Siddhesh Joshi (Editor)

Steven M Bellovin

Updated on
Edit
Like
Comment
Share on FacebookTweet on TwitterShare on LinkedInShare on Reddit
Nationality
  
USA

Alma mater
  
Columbia University


Name
  
Steven Bellovin

Role
  
Researcher

Steven M. Bellovin engineeringcolumbiaeduwebfacultyfilesenginee

Occupation
  
Computer Scientist, professor

Known for
  
USENET; computer security; firewalls; cryptography

Education
  
University of North Carolina at Chapel Hill, Columbia University, Duke University, Stuyvesant High School

Similar People
  
William Cheswick, Robert E Kahn, Matt Blaze, Vint Cerf, J C R Licklider

Cyber Security Summer School 2015 Steven M. Bellovin


Steven M. Bellovin is a researcher on computer networking and security. He is currently a Professor in the Computer Science department at Columbia University, having previously been a Fellow at AT&T Labs Research in Florham Park, New Jersey.

Contents

In September 2012, Bellovin was appointed Chief Technologist for the United States Federal Trade Commission, replacing Edward W. Felten, who returned to Princeton University.

In February 2016, Bellovin became the first technology scholar for the Privacy and Civil Liberties Oversight Board.

Career

He received a BA degree from Columbia University, and an MS and PhD in Computer Science from the University of North Carolina at Chapel Hill.

As a graduate student, Bellovin was one of the originators of USENET. He later suggested that Gene Spafford should create the Phage mailing list as a response to the Morris Worm.

He and Michael Merritt invented the Encrypted key exchange password-authenticated key agreement methods. He was also responsible for the discovery that one-time pads were invented in 1882, not 1917, as previously believed.

Bellovin has been active in the IETF. He was a member of the Internet Architecture Board from 1996–2002. Bellovin later was Security Area co-director, and a member of the Internet Engineering Steering Group (IESG) from 2002–2004. He identified some key security weaknesses in the Domain Name System; this and other weaknesses eventually led to the development of DNSSEC.

He received 2007 National Computer Systems Security Award by the National Institute of Standards and Technology (NIST) and the National Security Agency (NSA). In 2001, he was elected to the National Academy of Engineering for his contributions to network and security.

Bellovin is an active NetBSD user and a NetBSD developer focusing on architectural, operational, and security issues.

Selected publications

Bellovin is the author and co-author of several books, RFCs and technical papers, including:

  • Firewalls and Internet Security: Repelling the Wily Hacker ISBN 0-201-63357-4 (with W. Cheswick) - one of the first books on internet security.
  • Firewalls and Internet Security: Repelling the Wily Hacker 2nd edition ISBN 0-201-63466-X (with W. Cheswick and Aviel D. Rubin)
  • Thinking Security: Stopping Next Year's Hackers ISBN 978-0134277547
  • RFC 1579 Firewall-Friendly FTP
  • RFC 1675 Security Concerns for IPng
  • RFC 1681 On Many Addresses per Host
  • RFC 1948 Defending Against Sequence Number Attacks
  • RFC 3514 The Security Flag in the IPv4 Header (April Fools' Day RFC)
  • RFC 3554 On the Use of Stream Control Transmission Protocol (SCTP) with IPsec (with J. Ioannidis, A. Keromytis, R. Stewart.)
  • RFC 3631 Security Mechanisms for the Internet (with J. Schiller, Ed., C. Kaufman)
  • RFC 4107 Guidelines for Cryptographic Key Management (with R. Housley)

    • As of November 11, 2015, his publications have been cited 12,669 times, and he has an h-index of 46.

    References

    Steven M. Bellovin Wikipedia
    (Text) CC BY-SA