G. Maier, R. Sommer, H. Dreger, A. Feldmann, V. Paxson and F. Schneider, Enriching Network Security Analysis with Time Travel, Proc. ACM SIGCOMM 2008, to appear.
M. Allman, C. Kreibich, V. Paxson, R. Sommer and N. Weaver, Principles for Developing Comprehensive Network Visibility (HTML, PDF), USENIX Workshop on Hot Topics in Security, July 2008. To appear.
Leo Juan, Christian Kreibich, Chih-Hung Lin, and Vern Paxson, A Tool for Offline and Live Testing of Evasion Resilience in Network Intrusion Detection Systems (Extended Abstract), Proc. Fifth GI International Conference on Detection of Intrusions and Malware & Vulnerability Assessment, July 2008. (Longer version).
C. Kreibich, C. Kanich, K. Levchenko, B. Enright, G. Voelker, V. Paxson, and S. Savage, On the Spam Campaign Trail (HTML, PDF), First USENIX Workshop on Large-scale Exploits and Emergent Threats (LEET '08), 2008.
M. Vutukuru, H. Balakrishnan and V. Paxson, Efficient and Robust TCP Stream Normalization, Proc. IEEE Symposium on Security and Privacy, May 2008.
M. Allman and V. Paxson, A Reactive Measurement Framework, Proc. Passive and Active Measurement Conference, April 2008.
J. Franklin, V. Paxson, A. Perrig, and S. Savage, An Inquiry into the Nature and Causes of the Wealth of Internet Miscreants, Proc. ACM CCS, October 2007.
J. Gonzalez, V. Paxson, and N. Weaver, Shunting: A Hardware/Software Architecture for Flexible, High-Performance Network Intrusion Prevention , Proc. ACM CCS, October 2007.
M. Allman, V. Paxson, and J. Terrell, A Brief History of Scanning , Proc. ACM IMC, October 2007.
M. Allman and V. Paxson, Issues and Etiquette Concerning Use of Shared Measurement Data, Proc. ACM IMC, October 2007.
M. Vallentin, R. Sommer, J. Lee, C. Leres, V. Paxson, and Brian Tierney, The NIDS Cluster: Scalable, Stateful Network Intrusion Detection on Commodity Hardware, Proc. RAID 2007.
M. Allman, C. Kreibich, V. Paxson, R. Sommer and N. Weaver, The Strengths of Weaker Identities: Opportunistic Personas, Proc. USENIX Hot Security, August 2007.
J. Jung, R. Milito, and V. Paxson, On the Adaptive Real-Time Detection of Fast-Propagating Network Worms, Proc. Fourth GI International Conference on Detection of Intrusions & Malware, and Vulnerability Assessment, July 2007.
V. Paxson, R. Sommer, and N. Weaver, An Architecture for Exploiting Multi-Core Processors to Parallelize Network Intrusion Prevention, Proc. IEEE Sarnoff Symposium, May 2007.
N. Weaver, V. Paxson, and J. Gonzalez, The Shunt: An FPGA-Based Accelerator for Network Intrusion Prevention, Proc. FPGA '07, February 2007.
M. Allman, E. Blanton, V. Paxson and S. Shenker, Fighting Coordinated Attackers with Cross-Organizational Information Sharing, Proc. HOTNETS 2006.
A. Parker et al, Network System Challenges in Selective Sharing and Verification for Personal, Social, and Urban-Scale Sensing Applications, Proc. HOTNETS 2006.
J. Jung, R. Milito and V. Paxson, On the Adaptive Real-Time Detection of Fast-Propagating Network Worms, MIT Technical Report MIT-CSAIL-TR-2006-074, November 2006.
R. Pang, V. Paxson, R. Sommer and L. Peterson, binpac: A yacc for Writing Application Protocol Parsers, Proc. ACM IMC, October 2006.
J. Kannan, J. Jung, V. Paxson and C. Koksal, Semi-Automated Discovery of Application Session Structure, Proc. ACM IMC, October 2006.
W. Cui, V. Paxson and N. Weaver, GQ: Realizing a System to Catch Worms in a Quarter Million Places, ICSI Technical Report TR-06-004, September 2006.
V. Paxson, K. Asanovic, S. Dharmapurikar, J. Lockwood, R. Pang, R. Sommer and N. Weaver, Rethinking Hardware Support for Network Analysis and Intrusion Prevention, Proc. USENIX Hot Security, August 2006.
H. Dreger, A. Feldmann, M. Mai, V. Paxson and R. Sommer, Dynamic Application-Layer Protocol Analysis for Network Intrusion Detection, Proc. USENIX Security Symposium, August 2006. (PDF)
N. Duffield, F. Lo Presti, V. Paxson and D. Towsley, Network Loss Tomography Using Striped Unicast Probes, IEEE/ACM Transactions on Networking, Vol.14, No.4, pp. 697-710, August 2006.
J. Gonzalez and V. Paxson, Enhancing Network Intrusion Detection With Integrated Sampling and Filtering, Proc. RAID 2006.
S. Floyd, V. Paxson and A. Falk, IAB Thoughts on the Role of the Internet Research Task Force (IRTF), RFC 4440, March 2006.
W. Cui, V. Paxson, N. Weaver and R Katz, Protocol-Independent Adaptive Replay of Application Dialog, Proc. NDSS, February 2006.
R. Pang, M. Allman, V. Paxson and J. Lee, The Devil and Packet Trace Anonymization, Computer Communication Review, 36(1), January 2006.
V. Yegneswaran, P. Barford and V. Paxson, Using Honeynets for Internet Situational Awareness, Proc. HOTNETS 2005.
R. Pang, M. Allman, M. Bennett, J. Lee, V. Paxson and B. Tierney, A First Look at Modern Enterprise Traffic, Proc. ACM IMC, October 2005. (PDF)
R. Sommer and V. Paxson, Exploiting Independent State For Network Intrusion Detection, Proc. ACSAC 2005.
A. Kumar, V. Paxson and N. Weaver, Exploiting Underlying Structure for Detailed Reconstruction of an Internet Scale Event, Proc. ACM IMC, October 2005. (PDF.) This is our forensic analysis of the Witty worm.
S. Kornexl, V. Paxson, H. Dreger, A. Feldmann and R. Sommer, Building a Time Machine for Efficient Recording and Retrieval of High-Volume Network Traffic, Proc. ACM IMC, October 2005. (PDF)
S. Dharmapurikar and V. Paxson, Robust TCP Stream Reassembly in the Presence of Adversaries, Proc. USENIX Security Symposium 2005. (PDF)
M. Allman, E. Blanton and V. Paxson, An Architecture for Developing Behavioral History, Proc. Steps to Reducing Unwanted Traffic on the Internet (SRUTI) 2005.
H. Dreger, C. Kreibich, V. Paxson and R. Sommer, Enhancing the Accuracy of Network-based Intrusion Detection with Host-based Context, Proc. Conference on Detection of Intrusions and Malware and Vulnerability Assessment (DIMVA) 2005.
J. Hellerstein, V. Paxson, L. Peterson, T. Roscoe, S. Shenker and D. Wetherall, The Network Oracle, Bulletin of the IEEE Computer Society Technical Committee on Data Engineering, 28(1), March 2005.
R. Pang, V. Yegneswaran, P. Barford, V. Paxson and L. Peterson, Characteristics of Internet Background Radiation, Proc. ACM IMC, October 2004.
R. Sommer and V. Paxson, Exploiting Independent State For Network Intrusion Detection, Technical Report TUM-I0420, Technische Universität München, November 2004. (Postscript)
N. Weaver, I. Hamadeh, G. Kesidis and V. Paxson, Preliminary Results Using ScaleDown to Explore Worm Dynamics, Proc. ACM CCS WORM, October 2004.
S. Staniford, D. Moore, V. Paxson and N. Weaver, The Top Speed of Flash Worms, Proc. ACM CCS WORM, October 2004.
H. Dreger, A. Feldmann, V. Paxson, and R. Sommer, Operational Experiences with High-Volume Network Intrusion Detection, Proc. ACM CCS, October 2004.
N. Weaver, D. Ellis, S. Staniford and V. Paxson, Worms vs. Perimeters: The Case for Hard-LANs, Proc. Hot Interconnects 12, August 2004.
N. Weaver, S. Staniford and V. Paxson, Very Fast Containment of Scanning Worms, Proc. USENIX Security Symposium, August 2004.
N. Weaver and V. Paxson, A Worst-Case Worm, Proc. Third Annual Workshop on Economics and Information Security (WEIS04), May 2004.
J. Jung, V. Paxson, A. Berger, and H. Balakrishnan, Fast Portscan Detection Using Sequential Hypothesis Testing, Proc. IEEE Symposium on Security and Privacy, May 2004.
R. Pang and V. Paxson, A High-level Programming Environment for Packet Trace Anonymization and Transformation, Proc. ACM SIGCOMM 2003, August 2003.
N. Weaver, V. Paxson, S. Staniford and R. Cunningham, A Taxonomy of Computer Worms, Proc. ACM CCS Workshop on Rapid Malcode, October 2003.
D. Moore, V. Paxson, S. Savage, C. Shannon, S. Staniford and N. Weaver, Inside the Slammer Worm, Security and Privacy, July/August 2003.
N. Weaver, V. Paxson, S. Staniford and R. Cunningham, Large Scale Malicious Code: A Research Agenda. DARPA-sponsored report, 2003.
U. Shankar and V. Paxson, Active Mapping: Resisting NIDS Evasion Without Altering Traffic, Proc. IEEE Symposium on Security and Privacy, May 2003.
J. Gonzalez and V. Paxson, pktd: A Packet Capture and Injection Daemon, Proc. Passive & Active Measurement: PAM-2003.
D. Moore, V. Paxson, S. Savage, C. Shannon, S. Staniford and N. Weaver, The Spread of the Sapphire/Slammer Worm, technical report, February 2003.
Computer Science and Telecommunications Board, National Research Council, The Internet Under Crisis Conditions: Learning from September 11, National Academy Press, Washington, D.C., 2002.
E. Kohler, J. Li, V. Paxson and S. Shenker, Observed Structure of Addresses in IP Traffic, Proc. ACM SIGCOMM Internet Measurement Workshop, November 2002.
Y. Zhang, L. Breslau, V. Paxson and S. Shenker, On the Characteristics and Origins of Internet Flow Rates, Proc. ACM SIGCOMM, August 2002.
R. Mahajan, S. Bellovin, S. Floyd, J. Ioannidis, V. Paxson and S. Shenker. Controlling High Bandwidth Aggregates in the Network, Computer Communication Review 32(3), July 2002. (Extended version; Slashdot note; Web page on ACC and Pushback.)
W. Willinger, R. Govindan, S. Jamin, V. Paxson and S. Shenker, Scaling phenomena in the Internet: Critically examining criticality, Proceedings of Natl. Acad. Sci. USA, Vol. 99, Suppl. 1, 2573-2580, February 19, 2002.
D. Donoho, A. G. Flesia, U. Shankar, V. Paxson, J. Coit, and S. Staniford, Multiscale Stepping-Stone Detection: Detecting Pairs of Jittered Interactive Streams by Exploiting Maximum Tolerable Delay, Proc. RAID 2002.
R. Govindan and V. Paxson, Estimating Router ICMP Generation Delays, Proceedings of Passive & Active Measurement: PAM-2002.
W. Willinger, V. Paxson, R. H. Riedi and M. S. Taqqu, Long-range dependence and data network traffic. Long-range Dependence: Theory and Applications, P. Doukhan, G. Oppenheim and M. S. Taqqu, eds., Birkhauser, 2002.
S. Floyd and V. Paxson, Difficulties in Simulating the Internet. (PDF) IEEE/ACM Transactions on Networking, Vol.9, No.4, pp. 392-403, August 2001. An earlier version appeared in Proceedings of the 1997 Winter Simulation Conference, December 1997.
M. Handley, C. Kreibich and V. Paxson, Network Intrusion Detection: Evasion, Traffic Normalization, and End-to-End Protocol Semantics (HTML). (compressed Postscript) (PDF) Proc. USENIX Security Symposium 2001.
V. Paxson, An Analysis of Using Reflectors for Distributed Denial-of-Service Attacks (HTML). (compressed Postscript) (PDF) Computer Communication Review 31(3), July 2001.
Computer Science and Telecommunications Board, National Research Council, Looking Over the Fence at Networks: A Neighbor's View of Networking Research, National Academy Press, Washington, D.C., 2001.
N. Duffield, F. Lo Presti, V. Paxson, and D. Towsley, Inferring link loss using striped unicast probes, Proc. IEEE INFOCOM, April 2001.
Y. Zhang and V. Paxson, Detecting Backdoors, Proc. 9th USENIX Security Symposium, August 2000. (HTML)
Y. Zhang and V. Paxson, Detecting Stepping Stones, Proc. 9th USENIX Security Symposium, August 2000. (HTML)
R. Stewart, Q. Xie, K. Morneault, C. Sharp, H. Schwarzbauer, T. Taylor, I. Rytina, M. Kalla, L. Zhang, and V. Paxson, Stream Control Transmission Protocol, RFC 2960, Proposed Standard, October 2000.
Y. Zhang, V. Paxson, and S. Shenker, The Stationarity of Internet Path Properties: Routing, Loss, and Throughput, ACIRI Technical Report, May 2000.
X. Xiao, A. Hannan, V. Paxson, and E. Crabbe, TCP Processing of the IPv4 Precedence Field, RFC 2873, Proposed Standard, June 2000.
V. Paxson, A. Adams, and M. Mathis, Experiences with NIMI, Proceedings of Passive & Active Measurement: PAM-2000.
S. Bradner and V. Paxson, IANA Allocation Guidelines For Values In the Internet Protocol and Related Headers, RFC 2780, Best Current Practice, March 2000.
A. Adams, T. Bu, R. Caceres, N. Duffield, T. Friedman, J. Horowitz, F. Lo Presti, S. B. Moon, V. Paxson, and D. Towsley, The Use of End-to-end Multicast Measurements for Characterizing Internal Network Behavior, IEEE Communications, 38(5), May 2000.
M. Allman and V. Paxson, On Estimating End-to-End Network Path Properties, ACM SIGCOMM '99, September 1999, Cambridge, MA.
V. Paxson, Bro: A System for Detecting Network Intruders in Real-Time, Computer Networks, 31(23-24), pp. 2435-2463, 14 Dec. 1999. (PDF, HTML) This paper is a revision of paper that previously appeared in Proc. 7th USENIX Security Symposium , January 1998.
J. Mahdavi and V. Paxson, IPPM Metrics for Measuring Connectivity. RFC 2678, Proposed Standard, September 1999. Previously issued as RFC 2498, Experimental, January 1999.
M. Allman, V. Paxson and W. Stevens, TCP Congestion Control, RFC 2581, Proposed Standard, April 1999.
P. Francis, S. Jamin, V. Paxson, L. Zhang, D. Gryniewicz, and Y. Jin, An architecture for a global Internet host distance estimation service, Proc. IEEE INFOCOM, March 1999.
V. Paxson, M. Allman, S. Dawson, W. Fenner, J. Griner, I. Heavens, K. Lahey, J. Semke, and B. Volz, Known TCP Implementation Problems, RFC 2525, Informational, March 1999.
V. Paxson, G. Almes, J. Mahdavi, and M. Mathis, Framework for IP Performance Metrics. RFC 2330, Informational, May 1998.
V. Paxson, Bro: A System for Detecting Network Intruders in Real-Time. Proceedings of the 7th USENIX Security Symposium, San Antonio, TX, January 1998. This version of the paper differs from that in the printed Proceedings in that an error in the performance analysis, which overstated the load on the FDDI ring by a factor of two, has been corrected.
V. Paxson, On Calibrating Measurements of Packet Transit Times. Proceedings of SIGMETRICS '98, June 1998.
V. Paxson, J. Mahdavi, A. Adams, and M. Mathis, An Architecture for Large-Scale Internet Measurement. IEEE Communications, Vol.36, No.8, pp 48-54, August 1998.
W. Willinger, and V. Paxson, Where Mathematics meets the Internet, Notices of the American Mathematical Society, Vol.45, No.8, pp. 961-970, August 1998.
W. Willinger, V. Paxson, and M.S. Taqqu, Self-similarity and Heavy Tails: Structural Modeling of Network Traffic. In A Practical Guide to Heavy Tails: Statistical Techniques and Applications, Adler, R., Feldman, R., and Taqqu, M.S., editors, Birkhauser, 1998.
A. Adams, J. Mahdavi, M. Mathis, and V. Paxson, Creating a Scalable Architecture for Internet Measurement. Proc. INET '98.
V. Paxson, End-to-End Internet Packet Dynamics, ACM SIGCOMM '97, September 1997, Cannes, France.
V. Paxson, Automated Packet Trace Analysis of TCP Implementations, ACM SIGCOMM '97, September 1997, Cannes, France.
V. Paxson, Measurements and Analysis of End-to-End Internet Dynamics, (1.8 MB gzip compressed, ~400 pages), Ph.D. dissertation, 1997. README.
V. Paxson, Fast, Approximate Synthesis of Fractional Gaussian Noise for Generating Self-Similar Network Traffic . Computer Communications Review, V. 27 N. 5, October 1997, pp. 5-18. This paper is a minor revision of Fast Approximation of Self-Similar Network Traffic , an April 1995 technical report. Abstract.
V. Paxson, and S. Floyd, Why We Don't Know How To Simulate The Internet, Proceedings of the 1997 Winter Simulation Conference, December 1997.
W. Willinger, and V. Paxson, Discussion of ``Heavy Tail Modeling and Teletraffic Data'' by S.R. Resnick, Annals of Statistics, Vol.25, No.5, pp. 1805-1869, 1997. Abstract of Prof. Resnick's paper, On-line version of Prof. Resnick's paper.
V. Paxson and S. Floyd, Wide-Area Traffic: The Failure of Poisson Modeling, IEEE/ACM Transactions on Networking, Vol. 3 No. 3, pp. 226-244, June 1995. Abstract. (Original Postscript.) An earlier version of this paper appeared in SIGCOMM 94, pp. 257-268, August 1994.
V. Paxson, Growth Trends in Wide-Area TCP Connections. IEEE Network, Vol. 8 No. 4, pp. 8-17, July 1994. Abstract.
V. Paxson, and C. Saltmarsh, Glish: A User-Level Software Bus for Loosely-Coupled Distributed Systems. Proceedings of the 1993 Winter USENIX Technical Conference (San Diego, CA, Jan. 1993), USENIX. Abstract.
Return to [Vern Paxson].