Jun Li's Publications

Peer-Reviewed Books

• Jun Li, Peter Reiher, Gerald Popek. Disseminating Security Updates at Internet Scale, Kluwer Academic Publishers, Boston, November 2002, 174 pages, ISBN 1-4020-7305-4.

Peer-Reviewed Journal Articles

• Jun Li, "mSSL: A framework for trusted and incentivized peer-to-peer data sharing between distrusted and selfish clients," Peer-to-Peer Networking and Applications (2010): 1-21,, July 13, 2010. DOI: 10.1007/s12083-010-0087-x. (Also available at http://www.springerlink.com/index/U78857X37547568N.pdf.)
• Toby Ehrenkranz and Jun Li, "On the state of IP spoofing defense," ACM Transactions on Internet Technology, vol. 9, no. 2, May 2009.
• Jun Li, Jelena Mirkovic, Toby Ehrenkranz, Mengqiu Wang, Peter Reiher, and Lixia Zhang, "Learning the valid incoming direction of IP packets," Computer Networks, vol. 52, no. 2, pp. 399-417, February 2008.
• Jun Li and Paul Knickerbocker, "Functional similarities between computer worms and biological pathogens," Computers & Security, vol. 26, no. 4, pp. 338-347, June 2007.
• Jun Li, Michael Guidero, Zhen Wu, Eric Purpus, and Toby Ehrenkranz, "BGP routing dynamics revisited," ACM SIGCOMM Computer Communication Review, vol. 37, no. 2, pp. 7-16, April 2007.
• Shad Stafford, Jun Li, and Toby Ehrenkranz, "Enhancing SWORD to detect 0-day-worm-infected hosts," SIMULATION: Transactions of the Society for Modeling and Simulation International, vol. 83, no. 2, pp. 199-212, February 2007.
• Jun Li, Dejing Dou, Zhen Wu, Shiwoong Kim, and Vikash Agarwal, "An Internet routing forensics framework for discovering rules of abnormal BGP events," ACM SIGCOMM Computer Communication Review, vol. 35, no. 5, pp. 55-66, October 2005.
• Jun Li, Peter Reiher, and Gerald Popek. "Resilient self-organizing overlay networks for security update delivery," IEEE Journal on Selected Areas in Communications, Special Issue on Service Overlay Networks, vol. 22, no. 1, pp. 189-202, January 2004.
• Jun Li, Mark D. Yarvis, and Peter L. Reiher. "Securing distributed adaptation," Computer Networks, Special Issue on Programmable Networks, vol. 38, no. 3, pp. 347-371, February 2002.
• Adam Rosenstein, Jun Li, and Siyuan Tong. "MASH: The multicasting archie server hierarchy," ACM SIGCOMM Computer Communication Review, vol. 27, no. 3, pp. 5-13, July 1997.
• Jun Li and Yufang Sun. "Security design and implementation for micro-kernel based file system server," Journal of Computers, vol. 20, no. 5, pp.396-403, May 1997.
• Jun Li and Yufang Sun. "Security research for micro-kernel based operating system," Journal of Software, vol. 8, no. 2, pp. 99-106, February 1997.
• Jun Li and Yufang Sun. "Computer security and security model," Journal of Computer Research And Development, vol. 33, no. 4, pp.312-320, April 1996.

Peer-Reviewed Conference Publications

• Jun Li and Scott Brooks, "I-seismograph: Observing and measuring Internet earthquakes," in Infocom 2011, April 2011, p. 9 pages. To Appear.
• Shad Stafford and Jun Li, "Behavior-based worm detectors compared," in 13th International Symposium on Recent Advances in Intrusion Detection (RAID), September 2010, p. 20 pages.
• Toby Ehrenkranz, Jun Li, and Patrick McDaniel, "Realizing a source authentic Internet," in 6th International ICST Conference on Security and Privacy in Communication Networks (SecureComm), September 2010, p. 18 pages.
• Paul Knickerbocker, Dongting Yu, and Jun Li, "Humboldt: A distributed phishing disruption system, in The Anti-Phishing Working Group eCrime Researchers Summit, October 2009, p. 11 pages.
• Daniel A. Ray, Charles B. Ward, Bogdan Munteanu, Jonathan Blackwell, Xiaoyan Hong, and Jun Li, "Investigating the impact of real-world factors on Internet worm propagation," in International Conference on Information Systems Security, December 2007, pp. 10-24. (Highest rank among all submissions.)
• Jun Li, Zhen Wu, and Eric Purpus, "Toward understanding the behavior of BGP during large-scale power outages," in IEEE GLOBECOM, San Francisco, CA, November 2006, 5 pages.
• Shad Stafford, Jun Li, and Toby Ehrenkranz, "On the performance of SWORD in detecting zero-day-worm-infected hosts," in Symposium on Performance Evaluation of Computer and Telecommunication Systems (SPECTS), Calgary, Canada, July 2006, vol. 38, pp. 559-566.
• Matthew Roughan, Jun Li, Randy Bush, Zhuoqing Mao, and Timothy Griffin, "Is BGP update storm a sign of trouble: Observing the Internet control and data planes during Internet worms," in Symposium on Performance Evaluation of Computer and Telecommunication Systems (SPECTS), Calgary, Canada, July 2006, vol. 38, pp. 535-542.
• Jun Li, Randy Bush, Zhuoqing Mao, Timothy Griffin, Matthew Roughan, Daniel Stutzbach, and Eric Purpus, "Watching data streams toward a multi-homed sink under routing changes introduced by a BGP beacon," in Passive and Active Measurement Conference, Adelaide, Australia, March 2006, acceptance rate 25.6% (21/82).
• Jun Li and Xun Kang, "mSSL: Extending SSL to support data sharing among collaborative clients," in Annual Computer Security Applications Conference, Tucson, Arizona, December 2005, pp. 357-368, acceptance rate 22.8% (45/197).
• Jun Li, Toby Ehrenkranz, Geoff Kuenning, and Peter Reiher, "Simulation and analysis on the resiliency and efficiency of malnets," in Symposium on Measurement, Modeling, and Simulation of Malware, Monterey, CA, June 2005, pp. 262-269.
• Jun Li, Jelena Mirkovic, Mengqiu Wang, Peter L. Reiher, and Lixia Zhang, "SAVE: Source address validity enforcement protocol," in IEEE INFOCOM, New York, June 2002, pp. 1557-66, acceptance rate 20.5%.
• Jun Li, Peter L. Reiher, Gerald J. Popek, Mark D. Yarvis, and Geoff Kuenning, "Position statement: An approach to measuring large-scale distributed systems," in IFIP 14th International Conference on Testing of Communicating Systems (TestCom 2002), Berlin, Germany, March 2002, pp. 9-18.
• Jun Li, Mark D. Yarvis, and Peter L. Reiher, "Securing distributed adaptation," in the Fourth IEEE Conference on Open Architectures and Network Programming (OPENARCH 2001), Anchorage, Alaska, April 2001, pp. 71-82, acceptance rate 21%. A best paper and its extended version selected for journal publication.

Peer-Reviewed Workshop Publications

• Jun Li and Xun Kang, "Proof of service in a hybrid P2P environment," in Springer LNCS 3759 of the International Workshop on Applications and Economics of Peer to Peer Systems, November 2005, pp. 64-73, acceptance rate 8% (10/125).
• Virginia Lo, Dayi Zhou, Yuhong Liu, Chris Gauthier-Dickey, and Jun Li, "Scalable supernode selection in peer-to-peer overlay networks," in International Workshop on Hot Topics in Peer-to-Peer Systems (Hot-P2P), San Diego, CA, July 2005, pp. 18-25, acceptance rate 52% (13/25).
• Jun Li, Peter L. Reiher, and Gerald J. Popek, "Securing information transmission by redundancy," in ACM New Security Paradigms Workshop, Ontario, Canada, September 1999, pp. 112-117, acceptance rate 35%. A best paper and selected as a highlight for 22nd National Information Systems Security Conference.

Peer-Reviewed Short Papers

• Jun Li, Dejing Dou, Shiwoong Kim, Han Qin, and Yibo Wang, "On knowledge-based classification of abnormal BGP events," in International Conference on Information Systems Security, December 2007, pp. 267-271 (short paper).
• Dejing Dou, Jun Li, Han Qin, Shiwoong Kim, and Sheng Zhong, "Understanding and utilizing the hierarchy of abnormal BGP events," in SIAM International Conference on Data Mining, Minneapolis, Minnesota, April 2007, pp. 457-462 (short paper), acceptance rate 24.8% (36 full papers and 39 short papers are accepted, 302 submissions).
• Zhen Wu, Eric S. Purpus, and Jun Li, "BGP behavior analysis during the August 2003 blackout," in The 9th IFIP/IEEE International Symposium on Integrated Network Management, Nice, France, May 2005, 4 pages (short paper).
• Xun Kang, Dayi Zhou, Dan Rao, Jun Li, and Virginia Lo, "Sequoia--A robust communication architecture for collaborative security monitoring systems," in ACM SIGCOMM poster session, Portland, OR, August 2004, 1 page.
• Jun Li and Xun Kang, "mSSL: Securely sharing data from a server among clients," in Workshop on Information Security Applications, August 2004, pp. 567-570 (short paper).

Invited Publications

• Jun Li, "Data integrity and proof of service in Bittorrent-like P2P environments," IAnewsletter, Information Assurance Technology Analysis Center, vol. 9, no. 4, pp. 16-19, Winter 2006.

Technical Reports

• Eric Anderson and Jun Li, "Cooperative policy control for peer-to-peer data distribution," Tech. Rep. CIS-TR-2010-02, University of Oregon, March 2010.
• Toby Ehrenkranz and Jun Li, "An incrementally deployable protocol for learning the valid incoming direction of IP packets," Tech. Rep. CIS-TR-2007-05, University of Oregon, March 2007.
• Shad Stafford, Jun Li, Toby Ehrenkranz, and Paul Knickerbocker, "GLOWS: A high-fidelity worm simulator," Tech. Rep. CIS-TR-2006-11, University of Oregon, 2006.
• Jun Li, Shad Stafford, and Toby Ehrenkranz, "SWORD: Self-propagating worm observation and rapid detection," Tech. Rep. CIS-TR-2006-03, University of Oregon, 2006.
• Peter L. Reiher, Jun Li, and G. Kuenning, "Midgard worms: Sudden nasty surprises from a large resilient zombie army," Tech. Rep. UCLA-CSD-040019, UCLA Computer Science Department, April 2004.
• Jelena Mirkovic, Zhiguo Xu, Jun Li, Mattew Schneider, Peter Reiher, and Lixia Zhang, "iSAVE: Incrementally deployable source address validation," Tech. Rep. UCLA-CSD-020030, UCLA Computer Science Department, 2004.
• Jun Li and Gerhard Eschelbeck, "Multi-tier intrusion detection system," Tech. Rep. UCLA-CSD-010027, UCLA Computer Science Department, 2001.
• Jun Li, Jelena Mirkovic, Mengqiu Wang, Peter L. Reiher, and Lixia Zhang, "SAVE: Source address validity enforcement protocol," Tech. Rep. UCLA-CSD-010004, UCLA Computer Science Department, 2001.

Theses

• Jun Li, Revere--Delivering Security Updates At Internet Scale, Ph.D. thesis, UCLA Computer Science Department, June 2002. Advisors: Peter Reiher and Gerald Popek.
• Jun Li, Security design and implementation for COSIX file system server, M.S. thesis, Chinese Academy of Sciences, June 1995. Advisor: Yufang Sun.
• Jun Li, WGED: An editor for Chinese authoring system in computer-aided instruction, B.S. thesis, Peking University, June 1992. Advisor: Wansen Zhu.

Miscellaneous

• Jun Li, "CAREER: A behavior-based framework for detecting Internet worms," in National Science Foundation Cyber Trust Principal Investigators Meeting, January 29, 2007, poster.
• Shad Stafford, Toby Ehrenkranz, and Jun Li, "Detecting zero-day self-propagating Internet worms based on their fundamental behavior," in USENIX Security Symposium, August 2006, poster. (The proposal of the poster is here).
• Toby Ehrenkranz and Jun Li, "ID-SAVE: Incrementally deployable source address validity enforcement," in USENIX Security Symposium, August 2006, work-in-progress.
• Xiaoyan Hong, Jun Li, Daniel A. Ray, and Charles B. Ward, "Investigating the impact of real-world factors on Internet worm propagation," in International Conference on Network Security (ICNS), Reston, Virginia, April 2006, presentation.
• Jun Li, Virginia Lo, Xun Kang, Dayi Zhou, and Dan Rao, "Resilient and self-organizing overlay of collaborative security monitors," in USENIX'04 Annual Technical Conference, Boston, MA, June 2004, work-in-progress.
• Eric Anderson and Jun Li, "Aggregating detectors for new worm identification," in USENIX'04 Annual Technical Conference, Boston, MA, June 2004, work-in-progress.
• Jun Li, Jelena Mirkovic, Mengqiu Wang, Peter Reiher, and Lixia Zhang, "SAVE: Source address validity enforcement protocol," in USENIX Security Symposium, Washington, D.C., August 2001, work-in-progress.
• Jun Li, Mani Srivastava, and Peter Reiher, "Simulation of gradient-based data dissemination in wireless sensor networks," in PARSEC Workshop'99 on Applications Using Parsec and Large Scale Models, Los Angeles, CA, November 1999, 4 pages.
• Peter Reiher, Jun Li, and Gerald Popek, "Securing information transmission by redundancy," in The 22nd National Information Systems Security Conference, Washington D.C., October 1999, Presentation at the panel "Themes and Highlights of the New Security Paradigms Workshop 1999."