Publications

Book Chapters

Cloud Computing Security: Foundations and Challenges: Chapter 1: Cloud Computing Essentials, and Chapter 2: Cloud Security Baselines (with Anna Squicciarini – Penn State and Dan Lin – Missouri University of Science and Technology)- CRC Press (2016) – Editor John Vacca.

Technical Foundations of Systems Security. With Jedidiah Crandall. Computer Science Handbook. 3rd Edition. Chapman & Hall/CRC ACM. Editor-in-Chief Allen Tucker. Expected 2013.

Manuscripts

Marcus Botacin, Hojjat Aghakhani, Stefano Ortolani, Christopher Kruegel, Giovanni Vigna, Paulo de Geus, Daniela Oliveira, and André Grégio. One Size Does Not Fit All: A Longitudinal Analysis of Brazilian Financial Malware. ACM Transactions on Privacy and Security (TOPS). Accepted October 2020.

Heng Qiao, Daniela Oliveira, and Dapeng Wu. A Novel Criterion of Reconstruction-based Anomaly Detection for Sparse-binary Data. IEEE Global Communications Conference (GLOBECOM) 2020.

K. Renaud, Z. Benenson, D. Oliveira. Balancing resistance and resilience. Network Security 2020 (7), 20. July 2020.

Mirela Silva and Daniela Seabra Oliveira. Brazilian Favela Women: How Your Standard Solutions for Technology Abuse Might Actually Harm Them. 5th Workshop on Inclusive Privacy and Security (WIPS) – with USENIX SOUPS 2020.

Ruimin Sun, Marcus Botacin, Nikolaos Sapountzis, Xiaoyong Yuan, Matthew Bishop, Donald E. Porter, Xiaolin Li, Andre Gregio, Daniela Oliveira. A Praise for Defensive Programming: Leveraging Uncertainty for Effective Malware Mitigation. Transactions on Dependable and Secure Computing (TDSC). April 2020.

Nikolaos Sapountzis, Ruimin Sun, Xuetao Wei, Yier Jin, Jedidiah Crandall, Daniela Oliveira. MITOS: Optimal Decisioning for the Indirect Flow Propagation Dilemma in Dynamic Information Flow Tracking Systems. IEEE International Conference on Distributed Computing Systems (ICDSC) 2020. Acceptance rate 17.9%

Yi Ting Chua, Simon Parkin, Matthew Edwards, Daniela Oliveira, Stefan Schiffner, Gareth Tyson, A. Hutchings. Identifying Unintended Harms of Cybersecurity Countermeasures. APWG Symposium on Electronic Crime Research (eCrime) 2019. Pittsburgh, PA. Best Paper Award.

Jean-Baptiste Subils, Joseph Perez, Peiwei Liu, Shamaria Engram, Cagri Cetin, Dmitry Goldgof, Natalie Ebner, Daniela Oliveira, Jay Ligatti. A Dual-Task Interference Game-Based Experimental Framework for Comparing the Usability of Authentication Methods. 12th IEEE International Conference on Human System Interaction (HSI) 2019.

Tian Lin, Daniel Capecci, Donovan Ellis, Harold Rocha, Sandeep Dommaraju, Daniela Oliveira and Natalie Ebner. Susceptibility to Spear-Phishing Email: Effects of Internet User Demographics and Email Content. ACM Transactions of Computer Human Interaction (TOCHI), 2019.

Nikolaos Sapountzis,  Ruimin Sun and Daniela Oliveira. DDIFT: Decentralized Dynamic Information Flow Tracking for IoT Privacy and Security. Workshop on Decentralized IoT Systems and Security (DISS) 2019 (co-located with NDSS).

Daniela Seabra Oliveira, Tian Lin, Harold Rocha, Donovan Ellis, Sandeep Dommaraju, Huizi Yang, Devon Weir, Sebastian Marin, Natalie C. Ebner. Empirical Analysis of Weapons of Influence, Life Domains, and Demographic-Targeting in Modern Spam – An Age-Comparative Perspective. Accepted to Springer Crime Science 2019.

Vitor Afonso, Anatoli Kalysch, Tilo Müller, Daniela Oliveira,  Andre Gregio, and Paulo Geus. Lumus: Dynamically Uncovering Evasive Android Applications. 21st Information Security Conference (ISC). London, UK, 9-12 September 2018. 

Daniela S. Oliveira, Tian Lin, Muhammad Sajidur Rahman, Rad Akefirad, Donovan Ellis, Eliany Perez, Rahul Bobhate, Lois A. DeLong, Justin Cappos, Yuriy Brun, Natalie C. Ebner. API Blindspots: Why Experienced Developers Write Vulnerable Code. Fourteenth USENIX Symposium on Usable Privacy and Security (SOUPS).  August 12–14, 2018. Baltimore, MD, USA. Acceptance rate: 22%. 

Meisam Navaki Arefi, Geoffrey Alexander, Hooman Rokham, Aokun Chen,  Michalis Faloutsos, Xuetao Wei, Daniela Oliveira and Jedidiah R. Crandall. FAROS: Illuminating In-Memory Injection Attacks via Provenance-based Whole System Dynamic Information Flow Tracking. IEEE/IFIP International Conference on Dependable Systems and Networks (DSN 2018). Luxembourg City, Luxembourg. June 2018. 

Natalie C. Ebner, Tian Lin, Donovan M. Ellis, Harold A. Rocha, Huizi Yang, Sandeep Dommaraju, Adam Soliman, Damon L. Woodard, Gary R. Turner, R. Nathan Spreng, and Daniela S. Oliveira. Uncovering Susceptibility Risk to Online Deception in Aging. Journal of Gerontology: Psychological Sciences, 2018.

Ruimin Sun, Xiaoyong Yuan, Andrew Lee, Matt Bishop, Donald E. Porter, Xiaolin Li, Andre Gregio and Daniela Oliveira. The Dose Makes the Poison – Leveraging Uncertainty for Effective Malware Detection. IEEE Conference on Dependable and Secure Computing (DSC). Taipei, Taiwan, August 7-10, 2017.  

Daniela Oliveira, Donovan Ellis, Huizi Yang, Harold Rocha, Sandeep Dommaraju, Devon Weir, Melis Muradoglu and Natalie Ebner. Dissecting Spear Phishing Emails for Older vs Young Adults: On the Interplay of Weapons of Influence and Life Domains in Predicting Susceptibility to Phishing. ACM CHI Conference on Human Factors in Computing Systems 2017. May 6-11, 2017. Denver, Colorado. Acceptance rate: 25%. 

Ruimin Sun, Andrew Lee, Aokun Chen, Donald E. Porter, Matt Bishop and Daniela Oliveira. Bear: A Framework for Understanding Application Sensitivity to OS (Mis)Behavior. 27th IEEE International Symposium on Software Reliability Engineering (ISSRE) 2016. October 23-27, 2016, Ottawa, Canada. 

Aokun Chen, Pratik Brahma, Dapeng Oliver Wu, Natalie Ebner, Brandon Matthews, Jedidiah Crandall, Xuetao Wei, Michalis Faloutsos and Daniela Oliveira. Cross-Layer Personalization as a First Class Citizen for Situation Awareness and Computer Infrastructure Security. ACM New Security Paradigms Workshop. C Lazy U Ranch, Colorado, USA, September 26-29, 2016

Daniela Oliveira, Jedidiah Crandall, Harry Kalodner, Nicole Morin, Megan Maher, Jesus Navarro and Felix Emiliano. An Information Flow-based Taxonomy to Understand the Nature of Software Vulnerabilities. 31st International Conference on ICT Systems Security and Privacy Protection – Springer IFIP SEC 2016. Ghent, Belgium, May 2016. Acceptance rate: 19.2%

Zinaida Benenson, Gabriele Lenzini, Daniela Oliveira, Simon Parker and Sven Uebelacker. Maybe Poor Johnny Really Cannot Encrypt – The Case for a Complexity Theory for Usable Security. ACM New Security Paradigms Workshop. Twente, The Netherlands, September 8-11 2015. 

Ruimin Sun, Matt Bishop, Daniela Oliveira, Natalie C. Ebner and Don Porter. The Case for Unpredictability and Deception as OS Features. ;login August 2015.

Ruimin Sun, Don Porter, Daniela Oliveira and Matt Bishop. The Case for Less Predictable Operating System Behavior. 15th Workshop on Hot Topics in Operating Systems. Kartause Ittingen, Switzerland, May 18-20 2015. Acceptance rate: 32%. 

Daniela Oliveira, Marissa Rosenthal, Nicole Morin, Martin Kuo-Chuan Yeh, Justin Cappos and Yanyan Zhuang. It’s the Psychology Stupid: How Heuristics Explain Software Vulnerabilities and How Priming can Illuminate Developer’s Blind Spots. Annual Computer Security Applications Conference (ACSAC) 2014. New Orleans, 8-12 December 2014. Acceptance rate 19.9%. 

Daniela Oliveira, Nicholas Wetzel*, Max Bucci*, Dean Sullivan and Yier Jin. Hardware-Software Collaboration for Secure Coexistence with Kernel Extensions.  ACM Applied Computing Review Journal, Fall 2014 Issue, Volume 14, Number 3. 

Justin Cappos, Yanyan Zhuang, Daniela Oliveira, Marissa Rosenthal, and Martin Kuo-Chuan Yeh. Vulnerabilities as Blind Spots in Developer’s Heuristic-Based Mental ModelsNew Security Paradigms Workshop (NSPW) 2014. Victoria, British Columbia, Canada. 15-18 September 2014. Acceptance rate 30%.

Chia-Che Tsai, Kumar Saurabh Arora, Nehal Bandi, Bhushan Jain, William Jannen, Jitin John, Harry A. Kalodner*, Vrushali Kulkarni,  Daniela Oliveira, Donald Porter. Cooperation and security isolation of library OSes for multi-process applications. Eurosys (The European Conference on Computer Systems) 2014. Amsterdam, The Netherlands, April 2014. (18%)

Yier Ji and Daniela Oliveira. Trustworthy SoC Architecture with On-Demand Security Policies and HW-SW Cooperation (Extended Abstract)5th Workshop on SoCs, Heterogeneous Architectures and Workloads (SHAW-5, with HPCA-20). Orlando, FL, February 2014.

Daniela Oliveira,  Jesus Navarro*, Nicholas Wetzel*, and Max Bucci. Ianus: Secure and Holistic Coexistence with Kernel Extensions – A Immune System-inspired Approach. ACM SAC (Symposium on Applied Computing) – Security Track. Gyeongju, Korea, March 2014.  

Jedidiah Crandall and Daniela Oliveira. Holographic Vulnerability Studies: Vulnerabilities as Fractures in Interpretation as Information Flows Across Abstraction BoundariesNew Security Paradigms Workshop. Bertinoro, Italy, September 2012. 

Jesus Navarro*, Enrique Naudon* and Daniela Oliveira. Bridging the Semantic Gap to Mitigate Kernel-level Keyloggers. IEEE Workshop on Semantic Computing and Privacy (co-located with the IEEE Symposium on Security and Privacy). San Francisco, CA, May 2012.

Dhiraj Murthy, Alexander Gross, and Daniela Oliveira. Understanding Cancer-based Networks in Twitter using Social Network Analysis. IEEE Workshop on Semantic Biomedical Computing (together with the IEEE International Conference on Semantic Computing), September 2011. 

Henric Johnson, Niklas Lavesson, Daniela Oliveira, and S. Felix Wu. Trustworthy Opportunistic Sensing: A Social Computing Paradigm. Workshop on Issues and Challenges in Social Computing(with IEEE International Conference on Information Reuse and Integration), August 2011.

Daniela Alvim Seabra de Oliveira and S. Felix Wu. Protecting Kernel Code and Data with a Virtualization-Aware Collaborative Operating System. Annual Computer Security Applications Conference (ACSAC). Honolulu, Hawaii. December 2009. (<20%) 

Jedidiah R. Crandall, John Brevik, Shaozhi Ye, Gary Wassermann, Daniela A.S. de Oliveira, Zhendong Su, S. Felix Wu, and Frederic T. Chong. Putting Trojans on the Horns of a Dilemma: Redundancy for Information Theft Detection. Special Issue on Security in Computing of the Transactions on Computational Sciences Journal (Springer LNCS).

Ryan Iwahashi, Daniela Oliveira, S. Felix Wu, Jedidiah Crandall, Young-Jun Heo, Jin-Tae Oh, and Jong-Soo Jang. Towards Automatically Generating Double-Free Vulnerability Signatures Using Petri Nets. 11th Information Security Conference (ISC 2008). Taipei, Taiwan. September 2008.

Daniela A.S. de Oliveira, Jedidiah R. Crandall, Gary Wassermann, Shaozhi Ye, Felix Wu, Zhendong Su, and Frederic T. Chong. Bezoar: Automated Virtual Machine-based Full-System Recovery from Control-Flow Hijacking Attacks. 2008 IEEE/IFIP Network Operations and Management Symposium (NOMS 2008). Salvador-Bahia, Brazil. April 2008. (27% acceptance rate) 

Daniela A. S. de Oliveira, Jedidiah R. Crandall, Gary M. Wassermann, S. Felix Wu, Zhendong Su, and Frederic T. Chong. ExecRecorder: VM-Based Full-System Replay for Attack Analysis and System RecoveryWorkshop on Architectural and System Support for Improving Software Dependability (ASID 2006 with ASPLOS). October 21st, 2006.

Jedidiah R. Crandall, Gary Wassermann, Daniela A. S. de Oliveira, Zhendong Su, S. Felix Wu, and Frederic T. Chong. Temporal Search: Detecting Hidden Malware Timebombs with Virtual Machines. Twelfth International Conference on Architectural Support for Programming Languages and Operating Systems (ASPLOS XII). San Jose, CA. October 2006. (22% acceptance rate).

Daniela A. S. dos Santos (Daniela Oliveira), Alex Borges Vieira, Berthier Ribeiro-Neto and Sergio Vale Aguiar Campos. Performance Analysis and Optimization of a Distributed Video on Demand Service. 2003 IEEE International Symposium on Performance Analysis of Systems and Software, Austin, Texas, USA. March 2003.

Peer-Reviewed Publications in Portuguese

Daniela Alvim Seabra dos Santos, Bruno Santos Pimentel, Fabiana Trindade Machado, Gisele Silva Cardoso e Wilson de Padua Paula Filho. Personalization and Implementation of Quality Management Procedures in the Context of a Software Process Improvement Program (original work in Portuguese), in the Proceedings of the III Brazilian Symposium on Quality of Software (SBQS’2004). Brasilia, DF, Brazil. June 2004.

Daniela A. S. dos Santos , Alex Borges, Matheus Ribeiro, Joao Caram, Berthier Ribeiro-Neto and Sergio Campos. Architectures for a New Generation of VoD Servers (original work in Portuguese), in the Proceedings of the VIII Brazilian Symposium on Multimedia and Hypermedia Systems (SBMIDIA 2002). Fortaleza, CE, Brazil. October 2002.

Lucio Mauro Pereira, Berthier Ribeiro-Neto and Daniela A. S. dos Santos. Performance Analysis of a Video Server in Multiple Resolutions (original work in Portuguese), in the Proceedings of the VIII Brazilian Symposium on Multimedia and Hypermedia Systems (SBMIDIA 2002). Fortaleza, CE, Brazil. October 2002.

Daniela A. S. dos Santos, Berthier Ribeiro-Neto and Sergio V. A. Campos. Performance Analysis of a Distributed Video on Demand Service (original work in Portuguese), in the Proceedings of the VII Brazilian Symposium on Multimedia and Hypermedia Systems (SBMIDIA 2001). Florianopolis, SC, Brazil. October 2001.

Daniela A. S. dos Santos, Marcio T. Oliveira, Reuber G. Duarte, Antonio Alfredo F. Loureiro, Geraldo Robson Mateus and Berthier Ribeiro-Neto. Adaptive Exhibition of MPEG Video for Mobile Environments (original work in Portuguese), in the Proceedings of the III Brazilian Workshop on Wireless Communication and Mobile Computing. Recife, PE, Brazil. August 2001.

Master thesis (2001): Title: Performance Analysis of a Distributed Video on Demand Service. Advisor: Prof. Berthier Ribeiro-Neto (PhD, University of California, Los Angeles, 1995), Co-Advisor: Prof. Sergio Vale Aguiar Campos (PhD, Carnegie Mellon University, 1997).

Luciano Bertini, Sergio V. A. Campos, George L. Jamil, Autran Macedo, Berthier Ribeiro-Neto, Claudemberg F. Santos and Daniela A. S. dos Santos. Performance Analysis of the ALMADEM-VoD Video Server (original work in Portuguese)in the Proceedings of the V Brazilian Symposium on Multimedia and Hypermedia Systems (SBMIDIA 99). Goiania, GO, Brazil. June 1999.