Suphannee Sivakorn

Email: s...@cs.columbia.edu
Office: Columbia University, CSB 521
Links: github.com/ssivakorn, twitter.com/ssivakorn

about me

I am a Ph.D. student in Computer Science at The Fu Foundation School of Engineering and Applied Science, Columbia University in the city of New York. I am also a member of Network Security Lab (NSL). My advisor is Prof. Angelos D. Keromytis

I was born in Thailand and won the Royal Thai Government Master's - Ph.D. Scholarship to pursue my education in the United States. I received Master's in Computer Science from New York University in 2013 and B.Eng. with honors in Computer Engineering from Computer Engineering Department, Mahidol University, Thailand in 2010.

research

Interests


Security & privacy in the aspects of web application and social network, network security, and usable security

Publications


S. Sivakorn, G. Argyros, K. Pei, A. D. Keromytis, S. Jana. HVLearn: Automated Black-box Analysis of Hostname Verification in SSL/TLS Implementations In Proceedings of the 38th IEEE Symposium on Security and Privacy (S&P), San Jose, California, USA, May 2017. (Acceptance rate: 14.33%)
G. Argyros, T. Petsios, S. Sivakorn, A. D. Keromytis, J. Polakis. Evaluating the Privacy Guarantees of Location Proximity Services. ACM Transactions on Privacy and Security (TOPS, formerly TISSEC), Volume 19(4), Article 12, February 2017.
S. Sivakorn, A. D. Keromytis, J. Polakis. That's the Way the Cookie Crumbles: Evaluating HTTPS Enforcing Mechanisms. In Proceedings of the 15th ACM Workshop on Privacy in the Electronic Society (WPES), Vienna, Austria, October 2016. (Acceptance rate: 19.44%)
S. Sivakorn*, I. Polakis*, A. D. Keromytis. The Cracked Cookie Jar: HTTP Cookie Hijacking and the Exposure of Private Information. In Proceedings of the 37th IEEE Symposium on Security and Privacy (S&P), San Jose, California, USA, May 2016. (Acceptance rate: 13.75%)
*Joint primary authors
S. Sivakorn, I. Polakis, A. D. Keromytis. I Am Robot: (Deep) Learning to Break Semantic Image CAPTCHAs. In Proceedings of the 1st IEEE European Symposium on Security and Privacy (EuroS&P), Saarbr├╝cken, GERMANY, March 2016. (Acceptance rate: 17.3%)
I. Polakis, G. Argyros, T. Petsios, S. Sivakorn, A. D. Keromytis. Where's Wally? Precise User Discovery Attacks in Location Proximity Services. In Proceedings of the 22nd ACM Computer and Communications Security Conference (CCS), Denver, Colorado, USA, October 2015. (Acceptance rate: 19.8%)
S. Tritilanunt, S. Sivakorn, C. Juengjincharoen, A. Siripornpisan. Entropy-based Input-Output Traffic Mode Detection Scheme for DoS/DDoS Attacks. 2010 International Symposium on Communications and Information Technologies (ISCIT). Tokyo, JAPAN, October 2010.

curriculum vitae

Education


  • Columbia University, September 2013 - Current
  • Ph.D. in Computer Science
    M.Phil. in Computer Science, October 2016
  • New York University, September 2011 - May 2013
  • M.S. in Computer Science
  • Mahidol University, June 2006 - April 2010
  • B.Eng. in Computer Engineering (Honors)

Grants, Awards, and Scholarships


  • BlackHat Speaker Honorarium, August 2016
  • BlackHat USA 2016, Las Vagas
  • BlackHat Speaker Honorarium, April 2016
  • BlackHat Asia 2016, Singapore
  • ACM CCS Student Travel Grant, October 2015
  • 22nd ACM Conference on Computer and Communications Security (CCS)
    sigsac.org/ccs/CCS2015/grant.html
  • New York University Travel Grants, October 2012
  • 12th Annual Grace Hopper Celebration of Women in Computing
    cs.nyu.edu/webapps/content/research/student_recognition
  • Royal Thai Government Scholarship, 2011 - current
  • Computer Science/Engineering MS - PhD fellowship
  • Mahidol University Conference Funding and Paper Presentation, November 2010
  • 14th National Computer Science and Engineering Conference 2010
  • Third Place Winner in Thailand Network Security Contest, 2009
  • Bangkok, Thailand
  • Valedictorian in Computer Engineering, Mahidol University, 2008 - 2010
  • Annual Scholarship
  • Student Exchange between Japan and Thailand, October 2004
  • Fukuoka, Japan

Bug/Vulnerability Disclosures


Teaching Experience


  • Teaching Assistant - Security Architecture and Engineering, Fall 2015
    Instructor: Prof. Steven M. Bellovin, Columbia University
    Graduate-level course, 80 students
  • Teaching Assistant - Introduction to Programming in C, Summer 2015
    Instructor: Prof. Angelika Zavou, Columbia University
    Session I: Grade 11, 12 or Freshman year, 20 students
    Session II: Grade 10 and 11, 16 students
  • Teaching Assistant - Introduction to Programming in C, Summer 2014
    Instructor: Theofilos Petsios, Columbia University
    Grade 11, 12 or Freshman year, 16 students
  • Teaching Assistant - Intrusion Detection Systems, Spring 2014
    Instructor: Prof. Shlomo Hershkop, Columbia University
    Graduate-level course, 30 students

Skills & Expertise


Languages:

C
C++
PYTHON
SHELL SCRIPT
JAVA
SQL
PHP
JAVASCRIPT
HTML
CSS

Tools:

VI
ECLIPSE
ANDROID STUDIO
PROCESSING
SUBVERSION
GIT
MITMPROXY
SELENIUM WEBDRIVER

Activities and Services