NCSA | CS Dept | NSAC

Resume: Ragib Hasan

Ragib Hasan

---

Objective:

To explore research in trustworthy methods of communication and secure storage systems.

Education

2003-Present

• PhD Student, 5th Year, Computer Science
• Dissertation: Secure Provenance for Digital Objects
• University of Illinois at Urbana Champaign
• Advisor: Prof. Marianne Winslett , UIUC
• Co-Advisor: Prof. Radu Sion, SUNY - Stony Brook

2005

• Masters in Computer Science
• Thesis: Synergy: A Trust-aware, Policy-driven Information Dissemination Framework
• Advisor: Prof. Marianne Winslett, UIUC

2002

• B. Sc Engineering in Computer Science and Engineering,
• Bangladesh University of Engineering and Technology
• CGPA: 3.99/4.00
• Advisor: Prof. M. Kaykobad
• Graduated Summa-Cum-Laude in a class of 45 (and also in the entire university)

Research Experience

• May 2007 -Current: Secure Provenance Project, DAIS Group, UIUC CS Dept.
  • Developed a prototype for Secure Provenance for storage systems
• Summer 2007 - Software Engineering Internship, Google, Mountain View, CA
  • Designed and implemented a system for Delegated Authorization using permits, for use in secure Mash-ups.
• December 2004-May 2007: ResCUE Project, DAIS Group, UIUC CS Dept.
  • Developed a Trust-aware, policy-driven disaster management and situational awareness tool
  • Worked on flexible security policies for simpler trust management
• May 2004-Current: Storage Security and Survivability Group, NCSA.
  • Explored various methods for enhancing and extending storage security. Developed a detailed data-set for storage breach analysis.
• February 2004-May 2005: Radio Astronomy Imaging Group, NCSA.
  • Developed an automated code porting tool for legacy applications to the Babel/CCA framework.
• August 2003-January 2004: PABLO Research Group, UIUC CS Dept. Worked on SvPablo Performance Monitoring Suite
  • Developed statistical performance montioring tools (SvPablo)

Professional Service

• Program Committee:
  • IEEE IDCS 2008
  • ACM StorageSS 2005
• Web and Proceedings Chair:
  • ACM WPES 2008
• External Reviewer:
  • SIGMOD, VLDB, CCS, Policy, IFIP-TM, SSDBM, WWW, SACMAT, ESORICS, MSW, ICICT, iTrust, Reactivity on the Web/EDBT, WIA, ACSAC, IDCS, VLDB Journal.

Selected Publications

Journal

• A. J. Kemball, R. M. Crutcher, and R. Hasan, "A component-based framework for radio-astronomical imaging software systems", accepted for publication in Software: Practice and Experience (SP&E), Wiley, 2007.
  

Book Chapters

• Ragib Hasan, Marianne Winslett, Windsor Hsu, and Radu Sion, "Trustworthy Record Retention", in "The Handbook of Database Security: Applications and Trends", M. Gertz and S. Jajodia (editors), Springer Verlag 2007 (to appear)
  
• Dongyi Li, Will Winsborough, Ragib Hasan, and Marianne Winslett, "Trust Management", in "The Handbook of Database Security: Applications and Trends", M. Gertz and S. Jajodia (editors), Springer Verlag 2007 (to appear)
  

Conference / Workshops

• Ragib Hasan, Richard Conlan, Brian Slesinsky, Nandu Ramani, and Marianne Winslett, "Please Permit Me: Stateless Delegated Authorization in Mashups", Annual Computer Security Applications Conference (ACSAC), Anaheim, CA, December 2008. (acceptance 42/173=24.2%)
  
  
• Jodie P. Boyer, Lars E. Olson, Ragib Hasan, Nikita Borisov, Carl A. Gunter, and David Raila, ''Improving Multi-Tier Security Using Redundant Authentication'', in the First Computer Security Architecture Workshop (CSAW), in conjunction with ACM CCS, Alexandria, VA, November 2007.
  
• Ragib Hasan, Radu Sion, and Marianne Winslett, "Introducing Secure Provenance: Problems and Challenges'', in Workshop on Storage Security and Survivability (StorageSS 2007), in conjunction with ACM CCS 2007, Alexandria, VA, October 2007.
  
• Ragib Hasan, Marianne Winslett, and Radu Sion, "Requirements of Secure Storage Systems for Health-care Records", accepted for publication at the 4th VLDB Workshop on Secure Data Management (SDM), in conjunction with 33rd International Conference on Very Large Data Bases (VLDB), University of Vienna, Austria, September 2007.
  
• Ragib Hasan and William Yurcik, "Beyond Media Hype: Empirical Analysis of Disclosed Privacy Breaches 2005-2006 and a DataSet/Database Foundation for Future Work", in Workshop on the Economics of Securing the Information Infrastructure, October 23-24, 2006
  
• William Yurcik and Ragib Hasan, " Toward One Strong National Breach Disclosure Law - Justification and Requirements", in Workshop on the Economics of Securing the Information Infrastructure, October 23-24, 2006
  
• Ragib Hasan and William Yurcik, "A Statistical Analysis of Disclosed Storage Security Breaches", to appear in International Workshop on Storage Security and Survivability (StorageSS) in conjunction with 12th ACM Conference on Computer and Communications Security (CCS 2006) , October, 2006. [slides]
  
• Ragib Hasan, Marianne Winslett, "Synergy: A Trust-aware, Policy-driven Information Dissemination Framework", IEEE International Conference on Intelligence and Security Informatics (ISI 2006), San Diego, USA, May 23-24, 2006. [slides]
  
• Ragib Hasan, Suvda Myagmar, Adam J. Lee, and William Yurcik, " Toward a Threat Model for Storage Systems ," International Workshop on Storage Security and Survivability (StorageSS) in conjunction with 12th ACM Conference on Computer and Communications Security (CCS 2005) , November 11, 2005
  
• Ragib Hasan, William Yurcik, and Suvda Myagmar, "The Evolution of Storage Service Providers: Techniques and Challenges to Outsourcing Storage ," International Workshop on Storage Security and Survivability (StorageSS) in conjunction with 12th ACM Conference on Computer and Communications Security (CCS 2005) , November 11, 2005
  
• Ragib Hasan, Zahid Anwar, William Yurcik, Roy Campbell, "A Survey of Peer-to-Peer Storage Techniques for Distributed File Systems", IEEE International Conference on Information Technology (ITCC), Las Vegas, NV, April 2005
  
• Joseph Tucek, Paul Stanton, Elizabeth Haubert, Ragib Hasan, Larry Brumbaugh, and William Yurcik "Trade-offs in Protecting Storage: A Meta-Data Comparison of Cryptographic, Backup/Versioning, Immutable/Tamper-Proof, and Redundant Storage Solutions ," 22nd IEEE - 13th NASA Goddard Conference on Mass Storage Systems and Technologies (MSST) , Monterey CA USA, April 2005.
  
• Ragib Hasan, Joseph Tucek, Paul Stanton, William Yurcik, Larry Brumbaugh, Jeff Rosendale, and Roelof Boonstra, "The Techniques and Challenges of Immutable Storage for Applications in Multimedia," IS&T/SPIE International Symposium Electronic Imaging / Storage and Retrieval Methods and Applications for Multimedia (EI121) , San Jose CA USA, January 2005.

Technical Reports

• Ragib Hasan, Radu Sion, and Marianne Winslett, “Secure Provenance”, Stony Brook University Tech Report, TR-SB-NSAC-07-2007, November, 2007.
  
• William Yurcik, Cristina Abad, Ragib Hasan, Moazzam Saleem, and Shyama Sridharan, " UCLog+ : A Security Data Management System for Correlating Alerts, Incidents, and Raw data From Remote Logs ," ACM Computing Research Repository (CoRR) Technical Report cs.CR/0607111 , July 2006.

Projects

• FlexPolicies: Introducing flexibility in definition and evaluation of security policies
• visiResCUE: A Trust Aware Disaster Management System
• Synergy: A Trust-aware Policy-driven Information Dissemination Framework
• BreachDB: A database for storage breach incident analysis
• Threat modeling: A threat model for storage system security
• UCLog+ : A situational awareness tool for system breach / intrusion detection
• Prohori: A smart building intrusion detection and delegated access system

Awards / Honors

• Invited speaker: 3rd Annual Johurul Hoque-Al Muti Memorial Science Lecture, Society for the Popularization of Science, Dhaka, Bangladesh, January 17, 2007.
• Chancellor Award for highest CGPA in B.Sc among all departments, Bangladesh University of Engineering and Technology (BUET) , 2003 (Awarded by the Hon. Prime Minister of Bangladesh)
• Sharfuddin Gold Medal for highest CGPA in Computer Science and Engineering Department, BUET, 2003 (Awarded by the Hon. Prime Minister of Bangladesh)
• University Merit Scholarship, BUET, 1998-2002
• Dean's List, all 8 semesters of B.Sc, BUET 1998-2002
• Runner Up, National Computer Programming Contest, 2000
• Runner Up, ACM International Collegiate Programming Contest, Dhaka regional site, 2001
• 1st Merit Position among 150,000 examinees in Higher Secondary Certificate Examination (equivalent to US High School Graduation), Chittagong Education Board, 1996
• 4th Merit Position among 250,000 examinees in Secondary School Certificate Examination (equiv. to 10th grade), Comilla Education Board, 1994

Graduate courses

• CS498 Computer Security, CS598cag Advanced Computer Security, ECE598NB Privacy Enhancing Technologies, CS598yyz Information Storage Systems, CS523 Advanced Operating Systems, CS598ig Scattered and Distributed Systems, CS421 Programming Languages, CS433 Computer Architecture

Technical skills

• Programming: C, C++, Java, 80x86 assembly, Python, SQL, PHP, XML/XSLT
• Tools: ArcGIS, Apache

References

• Available upon request.