|
Geoffrey Alexander
Office: 3520 Farris Engineering Center
Contact: alexandg <at> cs.unm.edu
PGP Key: Key
PGP Fingerprint: ABD0 5AE6 49E4 7899 6BEA 694B CF49 153C 61A2 91E4
|
Research
My research focuses on using network side channels to perform off-path
measurements, the use of Dynamic Information Flow Tracking, also known as
Dynamic Taint Analysis, to better detect software vulnerabilities and speed up
reverse engineering efforts, and malware campaigns targeting civil society
groups. I'm advised by Jed
Crandall.
I spent the 2016-2017 academic year as an OTF Senior Research Fellow, hosted by
the Citizen Lab at the University of Toronto.
Publications
- Geoffrey Alexander, Antonio M. Espinoza, and Jedidiah R. Crandall.
Detecting TCP/IP Connections via IPID Hash Collisions.
Proceedings on Privacy Enhancing Technologies 2019(4), pp. 311-328. Stockholm,
Sweden. July 2019. [pdf].
- Geoffrey Alexander, Matt Brooks, Masashi Crete-Nishihata, Etienne Maynier,
John Scott-Railton, and Ron Deibert. Familiar Feeling: A Malware
Campaign Targeting the Tibetan Diaspora Resurfaces Citizen Lab Report.
August 8, 2018. [html].
- Meisam Navaki Arefi, Geoffrey Alexander, Hooman Rokham, Aokun Chen, Daniela
Oliveira, Xuetao Wei, Michalis Faloutsos, and Jedidiah R. Crandall.
FAROS: Illuminating In-Memory Injection Attacks via Provenance-based
Whole System Dynamic Information Flow Tracking. IEEE/IFIP
International Conference on Dependable Systems and Networks (DSN 2018).
Luxembourg City, Luxembourg. June 2018. [pdf]
- Meisam Navaki Arefi, Geoffrey Alexander, and Jedidiah R. Crandall.
PIITracker: Automatic Tracking of Personally Identifiable Information
in Windows. In the Proceedings of 11th European Workshop on Systems
Security (EUROSEC 2018). Porto, Portugal. April 2018. [pdf]
- Sarah McKune, Ron Deibert, Bill Marczak, Geoffrey Alexander, and John
Scott-Railton. Commercial Spyware: The Multibillion Dollar Industry
Built on an Ethical and Legal Quagmire. Citizen Lab Report. December
6, 2017. [html].
- Bill Marczak, Geoffrey Alexander, Sarah McKune, John Scott-Railton, and Ron
Deibert. Champing at the Cyberbit. Citizen Lab Report.
December 6, 2017. [html].
- Fabian Faessler, Geoffrey Alexander, Masashi Crete-Nisihata, Andrew Hilts,
Kelly Kim and Jeffrey Knockel. Still Safer Without: Another look at
Korean Child Monitoring and Filtering Apps. Citizen Lab Report.
November 27, 2017. [html].
- Fabian Faessler, Geoffrey Alexander, Masashi Crete-Nisihata, Andrew Hilts,
and Kelly Kim. Safer Without: Korean Child Monitoring and Filtering
Apps. Citizen Lab Report. September 11, 2017. [html].
- Jakub Dalek, Geoffrey Alexander, Masashi Crete-Nishihata, and Matt Brooks.
Insider Information: An intrusion campaign targeting Chinese language
news sites. Citizen Lab Report. July 5, 2017. [html].
- Geoffrey Alexander and Jedidiah R. Crandall. Off-Path Round Trip
Time Measurement via TCP/IP Side Channels. Proceedings of IEEE
INFOCOM 2015. Hong Kong, China. April 2015. [pdf] [slides]
- Roya Ensafi, Jeffrey Knockel, Geoffrey Alexander, and Jedidiah R. Crandall.
Detecting Intentional Packet Drops on the Internet via TCP/IP Side
Channels. In the Proceedings of the 2014 Passive and Active
Measurements Conference. Los Angeles, California. March 2014. [pdf]