conference,Washington, DC, September 1993 (conference proceedings).13. Realtime Systems: From Research to Technology to Applications, 2nd IEEE Real-time SystemsApplications Workshop, Calverton, MD, July 1994 (Chair: Bob Harrison).14. Inference Problem, Panel Chair, 17th NCSC Conference, Baltimore, MD, October 1994 (paperpublished in the proceedings).15. Real-time and CORBA, Object World West, San Francisco, August 1995 (Chair: F. Kuhl -presentation in proceedings).16. Real-time and CORBA , IEEE Workshop on Object-Oriented Real-time Systems, February 1996,Laguna Beach (Chair: R. Soley).17. Distributed Systems Standards, IEEE Distributed Systems Conference, Hong Kong, May 1996, panelpaper (Chair: R. Soley).18. Standards for ADADS, Panel at IEEE ISADS 1997, Berlin, Germany (Chair: K. Kim; paper inproceedings .19. Data Warehousing, Data Mining Overview and Security, Panels at National Computer SystemsSecurity Conference, October 1996, Baltimore, MD (Chairs: J. Campbell, J. Davis).20. Data Mining, Data Warehousing, and Security, Panel discussion, Proceedings IFIP Database SecurityWorkshop, 1997 (Chapman and Hall, 1998) (Chair).21. Data Mining of Text and Images, Panel at MIT Media Lab Forum, October 1997, Boston, MA (Chair:N. Adam).79

22. Web Data Mining, Inaugural Panel at IEEE ICTAI 97, November 1997, Newport Beach, CA (Chairs:Wei Syan Li, J. Srivastava)23. Multimedia Data Mining, AFCEA Technet Panel, June 1997, (Chair: T. Nyland); also version atAFCEA Data Mining Symposium Panel, December 1997, Washington, DC.24. CIO Conference on Object Security, FEDOOTS 1997, Washington DC (Chair).25. Privacy for Data Mining and Web, Panel discussion, proceedings IFIP Database Security Conference,1998 (Book chapter by Kluwer) (Chair).26. Web and Data Security, Panels at IEEE COMPSAC 1998 (Proceedings) Vienna, Austria (Chair).27. Web and Data Security, IEEE Data Engineering March 1999, Sydney, Australia (Chair).28. Migrating Legacy Databases, IEEE Data Engineering Conference, 1998 (Chair) (proceedings),Orlando, FL.29. Directions for Software Technology, IEEE COMPSAC Distinguished panel, 1998, Vienna, Austria(Chair: S. Yau).30. Ecommerce Directions, IEEE KDEX 1998, Taipei, Taiwan (Chair: J. Tsai).31. Future Research in Multimedia Database Semantics, IFIP 2.6 panel discussion, Rotarua, NewZealand, January 1999 (Chair).32. Open ADADS Systems, IEEE ISADS, Tokyo, March 1999 (Proceedings).33. Web and Network Security Panel, IEEE COMPSAC October 2000, Taipei, Taiwan (Chair).34. Web and Network Security, IEEE ISADS, March 2001, Dallas, TX (Chair).35. Real-time Software Engineering, ASSET, March 2000, Dallas, TX (Chair: I. Yen).36. Data Mining, Protecting Children from Inappropriate Content on Web, National Academy ofSciences, July 2000, Washington DC, (Chair: R. Thornburgh, Former US Attorney General).37. Data Fusion for Counter-terrorism, National Academy of Sciences, June 2002 Washington DC,(Chair: G. Strong).38. Data Security Directions, IFIP 11.3 Amsterdam, August 2000, The Netherlands, (Chair; proceedingsKluwer 2001).39. Directions for ISADS, Distinguished panel, IEEE ISADS, March 2001, Dallas TX (Chair: S. Yau).40. Secure Semantic Web, Future Distributed Computing Panel, IEEE FTDCS, November 2001, Bologna,Italy (Chair: S. Yau).41. Data Integrity, IICIS Panel, November 2001, Proceedings Brussels, Belgium (Chair: L. Straus).42. XML Security Panel, IFIP 11.3 July 2001, Proceedings, Niagara, Canada (Chair: S. Osborne).43. Web Mining/Security Panel, April 2002 (SIAM Data Mining Conf.) Crystal City/Washington DC.80

44. Data Engineering Directions, IEEE Data Engineering Plenary Panel, March 2002, San Jose, CA.45. Database Technologies, Security and Privacy Stanford University Database workshop, March 2002,Stanford, CA (Chair: J. Ullman).46. Privacy, IFIP Data and Applications Conference, July 2002, Cambridge, UK, (Book chapter 2003,Chair: P. Samarati).47. Cyber Security and Terrorism, Panel at the United Nations Conference on Cyber Security, September2002, New York, (Chair: M. Lacey).48. ADADS for National Security, Panel Paper, published Proceedings IEEE ISADS 2003 (Chair: L.Cordell; did not attend conference due to another commitment at NSF).49. CRA-W Panel on Writing Career Proposals, CRA-W Workshop, San Diego, CA, June 2003.50. Privacy and Data Mining: Friends or Foes? KDD Panel, Washington DC, August 2003 (Chair: R.Agrawal).51. Future of XML Databases, Panel at XML Data Workshop at EDBT, March 2004, Crete, Greece(Chair: M. Mastitis; position paper in Springer).52. Databases for Virtual Organizations, Panel at DIVO Workshop, ACM SIGMOD Conference, June2004, Paris, France,.53. Secure Web Services, Panel at IEEE Web Services Conference, July 2004, San Diego, CA.54. Database Security for Homeland Security, IFIP Database Security Conference, July 2004, Barcelona,Spain.55. Women and Cyber Security, Secure Knowledge Management Workshop, September 2004, Buffalo,NY.56. Sensor Information Management, MITRE Community Workshop, October 2005, McLean, VA.57. Data Mining for Cyber Security, Collin County Security Conference, April 2006, Plano, TX.58. Data Mining for Security Applications, Plenary Panel, Information and Security Informatics, May2006, San Diego, CA.59. Directions in Access Control, ACM SACMAT, 2006, Lake Tahoe, CA (Chair: R. Sandhu).60. Security Engineering Education, Panel at IEEE COMPSAC Conference on Software EngineeringEducation, September 2006, Chicago, IL (Chair: D. Simmons).61. Geospatial Semantic Web and Interoperability, OGC Interoperability Day, October 2006, Tyson’sCorner, VA.62. Information Security, DFW Chamber of Commerce, March 2007, Dallas, TX.63. Assured Information Sharing, ACM SACMAT June 2007, Sophia Antipolis, France (Chair).64. Information Security Education, Software Engineering and Computer Science, August 2007, Dallas,TX.81

65. Directions for Cyber Security, Panel at Cyber Security Symposium, Arizona State University, April2008, Tempe, AZ (Chair: S. Yau).66. Secure Distributed Systems, Panel IFIP Data Security Conference, July 2008, London, UK(Proceedings) (Chair: S. Barker).67. Directions for Sensor and Pervasive Applications, TRUST, December 2008, Shanghai, China, (Chair:S. Yau).68. Women in Cyber Security, Secure Knowledge Management Conference, November 2008, Dallas, TX(Chair).69. Data Security for Outsourcing, DFW Outsourcing Association, January 2009, Addison, TX (Chair:Attorney Mr. Peter Vogel).70. Intelligence and Security Informatics, ISI, June 2009, Dallas, TX (Panel Chair).71. Data and Applications Security, Riend van der Riet Panel, IFIP Data and Applications SecurityConference, 2009, Montreal, Canada (Panel Chair).72. Challenges of Effective Applications of Cloud Computing, The 4th International Conference onFrontier of Computer Science and Technology, December 2009, Shanghai, China (Chair: S. Yau).73. Challenges for COMPSAC, Plenary Panel, , July 2010, Seoul, S Korea (Chair: S. Yau)74. Challenges for ISI, July 2011, IEEE ISI, July 2011, Beijing, China (Panel Chair).75. Security for Cloud Computing, IEEE International Workshop on Future Trends of DistributedComputing System (FTDCS) 2011, September 2011, Banff, Canada.III. CONFERENCE/WORKSHOP PRESENTATIONS (Informal or no Proceedings)Data and Applications Security1. Mathematical Formalisms for Multilevel Object-Oriented Systems, paper presented at the Workshopon Object-Oriented Database Security, April 1990, Karlshrue, West Germany.2. Neural Network Applications in Intrusion Detection, paper distributed and presented at the 7thIntrusion Detection Workshop, May 1991, Menlo Park, CA (co-author: W. Ford).3. Secure Interoperability of Trusted Database Management Systems, Technical paper presented at theACM Workshop on Data Management Security and Privacy Standards, December 1991, SanAntonio, TX, (Held in conjunction with the 7th IEEE Computer Security Applications Conference).4. Object-oriented Approach to Interconnecting Trusted Database Management Systems, technicalpaper presented at the ACM Workshop on Data Management Security and Privacy Standards,December 1992 , San Antonio, TX (Held in conjunction with the 8th IEEE Computer SecurityApplications Conference) (co-author: H. Rubinovitz).5. Fuzzy Logic and Multilevel Databases, presented at the 1st Boston Area Fuzzy Logic Workshop,February 1993.82

6. Towards a Global Multilevel Data Model in a Secure Heterogeneous Database System, Presented atthe TIMS/ORSA Conference, October 1993 (abstract in proceedings).7. Security and Integrity Constraint Processing in a Multilevel Secure Distributed Environment,Information Security for the 90s, AFCEA Conference, , May 1993, Ft. Monmouth, NJ (co-authors:A. Abreu, H. Rubinovitz, M. Collins).8. Technologies and Security Issues for the Semantic Web, Data and Knowledge Engineering Workshop,May 2002, Sonoma, CA.9. Geospatial RDF and Secure GRDF, presented at the Geospatial Semantic Web workshop at SemanticWeb Symposium, Athens, GA, November 2006 (co-author: A. Ashraful).10. Building Trustworthy Geospatial Semantic Web, Geospatial Technologies in Homeland SecurityConference, November 2006, College Station, TX.11. Sensor and Geospatial Data Management for Border Patrol and Crime Analysis, MITRE SensorCommunity Workshop, Poster Presentation, May 2007, McLean, VA (co-authors: A. Ashraful, S.Shekar, K. Lhan, G. Subbiah).12. Data Mining, Security and Privacy, Position Paper, NSF Workshop, September 2007, Arlington, VA.13. Security and Ontologies, Microsoft Workshop on Semantic Technologies, June 2007, Seattle WA(co-author: K. Hamlen).14. Geospatial Data Mining for Crime Analysis, Next Generation Data Mining Conference, October2007, Baltimore, MD (co-author: S. Shekhar et al).Distributed Systems Management/AI Applications/Real-time Processing15. Transaction Management for Real-time Command and Control Systems, Paper distributed andpresented at ATMA, September 1996, Goa, India (co-author: P. Krupp, et al).16. RT-OMT: An Object-Oriented Design and Analysis Methodology for Real-time Database SystemsApplications, Proceedings of the OOPSLA Conference Workshop on Object-Oriented Real-timeSystems Analysis, October 1994, Portland, OR (co-author: A. Schafer).17. Adaptable Real-time Command and Control Systems, Work in Progress Session, RTSS, 1998,Madrid, Spain (co-author: S. Wohlever et al) (paper in workshop report proceedings).IV. SIGNIFICANT EXTERNAL TECHNOLOGY EXCHANGE MEETINGS ANDPRESENTATIONS1. Algorithmic Information Theory, University of Minnesota, Seminar Series, February 1982.2. LDV: Design of a Secure Database System, RADC Technology Exchange, December 1987, Rome,NY.3. Trusted Database Management Systems: Where are we? Where should we go?, TechnologyExchange SPAWAR, Washington DC, February 1991, and NSA, March 1991, Ft. Meade, MD.83

4. Multilevel Security for Multimedia Systems, Technology Exchange SPAWAR, February 1991,Washington, DC, (co-presenters: H. Rubinovitz and M. Collins).5. Towards Developing SDDT: A Secure Distributed Database Testbed System, presented at the RomeLaboratory Technology Exchange Meeting, November 1991, Rome, NY.6. Inference Problem in Secure Databases, University of Connecticut, April 1992.7. Multilevel Security Impact on Database Management Systems Interface Standards, presented to theNext Generation Computer Systems Database Management Systems Interface Standards WorkingGroup, , Newport, RI, June 1992 (co-presenter: A. Carengelo).8. Approaches to Designing Secure Database Systems, NGCR (Navy Next Generation ComputingResources) Meeting, August 1992, San Diego, CA.9. Towards a Multilevel Data Model, NGCR (Navy Next Generation Computing Resources) Meeting,October 1992, Orlando, FL.10. Presentations on Multilevel Security for Object-Oriented Database Systems; Security and IntegrityConstraint Processing in a Multilevel Secure Distributed Environment ; Applying OMT forMultilevel Database Application Design ; NSA Technology Exchange Conference, July 27, 1993, Ft.Meade, MD, (Proceedings) (co-authors: H. Rubinovitz, M. Collins, L. Binns, P. Sell).11. Transaction Processing for MDDS: Developments and Directions; Massive Digital Data SystemsWorkshop (Community Management Staff) February 1 and 2, 1994, Reston, VA.12. RT-OMT: A Realtime Object Modeling Technique for Designing Real-time Database Applications,presented to the Next Generation Computer Systems Database Management Systems InterfaceStandards Working Group, April 1994, Alexandria, VA (also presented to OMG in Helsinki, July1998).13. Real-time Processing and CORBA, presented at the Next Generation Computer Systems, DatabaseManagement Systems Interface Standards Working Group, June 1994, Newport, RI; a version givenas a guest presentation at the Department of the Navy NRaD's Distributed Systems TechnologyConference, March 1995 (San Diego).14. Evolvable Real-time C3 Systems Initiative, Navy SPAWAR, San Diego, August 1994; RomeLaboratory Technology Exchange Meeting, Rome, NY, October 1994; NGCR Meeting, Salt LakeCity, November 1994; enhanced versions at Ministry of Defense, Adelaide-Australia 1996; INRIA,Sophia Antipolis-France, November 1996; University of Kyoto, April 1997; EPFL Lausanne-Switzerland, May 1998; National University of Singapore, May 1999.15. Massive Digital Data Systems, Rome Lab Workshop, Boston, October 1995; INRIA, Paris-FranceNovember 1996; NEC Research Labs, San Jose, April 1997; HPCC, Maui, May 1998; University ofRhode Island, June 1996; National University of Singapore, August 1997; Tokyo Institute ofTechnology, May 1999; Hiroshima University, April 1998.16. Real-time Database Management: IEEE Computer Society, Special Presentation, Boston ChapterJanuary 1996; version also given in Madrid, Spain at OMG Meeting, July 1996.17. Internet Database Management, OMG Meeting, Internet SIG, June 1996, Washington DC.18. Data Warehousing, Data Mining and Security (version of IFIP 1996 keynote), seminars at IBMZurich and University of Zurich (Switzerland), 1996.84

19. Object Technology for C4I Applications, kickoff presentation at OMG Meeting C4I FoundingWorking Group, June 1996, Washington DC.20. Real-time Object Modeling, OMG Meeting, July 1998, Helsinki.21. Data Mining, University of Cambridge, 1999, University of Stockholm 1999, IEEE Lecture at MIT2000, University of Wales, UK, 2001.22. Directions for Securing Semantic Web Technologies, NSF-EU Workshop on Semantic Web (SophiaAntipolis, France), October 2001. Also version presented at NSF workshop on Semantic Web, March2002, Amicalola, GA.23. Research Directions in Data Management, NSF EPSCOR Conference, University of Arkansas(November 2001, Little Rock), Louisiana State University (April 2002, Baton Rouge).24. Seminars on Data and Applications Security and XML Security, Wright State University, February2003; University of Illinois, Urbana, Champagne, April 2003; George Mason University, April 2003;University of Texas at Dallas, November 2003; University of Minnesota, December 2003.25. Directions for Research in Data and Applications Security and CyberTrust, New England DatabaseMeeting, September 2003.26. Data and Applications Security and Discovery Informatics, Seminar series kickoff presentation, JohnsHopkins University, October 2003.27. Computer and Information Science at NSF, NSF EPSCOR Conference, University of Oklahoma,January 2004.28. Third Party Publications of XML Documents, Seminar series, Ohio State University, January 2004;University of California at Riverside January 2004; Penn State University, April 2004; The MITRECorporation, March 2005.29. Data Mining for Security Applications, Plano Security Symposium, April 2005, Plano, TX.30. Data Mining for Counter-terrorism, IEEE Dallas Chapter Presentation, February 2005, Dallas, TX.31. Data Mining for Cyber Security, ACM Dallas Chapter Presentation, April 2005, Dallas, TX.32. Data Mining, Security and Civil Liberties, presentation to National White Collar Crime Center, June2005, TX.33. Confidentiality, Privacy and Trust for the Semantic Web, The MITRE Corporation, November 2005.Bedford, MA.34. Data Security Research at UTD, Raytheon Corporation, January 2006, Richardson, TX.35. Data Mining for Security and Counter-terrorism, CIA Seminar Series, May 2006 (CIAHeadquarters)VA.36. Information Operations: Assured Information Sharing, AFOSR Technology Exchange Conference,August 2006, Utica, NY; June 2007, Syracuse, NY; June 2008, Washington DC.37. Intellectual Property Protection, NAFTA Meeting, December 2006, Dallas, TX.85

38. Geospatial Semantic Web, OGC Interoperability Working Group, October 2006, Tyson’s Corner,VA.39. Geospatial RDF (with A. Ashraful), W3C Working Group on Geospatial Data, October 2006,Teleconference meeting (from Dallas TX).40. Data Mining and Applications in Malicious Code Detection and Security, Seminar series, Universityof North Texas, November 2006; University of Texas at Arlington, December 2006.41. Data Mining for Buffer Overflow, Seminar series, Purdue University (February 2007); PolytechnicUniversity New York, August 2007.42. Data Security Research at UTD, Navy SPAWAR, August 2007, San Diego.43. Digital Forensics, SWE UT Dallas Chapter Meeting, October 4, 2007, Dallas, TX.44. Digital Forensics, ACM UT Dallas Chapter Meeting, October 25, 2007, Dallas, TX.45. Data Mining for Security Applications, SWE Dallas TX Chapter Meeting, February 2008, Dallas, TX.46. Semantic Web Research at UT Dallas. IARPA KDD Workshop, February 2008, Oakridge, TN.47. Blackbook Experiences, RDEC User Conference, May 2008, San Diego, CA.48. Assured Information Requirements Gathering, DoD MURI Program Review, September 2008,Baltimore, MD.49. Assured Information Sharing, Seminar at National University of Singapore, October 2008; Universityof Penang, October 2008.50. Managing Large RDF Graphs, IARPA KDD Workshop, December 2008, Oakridge, TN.51. Knowledge Discovery and Security Informatics, SAP Labs, Sophia Antipolis, France, May 2009;Rockwell Collins, Richardson, March 2009.52. Secure Semantic Grid, AFOSR Program Review, June 2009, Washington DC.53. Data Mining and Security, Microsoft Invitational Workshop in Data for Interdisciplinary Research,September 2009, Seattle, WA.54. Information and Security Analytics at UTD, presentation at Wright State University, November 2009,Dayton, OH.55. Cyber Security Research and Education at UTD, Mississippi State University, January 2010.56. Data Mining for Malware Detection, University of Arizona, February 2010.57. Dallas – Ideal city for a technology conference, Presented to the IEEE Data Engineering SteeringCommittee, March 2010 (co-author: Rhonda Walls).58. Assured Information Sharing: Malicious Code Detection, University of Louisville, Kentucky, March2010.86

59. Assured Cloud Computing, AFOSR Review, July 2010, Arlington, VA.60. Data Mining for Malware Detection, DFW ATW, June 2011, Dallas, TX.61. Information Sharing on the Cloud, AFOSR Review, September 2011, Arlington, VA.V. MITRE SYMPOSIA AND TECHNOLOGY EXCHANGE MEETINGS1. Security in Object-Oriented Database Systems, Presented at the MITRE Symposium on Object-Oriented Technology, April 1990, Bedford, MA (Proceedings published in Technical Report, MTP382; Editor: D. Grigaro).2. Issues in Object-Oriented Database Systems, Presented at the MITRE Managers' Symposium onSupercomputing, May 1990, McLean, VA (Proceedings Editor: L. Zeitlsler).3. Parallel Processing and Trusted Database Management Systems, Presented at the 5th MITRESymposium on Parallel Processing, May 1991, Bedford, MA.4. An Overview of Parallel Database Management Systems, Presented at the 7th MITRE Symposium onParallel Processing, April 22, 1993, Bedford, MA.5. Object-oriented Database Management Systems, Presented at the Object-oriented Technology Day,(Bedford, MA) October 7, 1993 and (McLean, VA) March 15, 1994.6. Massive Data and Information Systems, Presented at the 1 st MITRE Technology Symposium, June15, 1994, McLean, VA, (co-author: M. Zemankova, proceedings).7. Data Management for Workflow Computing, Presented at the MITRE Symposium on Databases forthe 90s, June 16, 1994, McLean, VA (Abstract and presentation in proceedings; co-author: B.Lavender).8. Proceedings of the 1st Applied Database Technology Day, August 1994 (co-editor: C. Loizides – alsoco-chaired 2nd symposium, December 1995).9. MITRE's Role in Real-time Systems, presented at the panel on Real-time Systems, Real-time SystemsTechnology Day, September 1994 (Chair: J. Knobel).10. Real-time Database Management Systems, presented at the Advanced Information SystemsTechnology Day, February 1995 (Chair: M. Maybury).11. MITRE's Role in Parallel Database Systems, presented at the Parallel Processing Symposium, 1995.12. Massive Data and Information Systems Initiative at MITRE; Proceedings of the MITRE DataManagement Symposium, June 1995.13. Intelligence Community Massive Digital Data Systems, MITRE McLean, November 1995, MITREFort Monmouth, May 1996, MITRE San Diego, March 1998.14. Massive and Heterogeneous Data, Massive Data and Information Systems Umbrella; Massive DigitalData Systems Initiative, poster presentations at the 2nd MITRE Technology Symposium, 20 June1995 (Bedford, MA) and 27 June 1995 (McLean, VA); Plenary presentations also presented at 1996MITRE Technology Symposium, Bedford (11 June 1996), Reston (25 June 1996).87

15. Evolvable Interoperable Information Systems Thrust, MITRE Technology Symposium, 11 June 1996(Bedford), 25 June 1996 (Reston) Proceedings, version also at 1997 symposia (June 1997).16. Proceedings of the 1st MITRE Object-Oriented Technology Conference, Welcome address, June 1996(co-editor: T. Mowbray).17. Privacy, MITRE Technical Exchange, April 2003.18. Cyber Security Roadmap, MITRE Technical Exchange, June 2009.VI. TUTORIALSConference Tutorials1. Recent Developments in Database Security, presented at the 14th Annual Computer SecurityConferences Workshops, Anaheim, CA, November 1987; lecture notes published in the tutorialproceedings; enhanced version published in the IEEE COMPSAC Conference Tutorial Proceedings,November 1989, Orlando, FL.2. Multilevel Secure Database Management Systems, presented at the AFCEA Conference Tutorials, ,August 1993, Princeton, NJ (lecture notes published in the tutorial proceedings).3. A Tutorial in Object-Oriented Database Systems, presented at the IEEE Dual Use TechnologyConference, May 1994, Utica, NY.4. Data Mining, ACM SAC, March 1998, Atlanta, GA.5. Data Mining, IEEE COMPSAC, August 1998, Vienna, Austria.6. Data Mining, IEEE ANNIE, November 1999, St Louis, Missouri.7. Web Information Management and Ecommerce, IEEE ISADS, March 1999, Tokyo, Japan.8. Web Information Management and Ecommerce IEEE COMPSAC, October 1999, Tempe, AZ.9. Data Mining Technologies and Applications in Counter-terrorism, Technet, May 2003, Washington,DC.10. Data Mining Technologies and Applications in Counter-terrorism, Technet, May 2004, Washington,DC.11. Data and Applications Security, TechNet, May 2005, Washington DC.12. Data Mining for International Security, ISI Workshop, June 2010, Mysore, India.Department of Defense and Other Agencies1. A Tutorial in Database System and Database System Security, A three full- day tutorial presented tothe U.S. Army CECOM, Ft. Monmouth (August 1992, January 1993), and Dept. of the NavySPAWAR, Washington D.C. (February 1993).88

2. A Seminar on Secure Database System, Full-day tutorial presented to the Dept. of the NavyNCCOSC, San Diego (January 1993, June 1993); Versions also presented to the U.S. Air ForceAFCSC (June, August, September, 1991 - San Antonio, TX).3. A Seminar in Object-Oriented DBMS , Full day-tutorial presented to the Department of the NavyNCCOSC, San Diego, June 1993; U.S. Army, CECOM, Ft. Monmouth, April 1994; DISANovember 1994; NSA April 1995.4. A Seminar in Distributed and Heterogeneous DBMS, Full-day tutorial presented to the Department ofthe Navy NCCOSC, San Diego, June 1993; U.S. Army, CECOM, Ft. Monmouth, April 1994; DISA,November 1994.5. A Seminar in Real-time DBMS, Presented to U.S. Army, CECOM, Ft. Monmouth, N.J., April 1994.6. A Tutorial in Database Management Systems, series of seven lectures given at ESC University,Hanscom AFB, Bedford, MA, September 1994 - April 1995 (Introduction, Relational, Object-Oriented, Distributed, Heterogeneous DBMS, Real-time, Intelligent Data Management/Data Mining).7. Data Mining, Developments and Challenges, July 1998, San Antonio (AIA), and Stuttgart (Eucom).(versions given to many govt. organizations).8. Data Management Systems Evolution and Interoperation, AFCEA (Three days) June 1999,September 1998, DISA-DARPA-JPO (One day) September 1999.9. Data Management, Data Mining and E-Commerce, AFCEA, October 2000 (Three days).10. Data Management, Information Management and Knowledge Management, AFCEA October 2001,also versions at AFCEA October 2002, October 2003, September 2004, October 2005 (Air ForceBases: October 2004 - Offut, March 2005 - Eglin, August 2005 - Lackland, June 2006 – Edwards,September 2006 - Kirkland).11. Data Mining and Applications in Counter-terrorism, AFCEA June 2003, December 2003, December2004, March 2006 (Three days) , December 2006, November 2007, May 2007, November 2007,November 2008, June 2010 (enhanced version of Technet presentation).12. Knowledge Management, Semantic Web and Social Networks, AFCEA April 2008, October 2009,April 2010, October 2010.MITRE Tutorials (excludes informal tutorial presentations at MITRE)1. Database Security, presented at the MITRE Institute, February 1990, Bedford, MA (co-presenter: R.Graubart; lecture notes and videotape).2. Database Systems and Database Systems Security, presented at the MITRE Institute, January 1992Bedford, MA (lecture notes and two videotapes).3. A Seminar In Object-Oriented Database Systems, Presented at the MITRE Institute, April 21, 1993,Bedford, MA, (five videotapes and lecture notes); March 14, 1994,McLean, VA,.4. A Seminar In Distributed and Heterogeneous Database Systems, presented at the MITRE Institute,June 3, 1993, Bedford, MA, (videotapes and lecture notes), March 15, 1994, McLean, VA.5. A Course in Database Management Systems, Presented at the MITRE Institute, Bedford, MA, Fall1992 and Fall 1993 (videotapes and lecture notes available).89

6. A Seminar on Real-time Database Systems, Presented at the MITRE Institute, June 13, 1994,Bedford, MA (videotapes and lecture notes available).7. A Three Day Seminar on Database Systems, Presented at the MITRE Institute, September 1996, Ft.Monmouth, NJ.8. Data Management Systems Evolution and Interoperation, MITRE Institute, Washington, ColoradoSprings, Bedford and Ft. Monmouth, 1997, Colorado Springs, 1998, Bedford and Washington, 1999.9. Data Mining, Bedford, and DC, (video tapes and notes) May 1998, Bedford and Washington,November 1999, Colorado Springs, March 2000.VII. The University of Texas at Dallas Conference Presentations (Sample)1. Data and Applications Security at the University of Texas at Dallas,Eric Jonsson School Advisory Board Presentations, October 2004, April 2005, April 2006, November2006; The University of Texas at Dallas, Research Advisory Board, April 2006.2. Data Mining for Security, FBI Symposium, March 2006.3. First UTD Cyber Security Symposium, Program Chair, April 2005.4. Critical Infrastructure Protection, Department of Energy Symposium, January 2006.5. UTD/OGC Joint Meeting on Geospatial Information Management, July 2006.6. Data Mining for Cyber Security and National Security, (co-authors: L. Khan, R. Layfield), NationalWhite Collar Crime Conference, March 2007.7. Secure Collaboration, NSA/DHS COE Conference at The University of Texas at Dallas, June 2008.90

VIII. The University of Texas at Dallas Presentations to Visitors to UTDKnowledge Discovery and Security Informatics at UTD Open Geospatial Consortium, April 2006 Raytheon Corporation, October 2004, September 2006 Freshman Class, August 2007 IARPA, September 2007 IAB Meeting, October 2004, May 2005, September 2006, November 2008 DFW Teachers, June 2009 Lockheed Martin, January 2010 L-3 Communications, January 2010 Ball Aerospace, February 2010, June 2010 Rockwell Collins, March 2009, September 2010 Saffron Group, January 2011 Bluewater International, September 201191

Section 14. SOFTWARE PROTOTYPES DEVELOPEDControl Data CorporationCDCNET, 1983 – 1986Transport, Session and Network Layers as well as Memory Management Algorithms and CommandProcessors for CDCNET. Release 1 December 1985Approx 60 members in the CDCNET TeamHoneywell Inc.1. Lock Data Views, 1986 – 1988Paul Stachour, Bhavani Thuraisingham, Pat Dwyer, Emmanuel Onuegbe, Tom Haigh, Dick O’BrienDesigned a Multilevel Secure Relational Database System Design Contract from RADC(implementation contract was awarded to Honeywell using Oracle in 1989, but I did not work on this.)2. Distributed Data Dictionary System, 1986 – 1987Krishna Mikkilineni, Hongjun Lu, Bhavani Thuraisingham, Cho-Li HoDesigned and implemented a system for Honeywell Divisions using NIST IRDS System.3. Network Operating System, 1987Bhavani Thuraisingham, Tammy Chan, Pat GoniaDesigned a Network Operating System as part of MCNIU network for NASA (implementationcontract was also awarded, but I did not work on this.)4. XIMKON, 1988 – 1989Ferit Konar, Paul Felix, Bhavani ThuraisinghamDesigned and implemented an expert process control system.The MITRE CorporationSecure Data Management1. Multilevel Secure Data Management System, 1989Amiel Kamon, Bhavani ThuraisingjamPrototype system developed using Sybase for the backend system and SUN Unix for front-end.Security at the front-end was simulated.2. Inference Control during Query Processing, 1989 – 1990William Ford, Bhavani Thuraisingham, Jonathan O’KeeffeSecure Sybase running on Ultrix for MLS/DBMS and built inference controller for query processingas an application.3. Inference Control during Update Processing,1990Marie Collins, Bhavani ThuraisinghamSecure Sybase running on Ultrix for MLS/DBMS and built inference controller for update processingwas built as an application.4. Inference Control during Database Design, 1993 – 1994Marie Collins, Bhavani ThuraisinghamUsed CLIPS expert system and implemented in COOL.92

5. Secure Distributed Query Processing, 1989 – 1991Harvey Rubinovitz, Bhavani ThuraisinghamBuilt Secure Distributed Processor DQP that connected multiple Secure Sybase Server running onUltrix operating system.6. Simulation of Secure Transaction Processing, 1990 – 1992Harvey Rubinovitz and Bhavani ThuraisinghamSimulation tool was developed to simulate multiple secure concurrency control algorithms andcompare performance.7. Multilevel Secure Multimedia System, 1990 – 1991Marie Collins, Harvey Rubinovitz and Bhavani ThuraisinghamImplemented a multilevel multimedia system on the MAC environment. Simulated security featuresfor text image, audio, animation and video.8. Multilevel Secure Object System, 1991Harvey Rubinovitz and Bhavani ThuraisinghamSimulated security features for Object Store Object DBMS. Implementation in C++.9. Distributed Secure Query Constraint Processor, 1991 – 1993Harvey Rubinovitz, Bhavani Thuraisingham, David FotiUtilized the DQP and built a distributed inference controller for query processing. Utilized SecureSybase Server on Ultrix.10. Distributed Secure Update Constraint processor, 1992 – 1993Harvey Urbanity and Bhavani ThuraisinghamUtilized the Distributed Update Processor and built an Inference Controller for processing updates,1991 – 1993.11. Secure Distributed Processor for Army Applications, 1994 – 1996Harvey Rubinovitz, Marie Collins and Bhavani Thuraisingham,Implemented a system with Army MCS application utilizing the distributed constraint processor .Real-time Infrastructure and Data Manager12. Active Real-time Data Manager, 1994Gary Gengo, Bhavani ThuraisinghamUsing ZIP-RTDBMS, built a rule processor for processing rules in real-time.13. Infrastructure for Real-time Applications, 1994 – 1996Peter Krupp, Bhavani Thuraisingham, John Maurer, Mike SquadritoDeveloped an ORB-based infrastructure on Lynx operating system for command and controlapplications with AWACS as an example.14. Real-time Main Memory Data Manager, 1995 – 1996Mike Squadrito, Victor Wolfe, Bhavani Thuraisingham, Peter KruppDeveloped a main memory data manager and concurrency control algorithms for real-timeapplications hosted on the infrastructure.15. Adaptive Real-time Infrastructure, 1997 – 1999Mike Squadrito, Roman Ginis, Peter Krupp, Bhavani ThuraisinghamDesigned and implemented an adaptive component based infrastructure for real-time applications.93

Advisor to the following prototypes developed by members of my department in Data Mining.Distributed Objects and Multimedia Information Management16. Text Data Mining ToolPI: C. Clifton17. Image Mining ToolPI: C. Clifton18. Broadcast News Navigation SystemPI: A. Merlino19. Distributed Object Management for Legacy System MigrationPI: E. HughesThe University of Texas at DallasData Mining Tools1. Suspicious Event Detection and Surveillance, 2004 – 2005Gal Lavee, Bhavani Thuraisingham, Latifur KhanDeveloped a system for detecting suspicious events. Developed a distance matrix to identify eventsthat are similar.2. Data Mining Toolkit for Malware Detection, 2005 – 2009Mehedy Masud, Latifur Khan, Bhavani ThuraisinghamDeveloped data mining algorithms using WEKA and other tools to detect buffer overflow, andmalicious code.3. Stream Mining Tools, 2008 – 2009Mehedy Masud, Latifur Khan, Bhavani Thuraisingham with Jiawei Han et al.Developed a stream mining algorithm for novel class detection.Information Sharing, Privacy, and Policy Management4. Assured Information Sharing, 2007 – 2008Yashaswini Harshakumar, Bhavani Thuraisingham, Latifur KhanUsing Oracle database systems and XACML policies implemented assured information sharingprototype.5. Assured Information Sharing Simulation, 2005 – 2006Mamoun Awad, Latifur Khan, Bhavani ThuraisinghamSimulated policy management in information sharing algorithms and determined the amount ofinformation that would be lost by enforcing policies. This would give guidance to the decision makersof the policies that need to be enforced.6. Trust Management in Information Sharing, Simulation, 2006 – 2007R. Srinivasan and B. ThuraisinghamComputes trust and shares information based on trust values.7. Game Theory-based Algorithms for Biosecurity, 2005 – 2008Ryan Layfield, Murat Kantarcioglu, Bhavani Thuraisingham94

Simulated algorithms for information sharing using game theory concepts for bioterrorism and insecurity.8. Privacy Preserving Decision Tree, 2005 – 2007Li Liu, Murat Kantarcioglu, Bhavani ThuraisinghamDeveloped a tool based on decision tree for privacy preserving data mining.9. Security for Motion Capture and Animation, 2008R. Natarajan, B. Thuraisingham, L. Khan, and B. PrabhakaranPrototype system that builds a front-end to perform query rewriting for motion capture dataGeospatial Information Management10. Geospatial Policy Interoperability, 2006 – 2007Alam Ashraful, Farhan Husain, Latifur Khan, Bhavani ThuraisinghamDevelop a prototype for implementing security policies in heterogeneous geospatial data managementsystems.11. Police Blotter Prototype, 2006Farhan Husain, Latifur Khan, A. Ashraful, Bhavani Thuraisingham, Steven SeidaThis system, jointly developed with Raytheon, essentially is an advisory tool for police to locate wherethe criminals are. The system was demonstrated at GEOINT.12. Geospatial Data Mining, 2006 – 2007Chuan Li, Latifur Khan, Bhavani ThuraisinghamDeveloped tool for classifying geospatial data.13. Ontology Alignment in Geospatial Data, 2007 – 2009Jeff Partyka, Latifur Khan, Bhavani ThuraisinghamDeveloped ontology alignment algorithms for integrating heterogeneous geospatial database systems.The algorithms were integrated into Intelligence Community’s Blackbook.Semantic Web, Web Services and Security14. Translators and Mappings from Relational to RDF Data and Vice Versa, 2007 – 2009Sunitha Sriram, Latifur Khan, Bhavani ThuraisinghamDeveloped a tool for use by relational database users and RDF users to carry out translations. Tool willbe distributed to external users.15. Inference Controller for Semantic Web, 2009Tyrone Cadenhead, Murat Kantarcioglu, Bhavani ThuraisinghamPrototype developed for Policy Management using descriptive logic based inference controller.16. Geospatial Semantic Web, 2006 – 2007Ganesh Subbiah, Latifur Khan, Bhavani Thuraisingham, Alam AshrafulDeveloped a system called DAGIS to answer geospatial semantic queries. Implemented an accesscontrol module for DAGIS.17. Secure Web Services, 2007 – 2010Wei-She, I-Ling Yen, Bhavani ThuraisinghamImplemented a delegation model for secure web services.95

Biometrics18. Implementation of Fingerprinting Algorithms, 2006 – 2007Abinanthan, Bhavani ThuraisinghamImplemented a novel fingerprinting matching algorithm and associated system.19. Face Detection Algorithms, 2006 – 2007Parveen Pallabi and Bhavani ThuraisinghamDeveloped a system that detects facial features using neural networks. The algorithm combines SVMand ANN and uses Dempster-Shafer theory for fusing the results.Social Networks and Security20. Design and Implementation of a Secure Social Network System, 2005 – 2006Ryan Layfield, Bhavani Thuraisingham, Latifur KhanDeveloped a prototype secure social network system and analyzed the properties using the Enron dataset.21. Access Control Model for Social Networks, 2009 – 2010Raymond Weatherly, Murat Kantarcioglu, Barbara Carminati, Elena FerrariPrototype developed for a system of a secure social network using a novel access control model.22. TweetHood, 2010 – PresentSatyen Abrol, Latifur Khan, Bhavani ThuraisinghamLocation-aware tweet mining.Cloud Data Management and Security23. Federated Query Processing in Clouds, 2008 – 2009Farhan Husain, Pankil Doshi, Latifur Khan, Bhavani ThuraisinghamDeveloped a cloud computing platform with Hadoop and MapReduce and implemented securefederated query processing and optimization algorithms on top of this platform.24. Secure Query Processing in Cloud with HIVE, 2009 – 2010Vaibhav Khadilkar, Murat Kantarcioglu, Bhavani ThuraisinghamThis system is a query rewriting system that will examine the XACML policies and implement queryprocessing in a cloud using Hadoop/MapReduce framework.25. SPARQL Query Optimizer, 2009 – 2010Farhan Husain, Latifur Khan, Bhavani ThuraisinghamThis system is developing a SPARQL query optimizer for the Hadoop/MapReduce framework.26. Secure Query Processing in Cloud with Semantic Web Data, 2009 – 2010Farhan Husain, Latifur Khan, Bhavani ThuraisinghamThis system is a query rewriting system that will examine the XACML policies and implement queryprocessing in a cloud with SPARQL, Hadoop/MapReduce framework. It uses the framework we havebuilt in the system discussed under the previous project. Two versions of the prototype have beendeveloped.27. Secure XACML Implementation with Hadoop, 2009 – PresentIn progress. This system essentially explores the Hadoop software and incorporates XACML policybasedaccess control. It will be offered as open source.Blackbook Enhancements and GOTS (Government Off the Shelf)96

1. Geospatial Proximity Algorithm, 2008 – 2009Sonia Chib, Bhavani Thuraisingham, Jyothsna Rachapalli, Latifur KhanImplemented geospatial proximity algorithms using Google maps for Blackbook users.2. REST Interface and Integration of Amazon.com Web Services into Blackbook, 2008 – 2009Pranav Parikh, Murat Kantarcioglu, Bhavani ThuraisinghamImplemented the REST Interface to Blackbook. Then using this interface integrated Blackbook withAmazon.com webs services for query processing.3. MALLET/Blackbook Integration, 2009 – 2010Pranav Parikh, Bhavani ThuraisinghamDeveloped a professionalization service for the MALLET Machine learning algorithms and integratedinto Blackbook.4. NIST NVD Ontology Management, 2009Jyothsna Rachapalli, Vaibhav Khadilkar, Bhavani Thuraisingham, NISTDeveloped an ontology based system for specifying the data in the NIST NVD Databases.Open Source Software at The University of Texas at Dallas1. SCRUB toolhttp://scrub-tcpdump.sourceforge.net/index.phphttp://sourceforge.net/projects/scrub-tcpdump/2. JENA Contributions, Very Large RDF Graphshttp://jena.sourceforge.net/contrib/contributions.htmlhttp://cs.utdallas.edu/semanticweb/jenaextension.htmlTool Repositories developed and hosted at UTDData Mining Toolshttp://dml.utdallas.edu/Mehedy/Anonymization Toolshttp://cs.utdallas.edu/dspl/cgi-bin/toolbox/index.phpSemantic Web Toolshttp://cs.utdallas.edu/semanticweb/index.htmlSecure Cloud Repositoryhttp://cs.utdallas.edu/secure-cloud-repository/97

Section 15: NATIONAL AND INTERNATIONALRESEARCH COLLABORATION1985 – 1988: I have carried out both national and international collaboration since 1985. While I workedat the Control Data Corporation and Honeywell Inc., I collaborated closely with professors at theUniversity of Minnesota and we published several papers in conferences within the USA.1989 – 2001: When I joined MITRE, I presented papers at both national and international conferences. Myfirst internal conference was on secure object systems in Karlsruhe, Germany in April 1990 and the secondconference was in Halifax, UK in September 1990. I started collaborating with researchers at theUniversity of Rhode Island in 1994 and we published several papers in both national and internationalconferences. During this time, I also started giving keynote addresses at national and internationalconferences as well as presented papers including in Italy, Spain, Switzerland, Austria, Australia,Netherlands, Sweden, Norway, Finland, Ireland, Japan, Hong Kong, Taiwan, South Africa, India, and NewZealand.2001 – 2004: This is the time I was at the National Science Foundation in Washington, DC and I initiatedprograms between USA and Europe and attended national and international conferences to give keynoteaddresses including in the UK, Austria, Belgium, Spain, Switzerland, Greece, and France.2004 – Present: I continue to present papers and give keynote addresses at both national and internationalevents. I also collaborate on research projects with several universities in the US including the Universityof Maryland Baltimore County, Purdue University, University of Illinois, University of Minnesota and theUniversity of Texas San Antonio. Much of my research is funded by the US Air Force, the NationalScience Foundation, Advanced Research Projects Activity (Intelligence Community), the NationalGeospatial Intelligence Agency, and the National Aeronautics and Space Administration.Collaboration with Europe: As part of a larger initiative funded by the US Air Force, I have establishedinternational research collaboration with Kings College London and the University of Insubria in Italy.This has included several trips to the UK to visit researchers at Kings College London. Funding for ourEuropean partners is from the US Air Force in Europe (EOARD: European Office of Aerospace Researchand Development). The project is on assured information sharing and our goal is to demonstrateinformation sharing between US, UK and Italy in the cloud while maintaining security policies.Collaboration with Asia Pacific: I am hoping to initiate a similar international collaboration for the USAir Force with Australia. The funding for this effort is expected to come from US Air Force in Asia(AOARD: Asia Office of Aerospace Research and Development). I gave a keynote address at a computerconference in Sydney, Australia in December 2011 and we have begun discussions with researchers fromMacquarie University in Sydney, Australia on this collaboration.98

Section 16: INTELLECTUAL PROPERTY AND PATENTS1. The MITRE CorporationUS Patent, October 1994, an Apparatus and Method for a system for security constraint processing duringdatabase query update and design operations. (with William Ford and Marie Collins).US Patent, January 1996, an Apparatus and Method for a system for handling the inference problem basedon Nonmonotonic Typed Multilevel Logic.US Patent, December 1997, an Apparatus and Method for a system for expert inference control (withWilliam Ford).Status of my patents: In 2003, former Microsoft CTO Nathan Myhrvold’s company (Intellectual Ventures)wanted to purchase 4 patents from MITRE. Three of them were mine. MITRE also as a bonus gave themadditional patents together with the 4 must have patents for $2m approx. Each of the inventors was given$7K.2. The University of Texas at DallasPatent Application: Systems and Methods for Detecting a Novel Data ClassUTD-10-017 (Application Number 13/214,720)Patent Application: A Method and System to Determine and Identify Location of Users by MiningSocial Networking Data and Information (61/525,614)Intellectual Property DisclosuresDisclosure Number: 09-037Title: Policy Management for Assured Information Sharing in a CoalitionEnvironmentInventors: B. Thuraisingham, L. Khan, M. KantarciogluDisclosure Number: 10-017Title: Classification and Novel Class Detection in Concept-Drifting DataStreams Under Time ConstraintsInventors: L. Khan, M. Masud (former UTD Post-doc), B. ThuraisinghamDisclosure Number: 10-019Title: Biological Weapon Attack Simulation Using Social Network andGame Theoretic ModelingInventors: M. Kantarcioglu, R. Layfield (former Ph.D. student)Disclosure Number: 10-054Title: Agglomerative Clustering using Label Propagation for LocationMiningInventors: S. Abrol, L. Khan, B. Thuraisingham99

UTD Spin-Off Corporations1. We started a spin-off company with UTD titled: “Knowledge and Security Analytics, LLC” in Summer2010. The company founder is Bhavani Thuraisingham. This spinoff company is a holding companyfrom which we will apply for SBIR/STTR.2. We started a spin-off company with UTD titled: “Evolving Malware Security, LLC” in Summer 2011.The company founder is Bhavani Thuraisingham. This spinoff company will be a holding companyfrom which we will apply for SBIR/STTR.100

Section 17: DISCUSSION OF PUBLISHED WORK INSECURE DEPENDABLE DATA MANAGEMENT (1985 – 2010)17.1 INTRODUCTIONThis section consists of some of my papers that have made an impact in secure dependable datamanagement. The specific sub-areas are the following: Multilevel Secure Data Management Systems;Dependable Data Management Systems; Semantic Web, Web Services and Security; and Data Mining forMalware Detection. A summary of each of these sub-areas is given below. More details are given in theSections 17.2, 17.3, 17.4, 17.5 and 17.6.Multilevel Secure Data Management Systems: As stated in Section 3, my research in secure dependabledata management began in 1985. My initial focus was in multilevel secure database systems. In particular,I examined multilevel security for relational database systems, distributed database systems and objectdatabase systems. In addition, during this time I also conducted research on the inference problem. Myresearch in this area has resulted in several papers and three US patents. The research was also transferredto operational programs and commercial products.Dependable Data Management Systems: In the early 1990s, I started my research in real-time datamanagement systems and later integrated this research with my work in secure data management.Integrating security and real-time systems was a new concept at that time. This research was transferred toAir Force programs such as AWACS (Airborne Warning and Control System).Semantic Web, Web Services and Security: In 2000, I started my research in security for semantic weband web services. First I examined security for XML (eXtensible Markup Language) and then designedand developed inference controllers based on RDF (Resource Description Framework). In addition, Iexamined access control and information flow models for web services.Data Mining for Malware Detection: My recent research has also included designing and applying datamining techniques for malware detection. In particular, I have developed data mining tools for bufferoverflow management and intrusion detection. I have also developed stream mining techniques fordetecting novel classes.The organization of this section is as follows. Section 17.2 describes my research in secure datamanagement. Section 17.3 describes my research in dependable real-time data management. Section 17.4describes my research in secure semantic web and web services. Section 17.5 describes my research indata mining for malware detection. Section 17.6 discusses my future work in secure data management.17.2 MULTILEVEL SECURE DATA MANAGEMENT SYSTEMSI began my research on multilevel secure data management systems in 1985 and this research continueduntil the mid 1990s. I describe eleven of my papers on this topic.Secure Relational Data Management: My early research in the mid to late 1980s was on the design anddevelopment of a prominent system called Lock Data Views (LDV). Paper #1 (IEEE Transactions onKnowledge and Data Engineering) in this section describes the design of this system. LDV was one of thefirst two high assurance secure data management systems developed and was designed to meet the A1assurance level with respect to the Orange book (that is, the Trusted Computer Systems Evaluationcriteria). It’s unique in that it is designed to operate on Lock operating system which is an A1 system andhas three pipelines designed to enforce non-interference properties. The security policy was based on theBell and LaPadula model as well as the non-interference model. Additional policies based on content andcontext were introduced for the first time in a multilevel environment. In addition, a multilevel relationaldata model was developed. We also handled the notion of polyinstantiation where multiple users can havedifferent views of the same entity and developed a theory of multilevel relational data model. Utilizingthis data model, we then developed designs of three major modules: the query processor, the updateprocessor and the metadata manager. This paper has been widely cited and some of the ideas were adoptedin the four commercial secure relational data management systems that were being developed in the late101

1980s and early 1990s by Oracle, Sybase, Informix and Ingres. This was a team effort with colleagues atHoneywell.Secure Query Processing: Paper #2 (IEEE Computer) describes secure query processing strategies.Essentially, I enhanced the query strategies developed by Lock Data Views and introduced ideas from thefield of logic and databases. I developed query strategies based on the re-writing principles. Various typesof policies were considered in the design. This paper was first submitted to the Hawaii InternationalConference on Systems Sciences in 1988 and won the best paper award. I was then invited to submit thejournal version of the paper to IEEE Computer which has the largest audience in computer science. Then,together with my colleague at the University of Minnesota and a student, this paper was enhanced andpublished in IEEE Computer.Secure Distributed Data Management: The third and fourth papers describe aspects of securedistributed database systems. In Paper #3 (Computers and Security Journal) I was the first to exploremultilevel security for distributed database systems. I designed a multilevel data model, query processingstrategies and transaction management strategies. This paper resulted in several research directionsincluding the algorithms I designed for both query and transaction management. One such algorithm andimplementation carried out together with a colleague at MITRE, is reported in Paper #4 (Journal ofSystems and Software). In particular, we developed a system that enforced multilevel security for queryprocessing in a distributed environment. We demonstrated the system by connecting secure datamanagement systems in Bedford, MA, McLean, VA and Fort Monmouth, NJ in 1991. Such an integrationwas novel at that time and the research was transferred to Army’s maneuver control systems.Secure Object Data Management: The next two papers (Paper #5 and #6) describe my work inmultilevel secure object database systems. Paper #5 (ACM OOPSLA) describes a widely cited securemodel for object database systems. This paper describes several security properties for the object model.Then these policies were incorporated into the design of the system and published in Paper #6 (Journal ofObject-Oriented Programming). Subsequently together with a colleague at MITRE, we developed proof ofconcept demonstrations of the design using the Object Store data management system in 1992. Thisresearch had an impact on several secure object data management systems’ research and developmentefforts by others. In addition, we also transferred the research to a system developed by OntosCorporation.Foundations of the Inference Problem: The next four papers describe my work on the Inferenceproblem. I have been commended for this work from researchers as well as government sponsors. In Paper#7 (Computer Security Foundations Workshop), I was the first to prove that the inference problem wasunsolvable and presented it at the 3 rd IEEE Computer Security Foundations Workshop. The paper did notappear in the proceedings as the paper was not publicly released in time for the workshop. This researchwas also quoted by Dr. John Campbell of the National Security Agency as the most significant research insecure data management system in 1990. His quote appeared in the Proceedings of the 1990 NationalComputer Security Conference.Inference Controllers: Once I proved that the inference problem was unsolvable, then I designed adatabase inference controller that handled policies during query, update and databases operations.Together with colleagues at MITRE, my design was implemented and published in Paper #8 (Data andKnowledge Engineering Journal). This was the first inference controller to be developed and a patent wasobtained. Our integrated inference controller processed some policies during database query, somepolicies during database updates and some policies during database design and this concept was novel atthat time. Then in Paper #9 (IEEE Transactions on Knowledge and Data Engineering), I designedalgorithms for extending the inference controller design to a distributed environment and that resulted inthe first distributed inference controller. Together with a colleague, this design was implemented. In thissystem users could pose queries from multiple sites, but the system would examine the policies across allthe sites and only give out information that the user was authorized to know. The inference controllerswere distributed and communicated with each other to process queries and updates.Designing Secure Applications: In Paper #10 (IFIP Data Security Conference), I looked at the inferencefrom a different angle. Here I tried to handle the problem when the application was designed. I used102

conceptual structures (e.g., semantic nets and conceptual graphs) to model the applications. Policies weretaken into consideration during the modeling phase. Then the reasoners used by semantic nets andconceptual graphs were applied to reason about the application and detect potential security violations.This was a novel idea at that time and spawned many avenues for subsequent research. Also as a backendto this reasoner, I designed an expert system for inference control. The implementation of this system wascarried out with a colleague at MITRE. A U.S. patent was obtained on this system.Logic for Secure Databases: Finally in Paper #11 (Computer Security Foundations Workshop) I appliedthe theory of logic and databases to multilevel databases. Since first order logic did not handle nonmonotonicreasoning and since non-monotonic logics at that time did not reason across security levels, Ideveloped a logic called NTML (Non-monotonic Typed Multilevel Logic) and subsequently designed amultilevel logic database system. The significance of this work is that the logical reasoner can be used toprocess queries and control unauthorized inferences. A U.S. patent was obtained on this system.1. Design of LDV - A Multilevel Secure Relational Database Management System, June 1990, IEEETransactions on Knowledge and Data Engineering, Vol. 2, No. 2, June 1990, (co-author: P.Stachour). Lead AuthorMy Contribution: This is a Honeywell Team effort. The principal members of the team includedPaul Stachour (Principal Investigator), Patricia Dwyer, Emmanuel Onuegbe, Tom Haigh andmyself. I designed both the update and metadata pipelines. Furthermore, I wrote the entire paperfrom the technical reports we published.2. Secure Query Processing Strategies, IEEE Computer, March 1989, Vol. 22, No. 3, (invited paper– co-authors: T. F. Keefe and W. T. Tsai). Co-Author (for the conference version I was the leadauthor)My Contribution: I designed the algorithms and write the initial paper for the conference bymyself. Because I had to leave on vacation I requested my colleague and his student to edit thepaper and submit. The paper received the best paper award. The journal version was anenhancement of the conference paper and the student Tom Keefe was mainly responsible for theenhancements.3. Multilevel Security Issues in Distributed Database Management Systems – II, Computers andSecurity Journal (Elsevier), Volume 10, No.8, December 1991. Sole AuthorMy Contribution: This is 100% my work.4. Design and Implementation of a Query Processor for a Trusted Distributed DatabaseManagement Systems, April 1993, Journal of Systems and Software (North Holland), Vol. 21,No. 1 (co-author: Harvey Rubinovitz).My Contribution: I designed the algorithms. Then my colleague Dr. Rubinovitz implemented thealgorithm. Together we designed the experiments. I wrote the paper from the technical reports.5. Mandatory Security in Object-Oriented Database Systems, October 1989, Proceedings of theACM Conference on Object-Oriented Programming, Systems, Languages and Applications(ACM OOPSLA) Conference, New Orleans, LA. Sole AuthorMy Contribution: This is 100% my work.6. Towards the Design of a Multilevel Secure Object-Oriented Database Management System,Journal of Object-Oriented Programming, Vol. 8, No. 3, p. 42 – 49, June 1995. Sole AuthorMy Contribution: This is 100% my work.7. Recursion Theoretic Properties of the Inference Problem in Database Security, June 1990,Presented at the 3rd IEEE Workshop on Foundations of Computer Security, Franconia, NH(public release was not obtained in time for proceedings; printed as MITRE Paper M291, May1990). Sole AuthorMy Contribution: This is 100% my work.103

8. Design and Implementation of a Database Inference Controller, December 1993, Data andKnowledge Engineering Journal (North Holland), Vol. 11, No. 3, p. 271 - 297 (co-authors: W.Ford, M. Collins, J. O'Keeffe); (Article reprinted by the MITRE Journal, 1994). Lead AuthorMy Contribution: I designed the entire system. My colleagues Mr. Ford and Mr. O’Keeffeimplemented the query processor. My colleague Ms. Collins implemented the update processor. Iwrote the entire paper from the technical reports.9. Security Constraint Processing in a Multilevel Secure Distributed Database Management System,IEEE Transactions on Knowledge and Data Engineering, April 1995 (coauthor: W. Ford). LeadAuthorMy Contribution: I designed the entire system. My colleague Mr. Ford implemented the system.I wrote the entire paper from the technical reports.10. The Use of Conceptual Structures to Handle the Inference Problem, November 1991,Proceedings of the 5th IFIP WG 11.3 Conference on Database Security, p. 333-362,Shepherdstown, VA. (Also published by North Holland, 1992, Database Security V: Status andProspects, p. 333 - 362). Sole AuthorMy Contribution: This is 100% my work.11. A Nonmonotonic Typed Multilevel Logic for Multilevel Database Management Systems, June1991, Proceedings of the 4th IEEE Computer Security Foundations Workshop, Franconia, NH.My Contribution: This is 100% my work.17.3 DEPENDABLE DATA MANAGEMENT SYSTEMSI began my research on dependable data management systems around 1992 and this research stillcontinues. I describe seven of my papers on this topic.Evolvable Real-time Systems: My research in the early to mid 1990s was on building an object-orienteddata manager and infrastructure for next generation command and control systems. At that time the legacysystems were hardcoded and running on mainframes. The goal was to develop flexible systems that couldaccommodate changes. There were no commercial systems available at that time. Data was arriving at avery rapid speed. This data had to be captured, stored, analyzed and decisions had to be made. Togetherwith my colleagues at MITRE, we were the first to develop an object-based, real-time infrastructure anddata manager. The infrastructure consisted of several services including inter-process communication,memory management and scheduling. The real-time data manager was a main memory data manager andwe designed a real-time priority ceiling protocol for transaction processing. The results are documented inPaper #1 (IEEE WORDS 1996). Then we integrated the infrastructure and data manager with the multisensorfusion applications and carried out an integrated design and implementation. This integration workis discussed in Paper #2 (IEEE WORDS 1997). The research was demonstrated to the Air Force and thetechnology was transferred to the AWACS program and subsequently Boeing and Lockheed took many ofthe ideas to implement into the operational systems.Real-time Transaction Processing: One of the challenges in designing a real-time data manager is todesign transaction processing algorithms that meet timing constraints. There were a number of algorithmsdeveloped that had to meet the requirements of AWACS. After examining and evaluating severalalgorithms, we felt that the priority ceiling algorithm would be most suited. However, the priority ceilingalgorithm had to be adapted to meet the different criteria. I presented the initial design to the team inMarch 1995. Then I collaborated with a professor at the University of Rhode Island and co-supervisedstudents who carried out the detailed design and implementation of the algorithm in 1996 - 1997. Thisalgorithm is presented in Paper #3 (Real-time Systems Journal).Adaptive Real-time Systems: In this paper, we introduced some novel ideas into the infrastructuredesign. While in the earlier papers we considered only non-adaptive protocols, in our research in the late104

1990s, we designed and implemented flexible systems that could handle adaptive protocols. This meantthe system can select the protocol such as TCP/IP or UDP or in the case of the data manager, the type oftransaction algorithm to be used. This was the first effort that considered adaptive approaches. Wedocumented the results in Paper #4 (IEEE ISADS).Secure Real-time Object Management: One significant impact of our research is the transfer of thetechnology to standards effort. In 1994 with some inputs from colleagues, I developed concepts onintegrating real-time and security into object request brokers. This work was presented at the ACMOOPSLA conference workshop in real-time object systems on real-time object request brokers. This paperis widely cited. I was then invited to give talks at several panels on this topic. The Object ManagementGroup was interested and invited me to help establish a special interest group in 1996. Together with theMITRE team, we continued to enhance the research and collaborated with the University of Rhode Islandand the Navy and subsequently contributed substantially towards the research of real-time object requestbrokers. The research was published as a team paper in Paper #5 (IEEE Transactions on Parallel andDistributed Systems).Secure Real-time Systems: In Paper #6 (IEEE Transactions on Knowledge and Data Engineering) Iexamined the integration of security into the infrastructure. I was the first to introduce security with realtimeprocessing back in 1992. Therefore, I expanded my earlier research and developed a solution for aninfrastructure and data manager that incorporated both security and real-time processing with some inputsfrom my colleague at MITRE. I continued with this research when I joined the university in 2004 and oneof my students was very interested in following up on the ideas I presented in Paper #4. Together with mystudent, we designed and developed a system called Real-time TMO (Time-Triggered Message-TriggeredObject) which incorporated security into the TMO system. TMO was designed at the University ofCalifornia Irvine and is a real-time object system. By incorporating security into the system, I believe thatwe developed the first real-time and secure system based on objects. This research was published in Paper#7 (IEEE ISORC). This research has spawned many new research directions including the Cyber PhysicalSystems that are very popular today.1. Object-oriented Implementation of an Infrastructure and Data Manager for Real-time Commandand Control Systems, Proceedings of the IEEE Workshop on Object-Oriented Real-time Systems,Laguna Beach, CA, February 1996 (co-authors: E. Bensley, P. Krupp, R.A. Sigel, M. Squadrito,T. Wheeler). Lead AuthorMy Contribution: This is a MITRE Team effort. The principal members of the team included EdBensley (Principal Investigator), Peter Krupp, Tom Wheeler and myself. I was responsible for thedesign of the real-time data manager and a key member of the infrastructure component. I wrotethe entire paper from the technical reports.2. Object Technology for the Integration of Infrastructure, Data Manager, and Tracker forCommand and Control Applications, Proceedings of the IEEE Workshop on Object-OrientedReal-time Systems (WORDS), Newport Beach, CA, February 1997 (co-authors: M. Gates, P.Krupp, J. Maurer, M. Squadrito, T. Wheeler). Lead AuthorMy Contribution: This is a MITRE Team effort. The principal members of the team included EdBensley (Principal Investigator), Peter Krupp, Tom Wheeler, Mike Gates. Mike Squadrito andmyself. I was responsible for the design of the real-time data manager and supervised theimplementation by Mr. Squadrito. I wrote the entire paper from the technical reports.3. Scheduling and Priority Mapping for Static Real-time Middleware, Real-time Systems Journal(Kluwer), Vol. 20, No. 2, p. 155-182, 2001 (co-author: V. Wolfe, L. DiPippo et al). Co-AuthorMy Contribution: I conceived the idea of applying the priority ceiling algorithm to our problemfor AWACS and developed the initial algorithm. The details were carried out by the students atthe University of Rhode Island. Much of the writing was carried out by the University of RI.105

4. Adaptable Real-time Distributed Object Management for Command and Control Systems,Proceedings of the IEEE International Symposium on Autonomous De-centralized Systems(ISADS) Conference, March 1999, Tokyo, Japan (co-authors: J. Maurer, R. Ginis, R. Freedman,M. Squadrito, S. Wohlever). Lead AuthorMy Contribution: This is a MITRE Team effort. The principal members of the design teamincluded John Maurer (Principal Investigator), Peter Krupp, and myself. The others carried out theimplementation. I wrote the entire paper from the technical reports.5. Real-time CORBA, IEEE Transactions on Parallel and Distributed Systems, October 2000 (coauthors:V. Fay-Wolfe, L. DiPippo, G. Cooper, R. Johnston, P. Kortmann). Co-AuthorMy Contribution: I conceived the idea of real-time CORBA in 1994. Since then MITRE,University of Rhode Island and the Navy carried out the design together with the OMG standardsteam. The paper was a team effort. Much of the writing was carried out by the University of RI..6. Information Survivability for Real-time Command and Control Systems, IEEE Transactions onKnowledge and Data Engineering, January 1999 (co-author: J. Maurer). Lead AuthorMy Contribution: I was the main designer of the system described in this paper and wrote thepaper. John Maurer (the project leader) gave comments on this paper.7. Dependable and Secure TMO Scheme, Proceedings IEEE International Symposium on Object-Oriented Real-Time Distributed Computing (ISORC 2006) (co-author: J. Kim). Lead AuthorMy Contribution: I worked on the design of the system with my student Mr. Kim. My studentcarried out the implementation. I wrote the paper from my student’s MS Thesis.17.4 SEMANTIC WEB, WEB SERVICES AND SECURITYI began my research on XML Security in December 1998 when I visited the University of Milan researchgroup to exchange ideas. I initiated a research project with this group led by Prof. Bertino on securingXML documents. Two students worked on the project, one on access control and authentic publication ofXML documents and the other on privacy and trust for XML documents. Subsequently when I joined NSFin October 2001, I continued with my research on securing the secure semantic web by exploring alllayers of the semantic web technology stack. That same month I participated in an NSF-EU workshop atSophia Antipolis and gave a presentation on securing the semantic web technologies. This was the firstsuch presentation on the topic. A major part of my current research is in this area.XML Security: Paper #1 (IEEE Transactions on Knowledge and Data Engineering) describes myresearch with the University of Milan group on XML security. We developed an approach for controllingaccess to XML documents as well as to securely publish XML documents at the third party site. Wefocused on authenticity and completeness of the query responses. This approach has been recommendedfor secure data outsourcing. Paper #2 (ACM Transactions on Information and Systems Security) describesprivacy problems that could occur due to the specification of trust policies. In particular, we developed asecurity model, privacy-enhanced trust management algorithms and a proof of concept prototype of thealgorithms.RDF Security and Inference Control: Paper #3 (Computer Standards and Interface Journal) describesthe various security standards for semantic web. It describes XML security, RDF security and security forontologies. Then I started focusing on securing RDF. My work on RDF security was novel at that timeand I collaborated with professors at the University of Insubria and together we developed securityarchitecture for RDF documents. This research was published in Paper #4 (DEXA conference workshop).Paper #5 (IFIPTM) continues with RDF security. In this paper, together with students I jointly supervisedwith another professor at The University of Texas at Dallas, instead of explicitly coming up with accesscontrol for RDF documents, we use the Reification principle already in RDF to control access to variousparts of the document. For example, we can make reification statements of an RDF document such as“John has access to the RDF document”. This way we can use the reasoning capabilities in RDF tomanage security. Paper #6 (IFIP Data Security Conference) makes a significant contribution to the106

inference problem. Back in the early 1990s, I designed an inference controller. That database was arelational database and policies were specified as rules in datalog. However, now with semantic web, onecan use Jena for the RDF engine and Pellet as the reasoner. Furthermore, both data and policies can beuniformly represented in RDF. Together with a student and a professor at The University of Texas atDallas, we designed and developed a semantic web-based inference controller. During the past threemonths, we have made considerable enhancements to the design described in Paper #6. In particular, wehave developed a semantic web-based privacy controller for provenance data.Assured Information Sharing: While continuing to conduct research on securing XML, RDF andontologies, I also focused on five application areas to apply secure semantic web technologies. Theseapplications are discussed in the next five papers. In Paper #7, (International Journal of InformationSecurity and Privacy) I utilized semantic web technologies for Assured Information Sharing applications.Together with a student and a professor at The University of Texas at Dallas, we were the first to designand develop an assured information sharing system using XACML-based policies enforced acrossorganizations. This research focused on sharing information while at the same time ensuring thatappropriate policies are enforced.Secure Semantic Geospatial Data Management: I also expanded into the geospatial domain and startedfocusing on developing a secure geospatial semantic web with students and a professor at The Universityof Texas at Dallas. One major obstacle back in 2005 was that there were no standards for geospatialsemantic web. Therefore, we designed and developed GRDF (geospatial RDF) and Secure GRDF. Thiswas a significant contribution. We presented this research in the IEEE International Conference on DataEngineering workshop and we were then invited to submit a paper to the special issue of ComputerStandards and Interface Journal. Our results are published in Paper #8 (Computer Standards andInterface).Secure Semantic Social Networks: Another significant contribution I have made is applying securesemantic web technologies for the security and privacy of social networks. Together with a colleague andstudent at The University of Texas at Dallas, as well as with colleagues at the University of Insubria, wedeveloped both an access control model and privacy model for social networks, represented the policies inRDF and OWL and then used RDF and OWL data managers and reasoners to reason about the policies.This work was published in Paper #9 (ACM SACMAT). It was one of the few papers on this topic. Wewere invited for a journal special issue and the journal version will appear in Elsevier’s Computers andSecurity Journal.Secure Web Services: Paper #10 (IEEE International Conference on Web Services) describes myresearch in secure web services which was carried out with a colleague and a student. We noted that muchof the work on secure web services was in access control. Therefore, we focused on other aspects anddeveloped new security models for web services. In particular, we have developed delegation-basedmodels for web services as well as information flow models. We have combined both these models into aunique model. We have also designed and implemented a system that utilizes the models. We were thefirst to introduce such an integrated model into secure web services.Secure Cloud Computing: Paper #11 (International Journal of Information Security and Privacy) is in theemerging area of secure cloud computing. I have designed a framework for secure cloud computing whichconsists of a virtual machine layer, storage layer and data layer. Then I collaborated with colleagues todesign algorithms for each of the layers. We have designed a model for secure query processing forsemantic web data based on principles of query optimization and have subsequently developed algorithmsfor secure query processing in a cloud. We expect to continue to make significant impact in secure clouds.My work on secure semantic web and web services has also appeared in numerous other journals andconferences including IEEE Transactions on Knowledge and Data Engineering; IEEE Transactions onSystems, Man and Cybernetics; and IEEE Transactions on Dependable and Secure Computing. One area Iam focusing on now is to integrate my research on secure web services with secure semantic web andbuild secure semantic web services. My book on this topic was published in December 2010. Other areasmy team is focusing on are ontology alignment, schema matching and investigating security issues. One of107

our papers on this topic has appeared in the prestigious Journal of Web Semantics. A book on Buildingand Securing the Cloud is expected to be published in early 2012.1. Selective and Authentic Third-Party Distribution of XML Documents, IEEE Transactions onKnowledge and Data Engineering, Vol. 16, No. 10, p. 1263-1278, 2004 (co-authors: ElisaBertino, Barbara Carminati, et al) Co-AuthorMy Contribution: I initiated the ideas in this paper. The detailed design was carried out bycolleagues and students at the University of Insubria. The paper was part of the student’s (MsCarminati) PhD thesis. I commented on the design and the paper.2. PP-trust-X: A system for privacy preserving trust negotiations. ACM Transactions onInformation Systems Security (TISSEC), Vol. 10, No. 3, 2007 (co-authors: Anna CinziaSquicciarini, Elisa Bertino, et al) Co-AuthorMy Contribution: This was the second of two papers that I collaborated with colleagues andstudents at the University of Milan. The detailed design was carried out by the student (Ms.Squicciarini) as part of her thesis. I commented on the paper and wrote some of the introductoryand conclusion sections.3. Security Standards for Semantic Web, Computer Standards and Interface Journal, March 2005,Vol. 27 (North Holland). Sole AuthorMy Contribution: This is 100% my work.4. Using RDF for Policy Specification and Enforcement, Proceedings of the IEEE DEXA Workshopon Web Semantics, Spain, August 2004 (co-authors: B. Carminati, E. Ferrari). Co-AuthorMy Contribution: I initiated the ideas in this paper. The details were carried by colleagues at theUniversity of Insubria. The paper was written jointly.5. A Relational Wrapper for RDF Reification, Third IFIP WG 11.11 International Conference onTrust Management (IFIPTM), West Lafayette, USA, June 15-19, 2009, (co-authors: S.Ramanujam, A. Gupta, L. Khan, and S. Seida). Co-AuthorMy Contribution: This is a team effort and is part of the student’s (Ms. Ramanujan) thesis. Thestudent wrote the paper and I gave comments. Mr. Gupta carried out the implementation. Prof.Khan jointly supervised the students with me and Mr. Seida funded this effort from Raytheon.Ms. Ramanujan wrote much of the paper with comments from the others.6. Scalable and Efficient Reasoning for Enforcing Role-Based Access Control, Proceedings of IFIP11.3, Rome, Italy, June 2010 (co-authors: T. Cadenhead, M. Kantarcioglu, and B. Thuraisingham)Co-AuthorMy Contribution: I conceived the ideas and the student carried out the detailed design andimplementation. The student wrote much of the paper with comments from Prof. Kantarcioglu andme.7. Design and Implementation of a Framework for Assured Information Sharing AcrossOrganizational Boundaries, International Journal of Information Security and Privacy, Vol. 2,No. 4, 2008. (Y. Harsha Kumar et al). Lead AuthorMy Contribution: I carried out the initial design. My student (Ms. Harsha Kumar) carried out theimplementation. I wrote the paper from the technical report.8. Geospatial Resource Description Framework (GRDF) and Security Constructs, ComputerStandards and Interfaces Journal, Vol. 33, No. 1, p. 35 – 41, January 2011 (special issuefrom IEEE ICDE conference workshop) (co-authors: A. Alam, L. Khan). Co-AuthorMy Contribution: I conceived the initial ideas. My student Mr. Alam carried out the detaileddesign and wrote much of the paper.108

9. A Semantic Web Based Framework for Social Network Access Control, Proceedings of ACMSymposium on Access Control Models and Technologies (SACMAT 2009), p. 177-186, (coauthors:B. Carminati, E. Ferrari, R. Heatherly, M Kantarcioglu). Co-AuthorMy Contribution: I conceived the idea. Much of the design was carried out by Prof. Kantarciogluand Prof. Carminati. The student (Mr. Heatherly) carried out the implementation. The paper waswritten by all.10. The SCIFC Model for Information Flow Control in Web Service Composition, ProceedingsIEEE International Conference on Web Services (ICWS 2009) (co-authors: W. She, I. Yen,E. Bertino). Co-AuthorMy Contribution: I conceived the initial ideas. Our student carried out the detailed designand implementation. Much of the paper was written by Prof. Yen.11. Security Issues for Cloud Computing, International Journal of Information Security and Privacy,Vol. 4, No. 2, 2010, p. 36 – 48 (co-authors: K. Hamlen, L. Khan, M. Kantarcioglu). Lead AuthorMy Contribution: I conceived the ideas and the high level design. My colleagues contributed todetails of the design. I wrote the paper.17.5 DATA MINING FOR MALWARE DETECTIONI gave several keynote presentations on Data Mining, Security, Privacy and Civil Liberties starting in1996 and wrote a position paper while at NSF that resulted in significant emphasis on privacy research.However, I also continued with data mining for security applications research both for national securityand cyber security. When I joined The University of Texas at Dallas, I collaborated with a professor andstudents and together we designed and developed a number of data mining algorithms for malwaredetection. We have also developed a data mining toolkit based on our algorithm.Data Mining for Intrusion Detection: Our initial focus was on applying data mining for intrusiondetection. We applied various data mining techniques based on Support Vector Machines (SVM) as wellas developed a novel technique called dynamical growing self-organizing tree (DGSOT) and comparedthe results to the work of others. This research was published in Paper #1 that appeared in the prestigiousVery Large Database Journal. We also included this paper as part of a book that we published in 2009 onthe Design and Implementation of Data Mining Tools.Data Mining for Malware Detection: We then started a focused research program on data miningapplications in cyber security funded by the Air Force. In Paper #2 (ICC), we developed a hybrid modelthat examined both byte code and assembly code for detecting malicious code. This was a novel approachat that time. Then in Paper #3 (Information Systems Frontiers), we developed scalable solutions to featureextraction for detecting buffer overflow as well as malicious executables.Stream Mining for Fault Detection: The research for the last two papers are jointly carried out with theUniversity of Illinois at Urbana Champaign and funded by NASA. Here our goal was to develop datamining techniques for fault detection. Data is emanating from multiple sources in the form of streams. Wehave developed novel stream mining techniques for classifying data streams. Our approach is based onexamining multiple and hierarchical chunks of data. The results are published in Paper #4 (ICDM).However, with our previous approach, new faults cannot be detected. Therefore, we have come up with abreakthrough technique where novel classes can be detected with high accuracy. This result is publishedin Paper #5 (IEEE Transactions on Knowledge and Data Engineering).Active Defense: The results in Papers #2 and #3 focus on defensive detection mechanisms. The challengewe face now is that the malicious code will change its patterns, thereby making it very difficult to detect.Therefore, we have developed a breakthrough approach to be able to detect the malicious code before thevirus is detected. Our results are published in Paper #6 (Computer Standards and Interface Journal).109

We also have additional papers accepted/published in prestigious conferences including IEEE ICDM andECML/PKDD. Together with our colleagues at the University of Illinois, we have applied for a patent onthe Novel Class Detection System with The University of Texas at Dallas as the primary inventor. Wehave assembled all of the work described in Papers 1 - 3 as well as our additional papers on this topic andhave written a book titled Data Mining Tools for Malware Detection (to be published later in the year).1. A New Intrusion Detection System using Support Vector Machines and Hierarchical Clustering,VLDB Journal, Vol. 16, 2007 (co-authors: M. Awad, L. Khan). Co-AuthorMy Contribution: Prof. Khan and his student Mr. Awad carried out the design andimplementation. I gave comments and wrote much of the paper from the thesis.2. A Hybrid Model to Detect Malicious Executables, Proceedings IEEE International Conference onCommunication (ICC 2007) (co-authors: M. Masud, L. Khan). Co-AuthorMy Contribution: This was a team effort. Prof. Khan and I supervised the student (Mr. Masud).The student carried out the detailed design and implementation. The paper was written by thestudent and I gave comments.3. A Scalable Multi-level Feature Extraction Technique to Detect Malicious Executables,Information Systems Frontiers, Vol. 10, No. 1, p.33-45, March 2008 (co-authors: M. Masud, L.Khan). Co-AuthorMy Contribution: This was a team effort. Prof. Khan and I supervised the student (Mr. Masud).The student carried out the detailed design and implementation. The paper was written by thestudent and I gave comments.4. A Practical Approach to Classify Evolving Data Streams: Training with Limited Amount ofLabeled Data, Proceedings International Conference on Data Mining (ICDM 2008) (co-authors:M. Masud, J. Gao, L. Kahn, J. Han). Co-AuthorMy Contribution: This was a team effort between The University Texas at Dallas and theUniversity of Illinois at Urbana Champaign. Prof. Khan and I supervised the student (Mr. Masud).The student carried out the detailed design and implementation. The paper was mainly written bythe student and I gave comments.5. Classification and Novel Class Detection in Concept-Drifting Data Streams under TimeConstraints, IEEE Transactions on Knowledge and Data Engineering, , Vol. 23, No. 6, p. 859 –874, June 2011 (co-authors: M. Masud, J. Gao, L. Khan, J. Han). Co-AuthorMy Contribution: This was a team effort between The University Texas at Dallas and theUniversity of Illinois at Urbana Champaign. Prof. Khan and I supervised the student (Mr. Masud).The student carried out the detailed design and implementation. The paper was mainly written bythe student and I gave comments.6. Exploiting an Antivirus Interface, Computer Standards and Interface Journal, Vol. 31,No.6, 2009 (co-authors: K. Hamlen, V. Mohan, M. Masud, L. Khan). Co-AuthorMy Contribution: I conceived the idea. This was a team effort between Prof. Hamlen, Prof. Khan,myself and our students, Mr. Masud and Mr. Mohan. The students carried out the detailed designand implementation. The paper was mainly written by Prof. Hamlen and I gave comments.17.6 CONCLUSIONIn this section, I have presented a sample of my papers and described my research contributions in securedependable data management. Section 17.1 provided a sample of my papers in multilevel secure datamanagement. Section 17.2 provided a sample of my papers in dependable data management. Section 17.3provided a sample of my papers in semantic web, web services security and Section 17.4 provided asample of my papers in data mining for malware detection. My research is continuing in these areas aswell as in additional areas. Below I provide an overview.110

Policy management: While discretionary security for relational database is a mature technology, there isa lot to do in discretionary security for XML and RDF databases. For example, how can we specifypolicies? How can we incorporate policies for provenance data management with trust, confidentiality andprivacy? How can semantic web data be secured? What sorts of temporal authorization models areappropriate for the emerging database systems? These are all interesting challenges.Multilevel security: We have focused on multilevel security for various types of databases. Whileresearch in this area is not as active as it used to be, we have learned a lot in conducting research inMLS/DBMSs. Furthermore, such systems are still needed for military and intelligence applications. Thechallenges here include developing new kinds of models and architectures for MLS/DBMSs as well asbuilding high assurance systems.Inference Problem: While this is a very difficult problem, it continues to fascinate researchers. We needto build policy managers that are more efficient and can manage prior knowledge. We also need toexamine the complexity of the problem. There is a lot of interesting theoretical work to do in this area.Secure Distributed and Heterogeneous Databases: While some progress has been made, we need anextensive investigation of security for distributed, heterogeneous and federated databases. What sorts ofaccess control models are appropriate for such systems? How can we share data and still have security andautonomy? How can security policies be integrated across organizations? How can distributedtransactions be executed securely?Secure Object Databases and Applications: There has been work in both discretionary and mandatorysecurity for object databases. How can we apply the principles for object-relational systems since suchsystems are dominating the marketplace? Are the security mechanisms for distributed object managementsystems sufficient? How can we provide fine-grained access control? How can UML be used to designsecure applications?Secure Data Warehousing: There are many challenges here. How can we build a secure warehouse fromthe data sources? How can we develop an integrated security policy? What is the security impact on thefunctions of a warehouse?Secure Web Data and Information Management: There is a lot of work to be done on secure web dataand information management. For example, how can we build secure web database systems? What are thesecurity issues for digital libraries? How do we secure the semantic web? How can we maintain trust onthe web? How can we secure emerging applications such as knowledge management, multimedia,collaboration, e-commerce and peer-to-peer data management? Also securing the semantic web and webservices will be major research areas.Data Mining, Security and Privacy: Without a doubt, data mining has many applications in security.However, privacy is a major concern. We need better techniques for detecting novel classes. Furthermore,we need to detect the malware before they change patterns. Privacy research includes privacy-preservingdata mining, building privacy controllers and analyzing the complexity of the privacy problem. Privacy isa multidisciplinary research topic between computer scientists and social scientists.Assured Information Sharing: The 9/11 commission report has stated that we have to migrate from aneed to know to a need to share environment. We need appropriate policy management techniques forsharing data. More importantly, we need incentives for data sharing. This is a multidisciplinary researcharea between computer scientists and social scientists.111

Secure Social Networks: With Facebook and other social networking sites, privacy is beingcompromised. In addition, we need security of the data. Therefore, we need novel models and techniquesfor securing social networks and ensuring that the privacy of the individuals is maintained.Dependable Data Management: Little work has been reported on integrating security and real-time datamanagement. For example, how can we build systems with flexible policies that can handle security, realtimeprocessing, fault tolerance and integrity? How can we secure sensor database systems? What are thesecurity issues for wireless information management?Emerging Security Technologies: Research directions include security for biometrics technologies,digital forensics and secure applications such as identity management, and insider threat analysis. I haveconducted some research in biometrics and digital forensics. My main focus now is in identitymanagement and insider threat analysis.112

Section 18: DISCUSSION OF COMPLETE RESEARCH ANDPUBLICATIONS (1980 – Present)18.1 INTRODUCTIONIn this note I give a detailed overview of the research I have carried out since I started my professionalcareer in August 1980 after my PhD. It shows the depth and breadth of my work. Please note that asynopsis of my research record is given in Section 3 describing the significance of my research withspecific references and citations.I first describe my research focus at The University of Texas at Dallas (UTD) since October 2004, andthen describe my research contributions to computer science from 1980-2004. Research at UTD,discussed in Section 18.2, is focusing in two major areas: Data Security and Privacy (Assured InformationSharing; Secure Geospatial Data Management and Secure Social Networks) and Information Management(Semantic Web, Data Mining). In particular, we are developing novel data mining techniques and securesemantic web technologies to solve problems mainly for cyber security and national security.In addition to computability theory research which I carried out while a visiting faculty, my priorresearch, was carried out mainly while I was in industry. It has focused on data security, datamanagement, distributed systems and data mining and is discussed in Section 18.3. My research spansfrom theory to system design, modeling and implementation to application design to technology transferto big-picture/vision. I have discussed my research in five areas (Computability Theory, InformationSecurity, Distributed Systems and Real-time Objects, Data Management, and Homeland Security).My main research area since 1985 has been in Secure Dependable Data Management and still continues.My research has resulted in over 100 journal papers, over 200 conference/workshop papers, over 80keynote presentations, 3 patents and 12 books (10 published, 2 in preparation).18.2 RESEARCH AT THE UNIVERSITY OF TEXAS AT DALLAS(October 2004 – Present: Data and Applications Security, Information Management)Research is proceeding in two main areas: Data Security and Privacy, and Information Management.Publications: Several journal publications including IEEE Transactions on Systems, Man andCybernetics, Very Large Database Journal, Computer Systems Science and Engineering, MultimediaTools, ACM Transactions on Information Systems Security, IEEE Transactions on Dependable andSecure Systems, Data and Knowledge Engineering. Conferences include ACM SACMAT, IFIP DataSecurity, IEEE ICDM, ACM GIS, IEEE ISORC, PKDD.I. Data and Applications SecurityArea 1: Assured Information Sharing: Funding from AFOSR, NSF (2004 - Present)In the area of assured information sharing, the goal is for organizations to share data and at the same timeenforce policies. We are investigating confidentiality, privacy, trust, integrity, provenance, standards andinfrastructure aspects. In particular, we are examining three scenarios. In the first scenario, we assumethat the partners of a coalition are trustworthy (e.g, US, UK, Australia). However, each partner may wantto enforce various security policies. We are investigating RBAC and UCON policies for such a scenario,carrying out data mining and conducting experimental studies as to the amount of information that is lostby enforcing policies. We are also investigating ways to transfer our technologies to programs such asDoD’s NCES (Network Centric Enterprise Services).In the second scenario, we assume that the partners are semi-trustworthy. In this case, we want to playgames with the partners and extract as much information as possible without giving out information aboutourselves. We are using results from game theory to formulate strategies for such a scenario and have113

obtained some interesting simulation results. In the third scenario, we assume that the partners areuntrustworthy. Here, we apply data mining to defend our systems from virus and worms and at the sametime try to probe into our partners’ systems.This research has now resulted in a MURI project. We are investigating incentive-based informationsharing and risk-based access control.Area 2: Secure Geospatial Data Management: Funding from NGA, RaytheonIn the area of secure geospatial data management, we are developing technologies for geospatial semanticweb and data mining. We are specifying extensions to GML for access control policies, as well asdeveloping ontologies for geospatial data. Using these ontologies, we are conducting data mining. Inaddition, we are also developing geospatial web services. Finally, we are developing a new languagecalled GRDF (Geospatial Resource Description Framework) and Secure GRDF for a geospatial semanticweb. While we are developing various pieces of technologies, our goal is to work through standardsorganizations such as OGC (Open Geospatial Consortium) and corporations such as Raytheon to transferour research to standards and operational programs. We are members of both OGC and USGIF. We arealso members of UTD’s Geosciences program.Area 3: Data Mining Applications in Security, Funding from Texas Enterprise Funds, NASA,AFOSR (2007 - Present)Our main research in data mining applications is to develop tools for intrusion detection and maliciouscode detection. In addition, we are developing tools for fault detection. We have also applied data miningfor surveillance and biometrics. In the area of surveillance and biometrics, our goal is to developtechnologies for detecting suspicious events. We developed a surveillance system to detect suspiciousevents. We identified normal events and used data mining techniques and determined whether an event issuspicious. In the area of biometrics, we developed tools for face recognition and fingerprint detection. Inaddition, we are conducting research on integrating robotics and security.Area 4: Secure Grid/Cloud and Web Services AFOSR (2008-Present)Here we are developing a delegation model for web services. In addition, we are developing algorithmsfor secure storage of grid systems, as well as accountability policies for grid systems. We have alsodesigned and implemented secure query processing and information sharing in a cloud.Area 5: Secure Social Networks , Funding from AFOSR (2008 - Present),Here we are applying semantic web technologies to represent social networks and investigate security andprivacy (jointly with University of Insubria).Area 6: Complexity Theory (2008 - Present)My PhD research, as well as early research in my career, was in computability theory (please see section3). After 25 years, I have gotten back into the field of co-advising students on complexity theory forsensory networks and security. This is more of a hobby at present.II.Information ManagementSemantic Web: Funding from IARPA (2007 - Present)Our research is in semantic web applications for social networks, as well as knowledge management. Weare conducting research in enhancing JENA, building query techniques with Hadoop, as well asinvestigating security for semantic web and social networks. We are also exploring security for semanticweb and privacy for social networks.18.3 RESEARCH CONTRIBUTIONS TO CS (AUGUST 1980 – SEPTEMBER 2004)My research between 1980 and 2004 proceeded in five main areas: Computability Theory, Data Security,Distributed Processing, Data Management and Information Technologies for Homeland Security.114

Publications: Several journal publications including IEEE Transactions on Knowledge and DataEngineering, IEEE Transactions on Software Engineering, IEEE Transactions on Parallel and DistributedProcessing, Journal of Computer and Systems Sciences, Notre Dame Journal of Formal Logic, Computersand Security and IEEE Computer as well as several conference publications including in ICDE, VLDB,ACSAC, IFIP Data Security, and OOPSLA.Area 1: Computability TheoryMuch of my research in the early 1980s was on computability theory. I studied various decision problemsfor combinatorial systems such as systems functions and proved several results on the unsolvability and thecomplexity of the problems. I also invented the concept of an N-cylinder and this enabled me to giveseveral counter-examples for the complexity problems. I have also applied the results in these papers to mywork on the complexity of the inference problem. This complexity work was stated by NSA (NationalSecurity Agency) to be a significant development in database security in 1990 (Proceedings NationalComputer Security Conference). I am now applying the results to the privacy problem. Several papers werepublished in the Journal of Computer and Systems Sciences and the Notre Dame Journal of Formal Logicbetween 1980 and 1993.Area 2: Secure Data ManagementMy research in information security and secure database systems started in 1985 and still continues.Around 70% of my publications are in this area. This work has had a major impact on the researchcommunity, as well as on the commercial and government communities. I have been invited to givenumerous keynote addresses on my research, as well as advice to the government on information security.My earlier contributions have been on secure relational databases, secure object databases, securedistributed databases and the inference problem. My research in the early 2000s was on secure XMLdatabases, privacy constraint processing, and secure sensor information management. My current researchis discussed in Section 17.2. A summary of my research between 1985 and 2004 is given below.Secure Relational Systems: In the mid to late1980s, I was part of a team at Honeywell designing one ofthe prominent secure relational database systems. This system was called Lock Data Views (LDV) built ontop of a LOCK secure operating system. Issues investigated in this research had an impact on some of thecommercial products that were emerging in the late 1980s and early 1990s. We developed a securitypolicy, security model and designed modules for query, update, and metadata management. We alsodeveloped a multilevel relational data model.Secure Objects: I investigated security for object database systems based on MCC’s ORION. I was one ofthe first to carry out such an investigation. This work had a major impact on the secure database researchcommunity. Subsequently I published a policy, model and design of a system. I also examined the use ofobject models for designing secure systems.Secure Distributed Databases: In the early 1990s, I led a team and conducted research on securedistributed database systems. Algorithms for secure query processing and transaction management weredesigned. Prototypes were implemented. We connected systems in Massachusetts, Washington DC andNew Jersey and built applications. This was a very novel idea at that time. Simulation studies were alsocarried out on secure query and transaction processing.Inference Problem/Secure Deductive Databases: I was one of the first to conduct research on theinference problem and deductive databases and also created a logic for secure databases called NTML(Nonmonotonic Typed Multilevel Logic). I also proved that the inference problem is unsolvable and thiswork was cited as one of the significant developments in database security in 1990 by Dr. John Campbellof NSA in the Proceedings of the 1990 National Computer Security Conference. I was successfully able touse my research on computability theory to study the complexity of the inference problem. I also led a teamthat conducted research on security constraint processing and designed and developed systems to processconstraints. We extended the prototypes to work in a distributed environment.Emerging Security Technologies: More recently my research has been on secure web data management.In particular I have examined security for XML databases and the semantic web. I am also investigating115

designs for privacy constraint processing which is along the lines of my work on the inference problem. Iam exploring some new directions such as security for sensor information systems.Other Information: Some of my research in secure databases was carried out in collaboration with theUniversity of Minnesota in the 1980s and I supervised MS and PhD students there. At MITRE I hadstudents working on my projects in secure databases from CMU and Cornell. I have also collaborated withthe University of Milan and supervised a PhD student. I mentored junior staff at the NSA at the request ofthe chief between 1991 and 1997 and wrote joint papers. I also reviewed university research proposals forNSA in this area between 1991 and 1996. I invented three US patents for MITRE on database inferencecontrol and have authored a very comprehensive book in database and applications security. I served onthe editorial board of the Journal of Computer Security for ten years and now serve on the editorial boardsof two of the major journals in security: ACM Transactions on Information Systems Security and IEEETransactions on Dependable and Secure Computing. In addition, I serve on the editorial and advisoryboards of four other security journals. My research in secure databases has also resulted in being elected aFellow of IEEE, AAAS and the British Computer Society. I received the IEEE CS 1997 TechnicalAchievement award for this work and was also quoted by Silicon India as one of top seven technologyinnovators of South Asian origin (other six are from Stanford, Berkeley, MIT, NASA, HP Labs andPARC). Several articles have appeared in IEEE Computer, IEEE Transactions on Knowledge and DataEngineering, ACM OOPSLA, Journal of Object-Oriented Programming, Computers and Security Journal,Data and Knowledge Engineering, and Journal of Systems and Software.Area 3: Dependable Data ManagementDistributed Systems: I believe strongly that to carry out security research one needs a good understandingof systems. Therefore, while conducting security research since 1985, I have also worked in systemsincluding database systems, distributed systems and networks. Some of my early work with the Universityof Minnesota in the 1980s was on distributed fault tolerant systems. We worked on binary tree task modelsfor fault tolerant computing. I supervised PhD students in this area. While at Honeywell, I spent part of mytime designing a network operating system for space station networks. Prior to Honeywell, I had over 2years of product development experience with CDCNET at Control Data Corporation.Survivable Real-time Object Systems: Between 1993 and 2000 I worked with a team at MITRE and theUniversity of Rhode Island conducting research for next generation AWACS (Airborne Warning andControl System). My goal was to integrate my security research with real-time processing and faulttolerance techniques to build survivable systems. We designed and developed an infrastructure and datamanager based on objects for next generation AWACS and transferred the technology to Air Forceprograms. We also investigated aspects of integrating security, real-time processing and fault toleranceissues. I led the real-time information management part of the project and also helped found the real-timeobject request broker group at the Object Management Group. We were the first to propose real-timeaspects for Object Request Brokers in 1994. We continued our investigation on real-time CORBA and alsoinvestigated scheduling for real-time middleware. We also designed and developed new concurrencycontrol algorithms for real-time object databases. This research had a major impact not only on Air Forceprograms but also on other DoD programs. We influenced the standards community, the commercialcommunity (for real-time CORBA) and the research community (e.g., real-time concurrency control). Ialso supervised MS and PhD students in this area from University of Rhode Island and North EasternUniversity. Several papers on fault tolerant and real-time computing were published including articles inIEEE Transactions on Parallel and Distributed Systems, IEEE Transactions on Knowledge and DataEngineering, IEEE Transactions on Software Engineering, IEEE Symposium of Object-Oriented Real-timeComputing, Real-time Systems Journal, IEEE Network, VLDB Conference, and Computer SystemsScience and Engineering.Area 4: Data and Information Management116

Research and Technology Transfer in Data Management: During the mid to late 1980s while atHoneywell Computer Sciences Center, I worked with a team on a number of research projects funded bythe commercial divisions. In one effort we developed an application generator toolkit to help the residentialcontrol division programmers develop database applications. In another effort, we explored the use ofexpert systems technology for designing process control systems such as Honeywell’s TDC3000 forIndustrial Automation division. We also designed and developed a distributed data dictionary system forHoneywell’s Residential control division. While my main research has been in data and applicationssecurity, I have a solid background in database systems, as I believe strongly that to conduct securityresearch in data management, one needs a good understanding of database systems.Data, Information and Knowledge Management: At MITRE, in the mid to late 1990s and early 2000, Imanaged a research group in Information Management (which included data management, multimedia,information management, data mining and knowledge management) for several years. I also advised thegovernment and MITRE on data/information management and wrote five books in the field for technicalmanagers. I managed university research programs for the Intelligence Community for six years. Severaljournal and conference papers were published in Knowledge and Process Management Journal, ComputerStandards and Interface Journal and the IEEE Data Engineering Conference. I also served on the editorialboard of IEEE Transactions on Knowledge and Data Engineering for four years. Having a strong systemsbackground has helped my security research a great deal as security is not a stand-alone field and has to beintegrated with systems.Area 5: Information Technologies for Homeland SecuritySince 9/11 I have been very active at NSF on interagency research in homeland security. In particular, Ihave set the direction for data mining for counter-terrorism and gave keynote presentations at the WhiteHouse and the United Nations. I consulted for DHHS (Health and Human Services) on bioterrorism andalso wrote a book on data mining for counter-terrorism. I am also very aware of privacy concerns and aspart of my research on information security, I am addressing privacy. I will continue to contribute tohomeland security areas. I am using my expertise in areas such as data security, real-time systems and datamining and theory to investigate problems in national security. Also, to get a better understanding ofterrorist behavior, I completed the certification in terrorism studies at University of St. Andrews inScotland in Summer 2010.117

Section 19: PROFESSIONAL ACTIVITIESEditor-in-ChiefComputer Standards and Interface Journal, June 2005 – January 2009Editorial BoardsJournal of Computer Security, 1990 – 2000IEEE Transactions on Knowledge and Data Engineering, 1996 – 2000Computer Standards and Interfaces, 1993 – 2005ACM Transactions on Information Systems Security, 2004 – 2007IEEE Transactions on Secure and Dependable Computing, 2004 – 2010Journal of Distributed Sensor Networks, 2004 –Journal of Computer Science and Network Security, 2006 –Journal of Information and Computer Security, 2005 –Journal of Information Security and Privacy, 2006 –Very Large Database Journal, 2007 – 2011Advisory BoardsPurdue University, Computer Science Department, 2004 – 2006Journal of Privacy Technologies, 2004 –Journal of Computer Security, 2000 –IASTED, 2001 – 2004General Conference Chair/Co-ChairIEEE WORDS Conference, Rome, Italy, January 2001IFIP Data Integrity and Control Conference, Warrenton, VA, November 2005Intelligence and Security Informatics, ISI, San Diego, CA, May 2006Secure Knowledge Management, Dallas, TX, November 2008Intelligence and Security Informatics, ISI, Dallas, TX, June 2009NSF Workshop on Data and Applications Security, Arlington, VA, February 2009Program Chair/Co-Chair1. IFIP Database Security Conference, Vancouver, Canada, August 1992 (Chair)2. ACM OOPSLA Conference Workshop on Secure Object, Washington DC, Sept 1993 (Co-chair)3. ACM Multimedia Conference Workshop on Multimedia Data, San Francisco, CA, October 1994(Co-chair)4. ACM OOPSLA Conference Workshop on Objects in Healthcare, Portland, OR, October 1994 (Cochair)5. IEEE Workshop on Multimedia Database Systems, Blue Mountain Lake, NY, August 1995 (Cochair)6. ACM OOPSLA Conference Workshop on Objects in Healthcare, Austin, TX, October 1995 (Cochair)7. ACM Multimedia Conference Workshop on Multimedia Database, San Francisco, CA, November1995 (Co-chair)8. IEEE Metadata Conference, Silver Spring, MD, April 1996 (Founding Chair)9. ACM OOPSLA Conference Workshop on Objects in Healthcare, San Jose, CA, October 1996 (Cochair)10. Federal Data Mining Symposium, Washington DC, December 1997 (Founding Co-Chair)11. IEEE Multimedia Database Workshop, Dayton, OH August 1998 (Co-chair),12. IEEE COMPSAC Conference, Vienna, Austria, 1998 (Co-chair)118

13. IEEE WORDS Workshop, Santa Barbara, CA, January 1999 (Chair)14. IEEE ISORC, Newport Beach, CA, March 2000 (Co-chair)15. IFIP Database Security Conference, Amsterdam, Netherlands, August 2000 (Primary Co-chair)16. CODATA Symposium on Integrating Heterogeneous Data, Stressa Italy, October 2000 (Co-chair)17. IEEE ISADS Conference, Dallas, TX, March 2001 (Chair)18. IEEE COMPSAC Conference Workshop on Web Security, Oxford, UK, August 2002 (Co-chair)19. IEEE ISORC, Korea, April 2006 (Co-chair)20. ACM SACMAT Conference, Sophia Antipolis, France, June 2007 (Chair)21. ICDE Secure Semantic Web Workshop, Mexico, April 2008 (Co-chair)22. ICWS Security Workshop, Los Angeles, CA, July 2009 (Co-chair)23. PASSAT, Vancouver, Canada, August 2009 (Chair)24. Indo-US Summit in Infrastructure Security, Bangalore, January 2010 (Co-chair)Program Vice Chair and/or Special Roles1. IEEE ICDE Conference, Mexico, 2008, Vice Chair for Security2. IEEE ICDE Conference, Sydney, 1999, Panel Chair3. Computer Security Applications Conference, 1990, Chair, Database Security TrackProgram Committee Member (Sample, not a complete list)1. IEEE Local Area Networks Conference, Minneapolis, MN, October 19872. ACM Computer and Communications Security Conference, Fairfax, VA, November 19943. ACM SAC 1994, Phoenix, AZ, March 19944. ACM SAC 1995, Nashville, TN, February 19955. IEEE ICECCS Conference, Ft. Lauderdale, FL, October 19956. ACM SIGMOD Conference Workshop on Data Mining, Montreal, Canada, June 19967. Pacific Workshop on Distributed Multimedia Systems, Hong Kong, June 19968. IEEE ICECCS, Montreal, Canada, October 19969. IEEE WORDS Workshop, Newport Beach, CA, February 199710. Rough Sets and Soft Computing Workshop, Raleigh, NC, March, 199711. Pacific Workshop on Distributed Multimedia Systems, July 199712. Real-time Database Systems Workshop, Burlington, VT, September 199713. IEEE COMPSAC, Bethesda, MD, August 199714. Compugraphics and Visualization Conference, Algarve, Portugal, December 199715. IEEE ICDE, Orlando, FL, February 199816. IEEE ISORC, Kyoto, Japan, April 199817. PAKDD, Melbourne, Australia, April 199818. Real-time Systems Applications Conference, Denver, CO, June199819. Euro micro Workshop on Multimedia and Communications, Vesteras, Sweden, August 199820. ASSET, Dallas, TX, March 199921. IEEE ISADS, Tokyo, Japan, March 199922. DASFAA, Taiwan, April 199923. Federal Data Mining Symposium, McLean, VA, March 199924. IEEE COMPSAC, Tempe, AZ, October 199925. IEEE WORDS 1999F, Monterey, CA November 199926. E-Commerce and Web-based Information Systems Workshop, San Jose, CA, April 199927. PAKDD, Beijing, China, April 199928. Federal Data Mining Symposium, Washington DC, March 200029. PAKDD, Kyoto, Japan, April 200030. ACM CCS Workshop on E-Commerce Security, Athens, Greece, November 200031. IEEE ISORC, Magdeberg, Germany, May 2001119

32. IEEE COMPSAC, Chicago, IL, October 200133. International Workshop on Multimedia Middleware, Ottowa, Canada, November 200134. IEEE FTDCS, Bologna, Italy, November 200135. IEEE WORDS, San Diego, CA, January 200236. IASTED Applied Informatics, Innsbruck, Austria, February 200237. PAKDD Workshop on Rough Sets and Data Mining, Taiwan, May 200238. IEEE ISORC, Washington DC, May 200239. IEEE ICDM, 2002, Maebashi City, Japan, December 200240. ACM SACMAT, Monterey, CA, June 200241. Second Semantic Web Symposium, Sardinia, Italy, June 200242. IEEE COMPSAC, Oxford, UK, August 200243. COOPIS, Irvine, CA, October 200244. IEEE ICTAI 2002, Crystal City, VA, November 200245. IFIP Integrity and Control Conference, Bonn, Germany, November 200246. NSF/NIJ Symposium on Security Informatics, Tucson, AZ, June 200347. IASTED Applied Informatics, Innsbruck, Austria, February 200348. IEEE ISADS, Pisa, Italy, April 200349. IEEE ISORC, Japan, May 200350. IFIP Data Security, Colorado Springs, CO , August 200351. IEEE WORDS 2003F, Capri Island, Italy, October 200352. IFIP Integrity and Control Conference, Lausanne, Switzerland, November 200353. ACM Computer and Communications Security, Washington DC, October 200354. IEEE ICTAI, Sacramento, CA, November 200355. IEEE COMPSAC, Dallas, TX, November 200356. IFIP Database Security Conference, Estes Park, CO, August 200357. IEEE ISORC, Vienna, Austria, May 200458. NSF/NIJ Symposium on Security Informatics, Tucson, AZ, June 200459. ACM SACMAT, Yorktown Heights, NY, June 200460. ACM SIGMOD Workshop on Databases in Virtual Organizations, Paris, France, June 200461. IFIP Database Security Conference, Sitges, Spain, July 200462. DEXA Workshop on Web Security, Zaragoza, Spain, August 200463. DEXA Workshop on Trust and Privacy in Digital Business, Zaragoza, Spain, August 200464. IEEE COMPSAC, Hong Kong, September 200465. IEEE SRDS, Florianapolis, Brazil, October 200466. IEEE ISADS, Chengdu, China, March 200567. IEEE ICDE, Tokyo, Japan, April 200568. ACM SACMAT, Stockholm, Sweden, June 200569. ACM SIGMOD, Baltimore, MD, June 200570. IEEE Distributed Systems in Sensor Systems, Marina del Rey, CA, July 200571. IFIP Database Security Conference, Storrs, CT, August 200572. Privacy in Data Mining Workshop, November 200573. ACM SACMAT, Lake Tahoe, CA, June 200674. ACM SIGKDD, Philadelphia, PA, August 200675. IFIP Database Security Conference, Sophia Antipolis, France, August 200676. IEEE COMPSAC, Chicago, IL, September 200677. IEEE SRDS, London, England, October 200678. ISWC, Montreax, Switzerland, October 200679. CIKM, Arlington, VA, November 200680. Privacy in Data Mining Workshop, December 200681. ACM SIGKDD, San Jose, CA, August 2007120

82. AAAI, Vancouver, BC, Canada, July 200783. IEEE POLICY, Bologna, Italy, June 200784. IFIP Database Security Conference, Redondo Beach, CA, July 200785. IEEE POLICY, Palisades, NY, June 200886. ACM SACMAT, Estes Park, CO, June 200887. ASIACCS, Sydney, Australia, March 200988. IEEE ICDE, Shanghai, China, March 200989. ACM SACMAT, Stresa, Italy, June 200990. ICWS, Los Angeles, CA, July 200991. DHS/CPS Workshop, 200992. IEEE Globecom, Honolulu, HI, November – December, 200993. IEEE ACSAC, Honolulu, HI, December 200994. IEEE ACSAC, Austin, TX December 201095. COCOA, Big Island Hawaii, December 201096. ACM CODASPY 2011, San Antonio, TX 201197. ASIACCS, Hong Kong 201198. IEEE ISADS 2011(I am compiling a list of all conferences I served as program committee member)Other Boards and Activities1. Member, National Academy Panel on Protecting Children from Inappropriate Content on theInternet, 2000 (Chair, Hon. Dick Thornburgh)2. Vice Chair, AF SAB Panel on Migrating Legacy Databases, 20003. Member, National Academy Workshop on GIS, 2001 (participated from NSF)4. Member, National Academy Panel on Information Fusion and Counter-terrorism, 2002 (participatedfrom NSF; Chair: T. Mitchell)5. Member, Curriculum Committee, K-6, 7-12, USGIF, 2006 (Geospatial Intelligence)6. IEEE Distinguished Lecturer (2002 – 2005)7. IEEE Conferences and Tutorials Board (1997 – 1998)8. NSF Panel Member: Oct. 1992, Dec. 1994 (twice), Jan. 1996, Nov. 1998, May 1999, May 2000,Dec 2000, Jan. 2001, Nov. 2005, Dec. 2007, March 2008, Nov. 2009, Dec. 20109. Reviewer for numerous journals and conferences including IEEE Computer, IEEE TSE, IEEETKDE, ACM TODS10. Steering committee for conferences and workshops11. Session chair for numerous conferences and workshops (100+)12. Reviewer of proposals for NSA-URP (1992, 1993, 1994), CMS-MDDS (1993, 1994, 1995)Internal ActivitiesCS Department Head Search Committee Chair, 2008 – 2009Engineering School Dean Search Committee Member, 2007 – 2008CS Faculty Search Committee, 2005 – PresentCS Tenure and Promotion Committee Chair, 2005 – 2006, 2006 – 2007, 2007 – 2008, 2010 – 2011CS Promotion Committee Member: 2009 – 2010University, Science School Dean Search Committee Member, 2006 – 2007University, Vice President for Business Search Committee Member, 2005 – 2006121

Section 20: MEDIA REPORTSTelevision InterviewsHow Technology Tracks Most Of What You Dohttp://www.the33tv.com/about/station/newsteam/kdaf-how-technology-tracks-much-ofwhat-you-do-20111109,0,7814325.storyFacebook Privacyhttp://www.the33tv.com/news/kdaf-facebook-privacy-story,0,5566137.storyCyber Securityhttp://www.the33tv.com/news/kdaf-jim-cyber-czar-story,0,571554.storyExternal ArticlesThuraisingham receives IEEE Computer Society’s 1997 Technical Achievement Award;IEEE Computer Magazine, October 1997http://ieeexplore.ieee.org/stamp/stamp.jsp?tp=&arnumber=625320Managing the Web, Silicon India, May 2002 (on Leading Seven Technology Innovators ofSouth Asian Origin in USA)http://www.siliconindia.com/magazine/articledesc.php?articleid=HPK497612166&errid=7Security Beat, National Defense Magazine, 2004http://www.nationaldefensemagazine.org/archive/2004/July/Pages/Security_Beat3512.aspxTaking a Byte out of Cyber Crime, Dallas Morning News, Sunday Edition, February 26,2005Dr. Bhavani Thuraisingham, AFCEA-PDC Instructor Profile, SIGNAL Magazine,February 2005The University of Texas at Dallas, Faculty profile, June 2005, December 2005http://www.utdallas.edu/profiles/thuraisingham.htmlThe Terrorist Hunter, D-Magazine, July 2005 (Monthly Magazine for DFW)http://www.dmagazine.com/Home/2005/07/01/Pulse.aspx?p=1Cyber Security, DFW Metroplex Technology Magazine, January 2006Lonely at the Top, Dallas Morning News Education Supplement, February 22, 2006The Semantic Web, Deep in the Heart of Texas, Semanticweb.com, November 19, 2008http://semanticweb.com/the-semantic-web-deep-in-the-heart-of-texas_b195Air Safety Data Mining Research Ongoing (Aviation Safety Week), July 14, 2008122

http://findarticles.com/p/articles/mi_m0UBT/is_27_22/ai_n27916054/Seminar at Purdue University, Video Presentationhttp://www.cerias.purdue.edu/news_and_events/events/security_seminar/flash.php?uid=ckjq5ef1oaga6g2kquu42f7350@google.comAFOSR-Funded Initiative Creates More Secure Environment for Cloud Computinghttp://www.wpafb.af.mil/news/story.asp?id=123209377Raytheon Enters New Arena, Dallas Business Journal, October 22, 2010http://www.bizjournals.com/dallas/print-edition/2010/10/22/raytheon-enters-newarena.htmlMTBC Supports Cloud Computing Trend With New Special Interest Grouphttp://www.metroplextbc.org/index.php?src=news&refno=56&category=Latest%20NewsMassacre Forces New Look at Security in Europehttp://news.yahoo.com/massacre-forces-look-security-europe-102740973.htmlAccuvant Launches Advisory Boardhttp://www.reuters.com/article/2011/09/13/idUS195401+13-Sep-2011+BW20110913$$517704580Cyber Center Joins Data Security Efforthttp://www.insideindianabusiness.com/newsitem.asp?ID=51155UT Dallas Press ReleasesNSF Grant Funds Search for Ways to Ensure Data Authenticityhttp://www.utdallas.edu/news/2011/12/12-14651_NSF-Grant-Funds-Search-for-Ways-to-Ensure-Data-Aut_article-wide.htmlResearcher Seeks Ways to Keep Old Data Securehttp://www.utdallas.edu/news/2011/11/14-14021_Researcher-Seeks-Ways-to-Keep-Old-Data-Secure_article.htmlNSF Funds Search for New Computer Virus Defensehttp://www.utdallas.edu/news/2011/8/29-12341_NSF-Funds-Search-for-New-Computer-Virus-Defense_article.htmlComputer Scientist Receives Prestigious Degree from University of Bristolhttp://ecs.utdallas.edu/news-events/news/thuraisingham-degree.html123

Investment in Cloud Computing Research Pays Offhttp://www.utdallas.edu/news/2011/4/19-10311_Investment-in-Cloud-Computing-Research-Pays-Off_article.htmlScholars to Help Fortify Nation's Cyberdefenseshttp://www.utdallas.edu/news/2010/9/29-5961_Scholars-to-Help-Fortify-Nations-Cyberdefenses_article.htmlGrants Further Bolster Cybersecurity Researchhttp://www.utdallas.edu/news/2010/8/25-5121_Grants-Further-Bolster-Cybersecurity-Research_article.htmlTeam Releases Tools for Secure Cloud Computinghttp://www.utdallas.edu/news/2010/8/2-4651_Team-Releases-Tools-for-Secure-Cloud-Computing_article.htmlUT Dallas Computer Scientist Receives Prestigious Honorhttp://ecs.utdallas.edu/newsandevents/cs-award-6-10.htmlProfessor Delivers Keynote Address on Stream Mininghttp://ecs.utdallas.edu/newsandevents/Khankeynoteaddress.htmlLatest Computer Threat Could Be Worst Yethttp://www.utdallas.edu/news/2010/5/20-3571_Latest-Computer-Threat-Could-Be-Worst-Yet_article.htmlCyber Security Center Offers Data Mining Toolshttp://www.utdallas.edu/news/2010/01/26-003.phpProject Seeks to Safeguard Privacy of Genomics Datahttp://www.utdallas.edu/news//2009/12/02-003.phpResearchers Help Ensure Security of Military Logisticshttp://www.utdallas.edu/news//2009/10/20-002.phpProf Warns of Risks Hiding on Social Network Siteshttp://www.utdallas.edu/news//2009/10/07-003.phpSmarter Searches: Technology Merges Images, Data and Knowledgehttp://www.utdallas.edu/news/2009/04/10-001.phpAdvances in Data Safety Drawing Wider Attentionhttp://www.utdallas.edu/news/2009/03/25-002.phpNSF Award Funds Data-Privacy Research Projecthttp://www.utdallas.edu/news/2009/02/09-001.php124

NSF Grants to Help Create Next-Generation Webhttp://www.utdallas.edu/news/2008/10/08-003.phpSecurity Researcher Lands Defense Scholarshiphttp://www.utdallas.edu/news/2008/09/25-003.phpProf Gives Keynote Speech on Data Mining and Privacyhttp://www.utdallas.edu/news/2008/09/04-002.phpUT Dallas Leads $2.2 Million Effort to Build Secure Information Grid for the U.S. Air Forcehttp://www.utdallas.edu/news/2008/08/12-001.phpData Mining for Flight Safetyhttp://www.utdallas.edu/news/2008/07/07-002.phpUT Dallas Researchers to Play Key Role in $7.5 Million Department of Defense MURIhttp://www.utdallas.edu/news/2008/03/25-002.phpResearcher Lands Computer Security Grant from Air Forcehttp://www.utdallas.edu/news/2007/11/18-002.htmlCyber Security Research Center at UT Dallas Tops $1 Million in Fundinghttp://www.utdallas.edu/news/archive/2007/09-11-001.htmlCyber Security Conference Planned For April 20-21 at U. T. DallasSymposium to Feature Leading Researchers, Policymakershttp://www.utdallas.edu/news/archive/2005/security-conference.htmlCyber Security Expert Joins the University of Texas at Dallashttp://www.utdallas.edu/news/archive/2004/cyber-security.htmlMITRE Articles1. MITRE Matters Short Write-ups on AchievementsMITRE has a strong showing at AFCEA DoD Database ColloquiumPress releases 1994, 1995, 19962. Patent awards, MITRE MattersSeptember 1995, November 19963. Author of the Month, MITRE MattersJuly 1997, April 19994. Uniquely MITRE, MITRE Matters June 2000 (feature article)125

5. I Really Want to be Challenged, MITRE Matters February 2003 (feature)6. MITRE Internal News Releases on IEEE Fellow, AAAS Fellow among others126

SECTION 21. CYBER SECURITY RESEARCH CENTER ANDAFFILIATED LABSCyber Security Research Center (Bhavani Thuraisingham)http://csrc.utdallas.edu/http://csepi.utdallas.edu/Data Security and Privacy Lab (Murat Kantarcioglu)http://cs.utdallas.edu/dspl/cgi-bin/index.phpData Mining Lab (Latifur Khan)http://www.utdallas.edu/~lkhan/dmlab.htmlSecure Systems and Languages Lab (Kevin Hamlen)http://www.utdallas.edu/~hamlen/index.htmlSecurity Analysis and Information Assurance LabCloud Computing LabDigital Forensics Labhttp://csrc.utdallas.edu/Facilities.htmlS3 (System and Software Security) Lab (Zhiqiang Lin)http://www.utdallas.edu/~zhiqiang.lin/s3.html127