Curriculum Vitae - The University of Texas at Dallas

More documents

Recommendations

Info

1980s and early 1990s by Oracle, Sybase, Informix and Ingres. This was a team effort with colleagues atHoneywell.Secure Query Processing: Paper #2 (IEEE Computer) describes secure query processing strategies.Essentially, I enhanced the query strategies developed by Lock Data Views and introduced ideas from thefield of logic and databases. I developed query strategies based on the re-writing principles. Various typesof policies were considered in the design. This paper was first submitted to the Hawaii InternationalConference on Systems Sciences in 1988 and won the best paper award. I was then invited to submit thejournal version of the paper to IEEE Computer which has the largest audience in computer science. Then,together with my colleague at the University of Minnesota and a student, this paper was enhanced andpublished in IEEE Computer.Secure Distributed Data Management: The third and fourth papers describe aspects of securedistributed database systems. In Paper #3 (Computers and Security Journal) I was the first to exploremultilevel security for distributed database systems. I designed a multilevel data model, query processingstrategies and transaction management strategies. This paper resulted in several research directionsincluding the algorithms I designed for both query and transaction management. One such algorithm andimplementation carried out together with a colleague at MITRE, is reported in Paper #4 (Journal ofSystems and Software). In particular, we developed a system that enforced multilevel security for queryprocessing in a distributed environment. We demonstrated the system by connecting secure datamanagement systems in Bedford, MA, McLean, VA and Fort Monmouth, NJ in 1991. Such an integrationwas novel at that time and the research was transferred to Army’s maneuver control systems.Secure Object Data Management: The next two papers (Paper #5 and #6) describe my work inmultilevel secure object database systems. Paper #5 (ACM OOPSLA) describes a widely cited securemodel for object database systems. This paper describes several security properties for the object model.Then these policies were incorporated into the design of the system and published in Paper #6 (Journal ofObject-Oriented Programming). Subsequently together with a colleague at MITRE, we developed proof ofconcept demonstrations of the design using the Object Store data management system in 1992. Thisresearch had an impact on several secure object data management systems’ research and developmentefforts by others. In addition, we also transferred the research to a system developed by OntosCorporation.Foundations of the Inference Problem: The next four papers describe my work on the Inferenceproblem. I have been commended for this work from researchers as well as government sponsors. In Paper#7 (Computer Security Foundations Workshop), I was the first to prove that the inference problem wasunsolvable and presented it at the 3 rd IEEE Computer Security Foundations Workshop. The paper did notappear in the proceedings as the paper was not publicly released in time for the workshop. This researchwas also quoted by Dr. John Campbell of the National Security Agency as the most significant research insecure data management system in 1990. His quote appeared in the Proceedings of the 1990 NationalComputer Security Conference.Inference Controllers: Once I proved that the inference problem was unsolvable, then I designed adatabase inference controller that handled policies during query, update and databases operations.Together with colleagues at MITRE, my design was implemented and published in Paper #8 (Data andKnowledge Engineering Journal). This was the first inference controller to be developed and a patent wasobtained. Our integrated inference controller processed some policies during database query, somepolicies during database updates and some policies during database design and this concept was novel atthat time. Then in Paper #9 (IEEE Transactions on Knowledge and Data Engineering), I designedalgorithms for extending the inference controller design to a distributed environment and that resulted inthe first distributed inference controller. Together with a colleague, this design was implemented. In thissystem users could pose queries from multiple sites, but the system would examine the policies across allthe sites and only give out information that the user was authorized to know. The inference controllerswere distributed and communicated with each other to process queries and updates.Designing Secure Applications: In Paper #10 (IFIP Data Security Conference), I looked at the inferencefrom a different angle. Here I tried to handle the problem when the application was designed. I used102
conceptual structures (e.g., semantic nets and conceptual graphs) to model the applications. Policies weretaken into consideration during the modeling phase. Then the reasoners used by semantic nets andconceptual graphs were applied to reason about the application and detect potential security violations.This was a novel idea at that time and spawned many avenues for subsequent research. Also as a backendto this reasoner, I designed an expert system for inference control. The implementation of this system wascarried out with a colleague at MITRE. A U.S. patent was obtained on this system.Logic for Secure Databases: Finally in Paper #11 (Computer Security Foundations Workshop) I appliedthe theory of logic and databases to multilevel databases. Since first order logic did not handle nonmonotonicreasoning and since non-monotonic logics at that time did not reason across security levels, Ideveloped a logic called NTML (Non-monotonic Typed Multilevel Logic) and subsequently designed amultilevel logic database system. The significance of this work is that the logical reasoner can be used toprocess queries and control unauthorized inferences. A U.S. patent was obtained on this system.1. Design of LDV - A Multilevel Secure Relational Database Management System, June 1990, IEEETransactions on Knowledge and Data Engineering, Vol. 2, No. 2, June 1990, (co-author: P.Stachour). Lead AuthorMy Contribution: This is a Honeywell Team effort. The principal members of the team includedPaul Stachour (Principal Investigator), Patricia Dwyer, Emmanuel Onuegbe, Tom Haigh andmyself. I designed both the update and metadata pipelines. Furthermore, I wrote the entire paperfrom the technical reports we published.2. Secure Query Processing Strategies, IEEE Computer, March 1989, Vol. 22, No. 3, (invited paper– co-authors: T. F. Keefe and W. T. Tsai). Co-Author (for the conference version I was the leadauthor)My Contribution: I designed the algorithms and write the initial paper for the conference bymyself. Because I had to leave on vacation I requested my colleague and his student to edit thepaper and submit. The paper received the best paper award. The journal version was anenhancement of the conference paper and the student Tom Keefe was mainly responsible for theenhancements.3. Multilevel Security Issues in Distributed Database Management Systems – II, Computers andSecurity Journal (Elsevier), Volume 10, No.8, December 1991. Sole AuthorMy Contribution: This is 100% my work.4. Design and Implementation of a Query Processor for a Trusted Distributed DatabaseManagement Systems, April 1993, Journal of Systems and Software (North Holland), Vol. 21,No. 1 (co-author: Harvey Rubinovitz).My Contribution: I designed the algorithms. Then my colleague Dr. Rubinovitz implemented thealgorithm. Together we designed the experiments. I wrote the paper from the technical reports.5. Mandatory Security in Object-Oriented Database Systems, October 1989, Proceedings of theACM Conference on Object-Oriented Programming, Systems, Languages and Applications(ACM OOPSLA) Conference, New Orleans, LA. Sole AuthorMy Contribution: This is 100% my work.6. Towards the Design of a Multilevel Secure Object-Oriented Database Management System,Journal of Object-Oriented Programming, Vol. 8, No. 3, p. 42 – 49, June 1995. Sole AuthorMy Contribution: This is 100% my work.7. Recursion Theoretic Properties of the Inference Problem in Database Security, June 1990,Presented at the 3rd IEEE Workshop on Foundations of Computer Security, Franconia, NH(public release was not obtained in time for proceedings; printed as MITRE Paper M291, May1990). Sole AuthorMy Contribution: This is 100% my work.103
Page 1:
Curriculum VitaeBhavani Thuraisingh
Page 5 and 6:
EXTERNALSection 2: MAJOR AWARDSBest
Page 7 and 8:
Section 3: SYNOPSIS OF RESEARCHMy r
Page 9 and 10:
the concepts in semantic nets and c
Page 11 and 12:
secure query processing for cloud.
Page 13 and 14:
Section 4: RESEARCH LEADERSHIPhttp:
Page 15 and 16:
Section 5: RESUME SUMMARYName:Dr. B
Page 17 and 18:
Army, NSA, and CIA as well as consu
Page 19 and 20:
Section 6: INDUSTRY/GOVERNMENT EXPE
Page 21 and 22:
management to discuss projects as w
Page 23 and 24:
Current (2004 - Present)The Univers
Page 25 and 26:
Object Databases (1 day course taug
Page 27 and 28:
Section 8: ACADEMIC RESEARCH SUPERV
Page 29 and 30:
Thesis Committees: Serving/served o
Page 31 and 32:
Section 9: RESEARCH FUNDINGI have o
Page 33 and 34:
PI: L. KhanAmount: $260,00020. Nati
Page 35 and 36:
3. CIA: As manager of fifteen resea
Page 37 and 38:
15. Multilevel Security Issues in D
Page 39 and 40:
48. E-Mail Worm Detection Using Dat
Page 41 and 42:
79. Information Demands Drive Data
Page 43 and 44:
2. Foundations of Multilevel Databa
Page 45 and 46:
32. Parallel Processing and Trusted
Page 47 and 48:
66. Privacy Preserving Data Mining,
Page 49 and 50:
99. Data Mining for Cyber Security
Page 51 and 52: 130. Object-oriented Implementation
Page 53 and 54: 161. XIMKON- An Expert Simulation a
Page 55 and 56: 194. Ontology Alignment Using Multi
Page 57 and 58: 225. RETRO: A Framework for Semanti
Page 59 and 60: 5. Inference Problem in Database Se
Page 61 and 62: I. JOURNAL SPECIAL ISSUES EDITEDSec
Page 63 and 64: 12. Proceedings ISI Conference, IEE
Page 65 and 66: Bhavani ThuraisinghamUTDCS-45-06UTD
Page 67 and 68: UTDCS-32-08A Practical Approach to
Page 69 and 70: UTDCS-27-11Towards the Design and I
Page 71 and 72: 29. A Seminar on Real-time Database
Page 73 and 74: 14. Concurrency Control in Real-tim
Page 75 and 76: 17. Data Management Systems Evoluti
Page 77 and 78: 54. Data Mining for National Securi
Page 79 and 80: 5. Recent Developments in Some Trus
Page 81 and 82: 44. Data Engineering Directions, IE
Page 83 and 84: 6. Towards a Global Multilevel Data
Page 85 and 86: 19. Object Technology for C4I Appli
Page 87 and 88: 59. Assured Cloud Computing, AFOSR
Page 89 and 90: 2. A Seminar on Secure Database Sys
Page 91 and 92: VIII. The University of Texas at Da
Page 93 and 94: 5. Secure Distributed Query Process
Page 95 and 96: Simulated algorithms for informatio
Page 97 and 98: 1. Geospatial Proximity Algorithm,
Page 99 and 100: Section 16: INTELLECTUAL PROPERTY A
Page 101: Section 17: DISCUSSION OF PUBLISHED
Page 105 and 106: 1990s, we designed and implemented
Page 107 and 108: inference problem. Back in the earl
Page 109 and 110: 9. A Semantic Web Based Framework f
Page 111 and 112: Policy management: While discretion
Page 113 and 114: Section 18: DISCUSSION OF COMPLETE
Page 115 and 116: Publications: Several journal publi
Page 117 and 118: Research and Technology Transfer in
Page 119 and 120: 13. IEEE WORDS Workshop, Santa Barb
Page 121 and 122: 82. AAAI, Vancouver, BC, Canada, Ju
Page 123 and 124: http://findarticles.com/p/articles/
Page 125 and 126: NSF Grants to Help Create Next-Gene
Page 127: SECTION 21. CYBER SECURITY RESEARCH
show all

Curriculum Vitae - The University of Texas at Dallas

Create successful ePaper yourself

Delete template?

Save as template?