|
|
|
Phone
(918) 631-3560 • E-mail gavin-manes@utulsa.edu
|
Gavin W. Manes, Ph.D.
|
|
|
|
To lead innovative research,
development and education efforts at an organization that aspires to play a
major role in transforming information technology. My ambition is to help
guide the continuing evolution of the research and development community
through education, leadership and service.
|
Education AND Certifications
|
|
|
Ph.D. in
Computer Science, University
of Tulsa, Oklahoma, 2004
M.S. in Computer Science, University of Tulsa, Oklahoma,
2002
B.S. in Computer Science, University of Tulsa, Oklahoma,
2000
Federal Information Security Certifications:
Committee on Nation Security Systems
Certificates. NSTISSI No. 4011: Information Systems Security Professional,
4012: Designated Approving Authority, 4013: Administration in Information
Systems Security, 4014: Information Systems Security Officer and 4015:
Systems Certifier.
|
|
|
|
|
Digital forensics, information assurance,
converged networks, network security, telecommunications security, Signaling
System 7 (SS7), Supervisory Control and Data Acquisition (SCADA) system
security, critical infrastructure protection, intrusion detection, database
mining.
|
|
|
|
|
2000 -
Present The University of Tulsa Tulsa, Oklahoma
Courses Instructed and
Co-Instructed
n
Electronic Discovery and Digital Evidence: course
creator and instructor, fall 2006.
n
Telecommunications Security: course creator and
instructor, spring 2005.
n
Computer Organization and Assembler: course
instructor, spring 2005.
n
Critical Infrastructure Protection: course
creator and instructor, fall 2004.
n
Advanced Computer Forensics: course creator and
instructor including course projects and eight publishable research papers,
spring 2004.
n
Computer and Network Forensics: curriculum,
lecture and project development - Tulsa
Police Department, Oklahoma
State Bureau of Investigation, and NASA OIG projects, 2001 - 2002.
n
Secure System Administration and Certification:
system certification project development, 2002.
n
Network Security: curriculum, lecture and project
development, 2000-2002.
n
Electronic Commerce: project management and
stewardship - designing, implementing and documenting a project for a
multi-university setting, 1999-2003.
|
|
|
2004 -
Present The University of Tulsa Tulsa, Oklahoma
Research Assistant Professor
and
Principal Research Scientist, Center for Information Security (CIS)
n
Facility Security Officer (FSO) for U.S.
Government Classified Research Efforts
The University
of Tulsa Industrial
Security Office. Design, coordination and construction renovating 6500 sq ft
facility for post doc research and specialized classrooms.
Created university classified research program
and facilities including:
DCID 6/9 compliant Secure Compartmentalized
Information Facility (SCIF).
NISPOM compliant faculty for Top Secret Level
safeguarding.
Acting: Information System Security Manager and
COMSEC Custodian.
n
Manage graduate and undergraduate research
personnel and programs
Conference Creator and Coordinator – “Fundamentals
of Cyber Crimes” lectures and hands-on laboratories for federal, state, and
local Oklahoma
law enforcement personnel.
Project Manager – “Defending Public Telephone
Networks Against Cyber Terrorist Attacks,” sponsored by Oklahoma City
National Memorial Institute for the Prevention of Terrorism (MIPT).
Project Manager – “Vulnerability Analysis Tools
and Attack Managements Systems for Converged Networks,” sponsored by the
National Institute of Standards and Technology.
n
Develop and implement center enhancements
Formation of the Tulsa Digital Forensics
Laboratory (TDFL) with relocation of the Oklahoma State Bureau of
Investigation’s and United States Secret Service’s Tulsa offices to the
University of Tulsa CIS Annex and home of the TDFL. Design and implementation
of the TDFL; including two storage area networks, both Ethernet and Fiber
channel investigation networks, monitored access control evidence rooms and
of TDFL forensic technologies, policies, and procedures.
Computer Forensics Partnerships: Tulsa Police
Department Cyber Crimes Unit, Oklahoma State Bureau of Investigation, the
Williams Companies, Internal Revenue Service, United States Secret Service,
NASA OIG, NIST, OHTCC, DoD Computer Forensic Lab.
Industrial IA Partnerships: Tektronix, CISCO
Systems, Williams Energy, McLeodUSA.
|
|
|
2000 -
2004 The University of Tulsa Tulsa, Oklahoma
Principal Research Scientist,
Center for Information Security (CIS)
n
Manage graduate and undergraduate research
personnel and programs
Conference Creator and Coordinator – “Tulsa ILook 8.0 Seminar” lectures and hands-on laboratories for
federal, state, and local Oklahoma
law enforcement personnel.
Project Manager – University of Tulsa
Cyber Corps Program: National Science Foundation Federal Cyber Service
Initiative and Department of Defense Information Assurance Scholarship
Program.
Project Manager – “Defending Public Telephone
Networks Against Cyber Terrorist Attacks,” sponsored by Oklahoma City
National Memorial Institute for the Prevention of Terrorism (MIPT).
Project Manager – “Vulnerability Analysis Tools
and Attack Managements Systems for Converged Networks,” sponsored by the
National Institute of Standards and Technology.
Project Manager – “Combating Terrorism: IP
Network Intrusion Detection and Forensics,” sponsored by the Institute for
Security Technology Studies at Dartmouth
College.
n
Develop and implement infrastructure enhancements
Center for Information Security Annex (CIS
Annex). Administrative oversight on construction of office and lab space
(5000 sq ft) for University
of Tulsa Cyber Corps Program.
Tulsa Police Department Cyber Crimes Unit.
Relocation to the University
of Tulsa CIS Annex;
construction of evidence room and overhaul of forensic
technologies and procedures.
CIS Research and Instructional Facilities: $2.5
million infrastructure for CIS in five major research labs and server rooms
and over 50 research, faculty and student offices.
|
|
|
1996 -
2000 The University of Tulsa Tulsa, Oklahoma
Undergraduate Research
Assistant, TURC—Tulsa
Undergraduate Research Challenge
n
1998 - 2000, Developed secure agent based
Intrusion Detection Systems (IDS).
n
1998 - 1999, Created and implemented agent-based
video monitoring system.
n
1996 - 1998, Designed, implemented and marketed
next generation search engines for Internet and Intranet applications using
cutting-edge persistent agent technologies.
|
|
|
|
|
2004 -
Present Oklahoma
Digital Forensics Professionals, Inc. Tulsa, Oklahoma
President and Director of Research
n
Established and incorporated Oklahoma Digital
Forensics Professionals, Inc. in 2004
Hired all staff including forensics examiners, evidence
custodians, sales, marketing, management, and technical writers.
Established 2,000 sq ft secure forensics laboratory
space with state of the art forensics workstations, secure evidence storage,
and advanced access control systems.
Responsible for day-to-day
operations of OKDFP.
n
Continuing Legal Education (CLE)
Presented approved one hour CLE to several Oklahoma County
Bar Associations, “Digital Forensics: Applications of the Legal Profession.”
Presentations at the 2005
Oklahoma Electronic Discovery Summit, Midwest
City, Oklahoma,
September 22-23, 2005.
n
Author of OCAST and other grants related to
advancing the field of Digital Forensics including accelerating the
collection, analysis, and reporting of forensic devices.
|
|
|
|
|
[1]
“NetGlean: A
methodology for distributed network security scanning,” G. Manes, D. Schulte,
S. Guenther, S. Shenoi, to appear in The Journal of
Network and Systems Management, Kluwer
Academic/Plenum Publishers, Norwell, Massachusetts, 2005.
[2]
“A Framework for unified network security
management: Identifying and tracking security threats on converged networks,”
J. Dawkins, K. Clark, G. Manes, M. Papa, to appear in The Journal of Network
and Systems Management, Kluwer Academic/Plenum
Publishers, Norwell, Massachusetts, 2005.
|
|
|
|
|
[3]
S. Seier, D. Greer, G.
Manes, “Linking Individuals to Digital Information,” to appear in Research
Advances in Digital Forensics, M. Olivier, S. Shenoi
(Eds.), Kluwer, Boston, MA, 2006.
[4]
K. Straka, G. Manes,
“Techniques for Passive Detection of NAT Routers and Counting Their Clients,”
to appear in Research Advances in Digital Forensics, M. Olivier, S. Shenoi (Eds.), Kluwer, Boston,
MA, 2006.
[5]
A. Meehan, T. Moore, S. Shenoi,
G. Manes, “Forensics Analysis of Telecommunications Networks,” in Research Advanced in Digital Forensics,
M. Pollitt, S. Shenoi
(Eds.), Springer, Norwell,
MA, 2005.
[6]
C. Swenson, S. Shenoi,
G. Manes, “Imaging and Analysis of GSM Sim Cards,”
in Research Advances in Digital
Forensics, M. Pollitt, S. Shenoi (Eds.), Springer, Norwell, MA,
2005.
[7]
S. Piper, M. Davis, S. Shenoi,
G. Manes, “Detecting Misuse of Reserved Portions of the Ext2 File System,” in Research Advances in Digital Forensics,
M. Pollitt, S. Shenoi
(Eds.), Springer, Norwell, MA, 2005.
[8]
M. Davis, S. Shenoi, G.
Manes, “A Digital Evidence Custodian Model,” in Research Advances in Digital Forensics, M. Pollitt, S. Shenoi (Eds.),
Springer, Norwell, MA, 2005.
[9]
P. Gershteyn, M. Davis,
S. Shenoi, G. Manes, “Extracting Digital Evidence
from BIOS Chips,” in Research
Advances in Digital Forensics, M. Pollitt,
S. Shenoi (Eds.), Kluwer,
Boston, MA, 2005.
[10]
J. Novotny, G. Manes, S. Shenoi,
“Remote computer fingerprinting for cyber crime investigations,” Advances
in Data and Applications Security, S. De Capitani di
Vimercati, I. Ray, I. Ray (Eds.), Springer,
Norwell, MA, 2004.
[11]
G. Lorenz, J. Keller, G. Manes, J. Hale, S. Shenoi, “Public telephone network (PTN) vulnerabilities,”
Advances in Data and Applications Security, M. Oliver and D.
Spooner (Eds.), Kluwer, Boston Massachusetts, pp.
151-166, 2002.
|
|
|
|
|
[12]
A. Meehan, G. Manes, S. Shenoi,
“Network Convergence: Security Themes and Issues,” GlobeCom 2004 W07: Voice over IP: Challenges and Solutions, Dallas, Texas,
December 2004.
[13]
G. Manes, A. Meehan, S. Shenoi,
“Securing Telecommunications Networks,” Proceedings of the SPIE Defense
and Security Symposium Conference on Sensors, Command, Control,
Communications, And Intelligence (C3I) Technologies For Homeland Security And
Homeland Defense (Vol. 5403), Orlando, Florida, April
2004.
[14]
G. Manes, A. Meehan, S. Shenoi,
“Combating Threats to Emergency Communications Services,” Proceedings of the
SPIE Defense and Security Symposium Conference on Sensors,
Command, Control, Communications, And Intelligence (C3I) Technologies For
Homeland Security And Homeland Defense (Vol. 5403), Orlando, Florida,
April 2004.
[15]
T. Kosloff, T. Moore,
J. Keller, G. Manes, S. Shenoi, “Attacks on Public
Telephone Networks: Technologies and Challenges,” Proceedings of the
SPIE Conference on Sensors and C3I Technologies for Homeland Defense and Law
Enforcement (Vol. 5071), Orlando,
Florida, April 2003.
[16]
G. Manes, J. Dawkins, J. Hale, S. Shenoi, “Identifying & Tracking Attacks on Networks:
C3I Displays & Related Technologies,” Proceedings of the SPIE Conference on Sensors
and C3I Technologies for Homeland Defense and Law Enforcement (Vol. 5071), Orlando, Florida,
April 2003.
[17]
T. Kosloff, T. Moore,
J. Keller, G. Manes, S. Shenoi, “SS7 Messaging
Attacks on Public Telephone Networks: Attack Scenarios and Detection,” Proceedings of the ACM Symposium on the
Scientific Aspects of Cyber Terrorism at the 9th ACM Conference on Computer And Communications Security, Washington, D.C.,
November 2002.
[18]
T. Moore, T. Kosloff,
J. Keller, G. Manes, S. Shenoi, “Signaling System 7
(SS7) Network Security,” Proceedings of
the IEEE 45th Midwest Symposium on Circuits and Systems, Tulsa, OK,
August 4-7, 2002.
[19]
B. Skaggs, B. Blackburn, G. Manes, S. Shenoi, “Network
Vulnerability Analysis,” Proceedings of
the IEEE 45th Midwest Symposium on Circuits
and Systems, Tulsa, OK, August 4-7, 2002.
[20]
G. Manes, D. Schulte, T. Kosloff,
B. Enochs, S. Shenoi,
“Technology for State and Local Computer Crime Investigations,” Proceedings of the
SPIE Conference on Sensors and C3I Technologies for Homeland Defense and Law
Enforcement (Vol. 4708), Orlando,
Florida, April 2002.
[21]
J. Novotny, A. Meehan, D. Schulte, G. Manes, S. Shenoi, “Evidence
Acquisition Tools for Cyber Sex Crimes Investigations,” Proceedings of the
SPIE Conference on Sensors and C3I Technologies for Homeland Defense and Law
Enforcement (Vol. 4708), Orlando, Florida, April 2002.
[22]
J. Novotny, G. Manes, G. Lorenz, S. Cribbs, B. Enochs, J. Hale
& S. Shenoi, “An Agent Architecture for
Intrusion Detection and Response,” Proceedings of the International
Conference on Intelligent Agents Web Technologies and Internet Commerce,
Las Vegas, Nevada, 2001.
[23]
A. Meehan, G. Manes, L. Davis, J. Hale, S. Shenoi, “Packet Sniffing for Automated Chat Room
Monitoring and Evidence Preservation,” Proceedings of the Second annual
IEEE Systems, Man, and Cybernetics Information Assurance Workshop, West
Point, New York, June 5-6, 2001.
[24]
G. Lorenz, T. Moore, G. Manes, J. Hale, S. Shenoi, “Securing SS7 Telecommunications Networks,” Proceedings
of the Second annual IEEE Systems, Man, and Cybernetics Information Assurance
Workshop, West Point, New York, June 5-6, 2001.
[25]
G. Lorenz, G. Manes, J. Hale, D. Marks, K. Davis,
S. Shenoi, “Characterization of Attacks on Public
Telephone Networks,” Proceedings of the SPIE International Symposia on Law
Enforcement Technologies, Boston, Massachusetts, November 5-8, 2000.
[26]
S. Magill, B. Enochs, D. Schulte, C. Campbell, G. Manes and J. Hale, “A
Digital Economy Simulator,” Proceedings of the Fifth Joint Conference
on Information Sciences, Atlantic City, New Jersey, February
27-March 3, 2000.
[27]
G. Lorenz, S. Cribbs,
G. Manes, P. Carpenter, N. Bostick and S. Shenoi, “Architecture and Implementation of a Search
Engine with Mobile Persistent Agents,” Proceedings of the Fourth Joint Conference
on Information Sciences, Research Triangle Park, North Carolina,
October 23-28, 1998.
|
|
|
|
|
[28] J.
Hale, N. Davis, J. Arrowood, and
G. Manes, “P2P Fear and Loathing: Operational Hazards of File Trading
Networks,” prepared for and read as hearing testimony in “Peer-to-Peer Piracy
on University Campuses,” before the Subcommittee on Courts, the Internet, and
Intellectual Property of the Committee on the Judiciary House of
Representatives, One Hundred Eighth Congress, First Session (Serial No. 2),
Washington D.C. February 26, 2003.
[29]
J. Hale, N. Davis, J. Arrowood,
and G. Manes, “P2P Fear and Loathing: Operational Hazards of File Trading
Networks,” prepared for and read as hearing testimony in “Piracy of
Intellectual Property on Peer-to-Peer Networks,” before the Subcommittee on
Courts, the Internet, and Intellectual Property of the Committee on the
Judiciary House of Representatives, One Hundred Seventh Congress, Second Session
(Serial No. 103), Washington D.C. September 26, 2002.
|
Technical Reports / White
Papers
|
|
|
[30]
“Wireless Internet and Wireless Content Provider
Liability,” Prepared for Oklahoma
House of Representatives, January 2005.
[31]
“Digital Forensics,” Prepared for multiple
sources, 2004.
[32]
“Securing America’s Public Telephone
Networks,” Prepared for Inet Technologies, Inc., September 20, 2003.
[33]
“Cyber Terrorism,” Prepared for McLeodUSA, December 12, 2002.
|
|
|
|
|
[34]
“Linking Individuals to Digital Information,”
Invited Speaker, ACFEI's 2006 National Conference, Orlando, FL,
September 22-23, 2006.
[35]
“Digital Forensics: Insight into the Digital Life
of your Business,” Keynote Speaker, Tulsa Community
College, Cyber Security Conference, Tulsa, Oklahoma,
March 3, 2006.
[36]
“Digital Forensics Applications for Investigators,”
World Investigators Conference, Las
Vegas, NV,
September 23, 2005.
[37]
“Digital Forensics Applications for
Investigators,” Oklahoma Private Investigators Association: Tulsa Seminar, May 20-21, 2005.
[38]
“Countering the Threats to America’s Public Communications Networks; Now
and in the Future,” National Safety Information Exchange (NSIE), Tampa Bay, FL,
January 11, 2004.
[39]
“Network Convergence: Security Themes and Issues,”
British Telecom's Worldwide Network Management Centre Oswestry, United Kingdom, December 13,
2004.
[40]
“Forensic Analysis of Telecommunications Networks,”
Digital Forensics Working Group, Johns
Hopkins University,
Columbia, MD, August 9, 2004.
[41]
“Imaging and Analysis of GSM SIM Cards,” Digital
Forensics Working Group, Johns Hopkins University,
Columbia, MD, August 9, 2004.
[42]
“A Research Agenda for Converged Network
Security: Telecommunications Infrastructure Protection,” I3P Consortium
Meeting, Pacific Northwest National Laboratory, Richland, WA,
June 14-18 2004.
[43]
“Telecommunications and Forensics Research
Efforts; a Proposal for Future Collaboration,” Sandia National Laboratories, Albuquerque, New
Mexico, May 13-14, 2004.
[44]
“Telecommunications Over IP: the Future of VoIP, SS7oIP and SIP protocols,” Prepared for British
Telecom and National Infrastructure Security Co-ordination Centre (UK), April
2004.
[45]
“Combating Threats to America’s
Emergency Communications Services,” Director of Research Information
Evaluation Division, National Security Agency, Tulsa, OK
April 15-16, 2004.
[46]
“Working with Local Law Enforcement,” Computer
Forensics Educators Working Group, IRS Computer Forensics Laboratory, Alexandria, Virginia,
November 7-8, 2003.
[47]
“Securing 911 Systems and the Government
Emergency Telecommunications Service (GETS),” presented at the National
Security Council, The White House, Washington,
DC, October
16, 2003.
[48]
“A Research Agenda for Telecommunications
Security,” presented at the National Institute of Standards and Technology
(NIST), Gaithersburg, Maryland, October 16, 2003.
[49]
“Countering the Threats to America’s Public
Telephone Networks,” presented at the Office of the Deputy Under Secretary of
Defense for Advanced Systems and Concepts, Interoperability and Network
Centric Warfare, Pentagon, Washington, DC, October 15, 2003.
[50]
“Strategies for Securing SS7-VoIP Interconnected
Networks,” presented at DARPA, Arlington,
Virginia, October
15, 2003.
[51]
“A Research Agenda for Telecommunications
Security,” presented at the Department of Homeland Security (NCS/DISA), Arlington, Virginia,
September 12, 2003.
[52]
“Countering the Threats to America’s Public Telephone Networks,”
presented at the National Defense University,
Fort Leslie McNair, Washington,
DC, September 11, 2003.
[53]
“A Research Agenda for Telecommunications
Security,” presented at the INFOSEC Research Council Meeting, DARPA, Arlington, Virginia,
September
11, 2003.
[54]
“Wireless Networks – The Technology, Security,
and Forensics,” Electronic Crimes
Program 2003 Continuing Professional Education Seminar, Internal Revenue
Service, Tulsa, Oklahoma, July 28-31, 2003.
[55]
“Email Headers, Traceroute,
and Internet Trace Evidence,” Electronic
Crimes Program 2003 Continuing Professional Education Seminar, Internal
Revenue Service, Tulsa, Oklahoma, July 28-31, 2003.
[56] “Computer
Forensics Laboratory Projects,” Computer Forensics Educators Working Group,
Department of Defense Computer Forensics Lab, Linthicum, Maryland, June
23-24, 2003.
[57]
“An Intense Project and Laboratory Oriented IA
Curriculum,” Colloquium for Information Systems Security Education, Washington D.C.,
June 2, 2003.
[58]
“Overview of Computer Forensics as a field,” University of Idaho Workshop on Computer
Forensics, University of Idaho, Moscow,
Idaho, September 23-25, 2002.
[59] “Defending
Public Telephone Networks,” SIEC Telecom Conference, National
Security Information Exchange, September 18, 2002.
[60]
“Computer Forensics, Digital Evidence, Evidence:
Network Collection and Discovery,” ASM
Computer Security
Seminar University
of Tulsa,
March 6, 2002.
[61]
“Computer Forensics, Evidence Collection,
Discovery, and Handling, Computer Forensics Tools,” Williams Energy Group, Tulsa Oklahoma,
September 26, 2001.
[62]
“Computer Network Forensics, an Introduction for
IT Managers,” Current issues in
telecommunications, University
of Oklahoma, September
19, 2001.
|
|
|
|
|
[63] G. Manes, “Detecting Attacks on
Telecommunication Networks,” Ph.D. Dissertation, Computer Science, University of Tulsa,
Tulsa Oklahoma,
2004. (sequestered)
[64] G. Manes, “Novel Approaches for
Network Scanning and Security Applications,” MS Thesis, Computer Science, University of Tulsa,
Tulsa Oklahoma,
2002.
|
|
|
|
|
United
States Patent 6,732,180, May 4, 2004, J. Hale and G. Manes, “A Method to
Inhibit the Identification and Retrieval of Proprietary Media Via Automated
Search Engines Utilized in Association with Computer Communications
Networks.”
|
Graduate and Undergraduate
Students
|
|
|
Ph.D.
Dissertation Mentor: Aly El Semary, Lt. Col. Hai Tran, Mark Davis
Masters
Thesis Mentor: Dominic Schulte (DoD), Seth Guenther
(DoD), Chad Blomquist
(NIST), Brandon Enochs
(NRL), Christopher Swenson (DoD), Anthony Meehan, Jeff Swain
Graduate
Mentor: Leigh
Anne Winters (NASA OIG), Bryan Carter (FBI CART), Buddy Carter (FBI CART)
Honors
Thesis Mentor:
Dominic Schulte (Goldwater
Scholar, DoD)
Undergraduate
Mentor: Tyler Moore (Marshall Scholar, Goldwater Scholar),
Anthony Meehan (Goldwater Scholar), Jon Novotny (Truman Scholar, Goldwater
Scholar), Dawn Schulte (DoD), Jared Millburn ( | |