Computer Science Colloquium
Time+Place : Wednesday 14/03/2012 14:30 room \bold \red 539 \nocolour \nobold Taub  Bld.
\red Please note change in room. \nocolour
Affiliation: Microsoft Research and University of Washington
Host       : Eran Yahav
Title      : Finding Malware on a Web Scale
Abstract   :
Over the last several years, JavaScript malware has emerged as one of the
most popular ways to deliver drive-by attacks to unsuspecting users through
the browser. This talk covers recent Microsoft Research experiences with
finding JavaScript malware on the web. Over the past several years, we have
developed analysis and detection tools that eventually transitioned into the
Bing search engine. Our tools are now used daily to find and black-list
thousands of malicious web sites. This talk will focus on interesting
interplay between static and runtime analysis and cover what it takes to
migrate research ideas into real-world products.
Short Bio:
Ben Livshits is a researcher at Microsoft Research and an affiliate
professor at the University of Washington. Originally from St. Petersburg,
Russia, he received a bachelor's degree in Computer Science and Math from
Cornell University in 1999, and his M.S. and Ph.D. in Computer Science from
Stanford University in 2002 and 2006, respectively. Dr. Livshits' research
interests include application of sophisticated static and dynamic analysis
techniques to finding errors in programs.
Ben has published papers at PLDI, POPL, Oakland Security, Usenix Security,
CCS, SOSP, ICSE, FSE, and many other venues. He is known for his work in
software reliability and especially tools to improve software security, with
a primary focus on approaches to finding buffer overruns in C programs and a
variety of security vulnerabilities (cross-site scripting, SQL injections,
etc.) in Web-based applications. He is the author of several dozen academic
papers and patents. Lately he has been focusing on how Web 2.0 application
and browser reliability, performance, and security can be improved through a
combination of static and runtime techniques.
Visit our home page-   <>
Technion Math. Net (TECHMATH)
Editor: Michael Cwikel   <> 
Announcement from: Hadas Heier   <>