Address: *** ************ **, ****** ****, NC Phone: 740-***-**** Web: www.cspensky.info
Chad Samuel Spensky ********@**.***.***
OBJECTIVE
To obtain a full-time research and development position with a concentration in computer security.
EDUCATION
University of North Carolina at Chapel Hill Chapel Hill, NC
Master of Science in Computer Science (Computer Security) December, 2010
Doctor of Philosophy in Computer Science May, 2013 (Projected)
Selected Courses:
Distributed Systems (F08) App Crypto/Net Sec (S09) Algorithm Analysis (F09) Game Theory I (S10)
Computer Security (F08) Data Mining (S09) Network Security (F09) Cyber Physical Systems (F11)
University of Pittsburgh Pittsburgh, PA
University of Virginia Semester at Sea (Summer 2006) East and Southeast Asia
Bachelor of Science (GPA: 3.7, Magna Cum Laude) April, 2008
Majors: Computer Science (Honors) / Mathematics Minor: Economics
Selected Courses:
Database Mgt. Systems (F06) Intro to Simulations (F07) Secure Data Mgt. & Web Applcs. (S08)
Numerical Analysis (F07) Abstract Algebra (S07) Human Language Technologies (S08)
Prgmg Lang for Web Apps (F07) Intermediate Probability (F07) Graph Theory (S08)
RESEARCH PAPERS
Practical Misconfiguration Identification in Access-Control Systems (Masters Paper)
Author: Chad Spensky
Proposed an approach for efficiently identifying accesses that are wrongfully denied in access-control environments, i.e.
misconfigurations, and evaluated its usefulness in multiple scenarios.
Making Peer-Assisted Content Distribution Robust to Collusion Using Bandwidth Puzzles
Authors: Michael K. Reiter, Vyas Sekar, Chad Spensky, and Zhenghao Zhang
Appeared at Fifth International Conference on Information Security Systems in December 2009.
Proposed and demonstrated the use of cryptographic puzzles to enforce bandwidth usage in contribution-aware streaming
systems.
RELATED EXPERIENCE
Personal Interests
I have studied and implemented numerous stack and heap-based exploits on both Windows an Linux.
To gain a greater understanding of low-level networking protocols, I recently created a simple web client using RAW sockets
and assuming only knowledge of the gateway ip and a DNS server.
I participated in a WiFi security workshop at DefCon 19 and have since continued to expand my knowledge on the topic.
I plan to use Bluetooth and Near Field Communication (NFC) in my thesis and have been studying their theory and
experimenting with their implementations. I have also given a class presentation on the current state of Bluetooth security.
University of North Carolina at Chapel Hill Chapel Hill, NC August 2011 Present
Teaching Assistant
I am currently a teaching assistant for a computer organization course and will be leading a lab on buffer overflows and other
exploits to show the students how stack manipulation works in real-world attacks.
MIT Lincoln Laboratory Lexington, MA May 2011 August 2011
Summer Intern
I was an intern in Group 06-69 Cyber System Assessments and worked on implementing dynamic Web 2.0 content into an
offline networking testbed. [http://www.ll.mit.edu/employment/division6.html#69]
University of North Carolina at Chapel Hill Chapel Hill, NC August 2008 May 2011
Research Assistant
My thesis proposal, which is still a work in progress, aims to remove the need for passwords and introduce a new distributed
security paradigm that mitigates numerous security threats through the use of physical tokens, e.g. mobile phones.
I worked with Mike Reiter on multiple computer security related projects. My projects necessitated the creation of
multithreaded Java applications, working with low-level networking protocols in C, linear programming and frequent use of
Perl, Matlab, and large computing clusters.
University of Pittsburgh Pittsburgh, PA July 2007 July 2008
Lead Web Developer
I was the lead developer of an interdisciplinary project that utilizes AJAX, PHP, Java, MySQL, CSS, and JavaScript to create
a complete data exchange website for the CMPI project. [http://cmpi.cs.pitt.edu/]
I worked directly with biologists, programmers, and computer science researchers to tackle challenging usability, data
management, and software/database evolution problems and contributed a majority of the overall design for the project and
database.
COMPUTER SKILLS
Operating Systems: Ubuntu, OSX, Windows, Backtrack 5
Experience with: Java, Perl, C, Ethernet Networking, Wireless Networking, PHP, JavaScript, HTML, CSS, Python,
SQL, C++, Tcl, MIPS/x86 Assembly, GDB, OllyDbg, LaTeX
RECOGNITIONS
- President of Computer Science Students Association / UNC-CH (2010-Present) [http://www.cs.unc.edu/~cssa/]
- Graduate and Professional Student Federation Senator / UNC-CH (2010-Present) [http://studentorgs.unc.edu/gpsf/]
- Departmental Facilities and Web Committee Member / UNC-CH (2010-Present) [http://www.cs.unc.edu/Admin/Committees/]
- Dean s List Recipient / Pitt (Fall 04,Spring 05, Fall 05, Fall 06, Spring 07, Fall 07, Spring 08)