William R. Cheswick

Some Current Research Interests:

• The digital house: explorations into integrating computing and networking technologies in the home, in a pleasant, non-geeky fashion. Mostly.
• Open source hands-on science museum exhibit software. Finishing an update for the popular Digital Darkroom exhibit for the Liberty Science Center's reopening this summer, updating the Chattanooga Children's Discovery Museum Portrait Style Station, and a new exhibit showing the effects of various color vision deficits.
• Visualization of very large datasets.
• Living outside a firewall: confining important servers in jails, and related technologies.

Some Projects:

• The Digital Darkroom, a hands-on science exhibit at the Liberty Science Center; with Gerard Holzmann, 1992. A variation is at the Children's Discovery Museum in Chattanooga. Now undergoing expansion and updating.
• Pass-algorithms (2002, 2006),
• Search engine first responders (2006),
• Internet and intranet mapping and visualization; with Hal Burch and Steve Branigan, 1999.
• Tracing anonymous Internet packets by selective denial-of-service probes; with Hal Burch, 1997.
• Safe Internet services for secure servers in insecure environments, 1996.
• Application-level switch and gateway for DNS queries (dnsproxy), with Steve Bellovin, 1995.
• Hacker monitoring: the Berferd project; with Diana D'angelo and Paul Glick, 1991.
• Challenge/response authentication system for telnet, ssh, and system administration.
• Internet gateway: an IP-transparent gateway with associated application-level filters, 1992.
• Internet gateway: a double-layered circuit gateway with associated application-level filters, 1989.
• PC virus studies, 1988.

Talks:

• Unix on My Mind, invited talk for SANE 2006 (Delft).
• My Dad's Computer, Microsoft, and the Future of Internet Security.
• Pondering Network Perimeters, a stump talk about perimeter defenses and Lumeta's intranet technology (2003).
• Internet Security: an Optimist Gropes for Hope. Usenix Security invited talk, August 2003.
• Mapping the Internet and Intranets.
• Some Computer and Internet Forensic Tricks, High Tech Crime Investigation Assoc., 1999.
• What Does the Internet Look Like?, CAIDA, 1999.
• The Internet: How it Works, What it Looks like, and How it is Abused. Bell Labs Science Series, Feb. 1999.
• Security Lessons From All Over. Keynote, Usenix Security Conference (San Antonio), 1998.
• Internet Security: the Gory Details; TISC 1997, SANE 98, NLUUG 98.
• Intranet Challenges, 1997.
• Internet Security Overview;
• SYN Attacks and Denial-of-Service;
• Stupid Net Tricks; Keynote, 1996 Usenix LISA conference; invited talk at Usenix '97 (summary).

Books:

• Firewalls and Internet Security; Repelling the Wily Hacker, second edition. W. Cheswick, S. Bellovin, and A. Rubin; Addison Wesley Longman, 2003.
• Firewalls and Internet Security; Repelling the Wily Hacker. W. Cheswick and S. Bellovin; Addison Wesley, 1994.

Papers:

• Steven M. Bellovin and William R. Cheswick. Privacy-Enhanced Searches Using Encrypted {Bloom} Filters, Technical Report, Department of Computer Science, Columbia University, CUCS-034-07.
• William Cheswick. Johnny Can Obfuscate: Beyond Mother's Maiden Name, Usenix Workshop on Hot Topics in Security, Vancouver, BC. 2006.
• Angelos D. Keromytis, Steven M. Bellovin and Bill Cheswick. Worm Propagation Strategies in an IPv6 Internet, In USENIX ;login, vol. 31, no. 1, pp. 70 - 76, February 2006.
• William R. Cheswick. Internet Security 2003, The Bridge, National Academy of Engineering, Winter 2003, pages 25-30.
• S. Branigan, H. Burch, W.R. Cheswick, and F. Wojcik., What Can You Do with Traceroute? 2001, Internet Computing, September/October 2001, Vol. 5, No. 5, page 96.
• H. Burch and W.R. Cheswick, Tracing Anonymous Packets to Their Approximate Source. Best paper award at 2000 Usenix LISA (New Orleans).
• H. Burch, S. Branigan and W.R. Cheswick, Mapping and Visualizing the Internet, Usenix 2000 general conference (San Diego).
• H. Burch and W.R. Cheswick, Mapping the Internet, IEEE Computer, pp. 97--98, April 1999.
• W. R. Cheswick and S. M. Bellovin, How Computer Security Works, Scientific American, Vol. 279, 4, pp. 106--107, October 1998.
• W. R. Cheswick, Cget Cput and Stage Safe File Transport Tools for the Internet, Proceedings of the Usenix Winter 97 Conference, January 1997.
• W. R. Cheswick and S. M. Bellovin, A DNS Filter and Switch for Packet-filtering Gateways, Proceedings of the 6th UNIX Security Symposium, July 1996.
• W. R. Cheswick, An Evening with Berferd In Which a Hacker is Lured Endured and Studied, Proceedings of the Usenix Winter 92 Conference, January 1992.
• W. R. Cheswick, The Design of a Secure Internet Gateway, Proceedings of the Usenix Summer 90 Conference, June 1990.
• W. R. Cheswick, A Permuted Index for TeX and LaTeX Commands, February 1990, (145) , Comp. Sci. Tech. Rep. No. 145.
• W. R. Cheswick, A Permuted Index for TeX and LaTeX Commands, Tugboat Volume 10 number 4, December 1989.

Patents and SIRs:

• Method and Apparatus for Host Probing, US 7,299,489; with Hal Burch and Steve Branigan, (2007); This was an important part of the original intellectual property of Lumeta Corp.
• System for indirect communication between two computers, each having write access to its own portion of a dual-access disk drive and read access to the entire drive, US6,397,270 (2002).
• Firewall security method and apparatus, US H1,944; with Ed Whitten; 2001.
• Method and apparatus for restricting access to private information in domain name systems by filtering information, US 5,958,052; with Steve Bellovin, 1999.
• Method and apparatus for restricting access to private information in domain name systems by redirecting query requests, US 5,805,820; with Steve Bellovin, 1998.
• Method and apparatus for testing membership in a set through hash coding with allowable errors, US 4,290,105; with Richard Cichelli and Michael Thompson, 1981.

Committees and Organizations:

• National Security Telecommunications Advisory Committee (NSTAC).
• New York Electronic Crimes Task Force (NYECTF)

Popular Publications and media appearances:

• To appear on the Hugh Thompson Show (2007).
• Several appearances on Screen Savers 2002-2005.
• National Geographic, "Cartography", Jan. 2000.
• Internet map appeared in Dec. 1998 Wired, April 1999 Konr@d (Germany), and several others.
• Profiled in Wired, April 1995.
• CBC interniew on authentication devices, 1997.
• CNN interview on PC viruses, 1989.
• Internet maps, no longer available.
• Numerous quotes in many newspapers and magazines, including NY Times, Washington Post, LA Times, San Jose Mercury News, Wall Street Journal, Barrons, Forbes, Fortune, Time, Newsweek, New Scientist, AP News, Reuters.

• Usenix Security, 2008.
• LISA (Dallas), 2007.
• SOUPS (Pittsburgh), 2006, 2007, 2008.
• ISOC NDSS (San Diego), 2000, 2001, 2004, 2007.
• 15th Usenix Security (Vancouver), 2006.
• Asilomar Microcomputer Workshop (2004-present).
• ACM Fifth CCS (San Francisco), 1998.
• Fifth Usenix Security Symposium (Salt Lake City), 1995.
• Program Chair, Fourth Usenix Security Conference (Santa Clara), 1993.
• Usenix Technical Conference (San Antonio), 1992?.

• Redseal.

• Lehigh University; B.S., Fundamental Science; 1975
• Lawrenceville School; 1970

• Lead Member of Technical Staff, AT&T Research, April 2007 - present.
• Sabbatical, Sept. 2006 to April 2007
• Chief Scientist, Lumeta Corporation, 2000-2006
• Member Technical Staff, Bell Laboratories, 1987-2000
• Systems programmer and consultant, Systems and Computer Technology Corp., 1978-1987
• Systems programmer, Computer Sciences Corp., 1977-1978
• Programmer, American Newspaper Publishers Association/Research Institute, 1976-1977
• Contracting, 1975-1977

• Interactive exhibits for science museums
• Geek tourism
• Time lapse photography
• Yes, I am a rocket scientist: Level 1 high powered rocket certified