TWC

To lower costs and improve outcomes in current medical practice we need integrated interoperable medical systems to provide machine-assisted care, interaction detection, and improved alarm accuracy, to name just a few uses. This project is developing both the theory and practice to ensure the safety of next-generation medical devices by allowing secure coordination and composition, in facilities as small as a local doctor's office or as large as a multi-campus hospital.

Software is a critical element in a wide range of real-world applications. Attacks against computer software can cause substantial damage to the cyber-infrastructure of our modern society and economy. In fact, many new software security vulnerabilities are discovered on a daily basis. Therefore, it is vital to identify and resolve those security issues as early as possible. This research aims to investigate a scientific foundation and a novel methodology for automated detection, prevention, and resolution of prior-known software security vulnerabilities in software systems.

This project studies Internet censorship as practiced by some of today's nation-states. The effort emphasizes analyzing the techncial measures used by censors to perform censorship, the extent to which their operations inflict collateral damage (unintended blocking, or blocking of activity wholly outside the censoring nation), and vulnerabilities due to the specifics of how censorship operates.

Progress in computer vision makes biometric authentication and recognition become more reliable and readily available than before, with a potential for ubiquitous use of such data well beyond traditional authentication. The need to protect highly sensitive biometrics is apparent, which, unlike other types of data used for authentication purposes, cannot be revoked and replaced with a new value. This means that any breach in security of biometric data has far reaching consequences to the individual than loss of other sensitive data.

The vast majority of the code in most applications comes from the libraries it imports, rather than the program itself. As a result, hackers often exploit flaws in libraries like glibc or openssl that are used across multiple applications instead of attacking individual flaws in code specific to the application. This makes it easier for an attacker to compromise many applications at once with a single exploit. This work isolates the impact of flaws in a deployed program into the smallest area possible.