Dynamic Pharming Attacks and Locked Same-Origin Policies for Web Browsers, Chris Karlof, Umesh Shankar, J. D. Tygar, David Wagner, Conference on Computer and Communications Security, 2007.
Doppelganger: Better Browser Privacy Without the Bother, Umesh Shankar, Chris Karlof, Proceedings of the 13th ACM Conference on Computer and Communications Security (CCS 2006).
PRIMA: policy-reduced integrity measurement architecture, Trent Jaeger, Reiner Sailer, Umesh Shankar, SACMAT, 2006, pp. 19-28.
Preventing Secret Leakage from fork(): Securing Privilege-Separated Applications, Umesh Shankar, David Wagner, Proceedings of the 2006 IEEE International Conference on Communications (Network Security and Information Assurance Symposium at ICC 2006).
Toward Automated Information-Flow Integrity Verification for Security-Critical Applications, Umesh Shankar, Trent Jaeger, Reiner Sailer, NDSS, 2006.
Side Effects Are Not Sufficient to Authenticate Software, Umesh Shankar, Monica Chew, J. D. Tygar, USENIX Security Symposium, 2004, pp. 89-102.
Active Mapping: Resisting NIDS Evasion without Altering Traffic, Umesh Shankar, Vern Paxson, IEEE Symposium on Security and Privacy, 2003, pp. 44-61.
Secure verification of location claims, Naveen Sastry, Umesh Shankar, David Wagner, ACM Workshop on Wireless Security (WiSE), 2003, pp. 1-10.
Multiscale Stepping-Stone Detection: Detecting Pairs of Jittered Interactive Streams by Exploiting Maximum Tolerable Delay, David L. Donoho, Ana Georgina Flesia, Umesh Shankar, Vern Paxson, Jason Coit, Stuart Staniford, Proceedings of the 5th International Symposium on Recent Advances in Intrusion Detection (RAID), 2002, pp. 17-35.
Detecting Format String Vulnerabilities with Type Qualifiers, Umesh Shankar, Kunal Talwar, Jeffrey S. Foster, David Wagner, Proceedings of the 10th USENIX Security Symposium, 2001.