Home   School   Teaching   Research   Tutorials   Links   About  
 

My research interest is computer & information security, with an emphasis on high-assurance systems, access control and authentication. The goal of my work is to design systems that allow flexible data access and sharing while preserving robust security objectives. In my work, I have developed prototype systems using a variety of technologies, including virtual machine monitors, operating systems (OS), physically unclonable functions (PUFs -- a type of unpredictable trusted hardware), cell phones equipped with near-field communication (NFC), and structured peer-to-peer (P2P) networks.

My current and future work involve exploring techniques for developing systems that are inherently immune to known types of malware techniques. Specifically, one project focuses on code minimization as a means to reduce the attack surface of shared libraries. Another involves exploiting multicore architectures for improved application isolation. I am particularly interested in leveraging and extending microkernel-based OS designs.

For the 2009-10 school year, I coordinated the meetings for Prof. Elisa Bertino's research group. You can find our schedule, topics, and slides here.

You can view my CV, updated as of November 21, 2010. Additionally, you can view my DBLP listing.

My Erdõs number is 3 (through Elisa Bertino and Samuel S. Wagstaff):

  1. Michael S. Kirkpatrick and Elisa Bertino, "Enforcing Spatial Constraints for Mobile RBAC Systems." 15th ACM Symposium on Access Control Models and Technologies (SACMAT), Pittsburgh, PA, June 9-11, 2010.
  2. Elisa Bertino, Ning Shang, and Samuel S. Wagstaff Jr., "An Efficient Time-Bound Hierarchical Key Management Scheme for Secure Broadcasting." IEEE Trans. Dependable Sec. Comput. 5(2): 65-70 (2008)
  3. Paul Erdõs and Samuel S. Wagstaff, "The Fractional Parts of the Bernoulli Numbers." Illinois J. Math. 24, pages 104-112, 1980.

Publications

Peer-Reviewed Conference and Workshop Papers

  1. Michael S. Kirkpatrick, Sam Kerr, and Elisa Bertino, "PUF ROKs: A Hardware-Based Approach to Generating Read-Once Keys." 6th ACM Symposium on Information, Computer and Communications Security (ASIACCS), 10 pages, Hong Kong, March 2011. [PDF]
  2. Michael S. Kirkpatrick and Sam Kerr, "Enforcing Physically Restricted Access Control for Remote Data." 1st ACM Conference on Data and Application Security and Privacy (CODASPY), 11 pages, San Antonio, Texas, February 2011. [PDF] (Best Paper Award, First Runner-up)
  3. Sam Kerr, Michael S. Kirkpatrick, and Elisa Bertino, "PEAR: A Hardware-based Authentication System." 3rd ACM SIGSPATIAL International Workshop on Security and Privacy in GIS and LBS (SPRINGL), 8 pages, San Jose, California, November 2010. [PDF]
  4. Michael S. Kirkpatrick and Elisa Bertino, "Enforcing Spatial Constraints for Mobile RBAC Systems." 15th ACM Symposium on Access Control Models and Technologies (SACMAT), Pittsburgh, PA, June 9-11, 2010. [PDF]
  5. Michael S. Kirkpatrick and Elisa Bertino, "Software Techniques to Combat Drift in PUF-based Authentication Systems." Secure Component and System Identification (SECSI), Cologne, Germany, April 26-27, 2010. [PDF]
  6. Michael S. Kirkpatrick, Sam Kerr, and Elisa Bertino, "PUF ROKs: Generating Read-Once Keys with Physically Unclonable Functions." 6th Annual Cyber Security and Information Intelligence Research Workshop (CSIIRW), Oak Ridge, TN, April 21-23, 2010. [PDF | Slides]
  7. Michael S. Kirkpatrick and Elisa Bertino, "Physically Restricted Authentication with Trusted Hardware." Fourth Annual Workshop on Scalable Trusted Computing (STC), in conjunction with the 16th ACM Conference on Computer and Communications Security (CCS), Chicago, IL, November 13, 2009. [PDF | Slides]
  8. Michael S. Kirkpatrick and Elisa Bertino, "Context-Dependent Authentication and Access Control." Open Research Problems in Network Security (iNetSec), Zurich, Switzerland, April 23-24, 2009. [PDF]

Textbook Chapters

  1. Elisa Bertino, Stephen J. Elliott, Michael S. Kirkpatrick, and Shimon K. Modi, "Digital Identity Management." Chapter included in Security in Computing and Networking Systems -- The State of the Art, edited by William McQuay and Waleed W. Smari, 2010.

Invited Papers

  1. Aditi Gupta, Salmin Sultana, Michael S. Kirkpatrick, and Elisa Bertino, "A Selective Encryption Approach to Fine-Grained Access Control for P2P File Sharing." The 6th International Conference on Collaborative Computing: Networking, Applications and Worksharing (CollaborateCom), 10 pages, Chicago, IL, October 2010. [PDF | Slides]
  2. Elisa Bertino and Michael S. Kirkpatrick, "Location-Aware Authentication and Access Control - Concepts and Issues." Invited paper, IEEE 23rd International Conference on Advanced Information Network and Applications (AINA), Bradford, UK, May 26-29, 2009. [PDF]

Position Papers

  1. Carmen R. Vicente, Michael S. Kirkpatrick, Gabriel Ghinita, Elisa Bertino, and Christian S. Jensen, "Requirements and Challenges of Location-Based Access Control in Healthcare Emergency Response." 2nd SIGSPATIAL ACM GIS International Workshop on Security and Privacy in GIS and LBS (SPRINGL), Seattle, WA, November 3, 2009. [PDF]
  2. Michael S. Kirkpatrick, Elisa Bertino, and Frederick T. Sheldon, "Restricted Authentication and Access Control for Cyber-physical Systems." DHS Workshop on Future Directions in Cyber-physical Systems Security, Newark, NJ, July 22-24, 2009. [PDF | Slides]

Thesis

  1. Michael S. Kirkpatrick, "Canary Bit: Extending Secure Bit for Data Pointer Protection from Buffer Overflow Attacks." Master's Thesis, Michigan State University, 2007. [PDF]
Works Under Submission

Journal Papers

  1. Michael S. Kirkpatrick, Gabriel Ghinita, and Elisa Bertino, "Resilient Authenticated Execution of Critical Applications in Untrusted Environments."
  2. Michael S. Kirkpatrick, Gabriel Ghinita, and Elisa Bertino, "A Privacy-preserving Framework for Spatially Aware RBAC Enforcement."
Works in Preparation

Conference Papers

  1. Michael S. Kirkpatrick, Sam Kerr, and Elisa Bertino, "Functions as Capabilities: Software Minimization as Defense Against Return-oriented Programming."
  2. Michael S. Kirkpatrick, Maria Luisa Daimiani, and Elisa Bertino, "Prox-RBAC: A Proximity-based Spatially Aware RBAC."
Last Updated: April 07, 2011

Best viewed with Mozilla FirefoxValid XHTML 1.0!