Curriculum Vitae
Name : Yan Chen
aboyi9@r.postjobfree.com Web Page: http://www.cs.northwestern.edu/~ychen
Education
Ph.D. degree in Computer Science, University of California at Berkeley.
Dec. 2003
Advisor: Randy H. Katz, the United Microelectronics Corporation Distinguished Professor.
Thesis title: Towards a Scalable, Adaptive and Network-aware Content Distribution
Network.
May. 1998 M.S. degree in Computer Science, State University of New York at Stony Brook.
Advisor: Arie E. Kaufman, Distinguished Professor.
Thesis title: Physically Based Volume Graphics Manipulations for Medical Applications.
May 1995 Honored B.E. degree in Computer Engineering, Zhejiang University, P. R. China.
Advisor:
Jiaoying Shi, ex-Director of the National Lab of Computer Aided Design and
Computer Graphics (CAD&CG).
B. E. thesis title: PVM-G: Parallel Graphics Design Environment.
Positions, Training, and Experience
Sep. 2009PresentAssociate Professor, Department of Electrical Engineering and
Computer Science,
Northwestern University
.
Visiting Professor, Department of Computer Science and Technology, Tsinghua
Dec. 2010Sep. 2011University, China.
Assistant Professor, Department of EECS, Northwestern University.
Jan. 2004Aug. 2009
AT&T Shannon Lab, Florham Park, NJ, Researcher Summer Intern. Developed
June 2002Oct. 2002
research on network monitoring and anomaly detection on high-speed routers
Lumeria Inc., Berkeley CA, Software Engineer Summer Intern. Developed research on
May 1999Aug. 1999
an XML based online transaction system.
Publications
Based on Google Scholar, my papers have been cited for over 3,600 times.
Invited Book Chapters
1. Yao Zhao and Yan Chen, Algebraic Approaches for Scalable End-to-End Monitoring and
Diagnosis, invited book chapter for Algorithms for Next Generation Network
Architecture,
Springer, 2009.
2. Yan Chen, Content Replication, invited book chapter for Content Delivery Networks:
Principles and Paradigms, Springer, 2008.
3. Zhichun Li, Anup Goyal, and Yan Chen, Honeynet-based Botnet Scan Traffic Analysis,
invited
book chapter for Botnet Detection: Countering the Largest Security Threat, Springer,
2008.
4. Ehab Al-Shaer and Yan Chen, Integrated Fault and Security Management, invited book
chapter
for Information Assurance: Dependability and Security in Networked Systems, Morgan
Kaufmann Publishers, 2007.
Refereed Journal Publications
Refereed Conference Publications
Software Artifacts
All the tools below are available at http://list.cs.northwestern.edu/projects.html except
denoted otherwise.
Social network spam campaign analysis data released the largest social network spam
analysis
on the spam URLs.
Hamsa A system for zero-day polymorphic worm signature generation. The download also
includes test cases such as polymorphic engines.
TOM and LEND A suite of tools for scalable overlay network monitoring and unbiased
overlay
network diagnosis.
FAD A tools for end user-based based network diagnosis without infrastructure.
POPI A tool for router packet forwarding priority inference from end hosts.
Reversible Sketches A suite of tools for online high-speed network traffic monitoring
and
anomaly/intrusion detection.
ErrorDoS Tools for novel denial of service (DOS) attacks with error messages for WiFi
networks and the corresponding defense.
CachePollution Tools for novel DOS attacks on Web caches and the corresponding
defense.
http://www.cs.northwestern.edu/~drc915/webBrowsPerf/
Grants (total grants $2,455, 779, my share $1,810,029, no pure equipment grant)
1. NeTS: Small: Parallax -- Leveraging the Perspective of Ten Million Peers, NSF NeTS
Award,
co-PI (PI Fabian Bustamante), 9/2009 8/2012, $500,000 (my share $250,000).
2. CT-ISG High-Speed Network Defense with Massive and Diverse Vulnerability Signatures,
NSF CyberTrust Award, single PI, 9/2008 8/2011, $400,000.
3. RTFM: Network Penetration and Security Course Development, Walter P. Murphy Society
Grant, Northwestern University, single PI, 9/2007 - 8/2008, $15,000.
4. "Intrusion Detection and Forensics for Self-defending Wireless Networks", Air Force of
Scientific Research (AFOSR) Young Investigator Award, single PI, 12/2006 - 11/2009,
$368,326.
5. CT-ISG: Router-Based Signature Generation for Zero-Day Polymorphic Worms, NSF
CyberTrust Award, PI, (co-PI Ming-Yang Kao), 9/2006 8/2009, $200,000 (my share
$100,000).
6. CT-ISG: Pollution Resilience for Internet Caches, NSF CyberTrust Award, co-PI, (PI
Aleksandar Kuzmanovic), 9/2006 8/2009, $350,000 (my share $175,000).
7. HPNAIDM: The High-Performance Network Anomaly/Intrusion Detection and Mitigation
System, DOE Early Career Award, single PI, 8/2005-8/2008, $296,980.
8. Microsoft Research Trustworthy Computing Award 2006, PI, (co-PIs: Fabian Bustamante,
Peter
Dinda and Aleksandar Kuzmanovic), 9/2006-8/2007, $50,000 (my share $25,000).
9. "Information and Communication Security Curriculum Development Phase II: National
Accreditation", Walter P. Murphy Society Grant, Northwestern University, single PI,
9/2005 -
8/2006, $13,393.
10. A Virtual Lab for Experimental Systems Education, Walter P. Murphy Society Grant,
Northwestern University, co-PI, (PI: Fabian Bustamante, Other co-PIs: Brian Dennis, Peter
Dinda, and Aleksandar Kuzmanovic), $35,750, 9/2005 - 8/2006.
11. "Adaptive Intrusion Detection and Mitigation Systems for WiMAX Networks",
Northwestern-
Motorola Center for Telecommunications, PI (co-PI Hai Zhou), 9/2005-8/2007, $150,000 (my
share $110,000)
12. Microsoft Research Trustworthy Computing Award 2005, PI (co-PI: Andrea Matwyshyn),
9/2005-8/2006, $50,000 (my share $30,000)
13. Information and Communication Security Curriculum Development, Walter P. Murphy
Society
Grant, Northwestern University, single PI, 09/01/2004 to 08/31/2005, $26,330.
Honors
Selected to Attend the University Leadership Program offered by the Kellogg School of
Management,
2009
Top EECS Researcher Award, Northwestern University, 2009
DoD (Air Force of Scientific Research) Young Investigator Award, 2007
Department of Energy (DOE) Early CAREER Award, 2005
Microsoft Trustworthy Computing Awards, 2004 (with Andrea M. Matwyshyn) and 2005 (with
Fabian Bustamante, Peter Dinda and Aleksandar Kuzmanovic)
AGEP Professor, Midwest Crossroads AGEP (Alliances for Graduate Education and the
Professoriate) - a partnership of Northwestern, Indiana and Purdue University to increase
minority
participation in graduate studies and academia, 2005
Searle Junior Fellow, Northwestern University, 2004
Synergistic Activities
Vice Chair of World Wide Web conference in charge of the "Security, Privacy, Trust, and
Abuse"
track, 2012.
General Chair, the 18th ACM Conference on Computer and Communication Security (CCS),
2011.
Poster Co-chair, the 41st IEEE/IFIP International Conference on Dependable Systems and
Networks
(DSN) 2011.
Steering Committee member, the IEEE International Workshop on Quality of Service
(IWQoS), 2007
2010.
TPC Co-Chair, the Next Generation Networking Symposium (NGN) of the IEEE GLOBECOM 2010.
th
TPC Co-Chair, the 5 International Conference on Security and Privacy on Communication
Networks (SecureComm) 2009.
Founding Editorial Board (EB) of ICST Transactions on Security and Safety, 2009
present.
Local Arrangement Committee Chair, the ACM Conference on Computer and Communication
Security (CCS), 2009 and 2010.
Local Arrangement Committee Co-Chair, the ACM/USENIX Internet Measurement Conference
(IMC) 2009.
th
Organization and TPC Co-Chair, the 15 IEEE International Workshop on Quality of Service
(IWQoS) 2007.
TPC member, IEEE INFOCOM 2007, 2008, 2009, 2010, 2011, 2012, 2013.
TPC member, Network & Distributed System Security Symposium (NDSS) 2010, 2011, 2012.
TPC member, IEEE ICNP 2007, 2011, 2012.
TPC member, IEEE ICDCS 2007, 2008, 2011.
TPC member, International Conference on Security and Privacy on Communication Networks
(SecureComm) 2008, 2011.
th
TPC member, the 40 IEEE/IFIP International Conference on Dependable Systems and
Networks
(DSN) 2010.
TPC member, IEEE ICPP 2009
TPC member, IEEE International Workshop on Network Security and Privacy (NSP) 2008
TPC member, IEEE International Conference on Broadband Communications, Networks, and
Systems (BroadNets), 2008
TPC member, IEEE International Conference on Sensors and Ad Hoc Communications and
Networks
(SECON) 2008
TPC member, the IEEE International Workshop on Quality of Service (IWQoS), 2006, 2008-
2010
TPC member, ACM MobiCom 2007
TPC member, IFIP/IEEE International Symposium on Integrated Management (IM) 2007
TPC member, the International Conference on Mobile and Ad-hoc and Sensor Networks (MSN)
2006
TPC member, IEEE GLOBECOM, 2006
TPC member, ACM SIGCOMM Posters 2005, 2007
TPC member, IADIS International Conference Applied Computing 2004, 2005
NSF GENI panelist, 2008
NSF CISE panelist for CAREER Program, 2008, 2009.
NSF CISE panelist for CyberTrust Program, 2004, 2006, 2007, 2008, and 2009.
Invited panelist for the Cyber Security Panel at the Transportation Center Advisory
Board Committee
meeting, Northwestern University, 2009
Invited Reviewer for Qatar National Research Fund, 2011.
Technology Reviewer for Hong Kong SAR Government ITS program proposals, 2009.
Reviewer for AFOSR proposals, 2007, 2008, and 2009
Reviewer for DOE SBIR/STTR proposals, 2006, 2007 and 2008
Invited reviewer for the book Internet Measurements by Mark Crovella and Bala
Krishnamurthy,
John Wiley and Sons, Feb. 2005
Invited reviewer for the book Computer Networks and Data Communication from Dr.
Moshen
Guizani, Wiley Publisher, Aug. 2004
EECS 317 Data Management and Information Processing, (Spring 2005).
EECS 340 Introduction to Computer Networking (every other Winter, 2004-2010).
Developed EECS 350 Introduction to Computer Security (for CS majors, Winter 2005 and
Winter
2007).
Developed EECS 495/395 Basic Information Security: Technology Business and Laws (with
Prof. Andrea M. Matwyshyn of Law School, for non-CS majors, Fall 2005).
Developed EECS 354 Network Penetration and Security (every Fall, 2007 - 2011).
Developed EECS 450 Internet Security (Spring 2004, Spring 2005, Spring 2007, Winter
2009, and
Spring 2010).
Developed EECS 395/495: Internet Measurement and its Reverse Engineering (Spring 2006).
Developed MSIT 458: Information and Security Assurance (for a professional MS program
in IT,
Spring 2007, Spring 2008, and Spring 2009, Winter 2010, Fall 2010, Fall 2011).
Current Research Staff and Graduate Students
Prof. Bin Liu (visiting scholar from Tsinghua University, China)
Thesis title: Anomaly/Intrusion Detection on Wireless Networks.
Past visiting PhD students.
Jun Hu (from Huazhang University of Science and Technology, China), 2009-2011.
Jin Yuan (from Tsinghua University, China) 2009-2010.
Yi Tang (from Tsinghua University, China) 2008-2009.
Chengchen Hu (from Tsinghua University, China), 2007.
Gao Xia (from Tsinghua University, China), 2007.
Ying He (from the Beihang University China), 2007-2008.
Lanjia Wang (from Tsinghua University, China), 2006.
Yanmei Zhang (from China University of Mining & Technology), 2006-2007.
Invited Talks
Intrusion Detection and Prevention for Emerging and Challenging Network Environments,
invited
talk at the Hong Kong Polytechnic University, National University of Defense Technology,
and Xi an
Jiaotong University in China, July-August 2011.
NetShield: Massive Semantics-based Vulnerability Signature Matching for High-speed
Networks,
invited talk at Tsinghua Information Forum, Tsinghua University, China, March 2011.
Detecting and Characterizing Social Spam Campaigns, invited talk at Toronto
Networking Seminar
Series, University of Toronto, Canada, February, 2011.
Configuring, Diagnosing, and Securing Data Center Networks and Systems, invited talk
at the
Institute of Computing Technology, Chinese Academy of Sciences, January, 2011.
NetShield: Matching with a Large Vulnerability Signature Ruleset for High Performance
Network
Defense, invited talk at DIMACS Workshop on Network Data Streaming and Compressive
Sensing,
October 2010.
NetShield: Matching with a Large Vulnerability Signature Ruleset for High Performance
Network
Defense, invited talk at Shanghai Jiaotong University, China, June 2010.
NetShield: Matching with a Large Vulnerability Signature Ruleset for High Performance
Network
Defense, invited talk at University of Toronto Networking Seminar, October 2009.
NetShield: Matching with a Large Vulnerability Signature Ruleset for High Performance
Network
Defense, invited talk at Juniper Networks Inc., July 2008.
Anomaly/Intrusion Detection and Prevention in Challenging Network Environments,
Distinguished
Lecture at Intelligent Automation, Inc., one of the top technology incubator company with
over 10
million dollar annual grant from federal agencies, June 2008.
P2P Doctor: Measurement and Diagnosis of Misconfigured Peer-to-Peer Traffic,
University of
Toronto, January 2008.
P2P Doctor: Measurement and Diagnosis of Misconfigured Peer-to-Peer Traffic, TSS
seminar at
the Information Trust Institute, UIUC, December 2007.
Network-based Intrusion Detection, Prevention and Forensics System, Tsinghua
University and
Peking University, China, August 2007.
Vulnerability Analysis for WiMAX Networks, Microsoft Research Asia, August 2007.
Hamsa: Fast Signature Generation for Zero-day Polymorphic Worms with Provable Attack
Resilience, the School of Computer Science, Telecommunications and Information Systems,
DePaul
University, Jul. 2006.
IRC-based Botnet Detection on Routers, invited talk at ARO-DARPA-DHS workshop on
Botnets,
June 2006.
High-Performance Network Anomaly/Intrusion Detection and Mitigation Systems
(HPNAIDM),
Honeywell, Mar. 2006.
Efficient HopID based Routing for Sparse Ad Hoc Networks, Honeywell, Mar. 2006.
Hamsa: Fast Signature Generation for Zero-day Polymorphic Worms with Provable Attack
Resilience, the Center for Education and Research in Information Assurance and Security
(CERIAS), Purdue University, Feb. 2006.
Scalable and deterministic overlay network diagnosis, School of Computing, Georgia
Institute of
Technology, June, 2005.
Network Intrusion Detection and Mitigation, Motorola Labs, Schaumburg, IL, Feb. 2005.
Tomography-based Overlay Network Monitoring, ICIR (The ICSI Center for Internet
Research),
Berkeley, California, Sep. 2003.
Clustering Web Content for Efficient Replication, University of California at Davis,
Dec. 2002.
SCAN: a Dynamic Scalable and Efficient Content Distribution Network, AT&T Labs -
Research,
Florham Park, NJ, Aug. 2002.
Wide-Area Network Measurement and Monitoring Services, Cisco Inc., Mountain View,
California, Jul. 2001.
Wide-Area Network Measurement and Monitoring Services, Ericsson Research Lab at
Berkeley,
California, Jan. 2002.
Dynamic Replica Placement for Scalable Content Delivery, Ericsson Research Lab,
Stockholm,
Sweden, Jun. 2001.
Media Coverage
My joint work with UCSB resulted with the paper "Detecting and Characterizing Social
Spam
Campaigns", was featured in the Wall Street Journal, INTERNET: Dissecting Facebook Spam,
and
MIT
2004.
Director of Computer Science program for Weinberg School of Arts and Sciences, Member
of the
Computer Science Undergraduate Curriculum Committee, AY 2011-2012.
Chair of Computer Science Undergraduate Curriculum Committee, Member of Computing
Facilities
Committee, and Member of Computer Engineering Undergraduate Curriculum Committee for AY
09,
Department of Electrical Engineering and Computer Science.
Department representative to attend the Weinberg Undergraduate Convocation, 2009
Chair of Computer Science Undergraduate Curriculum Committee, Member of Computing
Facilities
Committee, and Member of Computer Engineering Undergraduate Curriculum Committee for AY
08,
Department of Electrical Engineering and Computer Science.
Ph.D. Thesis Committee of Taghrid Samak (invited external member), Department of
Computer
Science, DePaul University, April. 2009.
Department representative to attend the McCormick Undergraduate Convocation, 2008
Member of the Graduate Committee, Member of the Computer Science Undergraduate
Curriculum
Committee and Member of Faculty Search Committee for AY 2007, Department of Electrical
Engineering and Computer Science.
Attend the demo and help evaluate a security product from Elemental Security for the
Dean s office,
July 2006.
Member of the Graduate Committee and Member of the Computer Science Undergraduate
Curriculum Committee for AY 2006, Department of Electrical Engineering and Computer
Science
Attend the meeting with NUIT and Dean Jay Walsh to evaluate a NUIT-proposed security
measures
as well as its impact, July 2005.
Chair of the Departmental Colloquia and Member of the Curriculum Committee for Academic
Year
2005, Department of Computer Science
Member of the Graduate Student Admission Committee and Member of the Curriculum
Committee
for Academic Year 2004, Department of Computer Science