Verisign Labs

Talented, Collaborative and Dedicated

The Verisign Labs team brings a tremendous breadth of expertise and talent.

Eric Osterweil

Eric Osterweil

Principal Scientist


Education

Ph. D., Computer Science, University of California, Los Angeles, Los Angeles, CA
B.A., Computer Science, Johns Hopkins University, Baltimore, MD
B.A., Physics, Johns Hopkins University, Baltimore, MD

Biography

Eric Osterweil is a principal scientist in Verisign’s CSO group. His research focuses on several aspects of Internet security and architecture, such as DNS-based DDoS attacks, BGP routing security, large-scale measurements, quantifying the systemic dependencies of Internet-scale systems and evolving trends in Internet architectures.

Prior to joining Verisign, Osterweil worked for eight years as a software architect and technical team lead at various companies. He is an active member of the The Internet Engineering Task Force (IETF) and other research communities. As part of his participation in the community, Osterweil has authored several utilities (SecSpider, RPKISpider, dnsfunnel, Vantages and lbsh) that have helped facilitate and evolve the deployment of standards, like DNSSEC). Additionally, Osterweil previously served as the program manager for the Verisign Labs university affiliates program.

Osterweil received his doctorate in computer science from UCLA. He completed his thesis work in the Internet Research Lab (IRL) and his dissertation topic was a new substrate for Internet-scale security systems called “Measureable Security.” As an undergraduate, he received a Bachelor of Arts in both computer science and physics from The Johns Hopkins University.

Research

Conference and Workshop Papers

"Dissecting Ghost Clicks: Ad Fraud Via Misdirected Human Clicks"
Sumayah Alrwais, Christopher Dunn, Minaxi Gupta, Alexandre Gerber, Oliver Spatscheck, Eric Osterweil, Annual Computer Security Applications Conference (ACSAC) 2012, December 2012

"Behavior of DNS' Top Talkers, a .com/.net View"
Eric Osterweil, Danny McPherson, Steve DiBenedetto, Christos Papadopoulos, Dan Massey,
PAM 2012: Passive and Active Measurement Conference, March 2012

"Reducing the X.509 Attack Surface with DNSSEC's DANE"
Eric Osterweil, Burt Kaliski, Matt Larson, Danny McPherson,
Securing and Trusting Internet Names, SATIN 2012, March 2012

"The Great IPv4 Land Grab: Resource Certification for the IPv4 Grey Market"
Eric Osterweil, Shane Amante, Danny McPherson, Dan Massey,
Tenth ACM Workshop on SIGCOMM Hot Topics in Networks (HotNets-X), November 2011

"Deploying and Monitoring DNS Security (DNSSEC)"
Eric Osterweil, Dan Massey, Lixia Zhang,
IEEE Computer Society, 25th Annual Computer Security Applications Conference (ACSAC '09), December 2009

"Managing Trusted Keys in Internet-Scale Systems"
Eric Osterweil, Dan Massey, Lixia Zhang,
The Workshop on Trust and Security in the Future Internet (FIST '09), June 2009

"Quantifying the Operational Status of the DNSSEC Deployment"
Eric Osterweil, Michael Ryan, Dan Massey, Lixia Zhang,
Proceedings of the 6th ACM/USENIX Internet Measurement Conference (IMC '08), , October 2008

"Limiting Replay Vulnerabilities in DNSSEC"
He Yan, Eric Osterweil, Jon Hajdu, Jonas Acres, and Dan Massey,
4th IEEE ICNP Workshop on Secure Network Protocols (NPSec '08), October 2008

"Observations from the DNSSEC Deployment"
Eric Osterweil, Dan Massey, Lixia Zhang,
3rd IEEE ICNP Workshop on Secure Network Protocols (NPSec '07), October 2007

"Zone State Revocation for DNSSEC"
Eric Osterweil, Vasileios Pappas, Dan Massey, Lixia Zhang,
Proceedings of ACM Sigcomm Workshop on Large Scale Attack Defenses (LSAD '07), August 2007

"Security Through Publicity"
Eric Osterweil, Dan Massey, Batsukh Tsendjav, Beichuan Zhang, Lixia Zhang,
USENIX First Workshop on Hot Topics in Security (HotSec '06), July 2006

"System for Simulation, Emulation, and Deployment of Heterogeneous Sensor Networks"
Lewis Girod, Thanos Stathopoulos, Nithya Ramanathan, Jeremy Elson, Deborah Estrin, Eric Osterweil, and Tom Schoellhammer,
Proceedings of the second ACM Conference on Embedded Networked Sensor Systems (SenSys), November 2004

"Lightweight Temporal Compression of Microclimate Datasets"
Tom Schoellhammer, Eric Osterweil, Ben Greenstein, Mike Wimbrow, Deborah Estrin,
Proceedings of the 29th Annual IEEE International Conference on Local Computer Networks, November 2004

Talks

"The Evolution of DNSSEC's Global Rollout"
Internet ON, 2010 (ION '10), December 2010

"Network Path Problems in DNSSEC's Deployment"
Eric Osterweil, Dan Massey, Lixia Zhang,
IETF 75, July 2009

"Availability Problems in the DNSSEC Deployment"
Eric Osterweil, Dan Massey, Lixia Zhang,
RIPE 58, May 2009
PDF version here

"The State and Challenges of the DNSSEC Deployment"
Eric Osterweil, Michael Ryan, Dan Massey, Lixia Zhang, NANOG 44 - DNSSEC BoF, October 2008
PDF version here

"SecSpider: Distributed DNSSEC Monitoring"
Eric Osterweil, Michael Ryan, Dan Massey, Lixia Zhang, NANOG 44 - Tools BoF, October 2008
PDF version here

"Is an Internet PKI the Right Approach?"
Eric Osterweil, Dan Massey, Lixia Zhang, UCLA Engineering Technology Forum, May 2008

"SecSpider: Distributed DNSSEC Monitoring and Key Learning"
3rd OARC Workshop, November 2007

"Zone State Revocation (ZSR) for DNSSEC"
Eric Osterweil, Vasileios Pappas, Dan Massey, Lixia Zhang, Proceedings of ACM Sigcomm Workshop on Large Scale Attack Defenses (LSAD '07), August 2007

"BGP-Origins: A Public Space System"
NANOG 40, May 2007

"SecSpider: The DNSSEC Monitoring Project"
2nd OARC Workshop, November 2006

MEET OUR TEAM