Risk Management
Pau-Chen Cheng, Pankaj Rohatgi, IT Security as Risk Management: A Research Perspective, IBM Research Report RC24529 (use search key "RC24529"), 2008
Ian Molloy, Pau--Chen Cheng, Pankaj Rohatgi,
Trading in Risk: Using Markets to Improve Access Control,
New Security Paradigms Workshop (NSPW) 2008
Pau--Chen Cheng, Paul A. Karger,
Risk Modulating Factors in Risk--Based Access Control for Information in a MANET,
IBM Research Report RC24494 (use search key "RC24494"), 2008
Yow Tzu Lim, Pau Chen Cheng, Pankaj Rohatgi, John A Clark,
Dynamic Security Policy Learning,
IBM Research Report RC24865, 2009.
Yow Tzu Lim, Pau Chen Cheng, John Andrew Clark, Pankaj Rohatgi,
Policy Evolution with Genetic Programming: a Comparison of Three Approaches,
WCCI 2008 -- A joint meeting of the IEEE, the EPS, and the IEE. IEEE Catalog Number: CFP08ICE
Yow Tzu Lim, Pau-Chen Cheng, Pankaj Rohatgi, John Andrew Clark,
MLS Security Policy Evolution with Genetic Programming,
Genetic and Evolutionary Computation Conference (GECCO) 2008
Yow Tzu Lim, Pau-Chen Cheng, John Andrew Clark, Pankaj Rohatgi:
Policy Evolution with Grammatical Evolution,
Simulated Evolution And Learning (SEAL) 2008.
Yow Tzu Lim, Pau Chen Cheng, John Andrew Clark, Pankaj Rohatgi,
Policy Evolution with Genetic Programming,
IBM Research Report RC24442 (use search key "RC24442"), 2007
Pau-Chen Cheng, Pankaj Rohatgi, Claudia Keser, Paul A. Karger,Grant M. Wagner, Angela Schuett Reninger, Fuzzy Multi-Level Security : An Experiment on Quantified Risk-Adaptive Access Control, 2007 IEEE Symposium on Security and Privacy, May 2007 (PowerPoint foils)
Pau-Chen Cheng, Pankaj Rohatgi, Claudia Keser, Paul A. Karger,Grant M. Wagner, Angela Schuett Reninger, Fuzzy Multi-Level Security : An Experiment on Quantified Risk-Adaptive Access Control, IBM Research Report RC24190, February, 2007
Content Distribution Network
K. Lee, S. Chari, A. Shaikh, S. Sahu, P. Cheng, Improving the resilience of content distribution networks to large scale distributed denial of service attacks, Computer Networks, Volume 51 , Issue 10, July 2007
K. Lee, S. Chari, A. Shaikh, S. Sahu, P. Cheng, Protecting Content Distribution Networks from Denial of Service Attacks,
Proc. of IEEE International Conference on Communications (ICC 2005), May 2005.
Intrusion Detection and Prevention
Suresh N. Chari, Pau-Chen Cheng, BlueBox: A Policy-Driven, Host-Based Intrusion Detection System, ACM Transactions on Information and System Security (TISSEC), Volume 6 , Issue 2, May 2003
Suresh N. Chari, Pau-Chen Cheng BlueBox: A Policy-Driven, Host-Based Intrusion Detection System, in the Proceedings of the Network and Distributed Systems Security Symposium, San Diego, California, 2002
Secure Multicast
Ran Canetti, Pau--Chen Cheng, Frederique Giraud, Dimitrios Pendarakis, Josyula R. Rao, Pankaj Rohatgi and Debanjan Saha, An IPSec-based Host Architecture for Secure Internet Multicast, in the Proceedings of the Network and Distributed Systems Security Symposium, San Diego, California, February 2000
IPSEC/VPN
Pau-Chenn Cheng, An architecture for the Internet Key Exchange Protocol, IBM System Journal, Vol. 40, No. 3, 2001.
Pau-Chen Cheng, Juan A. Garay, Amir Herzberg and Hugo Krawczyk, A Security Architecture for the Internet Protocol, IBM System Journal, Vol. 37, No. 1, Feb. 1998.
Pau-Chen Cheng and Robert Glenn, Test Cases for HMAC-MD5 and HMAC-SHA1, Internet RFC 2202, Sep. 1997.
Pau-Chen Cheng, Juan A. Garay, Amir Herzberg, Hugo Krawczyk, Design and Implementation of Modular Key Management Protocol and IP Secure Tunnel on AIX, In the Proceedings of the 5th USENIX UNIX Security Symposium, June 1995