Short Bio

I received my Diplom in Computer Science in 2002, from TUM. I then completed the Ph.D. program at the University of Cambridge Computer Laboratory. There, I was one of the brains juggled by Jon Crowcroft, my supervisor and pub coach. I moved on to ICIR, where I am a staff research scientist. My research focuses on topics in network architecture, distributed systems, and network security. I'm German, though they say I have a sense of humor.

Conferences & Workshops

PC member:

• IMC 2010
• RAID 2010
• LEET 2010
• NDSS 2010
• EUROSEC 2009, 2010
• DIMVA 2007 – 2009

PC chair:

• DIMVA 2010

Recent Publications

More here.

• Botnet Judo: Fighting Spam with Itself to appear

  A. Pitsillidis, K. Levchenko, C. Kreibich, C. Kanich, G.M. Voelker, V. Paxson, N. Weaver, S. Savage. 17th Annual Network and Distributed System Security Symposium, 28 February - 3 March 2010, San Diego, USA.

  New Scientist featured this work, as did BoingBoing, Slashdot and the Chronicle of Higher Education. 25.01.10

• Dispatcher: Enabling Active Botnet Infiltration using Automatic Protocol Reverse-engineering pdf bib

  J. Caballero, P. Poosankam, C. Kreibich, and D. Song. 16th ACM Conference on Computer and Communications Security (CCS), 9-13 November 2009, Chicago, USA.

  MIT Technology Review article on our work. 11.11.09

• Spamalytics: An Empirical Analysis of Spam Marketing Conversion pdf bib

  C. Kanich, C. Kreibich, K. Levchenko, B. Enright, G. Voelker, V. Paxson, and S. Savage. Communications of the ACM, 52(9), pp. 99-107, September 2009.

Projects

Netalyzr » debug your internet

Spamalytics » measuring spam conversion

Bro » ultra-flexible traffic analysis

CCIED » fighting internet epidemics

Honeycomb » automatic signature generation

Software

Broccoli » let Bro talk to anything

Netdude » pluggable trace manipulation

libstree » generic suffix trees

cache.h » an STL-style cache (painful!)

Rich Stevens' sock program

Miscellaneous

Adsense's JavaScript dissected