@STRING{asiaccs = {Proceedings of the {ACM} Symposium on Information,
                  Computer, and Communication Security}}
@STRING{ccs = {Proceedings of the {ACM} Conference on Computer and
                  Communications Security}}
@STRING{oakland = {Proceedings of the {IEEE} Symposium on Security and Privacy}}
@STRING{usenixsec = {Proceedings of the {USENIX} Security Symposium}}
@STRING{raid = {Proceedings of the International Symposium on Recent
                  Advances in Intrusion Detection}}
@STRING{ndss = {Proceedings of the Network and Distributed 
		System Security Symposium}}
@STRING{csf = {Proceedings of the {IEEE} Computer Security Foundations
                  Symposium}}
@STRING{dimva = {Proceedings of the {IEEE} Conference on Detection of
                  Intrusions, Malware, and Vulnerability Assessment}}
@STRING{worm = {Proceedings of the {ACM} Workshop on Rapid Malcode}}
@STRING{pldi = {Proceedings of the {ACM} Conference on Programming
                  Language Design and Implementation}}
@STRING{popl = {Proceedings of the Symposium on Principles of
                  Programming Languages}}
@STRING{asplos = {Proceedings of the International Conference on
                  Architectural  Support for Programming Languages and
                  Operating Systems}}
@STRING{paste = {Proceedings of the {ACM} Workshop on Program Analysis
                  for Software Tools and Engineering}}
@STRING{osdi = {Proceedings of the {USENIX} Symposium on Operating
                  System Design and Implementation}}
@STRING{sosp = {Proceedings of the {ACM} Symposium on Operating System
                  Principles}}
@STRING{sigcomm = {Proceedings of the {ACM} Special Interest Group on
                  Data Communication}}
@STRING{infocom = {Proceedings of the {IEEE} Conference on Computer
                  Communications}}
@STRING{hotnets = {Proceedings of the {ACM} Workshop on Hot Topics in
                  Networks}}
@STRING{usenixtech = {Proceedings of the {USENIX} Annual Technical
                  Conference}}
@STRING{cacm = {Communications of the Association for Computing Machinery}}
@STRING{cmutr = {Carnegie Mellon University School of Computer Science}}
@STRING{ccc = {Proceedings of the International Conference on Compiler Construction}}
@STRING{jhpca = {Journal of High Performance Computing Applications}}
@STRING{esop = {European Symposium on Programming}}
@STRING{crypto = {Proceedings of CRYPTO}}
@STRING{icics = {Proceedings of the International Conference on
Information and Communications Security}}
@STRING{issta = {International Symposium on Software Testing and Analysis}}
@STRING{tdsc = {{IEEE} Transactions on Dependable and Secure Computing}}
@STRING{virology = {Journal in Computer Virology}}
@STRING{nsdi = {Proceedings of the {USENIX} Symposium on Networked
Systems Design and Implementation}}
@STRING{lncs = {Lecture Notes in Computer Science}}
@STRING{hotbots = {Proceedings of the {ACM} Workshop on Hot Topis in Understanding Botnets}}
@STRING{woot = {Proceedings of the {USENIX} Workshop on Offensive Technologies}}
@STRING{stoc = {Proceedings of the Symposium on the Theory of Computing}}
@STRING{tacas = {Proceedings of the International Conference on Tools
and Algorithms for Construction and Analysis of Systems}}
@STRING{lisa = {Proceedings of the {USENIX} Large Installation System
Administration Conference}}
@STRING{icse = {Proceedings of the {ACM} Conference on Software Engineering}}
@STRING{hotswup = {Proceedings of the Workshop on Hot Topics in
Software Upgrades}}
@STRING{woda = {Proceedings of the Workshop on Dynamic Analysis}}
@STRING{spin = {Proceedings of the International {SPIN} Workshop on
Model Checking of Software}}
@STRING{iccc = {Proceedings of the International Conference on
Compiler Construction}}
@STRING{issre = {Proceedings of the {IEEE} Symposium on Softare
Reliability Engineering}}
@STRING{sas = {Proceedings of the Static Analysis Symposium}}
@STRING{icad = {Proceedings of the International Conference on
Automated Deduction}}
@STRING{sigmod = {Proceedings of the {ACM} {SIGMOD}/{PODS} Conference}}
@STRING{jmlr = {Journal of Machine Learning Research}}
@STRING{leet = {Proceedings of the {USENIX} Workshop on Large-Scale
Exploits and Emerging Threats}}
@STRING{acsac = {Proceedings of the Annual Computer Security
Applications Conference}}

@inproceedings{borisov:2007,
	author = {Nikita Borisov and David Brumley and Heleng Wang and John
Dunagan and Pallavi Joshi and Chuanxiong Guo},
	title = {A Generic Application-Level Protocol Analyzer and its Language},
	booktitle = ndss,
	year = {2007}
}

@article{brumley:2001,
	author = {David Brumley},
	title = {A crash course in managing security},
	journal = {;login},
	year = {2001},
	volume = {26},
	number = {7},
	pages = {76-82},
	url = {http://www.cs.cmu.edu/~dbrumley/pubs/crash-course-01.pdf}
}

@inproceedings{brumley:2003,
	author = {David Brumley and Dan Boneh},
	title = {Remote Timing Attacks are Practical},
	booktitle = usenixsec,
	year = {2003},
	month = aug
}

@inproceedings{brumley:2004,
	author = {David Brumley and Dawn Song},
	title = {Privtrans: Automatically Partitioning Programs for Privilege Separation},
	booktitle = usenixsec,
	year = {2004}
}

@techreport{brumley:2005,
	author = {David Brumley and Li-Hao Liu and Pongsin Poosank and
  Dawn Song},
	title = {Design Space and Analysis of Worm Defense Systems},
	institution = {Carnegie Mellon University},
	year = 2005,
	number = {CMU-CS-05-156}
}

@article{brumley:2005:jcn,
	author = {David Brumley and Dan Boneh},
	title = {Remote Timing Attacks are Practical},
	journal = {Journal of Computer Networks},
	year = {2005},
	volume = {45},
	number = {5},
	pages = {701-716},
	month = aug,
	url = {http://portal.acm.org/citation.cfm?id=1090585}
}

@techreport{brumley:2006:alias,
	author = {David Brumley and James Newsome},
	title = {Alias Analysis for Assembly},
	institution = {Carnegie Mellon University School of Computer Science},
	year = {2006},
	number = {CMU-CS-06-180}
}

@inproceedings{brumley:2006:sigs,
	author = {David Brumley and James Newsome and Dawn Song and Hao Wang
 and Somesh Jha},
	title = {Towards Automatic Generation of Vulnerability-Based
 Signatures},
	booktitle = oakland,
	pages = {2-16},
	year = {2006}
}

@article{brumley:2006:worms,
	author = {David Brumley and Li-Hao Liu and Pongsin Poosankam},
	title = {Design Space and Analysis of Worm Defense
                  Strategies},
	year = {2006},
	booktitle = asiaccs
}

@techreport{brumley:2007:bitscope,
	author = {David Brumley and Cody Hartwig and Min Gyung Kang and Zhenkai Liang and James Newsome and Pongsin Poosankam and Dawn Song},
	title = {BitScope: Automatically Dissecting Malicious Binaries},
	number = {CS-07-133},
	institution = {School of Computer Science, Carnegie Mellon University},
	year = 2007,
	month = mar
}

@inproceedings{brumley:2007:deviations,
	title = {Towards Automatic Discovery of Deviations in Binary Implementations with Applications to Error Detection and Fingerprint Generation},
	author = {David Brumley and Juan Caballero and Zhenkai Liang
  and James Newsome and Dawn Song},
	booktitle = usenixsec,
	year = {2007},
	address = {Boston, MA},
	month = aug
}

@inproceedings{brumley:2007:integer,
	author = {David Brumley and Tzi-cker Chiueh and Robert Johnson and
Huijia Lin and Dawn Song},
	title = {Efficient and Accurate Detection of Integer-based Attacks},
	booktitle = ndss,
	year = {2007}
}

@techreport{brumley:2007:symantec,
	author = {David Brumley},
	title = {Automatic Generation of Multi-Path Vulnerability Signatures for Canary},
	institution = {Symantec Research Labs},
	year = {2007},
	note = {Unpublished}
}

@inproceedings{brumley:2007:wp,
	author = {David Brumley and Hao Wang and Somesh Jha and Dawn Song},
	title = {Creating Vulnerability Signatures Using Weakest
Pre-conditions},
	year = {2007},
	booktitle = csf
}

@incollection{brumley:2008,
	author = {David Brumley and Cody Hartwig and Zhenkai Liang and James Newsome and Pongsin Poosankam and Dawn Song and Heng Yin},
	editor = {Wenkee Lee and Cliff Wang and David Dagon},
	booktitle = {Botnet Detection},
	title = {Automatically Identifying Trigger-based Behavior in Malware},
	publisher = {Springer-Verlag},
	year = {2008},
	volume = {36},
	series = {Countering the Largest Security Threat
Series: Advances in Information Security}
}

@inproceedings{brumley:2008:apeg,
	author = {David Brumley and Pongsin Poosankam and Dawn Song and Jiang Zheng},
	title = {Automatic Patch-Based Exploit Generation is Possible: Techniques and Implications},
	year = 2008,
	booktitle = oakland,
	month = may
}

@misc{brumley:2008:patent,
	title = {A Cache-Based System Management Architecture with Virtual
Appliances, Network Repositories, and Virtual Appliance Transceivers},
	author = {Monica Lam and Constantine Sapuntzakis and Ramesh Chandra and
David Brumley and
Nickolai Zeldovich and Mendel Rosenblum and James Chow},
	howpublished = {U.S. Patent},
	month = may,
	year = {2008},
	note = {Patent 7373451}
}

@phdthesis{brumley:2008:phd,
	author = {David Brumley},
	title = {Analysis and Defense of Vulnerabilities in Binary Code},
	school = {Carnegie Mellon University School of Computer Science},
	year = {2008},
	month = sep
}

@article{brumley:2008:tdsc,
	author = {David Brumley and James Newsome and Dawn Song and Hao Wang and
Somesh Jha},
	title = {Theory and Techniques for Automatic Generation of Vulnerability-Based Signatures.},
	year = {2008},
	volume = {5},
	number = {4},
	pages = {224-241},
	month = oct,
	journal = tdsc
}

@techreport{brumley:2009:anonymity,
	title = {Contractual Anonymity},
	author = {David Brumley and Jon McCune and Edward Schwartz},
	institution = {CMU Computer Science Department},
	year = {2009},
	number = {CMU-CS-09-144}
}

@inproceedings{cha:2010,
	author = {Sang Kil Cha and Iulian Moraru and Jiyong Jang and John
Truelove and David Brumley and David Andersen},
	title = {SplitScreen: Enabling Efficient, Distributed Malware Detection},
	booktitle = nsdi,
	year = {2010}
}

@inproceedings{newsome:2006:replayer,
	author = {James Newsome and David Brumley and Jason Franklin and Dawn
 Song},
	title = {Replayer: Automatic Protocol Replay by Binary Analysis},
	year = {2006},
	booktitle = ccs,
	pages = {311-321},
	editor = {Rebecca Write and Sabrina De Capitani di Vimercati and
 Vitaly Shmatikov}
}

@techreport{newsome:2006:sting,
	author = {James Newsome and David Brumley and Dawn Song},
	title = {Sting: An End-to-End Self-Healing System for Defending Against Zero-Day Worm Attacks},
	institution = cmutr,
	year = {2006},
	number = {CMU-CS-05-191}
}

@inproceedings{newsome:2006:vsef,
	author = {James Newsome and David Brumleyand Dawn Song and
  Jad Chamcham and Xeno Kovah},
	title = {Vulnerability-Specific Execution Filtering for
  Exploit Prevention on Commodity Software},
	booktitle = {Proc. of the $13^{th}$ Annual Network and
  Distributed System Security Symposium ({NDSS})},
	year = {2006}
}

@inproceedings{sapuntzakis:2003,
	author = {C. Sapuntzakis and D. Brumley and R. Chandra and N. Zeldovich and
J. Chow and M.S. Lam and M. Rosenblum},
	title = {Virtual applicances for deploying and maintaining software},
	year = {2003},
	booktitle = lisa
}

@inproceedings{schwartz:2010,
	author = {Edward J. Schwartz and David Brumley and Jonathan McCune},
	title = {Contractual Anonymity},
	booktitle = ndss,
	year = {2010},
	month = feb
}

@inproceedings{tucek:2007,
	author = {Joseph Tucek and James Newsome and Shan Lu and Chengdu Huang and Spiros Xanthos and David Brumley and Yuanyuan Zhou and Dawn Song},
	title = {Sweeper: A Lightweight End-to-End System for Defending Against
Fast Worms},
	booktitle = {Proceedings of the {EuroSys} Conference},
	year = {2007}
}