Vassilis Prevelakis (vp)

---

Curriculum Vitae

Academic Positions Held

Jan. 2009 to Present - director of Aegis Research Center in Athens, Greece.

Sep. 2007 to Present - visiting Professor at the Technische Universitat Braunschweig in Germany.

Sep. 2001 to Feb. 2008 - Assistant Professor at the Computer Science Department, Drexel University.

May 2000 to Aug. 2001 - Post-doctoral Researcher at the Department of Computer and Information Science of the University of Pennsylvania.

November 1996 to March 2000 - R&D consultant for the Greek University Network (GUnet). Co-architect of new scalable and secure network design; novel secure network administration infrastructure; GUnet Network Security Pilot.

Feb. 1989 to Jan. 1991 and March 1996 to Oct 1996 - Research at the Centre Universitaire d'Informatique of the University of Geneva in Switzerland. Worked with. D. Tsichritzis in (a) the reconfiguration of information networks, versioning and configuration management issues, (b) the XOS eXtensible Object Server, (c) the DVP real time tele-presence project, and (d) security framework for the secure distribution of electronic documents.

Oct. 1987 to Dec. 1988 - Researcher at INRIA, Paris, France, project SOR (object oriented distributed operating system).

Jan. 1987 to Sept. 1987 - ICS/FORTH (Crete, Greece) operation and support of the computer systems at the institute. Developed support for new hardware and the Greek/Latin character set for the BSD Unix OS.

Current Research and Development Projects

NSF/CAREER: Home Area Network Gateway Architecture - I am PI for this NSF project whose key objective is to investigate technologies and methodologies with which the home network can be protected, and enrich the computer science curriculum with security-focused experimental computer science material.
(Duration July 2002 - June 2007, amount $367,393).

Honors and Awards

Best Paper Award for the paper entitled ``Designing an Embedded Firewall/VPN Gateway,'' Vassilis Prevelakis, Angelos Keromytis, presented at the International Network Conference 2002, Plymouth, UK.

Cretan Research Institute: fellowship for graduate study at the University of Crete at Heraclion, Greece (1985 - 1987).

Scholarship from CIES (France) used to support research at INRIA (1987-1988).

Service and Teaching

Teaching

Drexel University: (2001 - Present)

Teaching 6 courses per academic year on Computer and Network Security, Operating Systems, and Computer Networks at both graduate and undergraduate levels.

University of Pennsylvania: (2001)

CIS-701 Advanced Topics in Computer and Network Security (Graduate Level)

University of Piraeus in Greece:

Gave lectures in the area of systems security as part of the undergraduate course in Operating Systems Security (1997) and in the area of routing protocols and network security as part of the undergraduate course in Computer Networks (1998).

Computer Science Department of the University of Crete, Greece, teaching assistant in the following undergraduate courses:

• Data Bases (1986-1987)
• Computer Systems Architecture (1986-1987)
• Operating Systems (1986-1987)

Industrial Experience

• Nov. 1996 to March 2000 - Consultant in networking and systems security for the University of Piraeus and the Ionian University in Greece.

• Feb. 1994 to Feb. 1996 - Technical Manager at European Dynamics S.A. (Athens, Greece). Technical expert in the area of network security, and designer of Sentinel email and WWW security product. Was also responsible for the design, implementation and management of the X.400 electronic mail system for the Greek Government.

• Jan. 1993 to Dec. 1993 - Software Development Manager at TROPOS S.A. (Thessaloniki, Greece). Worked in the design and implementation of the Admiral Application Development Environment and in a document flow and storage application involving a large data base and a hypertext system.

• May 1991 to Oct. 1992 - As part of the Greek national service worked as computer specialist attached to the Human Resources Directorate of the Hellenic National Defense General Staff.

Reviewing

• Member of the Program Committee of the USENIX Security Conference 2007.

• Member of the Program Committee of the Workshop on Information Security Applications (WISA 2006).

• Member of the Program Committee of the USENIX Security Conference 2006.

• Member of the Program Committee of the Applied Cryptography and Network Security Conference (ACNS) 2005.

• Member of the Program Committee of the International Workshop on Systems and Network Security (SNS'05).

• Member of the Program Committee of the WWW'05 Security Track.

• Editorial Advisory Board of the Journal "Computers and Security," Elsevier Press.

• Editorial Advisory Board of the Journal "Information Management and Computer Security," Emerald Press.

• Member of the Program Committee of the International Network Conference (INC) for the years 2003 onwards.

• IEEE Multimedia

• Program Committee member for the ``Peer-2-Peer eCommerce Systems and Applications'' minitrack at HICSS-36.

• Program Committee member for the ``International Conference On Cross-Media Service Delivery - CMSD 2003''

Member of Scientific Organizations

• IEEE Member (1996 - )

• ACM Member(1998 - )

• USENIX Member(1997 - )

• Founding member of the Hellenic Society for Internet Users. (1994 - )

Selected Invited Talks

• ``Dealing with Monocultures'' invited lecture at the University of Delaware, October 2004.

• ``The Network Bug'' invited lecture at the Athens University of Economics and Business, Athens 2001.

• ``The AT&T Network Meltdown'' at the seminar entitled ``Do we really need Network Security'' sponsored by ISA-EUNET, Athens 1999.

• ``Enforcing Copyright in Electronic Publishing'' at the European Research Seminar in Advanced System Design, Switzerland 1997.

• ``Presentation of a Tele-Teaching Application,'' at the GUnet workshop, Athens 1997.

• ``Enhancing Hypertext Through Versioning,'' Institute of Computer Science, University of Crete, Greece, 1991.

• ``Inter-process Communication Techniques in Distributed Environments'' INRIA, Paris, France, 1988.

Publications

Refereed Journals

• ``A Market-based Bandwidth Charging Framework,'' David Michael Turner, Vassilis Prevelakis, and Angelos D. Keromytis. To appear in the ACM Transactions on Internet Technology (ToIT). (Accepted, under revision)

• ``Decentralized Access Control in Networked File Systems,'' Stefan Miltchev, Jonathan M. Smith, Vassilis Prevelakis, Angelos D. Keromytis, and Sotiris Ioannidis. To appear in the ACM Computing Surveys. (Accepted, under revision)

• ``The Athens Affair,'' Vassilis Prevelakis, Diomidis Spinellis, IEEE Spectrum, July 2007, pp. 18-25.

• ``How to Buy a Network: Trading of Resources in the Physical Layer,'' Vassilis Prevelakis, Admela Jukan, IEEE Communications Magazine, special feature topic on "Advances in Control and Management of Connection-Oriented Networks," December 2006. (ISI impact factor 1.946).

• ``On The General Applicability of Instruction-Set Randomization,'' Angelos Keromytis, Vassilis Prevelakis, Gaurav S. Kc, Michael E. Locasto, to appear in the IEEE Transactions on Dependable and Secure Computing (ISI impact factor 2.133).

• ``An Audio Stream Redirector for the Ethernet Speaker,'' Ishan Mandrekar, Vassilis Prevelakis and David Michael Turner, Campus-Wide Information Systems Journal, Vol 21 No. 5, 2005, pp. 211-216.

• ``Drop-in Security for Distributed and Portable Computing Elements,'' V.Prevelakis, Angelos Keromytis, Journal of Internet Research, Volume 13 Issue 2, MCB Press, 2003.

• ``Creating Manageable Web Sites,'' V.Prevelakis, Journal of Internet Research, V.9(1) 1999, pp. 41-48, MCB Press.

Technical Magazines

• ``The Virtual Firewall,'' Vassilis Prevelakis, USENIX ;login: Magazine, December 2005, Volume 30, Number 6.

• ``Supporting a Security Laboratory,'' Vassilis Prevelakis, USENIX ;login: Magazine, June 2007, Volume 32, Number 3.

Refereed Conference and Workshop Proceedings

• ``Bridging the Network Reservation Gap Using Overlays,'' Angelos Stavrou, David Turner, Angelos D. Keromytis, and Vassilis Prevelakis. In Proceedings of the 1st Workshop on Information Assurance for Middleware Communications (IAMCOM). January 2007, Bangalore, India.

• ``Preserving TCP Connections Across Host Address Changes,'' Vassilis Prevelakis and Sotiris Ioannidis, Information Security Conference, 2006. (Acceptance rate: 26%).

• ``Base Line Performance Measurements of Access Controls For Libraries and Modules.'' Jason W Kim and Vassilis Prevelakis, Proceedings of the 2nd IEEE International Workshop on Security in Systems and Networks (SSN2006) Rhode Island, Greece, April 2006. (Acceptance rate: 50%).

• ``The Bandwidth Exchange Architecture,'' David Michael Turner, Vassilis Prevelakis, and Angelos D. Keromytis. Proceedings of the Tenth IEEE Symposium on Computers and Communications (ISCC 2005), June 27-30, 2005, La Manga del Mar Menor, Cartagena, Spain (Acceptance rate: 34%).

• ``The Ethernet Speaker System,'' David Michael Turner and Vassilis Prevelakis. Proceedings of the USENIX Annual Technical Conference, Freenix Track, April 2005, Anaheim, CA.

• ``Dealing with System Monocultures,'' Angelos D. Keromytis, and Vassilis Prevelakis. Proceedings of the NATO Information Systems Technology Symposium on Adaptive Defence in Unclasssified Networks, April 2004, Toulouse, France.

• ``Countering Code-Injection Attacks With Instruction-Set Randomization,'' Gaurav S. Kc, Angelos D. Keromytis, and Vassilis Prevelakis. Proceedings of the 10th ACM Conference on Computer and Communications Security (CCS). October 2003, Washington, DC (Acceptance rate: 13.8%).

• ``Characterizing the Security Vulnerability Likelihood of Software Functions,'' by D. DaCosta, C. Dahn, S. Mancoridis, V. Prevelakis. In the IEEE Proceedings of the 2003 International Conference on Software Maintenance (ICSM'03), Amsterdam, The Netherlands, September, 2003 (Acceptance rate: 36%).

• ``Demonstration of COSAK static analysis tools,'' D. DaCosta, C. Dahn, S. Mancoridis, V. Prevelakis. Proceedings of the DARPA Information Survivability Conference and Exposition, April 2003, Vol 2, Pages 7-9.

• ``Secure and Flexible Global File Sharing,'' Stefan Miltchev, Vassilis Prevelakis, Sotiris Ioannidis, John Ioannidis, Angelos D. Keromytis, and Jonathan M. Smith, Proceedings of the USENIX Annual Technical Conference, Freenix Track. June 2003, San Antonio, TX (Acceptance rate: 38%).

• ``WebDAVA: An Administrator-Free Approach To Web File-Sharing,'' Alexander Levine, Vassilis Prevelakis, John Ioannidis, Sotiris Ioannidis, and Angelos D. Keromytis. In Proceedings of the IEEE International Workshops on Enabling Technologies: Infrastructure for Collaborative Enterprises (WETICE), Workshop on Distributed and Mobile Collaboration. June 2003, Linz, Austria. (Acceptance rate: 48%).

• ``Designing an Embedded Firewall/VPN Gateway,'' Vassilis Prevelakis, Angelos Keromytis, Proceedings of the International Network Conference 2002, Plymouth, UK. A previous version of this paper is available as University of Pennsylvania Technical Report Number MS-CIS-00-21. Best Paper Award.

• ``Fileteller: Paying and Getting Paid for File Storage,'' John Ioannidis, Sotiris Ioannidis, Angelos Keromytis, and Vassilis Prevelakis, Proceedings Financial Cryptography 2002 (Acceptance rate: 25.6%).

• ``Sandboxing Applications,'' V. Prevelakis and Diomidis Spinellis, Freenix Track, 2001 USENIX Annual Technical Conference, Boston, MA, June 2001. (Acceptance rate: 48%).

• ``A Secure Station for Network Monitoring and Control,'' V.Prevelakis, 8th USENIX Security Symposium, Washington DC, 1999. (Acceptance rate: 26.7%).

• ``A Framework for the Management of Large WWW Sites,'' V.Prevelakis, International Network Conference 1998, Plymouth, United Kingdom, 1998.

• ``The Reconfigurable Electronic Textbook,'' V.Prevelakis, European Conference on Information Systems (ECIS98), Aix, France, 1998.

• ``A Framework for the Creation of User-Oriented Textbooks on the WWW,'' V.Prevelakis and G.Vassilakopoulos, 3rd European Conference on Health Telematics Education, Athens, Greece 1998.

• ``Issues for the commercial distribution of electronic documents,'' V.Prevelakis, D.Konstantas, J.H.Morin, Proceedings of the Communications and Multimedia Security Conference (CMS97), Athens, 1997.

• ``Controling the Dissemination of Electronic Documents,'' Prevelakis Vassilis, Jean-Henry Morin and Dimitri Konstantas, Proceedings of the 10th International Conference and Workshop on Database and Expert Systems Applications (DEXA'99), Florence, Italy, August 30 - September 3, 1999.

• ``A Framework for the Dynamic Organization and Reconfiguration of the World Wide Web,'' V.Prevelakis, 5th Panhellenic Informatics Conference, Athens, Greece, 1995.

• ``Dynamic Version and Configuration Management using Perspectives,'' V. Prevelakis and D.Tsichritzis, 4th Panhellenic Informatics Conference, Patras, Greece, 1993.

• ``Perspectives on Software Development Environments,'' V.Prevelakis and D.Tsichritzis, Proceedings of the 5th International Conference on Advanced Information Systems Engineering (CAiSE'93), Paris, 1993.

• ``An Organizational Concept for Information Repositories,'' V.Prevelakis, ERCIM Database Research Group Workshop, Ierapetra, Crete, 1993.

• ``Versioning Issues for Hypertext Systems,'' V. Prevelakis, 3rd Panhellenic Informatics Conference, Athens, Greece, 1991.

Books - Book Chapters

• ``Issues for the commercial distribution of electronic documents,'' V.Prevelakis, D.Konstantas, J.H.Morin, Objects At Large, Ed. D.Tsichritzis, Centre Universitaire d'Informatique, Geneva, 1997.

• ``A Framework for the Organization and Dynamic Reconfiguration of the World Wide Web,'' V.Prevelakis, Object Applications, Ed. D.Tsichritzis, Centre Universitaire d'Informatique, Geneva, 1996.

• ``Perspectives on Hypertext Structures,'' D.Tsichritzis and V.Prevelakis, Object Composition, Ed. D.Tsichritzis, Centre Universitaire d'Informatique, Geneva, 1991.

• ``Xos: An Overview,'' S.Gibbs and V.Prevelakis, Object Management, Ed. D.Tsichritzis, Centre Universitaire d'Informatique, Geneva, 1990.

• ``Versioning Issues for Hypertext Systems,'' V.Prevelakis, Object Management, Ed. D.Tsichritzis, Centre Universitaire d'Informatique, Geneva, 1990.

• ``Software Information Systems: A Software Community Perspective,'' S.Gibbs, V.Prevelakis and D.Tsichritzis, Object Oriented Development, Ed. D.Tsichritzis, Centre Universitaire d'Informatique, Geneva, 1989.

Past Research and Development Projects

• CHATS/CoSAK (DARPA) - Together with Prof. Mancoridis, I was Principal Investigator in the Code Security Analysis Kit project which aimed to provide the open source developers with tools to allow them to produce code that is more robust and secure. This is achieved via the CoSAK framework for code analysis and constraint enforcement. CoSAK is used to protect systems from code that strays outside of its operational limits.
  (Duration July 2001 - Oct. 2003, amount $622,873).

• STRONGMAN (DARPA) - The project objective was the design of scalable automated trust management mechanisms. The evaluation of the proposed mechanisms would be carried out via an experimental prototype embedded in the IP architecture, especially IPsec and firewalls.

• EUDOXUS - Continued Education for Secondary Education Teachers in the East Aegean islands. The project goal was the creation of a remote education environment for the instruction of secondary education teachers located in various islands in the East Aegean Sea (1999-2000).

• EPEAEK ACTION ``INFORMATICS - NETWORKS'' The project had two foci (1) the provision of a high speed wide area network linking all the Greek Academic Institutions of Higher Learning, (2) the modernization of the internal networks of the institutions (1997-2000).

• MEDIA was a program funded by the Swiss Government (Swiss Priority Program for Information and Communication Structures, SPP-ICS). The objective of this project was the development of a commercial system for the distribution of electronic documents. Payment and copyright restrictions were enforced through an agent-based, distributed and secure platform (1996-1997).

• DISTRIBUTED VIDEO PRODUCTION (ACTS Project AC089 Work-Package 4.3). The objective of project DVP was the use of existing high speed network technologies for the construction of an environment for the production of broadcast quality material (1996).

• Secure e-mail System The project involved the development of a secure e-mail system using encryption, electronic signatures, and trusted third parties. The project was partly funded by the European Union Program for Industrial Research and Development (PAVE) (1995-1996)