About Xinwen Zhang (CV)

I graduated from the Department of Information System and Software Engineering, School of Information Technology and Engineering, George Mason University, in Summer 2006 with Ph.D. of Information Technology.  I was a research assistant in the Laboratory for Information Security Technology. My advisor was Prof. Ravi Sandhu. I was the teaching assistant of INFS762 (Information System Security), INFS766 (Internet Security Protocols) and INFS767 (Secure E-commerce), Fall 2001 - Spring 2004, and the instructor of INFS767/ISA767 (Secure E-commerce), Fall 2005. 

Before joined GMU, I was a development engineer in CE-Infosys, and a graduate student in Nanyang Technology University, Singapore. Before that I received Master and Bachelor degrees from Huazhong University of Science and Technology, Wuhan, China. 

I am working in Samsung Information Systems America, Samsung's R&D center at San Jose, California. Contact me: xinwen.z AT samsung DOT com.

Research Interests

Computer security policies, models, architectures, and mechanisms
Secure mobile devices, networks, and applications
Trusted computing and high assurance information systems
Security in distributed and collaborative systems

Professional Activities

Program committee of:  ACM SACMAT 2009,  MOTHIS 2008,  ACM STC 2008,  IS 2008,  ACM SACMAT 2008,  IEEE SUTC 2008,  TRUST 2008,  ACM STC 2007
Conference review for: ACM EMSOFT 2008,  IEEE POLICY 2008,  ACM CCS 2007,  ICC 2007,  ACSAC 2006,  BROADNETS 2006,  ACM SACMAT 2006
Journal review for:  IEEE TSC,  ACM TISSEC,  Springer JNSM,  IEEE TSMC,  Elsevier Computer & Security
I contribute to the security framework of LiMo platform.  

Recent Publications (Publication List)

1. Jing Jin, Gail-Joon Ahn, Michael J. Covington, and Xinwen Zhang, Toward an Access Control Model for Sharing Composite Electronic Health Records, to appear in the 4th International Conference on Collaborative Computing (CollaborateCom), Orlando, FL, USA, November 13-16, 2008.
2.  Qi Li, Xinwen Zhang, Jean-Pierre Seifert, and Hulin Zhong,, Secure Mobile Payment via Trusted Computing, to appear in the 3rd Asia-Pacific Trusted Infrastructure Technology Conference (APTC), 2008.
3. Gail-J Ahn, Wenjuan Xu, and Xinwen Zhang, Systematic Policy Analysis for High-assurance Services in SELinux, in Proc. of the  9th IEEE Workshop on Policies for Distributed Systems and Networks (POLICY), Palisades, NY, USA, 2008.
4. Masoom Alam, Xinwen Zhang, and Jean-Pierre Seifert, Model-based Behavioral Attestation, in Proc. of the 13th ACM Symposium on Access Control Models and Technologies (SACMAT), Estes Park, Colorado, USA, 2008.
5. Basel Katt, Xinwen Zhang, Ruth Breu, Michael Hafner, Jean-Pierre Seifert, A General Obligation Model and Continuity-Enhanced Policy Enforcement Engine for Usage Control, in Proc. of the 13th ACM Symposium on Access Control Models and Technologies (SACMAT), Estes Park, Colorado, USA, 2008.
6. Xinwen Zhang, Masayuki Nakae, Michael J. Covington, and Ravi Sandhu, A Usage-based Authorization Framework for Collaborative Computing Systems, ACM Transactions on Information and System Security, (TISSEC), 11(1), 2008: 3:1-3:36. 
7. Xinwen Zhang, Dongyu Liu, Songqing Chen, Zhao Zhang, and Ravi Sandhu, Towards Digital Rights Protection in BitTorrent-like P2P Systems, in the 15th SPIE/ACM Multimedia Computing and Networking (MMCN), San Jose, CA USA, January 30-31, 2008.
8. Onur Aciicmez, Latifi Afshin, Jean-Pierre Seifert, and Xinwen Zhang, A Trusted Mobile Phone Prototype, in the 5th IEEE Consumer Communications and Networking Conference (CCNC), Las Vegas, Nevada, USA, Jan. 10-12, 2008: 1208-1209. 
9. Xinwen Zhang, Qi Li, Jean-Pierre Seifert, Mingwei Xu, Flexible Authorization with Decentralized Access Control Model for Grid Computing, in the 10th IEEE High Assurance Systems Engineering Symposium (HASE),  Dallas, Texas, Nov 14-16, 2007: 156-165. 
10. Xinwen Zhang, Onur Aciicmez, and Jean-Pierre Seifert, Architecturing Trusted Mobile Platforms via Secure Kernel,  in ACM CCS Workshop on Scalable Trusted Computing (STC), 2007. (in conjunction with CCS'07)

Patents

1. X. Zhang and J-P. Seifert, Method and System for Enforcing Trusted Computing Policies in a Hypervisor Security Architecture, US Patent (pending).
2. X. Zhang, O. Aciicmez, J-P. Seifert and Q. Ma, Securing Stored Content for Trusted Hosts and Safe Computing Environments, US Patent (pending).
3.  O. Aciicmez and X. Zhang, Methods for Building Enhanced Protocol Scripting Language for Safe Execution in Embedded Systems, US Patent (pending).
4. X. Zhang, J-P Seifert, O. Aciicmez, and Q. Ma, Securing CPU Affinity in Multiprocessor Architectures, US Patent (pending).
5. X. Zhang, J-P. Seifert, W. Min, and O. Aciicmez, Trusted Multi-stakeholder Environment, US Patent (pending).
6. L. Xie, X. Zhang, J-P. Seifert, O. Aciicmez, and A. Latifi, Detecting Unauthorized Use of Computing Devices Based on Behavioral Patterns, US Patent (pending).
7. X. Zhang, L. Xie, J-P Seifert, and O. Aciicmez, Trusted Device Management for Mobile Platforms, US Patent (pending)