Anupam Das

Post-Doctoral Associate
Institute for Software Research
School of Computer Science
Carnegie Mellon University

Email: anupamd AT cs DOT cmu DOT edu
Office: Wean Hall, Room 4121

Links: [Recent News] [Education] [Research Interests] [Projects] [Publications] [Patents] [Talks] [Professional Experiences]

Recent News


I am currently working as a post-doctoral associate at Carnegie Mellon University under Professor Norman Sadeh and Professor Lujo Bauer. I received my PhD degree from the Department of Computer Science at the University of Illinois at Urbana Champaign (UIUC) where I was advised by Professor Nikita Borisov. Prior to joining UIUC, I obtained M.Sc and B.Sc degree in Computer Science and Engineering (CSE) from the Department of Computer Science and Engineering at Bangladesh University of Engineering and Technology (BUET) in 2010 and 2008, respectively. I was a former Fulbright Fellow from 2010 to 2013 while pursuing PhD degree.

Here is a copy of my CV.

Research Interests

My research interest lies in the domain of security and privacy. My current research direction focuses on exploring security and privacy challenges for the Internet of Things (IoT) with a special focus on designing privacy-aware systems. In my PhD dissertation, I looked at how different onboard sensors in smartphones can be exploited to uniquely fingerprint smartphones where some fingerprints can be surreptitiously generated and used to track user across applications/websites. I have also developed countermeasures against such fingerprinting schemes and have analyzed their privacy-utility trade-off.

Among other research projects, I have analyzed the security guarantees provided by Tor (one of the most widely used anonymity system) in the presence of active attacks like selective denial-of-service (SDoS) and passive attacks like AS/IXP-level traffic monitoring. I have also proposed ways to evade such attacks. Passwords being the most popular form of authentication mechanism for a broad spectrum of online services, I also investigated the extent to which people reuse password (either fully or partially) across different sites by analyzing real-world leaked passwords. I was also involved in a project where we quantitatively analyzed the threats posed by a leaked password dataset on existing non-breached passwords.


Current Projects

Past Projects


Google Scholar



Workshop Papers:

Technical Report:




FlowComb: Boosting Big Data Processing with OpenFlow Application US 20140064066


Conference/Workshop Talks:


Invited Talks:

Professional Experiences

Research Teaching Internships/Co-ops

Copyright notice: The documents listed above have been provided by the contributing authors as a means to ensure timely dissemination of scholarly and technical work on a noncommercial basis. Copyright and all rights therein are maintained by the authors or by other copyright holders. You are welcome to use any of my material for educational or non-commercial use, provided it is in its original form. These works may not be republished without the explicit permission of the copyright holder.