| Position: | Canada Research Chair in Software Security (Tier II) Associate Professor |
|---|---|
| Affiliation: | Department
of Computer Science University of Calgary 2500 University Drive NW Calgary, Alberta, Canada T2N 1N4 |
| Office: | ICT 640 |
| Phone: | (403) 210-6229 |
| Fax: | (403) 284-4707 |
| Email: | pwlfong AT ucalgary DOT ca |
| Homepage: | http://www.cpsc.ucalgary.ca/~pwlfong |
I am actively recruiting multiple PhD and MSc students. Follow this link if you are interested.
Glenn Bruns, Philip W. L. Fong, Ida Siahaan, and Michael Huth. Relationship-Based Access Control: Its Expression and Enforcement Through Hybrid Logic. To appear in Proceedings of the 2nd ACM Conference on Data and Application Security and Privacy (CODASPY'2012), San Antonio, TX, USA, February 7-9, 2012. A longer version appears in Technical Report 2011/12, Department of Computing, Imperial College, London, UK.
Mohd Anwar and Philip W. L. Fong. A Visualization Tool for Evaluating Access Control Policies in Facebook-style Social Network Systems. To appear in Proceedings of the 27th ACM Symposium on Applied Computing (SAC'12), Security Track, Riva del Garda, Trento, Italy, March 26-30, 2012.
Cheng Xu and Philip W. L. Fong. The Specification and Compilation of Obligation Policies for Program Monitoring. Technical Report 2011-996-08, Department of Computer Science, University of Calgary, Calgary, Alberta, Canada, April 2011.
Philip W. L. Fong and Ida Siahaan. Relationship-Based Access Control Policies and Their Policy Languages. In Proceedings of the 16th ACM Symposium on Access Control Models and Technologies (SACMAT'11), pages 51-60, Innsbruck, Austria, June 15-17, 2011.
Philip W. L. Fong. Preventing Sybil Attacks by Privilege Attenuation: A Design Principle for Social Network Systems. In Proceedings of the 2011 IEEE Symposium on Security and Privacy (S&P'11), pages 263-278, Oakland, California, USA, May 22-25, 2011. A longer version is available as Technical Report 2011-995-07, Department of Computer Science, University of Calgary, Calgary, Alberta, Canada, March 2011. This technical report supercedes Technical Report 2010-984-33, December 2010.
Seyed Hossein Ahmadinejad, Mohd Anwar, and Philip W. L. Fong. Inference Attacks by Third-Party Extensions to Social Network Systems. In Proceedings of the 3rd IEEE International Workshop on Security and Social Networking (SESOC'11) (published as part of Proceedings for the 2011 IEEE International Conference on Pervasive Computing and Communications Workshops - PERCOM Workshops), pages 282--287, Seattle, Washington, USA, March 21, 2011.
Philip W. L. Fong. Relationship-Based Access Control: Protection Model and Policy Language. In Proceedings of the First ACM Conference on Data and Application Security and Privacy (CODASPY'11), pages 191-202, San Antonio, Taxas, USA, February 21-23, 2011.
Mohammad Jafari, Philip W. L. Fong, Reihaneh Safavi-Naini, Ken Barker, and Nicholas Paul Sheppard. Towards Defining Semantic Foundations for Purpose-Based Privacy Policies. In Proceedings of the First ACM Conference on Data and Application Security and Privacy (CODASPY'11), pages 213-224, San Antonio, Taxas, USA, February 21-23, 2011.
Mohd Anwar, Zhen Zhao, and Philip W. L. Fong. An Access Control Model for Facebook-Style Social Network Systems, Technical Report 2010-959-08, Department of Computer Science, University of Calgary, Calgary, Alberta, Canada, July 2, 2010. Submitted for review.
Fei Yan and Philip W. L. Fong. Secure Optimization of Inlined Reference Monitors, July 2009. Submitted for review.
Philip Fong is a Tier-2 Canada Research Chair in Software Security and an Associate Professor at the Department of Computer Science, University of Calgary, Canada. He was a faculty member at the Department of Computer Science, University of Regina, Canada, from 2003 to 2008. He received his B.Math. and M.Math. in Computer Science from the University of Waterloo, Canada, and his Ph.D. in Computer Science from Simon Fraser University, Canada. His research interests include access control, protection technology for social computing, and language-based security.
For more information, consult my Curriculum Vitae.
My research interests include access control, protection technology for social computing, and language-based security. I enjoy building tools and systems that possess provable formal properties.
PI. Strategic Project Grant. NSERC, 2008-2010. With H. Hamilton and X. D. Yang.
PI. Discovery Accelerator Supplements. NSERC, 2007-2011. [Announcements: 1st Round; 2nd Round]
PI. Discovery Grant. NSERC, 2007-2012. [Announcements: by University; by GSC]
PI. Discovery Grant. NSERC, 2004-2007. [Announcements: by University; by GSC]
Program Committee. The 17th ACM Symposium on Access Control Models and Technologies (SACMAT'2012), 2012.
Program Chair (Security Theme). The 10th Annual Conference on Privacy, Security and Trust (PST'2012), 2012.
Program Committee. The 4th International Workshop on Security and Online Social Networks (SESOC'2012), Lugano, Switzerland, March 19, 2012.
Program Committee. The 2nd ACM Conference on Data and Application Security and Privacy (CODASPY'2012), San Antonio, Texas, USA, February 8--10, 2012.
Seyed Hossein Ahmadinejad (PhD)
Jayalakshmi Balasubramaniam (MSc)
Mona Hosseinkhani (PhD)
Arif Khan (MSc)
Pooya Mehregan (PhD)
Ebrahim Tarameshloo (PhD)
Pan Liu (MSc, project, 2011)
Cheng Xu (MSc, thesis, 2011). Thesis: The Specification and Compilation of Obligation Policies.
Zhen Zhao (MSc, thesis defended Aug, 2010). Thesis: A Privacy Preservation Model for Facebook-Style Social Network Systems.
Hongya Sun (MSc, project defended Dec, 2009).
Fei Yan (MSc, thesis defended Dec 10, 2008). Thesis: Efficient IRM Enforcement of History-Based Access Control Policies.
Huan Long Zhang (MSc, project defended Dec 9, 2008). Project: Enforcing Communication Integrity in Dynamically Extensible Systems.
James Ranson (MSc, thesis defended Nov 24, 2008, cosupervised with Howard Hamilton). Thesis: A Semantics of Python in Isabelle/HOL.
Simon Orr (MSc, 2007). Thesis: A Module System for Isolating Untrusted Software Extensions.
$Id: index.html,v 1.97 2012/01/09 04:44:05 pwlfong Exp $