Sazzadur Rahaman

Assistant Professor, Department of Computer Science, University of Arizona

I work towards making security research more democratized and affordable. I am broadly interested in building robust systems and methodologies by using program analysis, formal verification, applied cryptography, internet measurement and machine learning-based techniques. I emphasize on transitioning my work into practice. My strength is building rigorous methodologies and deployable systems.

I completed my Ph.D. in Computer Science from CS@VT, under the supervision of Dr. Danfeng (Daphne) Yao. Before that, I worked as a software engineer. I have 3.5+ years of industry experience in OOP, AOP and soul JavaEE technologies, smart card and payment based solutions. I completed my under graduation from BUET. I am greatly indebted to my undergrad thesis supervisor, Dr. Md. Saidur Rahman for his guidance, support and inspiration.

Multiple Open Positions: I am looking for self-motivated, hard-working, and passionate students to join my newly formed research group! If you are interested to work with me on field-transforming security and privacy problems and you are:
  • UofA Student: Please send me an email with your CV and a short write-up about your interest.
  • Upcoming Grad Student: Please apply to UofA Graduate program and mention my name in the SOP, so that I can look into your application package.
[SecDev'20]

Mazharul Islam, Sazzadur Rahaman, Na Meng, Behnaz Hassanshahi, Padmanabhan Krishnan, Danfeng (Daphne) Yao) . Coding Practices and Recommendations of Spring Security for Enterprise Applications. IEEE Secure Development Conference. Atlanta, GA, September 2020.
Conference [PDF]

[TDSC'20]

Sazzadur Rahaman, Haipeng Cai, Omar Chowdhury and Danfeng (Daphne) Yao. From Theory to Code: Identifying Logical Flaws in Cryptographic Implementations. IEEE Transactions on Dependable and Secure Computing (TDSC). 2020.
Journal [preprint]

[CCS'19]

Sazzadur Rahaman, Gang Wang, Danfeng (Daphne) Yao. Security Certification in Payment Card Industry: Testbeds, Measurements, and Recommendations. ACM Conference on Computer and Communications Security (CCS'19). London, United Kingdom. November 2019.
Conference [PDF] [Source code: PciCheckerLite, BuggyCart]

[CCS'19]

Sazzadur Rahaman, Ya Xiao, Sharmin Afrose, Fahad Shaon, Ke Tian, Miles Frantz, Murat Kantarcioglu, Danfeng (Daphne) Yao. CryptoGuard: High Precision Detection of Cryptographic Vulnerabilities in Massive-sized Java Projects. ACM Conference on Computer and Communications Security (CCS'19). London, United Kingdom. November 2019.
Conference [PDF] [Source code] [Adopted by Oracle] [ACM news Article]

[SecDeV'19]

Sharmin Afrose, Sazzadur Rahaman, Danfeng (Daphne) Yao. CryptoAPI-Bench: A Comprehensive Benchmark on Java Cryptographic API Misuses. 2019 IEEE Secure Development Conference. McLean, VA. September 2019.
Conference [PDF] [Source code]

[PETS'17]

Sazzadur Rahaman, Long Cheng, Danfeng (Daphne) Yao, He Li, and Jung-Min (Jerry) Park. Provably Secure Anonymous-yet-Accountable Crowdsensing with Scalable Sublinear Revocation. The 17th Privacy Enhancing Technologies Symposium (PETS). Minneapolis, MN, USA. July, 2017.
Journal Conference [PDF]

[SecDeV'17]

Sazzadur Rahaman, Danfeng (Daphne) Yao. Toward Automatic Program Analysis of Cryptography Implementations for Security. 2017 IEEE Secure Development Conference. Cambridge, MA, USA. September, 2017.
Conference [PDF]

[ICIEV'14]

Sazzadur Rahaman, Tousif Ahmed Eshan, Sad Al Abdullah. Antibandwidth Problem for Itchy Caterpillars. 2014 International Conference on International Conference on Informatics, Electronics & Vision (ICIEV). Dhaka, Bangladesh. May, 2014.
Conference [PDF]

[ISMS'13]

Mohammad Raihanul Islam, Sazzadur Rahaman, Rakibul Hasan, Ridwan Rashid Noel, Asif Salekin, and Hasan Shahid Ferdous. A Novel Approach for Constructing Emulator for Microsoft Kinect XBOX 360 Sensor in the .NET Platform. 4th International Conference on Intelligent Systems Modelling & Simulation (ISMS). Bangkok, Thailand. January, 2013.
Conference [PDF]

[US Patent]

Fahad Shaon, Sazzadur Rahaman. Systems and methods for proactive and reactive data security. U.S. Application No: 16/698,328 (filed).

Pratt Fellowship, Fall 2019 and Spring 2020

Bitshare Fellowship, Fall 2018 and Spring 2019

Champion in .Net platform, Inter University System Design Competition-2011, BUET

Dean's List Award, BUET, Session 2009-2010

Program Committee:

NDSS '21

Journal Review:

IEEE Transactions on Dependable and Secure Computing (TDSC), IEEE Internet of Things Journal

External Reviewer:

ACSAC '20, PETS '18 '19 '20, SecDev '18

Sub Reviewer:

CCS '17 '18 '19, S&P '18 '19 '20, NDSS '19, WWW '19, AsiaCCS '17 '18, DSN '17

Student Volunteer:

CCS 2017

Email

sazz [at] cs [dot] arizona [dot] edu

Address

Department of Computer Science,
Gould-Simpson, Room 917, 1040 E 4th St, Tucson, AZ - 85721.