Curriculum Vitae

Education

University of Michigan, Ann Arbor, MI
PhD, Computer Science
Dissertation: Using Large-Scale Empirical Methods to Understand Fragile Cryptographic Ecosystems

2019

University of Michigan, Ann Arbor, MI
Master of Engineering, Computer Science

2016

University of Michigan, Ann Arbor, MI
Bachelor of Engineering, Computer Science

2014

Conference Publications

On the Origin of Scanning: The Impact of Location on Internet-Wide Scans
Gerry Wan, Liz Izhikevich, David Adrian, Katsunari Yoshioka, Ralph Holz, Christian Rossow, and Zakir Durumeric
ACM Internet Measurement Conference (IMC), October 2020.

[bibtex]

Tracking Certificate Misissuance in the Wild
Deepak Kumar, Zhengping Wang, Matthew Hyder, Joseph Dickinson, Gabrielle Beck, David Adrian, Zakir Durumeric, J. Alex Halderman and Michael Bailey
IEEE Symposium on Security and Privacy (Oakland), May 2018.

[bibtex]

Measuring small subgroup attacks against Diffie-Hellman
Luke Valenta, David Adrian, Antonio Sanso, Shaanan Cohney, Joshua Fried, Marcella Hastings, J. Alex Halderman, and Nadia Heninger
Network and Distributed System Security Symposium (NDSS), February 2017.

[bibtex]

An Internet-Wide View of ICS Devices
Ariana Mirian, Zane Ma, David Adrian, Matthew Tischer, Thasphon Chuenchujit, Tim Yardley, Robin Bertheier, Josh Mason, Zakir Durumeric, J. Alex Halderman, and Michael Bailey
IEEE Conference on Privacy, Security, and Trust (PST), December 2016

[bibtex]

DROWN: Breaking TLS using SSLv2
Nimrod Aviram, Sebastian Schinzel, Juraj Somorovsky, Nadia Heninger, Maik Dankel, Jens Steube, Luke Valenta, David Adrian, J. Alex Halderman, Viktor Dukhovni, Emilia Käsper, Shaanan Cohney, Susanne Engels, Christof Paar, and Yuval Shavitt
USENIX Security Symposium, August 2016.
Internet Defense Prize Finalist.

[bibtex]

Neither Snow Nor Rain Nor MITM… An Empirical Analysis of Email Delivery Security
Zakir Durumeric, David Adrian, Ariana Mirian, James Kasten, Kurt Thomas, Vijay Eranti, Nicholas Lidzborski, Elie Bursztein, Michael Bailey, and J. Alex Halderman
ACM Internet Measurement Conference (IMC), October 2015.
IRTF Applied Networking Research Prize.

[bibtex]

Censys: A Search Engine Backed by Internet-Wide Scanning
Zakir Durumeric, David Adrian, Ariana Mirian, Michael Bailey, and J. Alex Halderman
ACM Conference on Computer and Communications Security (CCS), October 2015.

[bibtex]

Imperfect Forward Secrecy: How Diffie-Hellman Fails in Practice
David Adrian, Karthikeyan Bhargavan, Zakir Durumeric, Pierrick Gaudry, Matthew Green, J. Alex Halderman, Nadia Heninger, Drew Springall, and Emmanuel Thomé, Luke Valenta, Benjamin VanderSloot, Eric Wustrow, Santiago Zanella-Béguelin and Paul Zimmermann
ACM Conference on Computer and Communications Security (CCS), October 2015.
Best Paper Award.

[bibtex]

Performance and Energy Consumption Analysis of a Delay-Tolerant Network for Censorship-Resistant Communication
Yue Liu, David R. Bild, David Adrian, Gulshan Singh, Robert P. Dick, Dan S. Wallach, and Z. Morley Mao
ACM International Symposium on Mobile Ad Hoc Networking and Computing (MobiHoc), June 2015.

[bibtex]

The Matter of Heartbleed
Zakir Durumeric, Frank Li, James Kasten, Johanna Amann, Jethro Beekman, Mathias Payer, Nicolas Weaver, David Adrian, Vern Paxson, Michael Bailey, and J. Alex Halderman
ACM Internet Measurement Conference (IMC), November 2014.
Best Paper Award.

[bibtex]

Workshop Publications

Zippier ZMap: Internet-Wide Scanning at 10 Gbps
David Adrian, Zakir Durumeric, Gulshan Singh, and J. Alex Halderman
USENIX Workshop on Offensive Technologies (WOOT), August 2014

[bibtex]

Program Committees

PC Member

USENIX Security
2021
USENIX Workshop on Offensive Security (WOOT)
2018, 2019
BlackHat USA Guest Review Board
2018, 2019, 2020

Talks

Using Large-Scale Empirical Methods to Understand Fragile Cryptographic Ecosystems
PhD Defense, University of Michigan, December 2019 [pdf] [Google Drive]

Fixing OCSP for Fun and Profit
USENIX Security Rump Session, August 2016 [pdf] [key]

A Retrospective on the Use of Export Cryptography
BlackHat USA, August 2016. [pdf] [key]

F**k It, Let's Do It Wide! Security Applications of Internet-Wide Scanning
Eastern Michigan University, February 2016. [pdf] [key]

Imperfect Forward Secrecy
Hushcon, December 2015. [pdf] [key]

A Search Engine Backed by Internet-Wide Scanning
CCS, October 2015. [pdf] [key]

Were It So Easy: TLS in the Real World
Duo Tech Talk, July 2015. [pdf] [key] [YouTube]
ARBSEC a2y.asm, September 2015. [pdf] [key]

Zippier ZMap: Internet-Wide Scanning at 10 Gbps
WOOT, August 2014. [pdf] [pptx]

Relevant Experience

Censys, Ann Arbor, MI
Cofounder

Created Censys as a research project to expose Internet-wide measurement data during my PhD at the University of Michigan.
Cofounded a startup to commercialize the Censys research project into an enterprise data offering and SaaS security product.
Set company-wide engineering direction and vision as Censys grew to over 50 employees and over $3M annual recurring revenue, and a $15M Series A.
Contributed to technical product direction, defining how our SaaS application and data offering interact.
Defined and implemented an engineering-wide service-based architecture supporting multiple data-driven products.
Led data engineering team, responsible for collecting scan data on over 4B hosts, processing over 2B X.509 certificates, and providing terabytes of data to enterprise customers daily.
Built ETL pipelines for data warehousing and search applications.
Migrated data infrastructure from custom on-premise (datacenter) technology to Google Cloud and Apache Beam.
Led the adoption of Kubernetes, container-based development, and a polyglot monorepo.
Managed cross-Language build tooling, including code generation for Protobuf and gRPC.
Worked in both individual contributor and management roles, with between 3 and 9 direct reports.
Scoped and successfully delivered initial SaaS MVP, rescuing the project after two other engineering managers were unable to deliver.
Created and led the adoption of a project tracking system for cross-team initiatives, leveraging JIRA and Confluence.

2017-2020

Google, Mountain View, CA
Software Engineering Intern

Implemented OCSP Expect-Staple in order to begin measuring the feasibility of OCSP Must-Staple.

Summer 2016

Duo Security, Ann Arbor, MI
Software Engineering Intern

Offered two-factor authentication-as-a-service, using mobile phones as the second authentication factor and push notications for login approval.
Grew various Python backend subsystems to support new features; handled all bugs, feature requests, and security considerations for the Duo Unix client.
Wrote a patch for OpenSSH to securely allow third-party authentication plugins

Summer 2013

Whisper Project, University of Michigan
Undergraduate Research with Professor Robert Dick

Developed an Android framework (MANES) for testing feasibility, routing protocols, and location profile systems of large-scale mobile ad hoc networks that could be used for censorship-resistant communication.
Built Shout, a user-friendly censorship-resistant communication Android application on top of MANES.
Managed and led student software development teams.
Resulted in a publication at MobiHoc 2015.

2011-2012

CAEN, University of Michigan College of Engineering
Network Technician

Maintained over 700 wireless access points for the College of Engineering campus.
Transitioned printing system from CAEN control to campus-wide IT department.
Diagnosed and performed network troubleshooting as needed.

2011-2012

Teaching Experience

EECS 388: Introduction to Computer Security
Lecturer

- Undergraduate course on computer security. - Cotaught with Professor Halderman and Professor Honeyman.

Fall 2016

EECS 388: Introduction to Computer Security
Graduate Student Instructor (GSI)

- Undergraduate course on computer security. - Lead a weekly discussion section, and guest-lectured when the instructor was unavailable. - Head GSI; organized other teaching assistants.

Fall 2015

EECS 588: Advanced Computer Security
Graduate Student Instructor (GSI)

- Graduate course on computer security research. - Guest-lectured when the instructor was unavailable, and continued the tradition of guest-lecturing on cryptography for the first class of the semester. - Advised students on class research projects.

Winter 2015

EECS 281: Introduction to Algorithms
Instructional Aide (IA)

- Introductory course on algorithms, taught in C++. Covered runtime complexity, sorts, trees, heaps, and basic search and graph algorithms. - Held a weekly discussion section to reinforce concepts introduced in lecture. - Held weekly office hours for help with concepts and projects.

Winter 2014

EECS 280: Programming and Data Structures
Instructional Aide (IA)

- Introductory course on data structures, taught in C++. Covered recursion, pointers, structs and classes, inheritance and dynamic memory - Held a weekly lab section where students coded examples based on content from the week's lectures. - Held biweekly office hours for help with concepts and projects

Fall 2013

Leadership, Service, and Honors

Best Paper Award

22nd ACM Conference on Computer and Communications Security (CCS 2015)
- Awarded for “Imperfect Forward Secrecy”
14th ACM Internet Measurement Conference (IMC 2014)
- Awarded for “The Matter of Heartbleed”

Pwnie Award