Gail-Joon Ahn

School of Computing, Informatics, and Decision Systems Engineering

Professor

Faculty, TEMPE Campus, Mailcode 8809

Biography:

Gail-Joon Ahn is a professor of computer science and engineering in the School of Computing, Informatics, and Decision Systems Engineering and the director of Center for Cybersecurity and Digital Forensics at Arizona State University. He is also a Fulton Entrepreneurial Professor. He has authored more than 150 refereed research papers. Prior to joining ASU, he was an associate professor of the College of Computing and Informatics and founding director of Center for Digital Identity and Cyber Defense Research at University of North Carolina at Charlotte.

His research foci include security analytics and big data driven security intelligence, vulnerability and risk management, access control and security architecture for distributed systems, identity and privacy management, cyber crime analysis, security-enhanced computing platforms, and formal models for computer security device. His research has been supported by National Science Foundation, National Security Agency, Department of Defense, Office of Naval Research, Department of Energy, Department of Justice, Allstate, Intel, Bank of America, CISCO, GoDaddy, Hewlett Packard, Google, Microsoft and Robert Wood Johnson Foundation.

He is currently the information director of ACM Special Interest Group on Security, Audit and Control (SIGSAC) and he is a recipient of U.S. Department of Energy Early Career Principal Investigator Award, Educator of the Year Award from Federal Information Systems Security Educators' Association (FISSEA) and Best Researcher Award from CIDSE. Also, he serves as associate editor-in-chief of IEEE Transactions on Dependable and Secure Computing, associate editor of ACM Transactions on Information and Systems Security and editorial board of Computers & Security. He is also the Steering Committee chair of ACM Symposium on Access Control Models and Technologies and the general chair of ACM Conference on Computer and Communications Security (CCS 2014).

Education:

Ph.D. George Mason University 2000

Research Interests:

Research/Areas of Expertise:

Security analytics and big data driven security intelligence
Formal Models for Computer Security
Network and Distributed Systems Security
Vulnerability and Risk Assessment
Cyber Crime Analysis

Publications:

Selected publications:

Ziming Zhao, Gail-J. Ahn, and Hongxin Hu, Picture Gesture Authentication: Empirical Analysis, Automated Attacks, and Scheme Evaluation, ACM Transactions on Information and System Security, 2015.
Yiming Jing, Gail-J. Ahn, Ziming Zhao, and Hongxin Hu, Towards Automated Risk Assessment and Mitigation of Mobile Application, IEEE Transactions on Dependable and Secure Computing, 2014.
Mukesh Singhal, Santosh Chandrasekhar, Ge Tingjian, Ravi Sandhu, Ram Krishnan, Gail-J. Ahn and Elisa Bertino, Collaboration in Multi-Cloud Applications: Framework and Security Issues, IEEE Computer, February, 2013.
Hongxin Hu, Gail-J. Ahn and Jan Jorgense, Multiparty Access Control for On-line Social Networks: Model and Mechanisms, IEEE Transactions on Knowledge and Data Engineering, Vol. 25, No. 7, July 2013.
Hongxin Hu, Gail-J. Ahn and Ketan Kulkarni, Discovery and Resolution of Anomalies in Web Access Control Policies, IEEE Transactions on Dependable and Secure Computing, 2013.
Mohamed Shehab, Anna Squicciarini, Gail-J. Ahn, Irini Kokkinou, Access Control for Online Social Networks Third Party Applications, Computers & Security, Elsevier, Vol. 31, No. 8, November 2012.
Gail-J. Ahn, Jing Jin and Mohamed Shehab, Policy-driven Role-based Access Management for Ad-hoc Collaboration, Journal of Computer Security, Vol. 20, 2012.
Hongxin Hu, Gail-J. Ahn and Ketan Kulkarni, Detecting and Resolving Firewall Policy Anomalies, IEEE Transactions on Dependable and Secure Computing, Vol. 9, No. 3, 2012.
Ziming Zhao, Hongxin Hu, Gail-J. Ahn and Ruoyu Wuy, Risk-Aware Response for Mitigating MANET Routing Attacks, IEEE Transactions on Dependable and Secure Computing, Vo.9, No. 2, 2012.
Jing Jin, Gail-J. Ahn, Hongxin Hu, Michael Covington, and Xinwen Zhang, Patient-centric Authorization Framework for Electronic Health Records, Computers & Security, Vol. 30, No. 2-3, Elsevier Science, March-May 2011.
Hassan Takabi, James Joshi, and Gail-J. Ahn, Security and Privacy Challenges in Cloud Computing Environments, IEEE Security and Privacy, November/December 2010.
Karsten Sohr, Michael Drouineaud, Gail-Joon Ahn, and Martin Gogolla. Analyzing and Managing Role-Based Access Control Policies. IEEE Transactions on Knowledge and Data Engineering (2008).
Gail-J. Ahn, Hongxin Hu and Jing Jin. Towards Role-based Authorization for OSGi Service Environments. Proc. of the 12th IEEE International Workshop on Future Trends of Distributed Computing Systems (FTDCS 2008) (2008).
Gail-J. Ahn, Moonam Ko and Mohamed Shehab. Portable User-Centric Identity Management. Proc. of 23rd IFIP International Information Security Conference (SEC 2008) (2008).
Gail-J. Ahn, Napoleon Paxton and Kevin Pearson. Understanding IRC Bot Behaviors in Network-centric Attack Detection and Prevention Framework. Proc. of 3rd International Conference on Information Warfare and Security (2008).
Gail-J. Ahn, Wenjuan Xu and Xinwen Zhang. Visualization Based Policy Analysis: Case Study in SELinux. Proc. of IEEE Workshop on Policies for Distributed Systems and Networks (POLICY’08) (2008).
Hongxin Hu and Gail-J. Ahn. Enabling veri?cation and conformance testing for access control model,. Proc. of 13th ACM Symposium on Access Control Models And Technologies (SACMAT) (2008).
Jing Jin, Gail-J. Ahn, Michael J. Covington, and Xinwen Zhang. Toward an Access Control Model for Sharing Composite Electronic Health Records. Proc. of the 4th International Conference on Collaborative Computing (2008).
Karsten Sohr, Tanveer Mustafa, Gail-J. Ahn and Xinyu Bao. Enforcing Role-Based Access Control Policies in Web Services with UML and OCL. Proc. of the 24th Annual Computer Security Applications Conference (ACSAC) (2008).
Mizuho Iwaihara, Kohei Murakami, Gail-J. Ahn and Masatoshi Yoshikawa. Risk Evaluation for Personal Identity Management Based on Privacy Attribute Ontology. Proc. of the 27th International Conference on Conceptual Modeling (ER 2008) (2008).
Mohamed Shehab, Anna Squicciarini and Gail-J. Ahn. Beyond User-to-User Access Control for Online Social Networks. Proc. of the10th International Conference on Information and Communications Security (ICICS 2008), LNCS 5309 (2008).
Wenjuan Xu, Mohamed Shehab and Gail-J. Ahn. Systematic Policy Analysis for High-assurance Services in SELinux. Proc. of 13th ACM Symposium on Access Control Models And Technologies (SACMAT) (2008).
B. Tolone, Gail-Joon Ahn, T. Pai and S. Hong, Access Control in Collaborative Systems, ACM Computing Surveys, Vol. 37, No. 1, ACM, March 2005.
Longhua Zhang, Gail-Joon Ahn and Bill Chu, A Rule-Based Framework for Role-Based Delegation and Revocation, ACM Transactions on Information and System Security, Vol.6, No.3, August 2003.
Gail-Joon Ahn, S. Hong and M. Shin, Reconstructing a Formal Security Model, Information and Software Technology, Vol. 44, No. 11, Elsevier Science, August 2002.
Joon Park, Gail-Joon Ahn and Ravi Sandhu, Secure Attribute Services on the Web, ACM Transactions on Information and System Security, Vol. 4, No. 1, February 2001.
Gail-Joon Ahn and Ravi Sandhu, Role-based Authorization Constraints Specification, ACM Transactions on Information and System Security, pages 207-226, Vol. 3, No. 4, ACM, November 2000.

Research Activity:

Ahn,Gail-Joon*. III: Small: Collaborative Research: Privacy-Aware Collaborative Data Sharing in Human-Centered Social Networks. NSF-CISE(9/1/2015 - 8/31/2018).
Yau,Sik-Sang*, Ahn,Gail-Joon. DoD Information Assurance Security Program. NSA(8/1/2015 - 8/31/2016).
Candan,Kasim Selcuk*, Ahn,Gail-Joon, Davulcu,Hasan. Collaborative Research: Planning Grant: IUCRC for Assured and SCAlable Data Engineering (CASCADE). NSF-IIP(4/15/2015 - 3/31/2016).
Ahn,Gail-Joon*. A Study of Cyber Strategy Techniques with Data Diversity. ETRI(12/18/2014 - 12/17/2015).
Ahn,Gail-Joon*. Support for the Educational Activities at ACM CCS 2014. NSF-CISE(8/1/2014 - 7/31/2016).
Yau,Sik-Sang*, Ahn,Gail-Joon. DoD Information Assurance - Information Security Grant Program. NSA(8/1/2014 - 7/31/2015).
Ahn,Gail-Joon*. Development of Security Technology for Mobile System Software. Soongsil(8/1/2014 - 7/31/2020).
Bliss,Nadya T*, Ahn,Gail-Joon, Bliss,Daniel Wesley, Cooke,Nancy Jaworski, Corman,Steven Robert, Davulcu,Hasan, Dirks,Gary William, Finn,Edward Frederick, Finn,Edward Frederick, Liu,Huan, Maciejewski,Ross, Thies,Cameron G, Westerhoff,Paul, White,Dave Douglas. The Foresight Initiative. DOD-NGA(6/1/2014 - 10/31/2015).
Ahn,Gail-Joon*. WebChameleos: Towards Secure and Trustworthy Web Browsing over HTTP 20. CISCO SYSTEMS INC(10/15/2013 - 8/31/2015).
Ahn,Gail-Joon*. Socio metrics: Identifying Invisible Deviant Adversaries. DOD-ARMY-ARO(10/1/2013 - 6/30/2014).
Yau,Sik-Sang*, Ahn,Gail-Joon. DOD Information Assurance - Information Security Grant Program. NSA(8/26/2013 - 7/31/2014).
Ahn,Gail-Joon*. Policy-aware Secure Collaboration in Fog Computing. CISCO SYSTEMS INC(7/2/2013 - 5/31/2015).
Yau,Sik-Sang*, Ahn,Gail-Joon. DoD Information Assurance - Information Security Grant Program. NSA(8/23/2012 - 8/22/2013).
Yau,Sik-Sang*, Yau,Sik-Sang*, Ahn,Gail-Joon, Huang,Dijiang. SFS: An Information and Systems Assurance Scholarship Program. NSF-EHR-DUE(9/15/2011 - 8/31/2016).
Yau,Sik-Sang*, Ahn,Gail-Joon, Huang,Dijiang. ASU Application for DoD Information Assurance Scholarship Program. DOD(9/24/2010 - 12/23/2011).
Ahn,Gail-Joon*. Assured Resource Sharing in Ad-hoc Collaboration. DOE-CHICAGO(6/1/2010 - 5/31/2015).
Ahn,Gail-Joon*. User-centric Identity Management on Mobile Devices. OIN(5/1/2010 - 8/31/2012).
Ahn,Gail-Joon*. TC: Small: Collaborative Proposal: User-Controlled Persona in Virtual Community. NSF-CISE(9/15/2009 - 8/31/2013).
Yau,Sik-Sang*, Ahn,Gail-Joon. DoD Information Assurance Scholarship (IASP) Program: Building Information Assurance Forces at Arizona State University. NSA(9/12/2009 - 12/11/2010).
Ahn,Gail-Joon*. Secure Information Sharing within a Collaboratory Environment. DOE-CHICAGO(2/1/2009 - 1/31/2010).
Ahn,Gail-Joon*. Examining the Creation, Distribution and Function of Malware on-Line. UNC Charlotte(1/1/2009 - 11/30/2009).
Ahn,Gail-Joon*. CT-M-Collaborative Research: Securing Dynamic Online Social Networks. NSF-CISE(9/1/2008 - 8/31/2013).
Ahn,Gail-Joon*. Detecting and Responding Network-centric Attack through Visual Analysis. North Carolina A&T State Univ(7/1/2008 - 7/29/2009).
Ahn,Gail-Joon*. Secure Information Sharing in Internet-based Collaborative Applications. NSF-CISE(7/1/2008 - 5/31/2009).

Courses

Summer 2020
Course Number	Course Title
CEN 584	Internship

Spring 2020
Course Number	Course Title
CSE 493	Honors Thesis
CSE 580	Practicum
CSE 584	Internship
CSE 590	Reading and Conference
CSE 595	Continuing Registration
CSE 599	Thesis
CSE 790	Reading and Conference
CEN 792	Research
CSE 792	Research
CEN 795	Continuing Registration
CSE 795	Continuing Registration
CSE 799	Dissertation

Fall 2019
Course Number	Course Title
CSE 580	Practicum
CSE 590	Reading and Conference
CSE 599	Thesis
CSE 790	Reading and Conference
CSE 799	Dissertation
CEN 799	Dissertation

Summer 2019
Course Number	Course Title
CSE 580	Practicum
CEN 584	Internship

Spring 2019
Course Number	Course Title
CSE 492	Honors Directed Study
CSE 493	Honors Thesis
CSE 580	Practicum
CSE 584	Internship
CSE 590	Reading and Conference
CSE 595	Continuing Registration
CSE 599	Thesis
CSE 790	Reading and Conference
CEN 792	Research
CSE 792	Research
CSE 795	Continuing Registration
CSE 799	Dissertation

Fall 2018
Course Number	Course Title
CSE 492	Honors Directed Study
CSE 493	Honors Thesis
CEN 580	Practicum
CSE 580	Practicum
CSE 590	Reading and Conference
CSE 595	Continuing Registration
CSE 599	Thesis
CSE 790	Reading and Conference
CEN 792	Research
CSE 792	Research
CSE 795	Continuing Registration
CSE 799	Dissertation

Summer 2018
Course Number	Course Title
CSE 580	Practicum
CSE 584	Internship
CEN 584	Internship
CSE 595	Continuing Registration
CSE 599	Thesis
CSE 790	Reading and Conference
CSE 792	Research
CSE 795	Continuing Registration

Spring 2018
Course Number	Course Title
CSE 492	Honors Directed Study
CSE 493	Honors Thesis
CEN 580	Practicum
CSE 580	Practicum
CSE 584	Internship
CSE 590	Reading and Conference
CSE 595	Continuing Registration
CSE 599	Thesis
CSE 790	Reading and Conference
CEN 792	Research
CSE 792	Research
CSE 795	Continuing Registration
CSE 799	Dissertation

Fall 2017
Course Number	Course Title
CSE 492	Honors Directed Study
CSE 493	Honors Thesis
CEN 580	Practicum
CSE 580	Practicum
CSE 590	Reading and Conference
CSE 595	Continuing Registration
CSE 599	Thesis
CSE 790	Reading and Conference
CEN 792	Research
CSE 792	Research
CSE 795	Continuing Registration
CSE 799	Dissertation

Summer 2017
Course Number	Course Title
CSE 580	Practicum
CSE 584	Internship
CEN 584	Internship
CSE 595	Continuing Registration
CSE 599	Thesis
CSE 790	Reading and Conference
CSE 792	Research
CSE 795	Continuing Registration

Spring 2017
Course Number	Course Title
CSE 492	Honors Directed Study
CSE 493	Honors Thesis
CEN 580	Practicum
CSE 580	Practicum
CSE 584	Internship
CSE 590	Reading and Conference
CSE 595	Continuing Registration
CSE 599	Thesis
CSE 790	Reading and Conference
CEN 792	Research
CSE 792	Research
CSE 795	Continuing Registration
CSE 799	Dissertation

Fall 2016
Course Number	Course Title
CSE 492	Honors Directed Study
CSE 493	Honors Thesis
CEN 580	Practicum
CSE 580	Practicum
CSE 590	Reading and Conference
CSE 595	Continuing Registration
CSE 599	Thesis
CSE 790	Reading and Conference
CEN 792	Research
CSE 792	Research
CSE 795	Continuing Registration
CSE 799	Dissertation

Summer 2016
Course Number	Course Title
CSE 580	Practicum
CSE 584	Internship
CEN 584	Internship
CSE 595	Continuing Registration
CSE 599	Thesis
CSE 790	Reading and Conference
CSE 792	Research
CSE 795	Continuing Registration

Spring 2016
Course Number	Course Title
CSE 469	Computer and Network Forensics
CSE 492	Honors Directed Study
CSE 493	Honors Thesis
CSE 580	Practicum
CEN 580	Practicum
CSE 584	Internship
CSE 590	Reading and Conference
CSE 595	Continuing Registration
CSE 599	Thesis
CSE 790	Reading and Conference
CEN 792	Research
CSE 792	Research
CSE 795	Continuing Registration
CSE 799	Dissertation

Fall 2015
Course Number	Course Title
CSE 465	Information Assurance
CSE 492	Honors Directed Study
CSE 493	Honors Thesis
CSE 580	Practicum
CEN 580	Practicum
CSE 584	Internship
CSE 590	Reading and Conference
CSE 595	Continuing Registration
CSE 599	Thesis
CSE 790	Reading and Conference
CEN 792	Research
CSE 792	Research
CSE 795	Continuing Registration
CSE 799	Dissertation

Presentations:

Jing Jin, Gail-J. Ahn, Michael J. Covington, and Xinwen Zhang. Toward an Access Control Model for Sharing Composite Electronic Health Records. The 4th International Conference on Collaborative Computing (Nov 2008).
Gail-J. Ahn, Moonam Ko and Mohamed Shehab. Portable User-Centric Identity Management. 23rd IFIP International Information Security Conference (SEC 2008) (Sep 2008).
Gail-J. Ahn. Network and Systems Assurance: Assurable and Usable Solutions. Research Breakfast Forum organized by Ira A. Fulton School of Engineering (Sep 2008).
Gail-J. Ahn. Assured Policy and Configuration Management: Risk-awareness and User-centricity. NSF Workshop on Assurable and Usable Security Configuration (Aug 2008).
Gail-J. Ahn. Role Engineering. ACM symposium on access control models and technologies (Jun 2008).
Hongxin Hu and Gail-J. Ahn. Enabling veri?cation and conformance testing for access control model. 13th ACM Symposium on Access Control Models And Technologies (SACMAT) (Jun 2008).
Wenjuan Xu, Mohamed Shehab and Gail-J. Ahn. Systematic Policy Analysis for High-assurance Services in SELinux. 13th ACM Symposium on Access Control Models And Technologies (SACMAT) (Jun 2008).
Gail-J. Ahn, Wenjuan Xu and Xinwen Zhang. Visualization Based Policy Analysis: Case Study in SELinux. IEEE Workshop on Policies for Distributed Systems and Networks (POLICY’08) (Jun 2008).
Gail-J. Ahn, Napoleon Paxton and Kevin Pearson. Understanding IRC Bot Behaviors in Network-centric Attack Detection and Prevention Framework. 3rd International Conference on Information Warfare and Security (Apr 2008).
Gail-J. Ahn. Access and Identity Management. Workshop on Information Assurance Research and Education (Apr 2008).

Honors / Awards:

DOE CAREER (Early Career Principal Investigator Award), Department of Energy, 2003
Educator of the Year Award, Federal Information Systems Security Educators' Association, 2005
Best Senior Researcher Award, CIDSE, ASU, 2013
Best Paper Award, ACM CODASPY, 2014

Editorships:

Editorial Review Board, Journal of Database Management, 2001 onwards
Associate Editor-in-Chief, IEEE Transactions on Dependable and Secure Computing, 2010 onwards
Editorial Board, Computers & Security, 2012 onwards
Associate Editor, ACM Transactions on Information and System Security, 2011-2014
Guest Editor, ACM Transactions on Information and System Security, Vol.10, No.1, February 2007

Service:

General Chair, ACM Conference on Computer and Communication Security, 2014
Graduate Admission Committee, Member (2008 - Present)
NC A&T State University, Advisory Board (2008 - Present)
12th IEEE International Workshop on Future Trends of Dis- tributed Computing Systems, PC member (2008 - Present)
ACM GIS 2008 International Workshop on Security and Privacy in GIS and LBS (SPRINGL 2008), PC member (2008 - Present)
ACM Symposium on Access Control Models And Technologies, Steering Committee Chair and Publicity Chair (2008 - Present)
ACM Symposium on Applied Computing (SAC)– Computer Se- curity Track,, PC member (2008 - Present)
ACM Workshop on Digital Identity Management, PC member (2008 - Present)
Annual IFIP WG 11.3 Working Conference on Data and Appli- cations Security, PC member (2008 - Present)
First ACM Conference on Wireless Network Security, Proceedings Chair (2008 - Present)
IEEE International Conference on Col laborative Computing: Networking, Applications and Worksharing, Workshop Chair (2008 - Present)
IEEE International Conference on Information Reuse and Integration, PC member (2008 - Present)
IEEE Workshop on Policies for Distributed Systems and Net- works, PC member (2008 - Present)
IEEE Workshop on Web and Pervasive Security, General Co-Chair (2008 - Present)
International Conference on Security and Cryptography, PC member (2008 - Present)
International Symposium on Information Assurance and Security, PC member (2008 - Present)
nternational Conference on I-Warfare and Security, PC member (2008 - Present)
Information Assurance Technology Analysis Center, SME Member (2007 - Present)
ACM SIGSAC, Information Director (2002 - Present)

iSearch

Integrated Search Menu

Gail-Joon Ahn