Dawn Song

Associate Professor

Research Areas

• Operating Systems & Networking (OSNT)
• Programming Systems (PS)
• Security (SEC)

Research Centers

• Team for Research in Ubiquitous Secure Technology (TRUST)

Biography

Dawn Song is an Assistant Professor at University of California, Berkeley. She obtained her PhD in Computer Science from UC Berkeley (2002). Prior to joining UC berkeley, she was an Assistant Professor at Carnegie Mellon Univeristy from 2002 to 2007. Her research interest lies in security and privacy issues in computer systems and networks. She is the author of more than 60 research papers in areas ranging from software security, networking security, database security, distributed systems security, to applied cryptography. She is the recipient of various awards and grants including the NSF CAREER Award, the IBM Faculty Award, the George Tallman Ladd Research Award, the Sloan Award, and the Best Paper Award in USENIX Security Symposium.

Selected Publications

• J. Caballero, Z. Liang, P. Poosankam, and D. Song, "Towards Generating High Coverage Vulnerability-Based Signatures with Protocol-Level Constraint-Guided Exploration.," in Proceedings of the 12th International Symposium on Recent Advances in Intrusion Detection, September 2009, 2009.
• A. Barth, J. Weinberger, and D. Song, "Cross-Origin JavaScript Capability Leaks: Detection, Exploitation, and Defense.," in Proceedings of USENIX Security Symposium, August 2009., 2009.
• P. Saxena, P. Poosankam, S. McCamant, and D. Song, "Loop-Extended Symbolic Execution on Binary Programs.," in Proceedings of the ACM/SIGSOFT International Symposium on Software Testing and Analysis (ISSTA), July 2009., 2009.
• J. Newsome, S. McCamant, and D. Song, "Measuring Channel Capacity to Distinguish Undue Influence.," in Proceedings of the Fourth ACM SIGPLAN Workshop on Programming Languages and Analysis for Security (PLAS), June 2009, 2009.
• A. Barth, J. Caballero, and D. Song, "Secure Content Sniffing for Web Browsers or How to Stop Papers from Reviewing Themselves.," in Proceedings of the IEEE Symposium on Security and Privacy, May 2009., 2009.
• Y. Nadji, P. Saxena, and D. Song, "Document Structure Integrity: A Robust Basis for Cross-site Scripting Defense," in Network & Distributed System Security Symposium (NDSS), 2009.
• D. Gao, M. K. Reiter, and D. Song, "BinHunt: Automatically Finding Semantic Differences in Binary Programs.," in Proceedings of the 4th International Conference on Information Systems Security, December 2008., L. Chen, M. D. Ryan, and G. Wang, Eds., 2008.
• D. Song, D. Brumley, H. Yin, J. Caballero, I. Jager, M. Gyung Kang, Z. Liang, J. Newsome, P. Poosankam, and P. Saxena, "BitBlaze: A New Approach to Computer Security via Binary Analysis," in Proceedings of the 4th International Conference on Information Systems Security, 2008.
• D. Brumley, J. Caballero, Z. Liang, J. Newsome, and D. Song, "Towards automatic discovery of deviations in binary implementations with applications to error detection and fingerprint generation (Best Paper Award)," in Proc. 16th USENIX Security Symp. (Security '07), Berkeley, CA: USENIX Association, 2007, pp. 213-228.
• J. Tucek, J. Newsome, S. Lu, C. Huang, S. Xanthos, D. Brumley, Y. Zhou, and D. Song, "Sweeper: A lightweight end-to-end system for defending against fast worms," ACM SIGOPS Operating Systems Review, vol. 41, no. 3, pp. 115-128, June 2007.
• E. Shi, J. Bethencourt, T. H. Chan, D. Song, and A. Perrig, "Multi-dimensional range query over encrypted data," in Proc. 2007 IEEE Symp. on Security and Privacy (S&P '07), Los Alamitos, CA: IEEE Computer Society, 2007, pp. 350-364.
• D. Brumley, T. Chiueh, R. Johnson, H. Lin, and D. Song, "RICH: Automatically protecting against integer-based vulnerabilities," in Proc. 14th Annual Network & Distributed System Security Symp. (NDSS '07), Reston, VA: Internet Society, 2007, pp. 13 pg.
• S. Venkataraman, J. Caballero, P. Poosankam, M. G. Kang, and D. Song, "FiG: Automatic FIngerprint Generation," in Proc. 14th Annual Network & Distributed System Security Symp. (NDSS '07), Reston, VA: Internet Society, 2007, pp. 16 pg.
• H. Chen, A. Perrig, B. Przydatek, and D. Song, "SIA: Secure Information Aggregation in sensor networks," J. Computer Security: Special Issue on Security of Ad Hoc and Sensor Networks, vol. 15, no. 1, pp. 69-102, Jan. 2007.
• S. Venkataraman, J. Caballero, D. Song, A. Blum, and J. Yates, "Black box anomaly detection: Is it Utopian?," in Proc. 5th Workshop on Hot Topics in Networks (HotNets-V), New York, NY: The Association for Computing Machinery, Inc., 2006, pp. 127-132.
• J. Newsome, D. Brumley, J. Franklin, and D. Song, "Replayer: Automatic protocol replay by binary analysis," in Proc. 13th ACM Conf. on Computer and Communications Security (CCS '06), A. Juels, R. N. Wright, and S. De Capitani di Vimercati, Eds., New York, NY: The Association for Computing Machinery, Inc., 2006, pp. 311-321.
• H. Chan, A. Perrig, and D. Song, "Secure hierarchical in-network aggregation in sensor networks," in Proc. 13th ACM Conf. on Computer and Communications Security (CCS '06), A. Juels, R. N. Wright, and S. De Capitani di Vimercati, Eds., New York, NY: The Association for Computing Machinery, Inc., 2006, pp. 278-287.
• A. Yaar, A. Perrig, and D. Song, "StackPi: New packet marking and filtering mechanisms for DDoS and IP spoofing defense," IEEE J. Selected Areas in Communications, vol. 24, no. 10, pp. 1853-1863, Oct. 2006.
• D. Gao, M. K. Reiter, and D. Song, "Behavioral distance for intrusion detection," in Recent Advances in Intrusion Detection: Proc. 8th Intl. Symp. (RAID 2005). Revised Papers, A. Valdez and D. Zamboni, Eds., Lecture Notes on Computer Science, Vol. 3858, Berlin, Germany: Springer-Verlag, 2006, pp. 63-81.
• J. Newsome, B. Karp, and D. Song, "Paragraph: Thwarting signature learning by training maliciously," in Recent Advances in Intrusion Detection: Proc. 9th Intl. Symp. (RAID 2006), D. Zamboni and C. Kruegel, Eds., Lecture Notes in Computer Science, Vol. 4219, Berlin, Germany: Springer-Verlag, 2006, pp. 81-105.