|
Evan CookeResearch Fellow, CSE University of Michigan
4929 CSE Building
|
| People |
I am currently a research fellow working with Professor Farnam Jahanian in the Software Systems Laboratory (SSL) at the University of Michigan. A copy of my dissertation is available here.
My research is focused on network security and distributed systems. I have worked on the Internet Motion Sensor project and the PREDICT projects. I work with Jon Oberheide, Sushant Sinha, Michael Bailey at UM and many other outstanding networking folks at Merit Network and Arbor Networks.
Outside of school I enjoy tinkering with networking and embedded systems projects and getting involved with the local business community. I like monkeys. I have interned here(defunct), here, here, here, and here and worked on this, this, and this.
Publications:
Rethinking Antivirus: Executable Analysis in the Network Cloud [pdf], [slides]Jon Oberheide, Evan Cooke, and Farnam Jahanian
2nd USENIX Workshop on Hot Topics in Security (HotSec'07), August 2007
Exposing Internet Address Use to Enhance Network Security [pdf]
Evan Cooke
University of Michigan Dissertation, May 2007
Internet-Scale Malware Mitigation: Combining Intelligence of the Control and Data Plane [pdf]
Ying Zhang, Evan Cooke, and Z. Morley Mao
Proc. of ACM CCS Workshop on Rapid Malcode (WORM'06), November 2006.
Resource-Aware Multi-Format Network Security Data Storage [pdf]
Evan Cooke, Andrew Myrick, David Rusek, Farnam Jahanian
Proc. of the SIGCOMM Workshop on Large Scale Attack Defense (LSAD'06), September 2006.
Hotspots: The Root Causes of Non-Uniformity in Self-Propagating Malware [pdf], [slides]
Evan Cooke, Z. Morley Mao, and Farnam Jahanian
Proc. of the International Conference on Dependable Systems and Networks (DSN'06), June 2006.
Reclaiming Network-wide Visibility Using Ubiquitous End System Monitors [pdf]
Evan Cooke, Richard Mortier, Austin Donnelly, Paul Barham and Rebecca Isaacs
Proc. of the USENIX Annual Technical Conference (USENIX'06), May 2006.
The Dark Oracle: Perspective-Aware Unused and Unreachable Address Discovery [pdf], [slides]
Evan Cooke, Michael Bailey, Farnam Jahanian, and Richard Mortier
Proc. of the 3rd ACM/USENIX Symposium on Networked Systems Design and Implementation (NSDI'06), May 2006.
Data Reduction for the Scalable Automated Analysis of Distributed Darknet Traffic [pdf]
Michael Bailey, Evan Cooke, Farnam Jahanian, Niels Provos, Karl Rosaen, and David Watson
Proc. of Internet Measurement Conference (IMC'05), October 2005
The Zombie Roundup: Understanding, Detecting, and Disrupting Botnets [pdf], [slides]
Evan Cooke, Farnam Jahanian, and Danny McPherson
Proc. of Workshop on Steps to Reducing Unwanted Traffic on the Internet (SRUTI'05), July 2005.
The Blaster Worm: Then and Now [pdf]
Michael Bailey, Evan Cooke, David Watson, Farnam Jahanian, and Jose Nazario
IEEE Security & Privacy Magazine, Volume: 3, Issue: 4, pages: 26-31, July-August 2005
The Internet Motion Sensor: A distributed blackhole monitoring system [pdf], [slides]
Michael Bailey, Evan Cooke, Farnam Jahanian, Jose Nazario, and David Watson
Proc. of Network and Distributed System Security Symposium (NDSS'05), February 2005.
Toward Understanding Distributed Blackhole Placement [pdf]
Evan Cooke, Michael Bailey, David Watson, Farnam Jahanian, and Danny McPherson
Proc. of ACM CCS Workshop on Rapid Malcode (WORM'04), October 2004.
Gaseous discharge plasmas produced by high-energy electron-irradiated insulators for spacecraft
Frederickson, A.R.; Benson, C.E.; Cooke, E.M.;
IEEE Transactions on Plasma Science, Volume: 28, Issue: 6, Pages:2037-2047, December 2000.
Software:
Projects:
- pynids - chksum_ctl support for pynids
- IPMaps - BGP/Darknet Data Visualization With Google Maps
- TeraServer - 1TB FreeBSD home server (writeup pending)
- MediaNOC - Distributed lazy-updating cache servers for distributed media synchronization over low bandwidth connections (writeup pending)
