Fariba Khan

PhD Candidate
Department of Computer Science
University of Illinois at Urbana-Champaign
Email: fkhan2 AT [This State] . edu

Research Publications Awards Teaching CV

I am a PhD candidate at University of Illinois planning to graduate by Oct 2011. I am advised by Prof Carl Gunter and my dissertation is titled "Assuring Network Service with Integrity-Based Queuing". I had the rare opputunity to offer a course in security here at Illinois in Spring'11 – giving me breadth and depth in current topics.

RESEARCH

My interest is in Security and Networking. My thesis motivates having graded validity for packets and the the network providing graded service based on that information. I have also experimented with bandwidth-based DDoS defenses. My work on ABM in the domain of attribute-based system security puts emphasis on service-oriented or policy-based messaging and encryption, analysis of related threats and performance overhead. Detials of these projects are here.

PUBLICATIONS

Journal Articles

[1] Sanjeev Khanna, Santosh S. Venkatesh, Omid Fatemieh, Fariba Khan, and Carl A. Gunter. Adaptive selective verification: An Efficient Adaptive Countermeasure to Thwart DoS Attacks. Accepted In IEEE/ACM Transactions on Networking (ToN)

[2] Rakesh Bobba, Omid Fatemieh, Fariba Khan, Arindam Khan, Carl A. Gunter, Himunshu Khurana, and Manoj Prabhakaran. (First three authors in an alphabetic order) Attribute-Based Messaging: Access Control and Confidentiality. In ACM Transactions on Information and System Security (TISSEC), Vol 13 No. 4, Dec 2010. [pdf]

Refereed Conference and Workshop Articles

[3] Fariba Khan, Carl A. Gunter. Tiered Incentive for Integrity Based Queuing. In Workshop on the Economics of Networks, Systems, and Computation (NetEcon ’10), 2010, Vancouver, BC, Canada, (Co-located with OSDI ’10). [pdf] [bib]
[4] Fariba Khan. Network Assurance Using Bandwidth and Integrity Based Fairness. In the PhD Forum of Grace Hopper Celebration of Women in Computing, Sep 2010, Atlanta, USA.
[5] Sanjeev Khanna, Santosh S. Venkatesh, Omid Fatemieh, Fariba Khan, and Carl A. Gunter. Adaptive selective verification. In IEEE Conference on Computer Communications (INFOCOM ’08), 2008. [pdf] [bib]
[6] Rakesh. Bobba, Omid. Fatemieh, Fariba. Khan, Carl A. Gunter, and Himanshu Khurana. (First three authors in an alphabetic order) Using attribute-based access control to enable attribute-based messaging. In ACSAC ’06: Proceedings of the 22nd Annual Computer Security Applications Conference, pages 403–413, Washington, DC, USA, 2006. IEEE Computer Society. [pdf] [bib]

Theses

[7] Fariba Khan. Using Attribute-Based Access Control to Enable Attribute-Based Messaging. Master’s Thesis, University of Illinois at Urbana-Champaign, October 2006. [pdf] [bib]
[8] Fariba Khan. Cryptography Using Huﬀman Codes. Bachelor’s Thesis, Bangladesh University of
Engineering and Technology, April 2004.

AWARDS AND HONORARIES

2011	CRA-W Career Mentoring Workshop 2011. Travel Grant.
2011	USENIX NSDI Student Travel Grant.
2010	USENIX OSDI Student Travel Grant.
2008, 2010	Grace Hopper Conference. Student Travel Award. Sponsored by Yahoo.
2007-08	Graduate Student Outstanding Service Award, 2007-08. Awarded for service at UIUC CS Graduate Admission Committee
2005-06 & 2004-05	Sohaib and Sara-Abbasi Fellow, University of Illinois. Fellowship for outstanding students, providing one-year stipend of $20,000 and a full waiver of tuition. Awarded in two consecutive years.
2001-2003	Dean’s Choice Award, awarded for excellent performance over the academic year, BUET.
2000	University Merit Scholarship, awarded to outstanding freshman, BUET, 2000.

TEACHING

Instructor, Computer Security II, University of Illinois, Spring 2011
I have offered this course targeting advanced undergraduates who have a keen interest in topics of security. Twice a week I lecture on classic and recent research topics. The students are also proposing a prototype for a hospital information exchange underscoring the need for electronic health records with privacy and security constraints.

Teaching Assistant, Computer Security I & II, University of Illinois, 2007-2010
Selective lectures, guided class projects, wrote and graded exams.

2010 Spring, 2009 Spring, Computer Security II. Lab design and selective lectures: Security Policies(2), DDoS(3).
2009 Fall, Computer Security I, Lectures: Integrity Policies (Clark-Wilson, CISS, RBAC, ABAC).
2007 Spring, Computer Security Architecture. Lectures: Attribute-Based Systems, Identity on the Web, Intrusion Detection

Lecturer, AUST Bangladesh, Courses: Assembly Language, Digital Logic. 2004 Summer.
Lecturer, IICT BUET, Course: Data structures in C for non CS majors. 2002-2003.
Designed and co-taught the course with another instructor.

TEACHING LAB DESIGN

Health Information Exchange (HIE) Security. Spring 2011

This is a semester-long project for students to work on client-server and data security in a health information system. The HIE system allows various parties i.e. patients, caregivers and researchers, in the health-care system to exchange information securely. It also allows a later auditing of these interactions. The records are stored encrypted. Projects are evaluated based on the secure design of protocols, performance and innovation.

Denial-of-Service Analysis Using ns2. Spring 2009 and Spring 2010

This is also semester-long lab designed for advanced undergrads. Students used ns2 to write the network application ASV to defend against DDoS. They had to evaluate the design and experiment with spoofing, varying topology and traffic rates. Students learnt to built a network layer application, the effect of changes in network, both in topology and traffic and design interesting experiments.