Sherif Khattab {abqckd@r.postjobfree.com}
Information
*** ****** ****** ****: (+20) 35825837
Apt 5 Cell +20-109*******
Bolkley E-mail: abqckd@r.postjobfree.com
WWW: www.fci-cu.edu.eg/ skhattab
Alexandria, Egypt
Bosch Research and Technology Center, Pittsburgh, PA (Summer 2008), Software Engineering
Professional
Intern.
Experience
Co-developed a mode extraction tool to enhance component speci cation within the Software
Component Technology. The tool parses engine control unit s code, extracts modes, and writes
new XML speci cation.
Google Inc., Mountain View, CA (Summer 2007), Software Engineering Intern.
Developed an integrated, customizable, web-based dashboard for performance monitoring of dif-
ferent Google applications.
Designed a back-end MySQL database for the dashboard.
Ericsson Data Networks, Pittsburgh, PA (Summer 2006), Software Engineering Intern.
Installed and managed HP OpenView and ServiceOn Data network-management software in an
ATM network.
Worked with the Eclipse software development environment and the P4 version control software.
Setup a student-learning lab composed of terminal servers, edge and core network switches, and
Solaris and Windows XP hosts.
Developed dynamic web pages using Ruby and MySQL.
SamaSoft, Cairo, Egypt (1998-2001)
Performed requirements Analysis, design, and system integration of a highway toll-gate control
system.
Developed multimedia tutoring applications in Delphi.
Giza Systems Engineering, Giza, Egypt (Summer 1997)
Participated in operation and maintenance of a distributed information system developed for the
U-17 FIFA World Championship.
Assistant Professor, Faculty of Computers and Information, Cairo University.
Academic
Alumni
Advising
Tamer Fatayer; PhD 2011 - Innovative schemes for exploiting software vulnerabilities.
Basheer Abdel-Fattah; PhD 2011 - DNA-based encryption schemes.
Radwan Jaramh; MSc 2011 - Detecting web spam in arabic web pages using content analysis.
Abdelrahman Ahmed; MSc 2010 - Secure VoIP online charging mechanisms.
Abeer Rawih; MSc 2012 - Simulation-based analysis of anti-jamming defense.
Radhya Sahl; MSc 2012- Resource allocation in cloud computing.
PhD Students
Mohamed Al-Bahtity; Spring 2009 - Today; AES enhancements.
Eman Hossny; Spring 2012 - Today; Common PaaS API.
M.Sc. students
Mai Ali - Spring 2009 - Today; DoS defense.
Gihan Ragy - Fall 2009 - Today; SOA security.
Samy Gerges - Fall 2010 - Today; Federated authorization in community clouds.
Ali Hamza - Fall 2010 - Today; Resource allocation for cloud anti-virus systems.
Moustafa Mahmoud - Fall 2011 - Today; Resource monitoring in the cloud.
EC-Council University (http://www.eccuni.us), June 2009 - Today
Teaching
ECU522 - Investigating Network Intrusions and Computer Forensics (to start)
Experience
ECU521 - Ethical Hacking and Countermeasures
ECU528 - Linux Networking and Security
ECU530 - Conducting Penetration Testing
Faculty of Engineering, Alexandria University, March 2011-Today
CSx35 (Spring 2011) - Computer Architecture (elective course for 4th year communications
students).
Assistant Professor, Faculty of Computers and Information, Cairo University, August
2008-Today
CS623 (Spring 2012) - Embedded systems programming (graduate course).
CS214 (Spring 2012) - Data structures
CS215 (Spring 2011, 2012) - File organization and processing (http://www.fci.cu.edu.eg/ skhattab/cs2
CS213 (Fall 2010, 2011) - Programming 2 (http://www.fci.cu.edu.eg/ skhattab/cs213).
CS112 (Spring 2010) - Programming 1 (http://www.fci.cu.edu.eg/ skhattab/cs112).
CS221 (Fall 2009-2010) - Digital Logic Design (http://www.fci.cu.edu.eg/ skhattab/cs221).
CS495 (Spring 2009) - Undergraduate Network Security
(http://www.fci.cu.edu.eg/ skhattab/netsec/cs496).
CS112 (Fall 2008) - Programming-1 (Co-instructor)
CS517 (Fall 2008, 2009, 2011) - Design and Analysis of Algorithms (Graduate).
CS595 (Spring 2009) - Graduate Network security (http://www.fci.cu.edu.eg/ skhattab/netsec/cs595)
Open Education Center, Cairo University, April 2009 - Today
OU402 - Introduction to Natural Language Processing
Arab Academy of Science and Technology, 2009-2010; 2011-2012
CC111 - Introduction to Computers
CC112 -Structured Programming
CC114 - Visual Basic Programming
University of Pittsburgh, Fall 2001
CS1541 - Computer Architecture (TA)
University of Pittsburgh, Pittsburgh, Pennsylvania USA
Education
Ph.D. in Computer Science, August 2008, A Defense Framework Against Denial-of-Service in
Computer Networks
M.Sc. in Computer Science, April 2004
Advisors: Rami Melhem and Daniel Moss
e
GPA 3.98
Cairo University, Giza, Egypt
B.Sc., Computer Engineering, July 1998
GPA 3.83
Eman Hossny, Sara Salem, Sherif M. Khattab, Towards Automated User-Centric Cloud
Publications
Provisioning: Job Provisioning and Scheduling on Heterogeneous Virtual Machines
in INFOS 2012.
Radhya Sahal, Sherif M. Khattab, Fatma A. Omara, Automatic Calibration of Database
Cost Model in Cloud Computing in INFOS 2012.
Abeer Abdulkawi, Sherif Khattab, Ibrahim Farag, Talal Seed Saleh, Evaluating an Anti-
Jamming Defense in Wireless Networks using Channel Hopping and Error Correct-
ing Code in INFOS 2012.
B. Youssef, S. Khattab, T. AbdelMageed, N. Hamdy and S. Elgamal, Encryption Algorithm
Based on One Time Pad and DNA, in CiiT International Journal of Biometrics and Bioin-
formatics, July 2011.
Radwan Jaramh, Talal Saleh, Sherif Khattab, and Ibrahim Farag, Detecting Arabic Spam
Web Pages Using Content Analysis, in International Journal of Reviews in Computing, Vol
6, July 2011.
Tamer Fatayer, Sherif Khattab, and Fatma Omara, New Classi cation of Protection Tech-
niques for Software Vulnerabilities Based on Required Resources and E ectiveness
(in Arabic), in ICCA 11.
Tamer Fatayer, Sherif Khattab, and Fatma Omara, OverCovert: Using Stack Over ow
Software Vulnerability to Create a Covert Channel, in IFIP/IEEE NTMS 11.
Tamer Fatayer, Sherif Khattab, and Fatma Omara, A Key-Exchange Protocol Based on
the Stack-Over ow Software Vulnerability, in IEEE ISCC 10.
Abdelrahman Ahmed, Sherif Khattab, Khaled Moustafa, and Salwa ElGamal, Comparison of
Online Charging Mechanisms for SIP Services, in International Journal of Electrical &
Computer Sciences, 2010.
Ahmed Salem, Sara Hassan, Sarah Hamdy, Shimaa Youssef, Heba Adel, Sherif Khattab, and
Mohammad El-Ramly, On Using 3D Animation for Teaching Computer Programming
in Cairo University, in INFOS 2010.
Ahmed Barakat and Sherif Khattab, A Comparative Study of Traditional Botnets versus
Super-botnets, in INFOS 2010.
Sameh Gobriel, Sherif Khattab, Daniel Moss, and Rami Melhem, On Link-Quality Estima-
e
tion and Fault-tolerant Aggregation in Wireless Sensor Networks, in GlobeCom 2009.
Sherif Khattab, Daniel Moss, and Rami Melhem, Jamming Mitigation in Multi-Radio
e
Networks: Reactive Proactive?, in SecureComm 2008.
Sameh Gobriel, Sherif Khattab, Daniel Moss, and Rami Melhem, GroupBeat: Wireless
e
Sensor Networks Made Reliable, in IEEE MASS 2008 (short paper).
Sherif Khattab, Daniel Moss, and Rami Melhem, Modeling of the Channel-Hopping Anti-
e
Jamming Defense in Multi-Radio Wireless Networks, in MOBIQUITOUS 2008 (accep-
tance rate 17%).
Sherif Khattab, Sameh Gobriel, Rami Melhem, and Daniel Moss, Live Baiting for Service-
e
level DoS Attackers, in IEEE INFOCOM 2008.
Sherif Khattab, Rami Melhem, Daniel Moss, and Taieb Znati, Honeypot Back-propagation
e
for Mitigating Spoo ng Distributed Denial-of-Service Attacks, in Journal of Parallel
and Distributed Computing (JPDC) Special Issue on Security in Grid and Distributed Systems,
Vol 66(9), p1152-1164, September 2006, Elsevier. (Extended version of SSN 06 paper).
Sameh Gobriel, Sherif Khattab, Daniel Moss, Jos Brustoloni, and Rami Melhem, RideShar-
e e
ing: Fault Tolerant Aggregation in Sensor Networks Using Corrective Actions, in
Proceedings of the Third Annual IEEE Communications Society Conference on Sensor, Mesh
and Ad Hoc Communications and Networks (SECON 06).
Jos Brustoloni, Sherif Khattab, Christopher Santamaria, Brian Smyth, and Daniel Moss, In-
e e
tegrated Scheduling of Application- and Network-Layer Tasks in Delay-Tolerant
MANETs, in Proceedings of the 49th Annual IEEE GLOBECOM conference (GLOBECOM 06).
Sherif Khattab, Rami Melhem, Daniel Moss, and Taieb Znati, Honeypot Back-propagation
e
for Mitigating Spoo ng Distributed Denial-of-Service Attacks, in Proceedings of the
2nd International Workshop on Security in Systems and Networks (SSN 06) in conjunction with
IPDPS 2006, April 2006, Best Paper Award.
Sherif Khattab, Daniel Moss and Rami Melhem, Honeybees: Combining Replication and
e
Evasion for Mitigating Base-station Jamming in Sensor Networks, in Proceedings of
the 14th International Workshop on Parallel and Distributed Real-Time Systems (WPDRTS 06)
in conjunction with IPDPS 2006, April 2006.
C. Sangpachatanaruk, S. M. Khattab, T. Znati, R. Melhem, and D. Moss, Design and Anal-
e
ysis of a Replicated Elusive Server Scheme for Mitigating Denial of Service Attacks,
in Journal of Systems and Software, Vol 73(1), p15-29, September 2004, Elsevier.
Sherif M. Khattab, Chatree Sangpachatanaruk, Daniel Moss, Rami Melhem, and Taieb Znati,
e
Roaming Honeypots for Mitigating Service-level Denial-of-Service Attacks, in Pro-
ceedings of the 24th International Conference on Distributed Computing Systems (ICDCS 04),
March 2004.
Sherif M. Khattab, Chatree Sangpachatanaruk, Rami Melhem, Daniel Moss, and Taieb Znati,
e
Proactive Server Roaming for Mitigating Denial-of-Service Attacks, Proceedings of
the International Conference on Information Technology: Research and Education (ITRE 03),
August 2003.
C. Sangpachatanaruk, S. M. Khattab, T. Znati, R. Melhem, and D. Moss, A Simulation
e
Study of the Proactive Server Roaming for Mitigating Denial of Service Attacks, in
Proceedings of the 36th Annual Simulation Symposium 2003 (ANSS 03), March 2003.
Security Joint work with my advisors and the NetSec (www.cs.pitt.edu/netsec) and S-CITI
Selected
(www.cs.pitt.edu/s-citi) group members
Projects
Designed and analyzed the live baiting algorithm for detecting Distributed Denial-of-Service
Attackers using group testing theory. A preliminary version of the algorithm has been imple-
mented in C.
Designed and implemented in C the server roaming scheme for defending against Denial-
of-Service (DoS) attacks. The scheme aims at dodging attacks by continuously changing the
service location in a way agreed upon with legitimate clients yet unpredictable to attackers.
The scheme has been evaluated in the ns-2 network simulator and I tested a prototype in a
FreeBSD network. I also designed and implemented a reactive avor of the scheme, whereby
the protected service escapes from attacked servers after an attack is detected.
Designed and evaluated the roaming honeypots scheme for defense against denial-of-service
(DoS) attacks. The scheme works by camou aging traps for attackers within a server pool.
At any point of time, a subset of the servers are authentically providing the service, while the
rest are acting as traps or honeypots, in the sense that any request they receive is from an
attacker and is used to blacklist the attacker s IP address. Legitimate clients are always made
aware of the authentic servers so that they forward no request to the honeypots. The scheme
was evaluated using the ns-2 network simulator.
Designed and evaluated the honeypot back-propagation scheme to trace attack packets
back to their true sources in the case that IP addresses are spoofed (forged). Attack packets
are identi ed using the roaming honeypots scheme, that is, packets received by camou aged
honeypots are used for the traceback process. I have analyzed honeypot back-propagation
mathematically and evaluated its performance using the ns-2 network simulator.
Designed and evaluated the honeybees scheme to defend against radio jamming in wire-
less sensor networks. The scheme is designed to protect mobile base-stations from jammers
by a careful combination of redundancy and evasion with the purpose of outlasting energy-
constrained attackers. I evaluated the scheme using a custom-made simulator in C.
Ported a threshold-signature Scheme from Java into C++ using the OpenSSL crypto library.
(Operating Systems class project)
Designed and developed the AODV watch-dog mechanism for mitigating the blackhole
problem in wireless ad-hoc networks. The blackhole is a malicious network node that attracts
tra c to pass through it, but instead of forwarding the tra c to its ultimate destination, the
blackhole drops it. This work aimed at showing that a hop-by-hop routing protocol, such
as AODV, is more suitable for defending against the blackhole attack than source-routing
protocols, such as DSR. To this end, I designed the watch-dog mechanism, whereby legitimate
nodes identify blackholes within their neighborhoods by overhearing packet forwarding (or
lack thereof) events. I have evaluated the scheme in the ns-2 network simulator. (Advanced
Networks class project)
Networks
Designed and evaluated the Ridesharing scheme for fault-tolerant aggregation in wireless
sensor networks. The scheme makes use of the inherent redundancy in wireless broadcast so
that if a message was lost because of a communication error, sensors, which overheard the
message, other than the primary recipient correct the error. The scheme was evaluated in
CSIM simulator. (Joint project with my advisors and Sameh Gobriel)
Conducted a simulation analysis of the Di Serv QoS framework in the ns-2 network simulator.
Evaluated the RSVP reservation protocol using CISCO routers and the MGEN tra c gener-
ation software. (Class project with Mansour Sharha)
Designed and evaluated a battery-aware replica selection algorithm in Ad-hoc networks. Eval-
uation was in the GlomoSim network simulator. (Class project with Paul Brenn eck and
Patrick Herron)
Systems (Software and Hardware)
Designed and implemented a hardware encryption/decryption circuit using the Multisim
electronic-circuit simulator and a secure chat program in C.
Developed a cycle-accurate processor simulator of an out-of-order superscalar processor with
branch prediction and dynamic scheduling in C++.
Designed and implemented a prototype of an InternetTV using VHDL Hardware Descrip-
tion Language and 8031-based system (B.Sc. graduation project with Mahmoud Radwan and
Mohammad Shahin).
Designed and implemented an infrared Wireless Communicator using an Infrared TX/RX cir-
cuit connected to serial-port interface. (Class project with Mahmoud Radwan and Mohammad
Shahin).
Developed a compiler for the Cool programming language in Java (Class project).
C, C++, Java, Delphi, Assembly Language (80x86), Oracle PL/SQL, PHP/MySQL, UNIX shell
Computer Skills
scripting; Unix/Linux, Windows.
Network simulators: NS2, GlomoSim, and CSIM.
Grant to attend Marktoberdorf Summer school 2010.
Awards
Andrew Mellon Predoctoral Fellowship (2006-2007).
USENIX Student Stipend Award to attend NSDI 05.
University of Pittsburgh, Pittsburgh, Pennsylvania USA
Academic
Experience Graduate Research Assistant Summer 2002 - Spring 2006
Includes current Ph.D. research and Ph.D. level coursework.
Software TA Spring 2002
Helping with the department s technical sta .
Teaching Assistant Fall 2001
Computer Architecture.
Cairo University, Faculty of Computers and Informatics, Giza, Egypt
Assistant Professor 08/2008 - now
Teaching Assistant 1998 - 2001
Taught courses: Data Structures, File Structures, Computer Networks, Operating Systems, Com-
puter Architecture, Digital Design, C/C++, Software Engineering, Database Concepts, and Dis-
tributed Databases.
Installed and supervised student laboratories for Oracle Designer, Oracle Developer, Power De-
signer, Linux networking and inter-process communication mechanisms, and CORBA.
Track Co-chair, INFOS 10
Academic
TPC member for AICCSA 11 and SEAA 11.
Activities
External Reviewer for IEEE Transactions on Wireless Communications, IEEE/ACM Trans-
actions on Networking, Journal of Parallel and Distributed Computing, WCNC 02, DSN 04,
ECRTS 04, MOBIQUITOUS 05, UbiCare 06, DASC 06, ICENCO 06, MOBIQUITOUS 07, RTSS 07,
OPODIS 07, AICCSA 08, and RTAS 08, IEEE Transactions on Mobile Computing, Security and
Communication Networks, MSN 09, ICDCS 10, INFOS 10, GlobeCom 11, ICCA 11.
Rami Melhem Daniel Moss
e
References
Professor Professor
Dept. Computer Science Dept. Computer Science
6137 Sennott Square 6423 Sennott Square
University of Pittsburgh University of Pittsburgh
Phone: 412-***-**** Phone: 412-***-****
Fax: 412-***-**** Fax: 412-***-****
abqckd@r.postjobfree.com abqckd@r.postjobfree.com
Taieb Znati Prashant Krishnamurthy
Professor Associate Professor
Dept. Computer Science School of Information Sciences
6415 Sennott Square 718 SIS Building
University of Pittsburgh University of Pittsburgh
Phone: 412-***-**** Phone: 412-***-****
Fax: 412-***-**** Fax: 412-***-****
abqckd@r.postjobfree.com abqckd@r.postjobfree.com