Journal Publications

  1. George Coker, Joshua Guttman, Peter Loscocco, Amy Herzog, Jonathan Millen, Brian O'Hanlon, John Ramsdell, Ariel Segall, Justin Sheehy, and Brian Sniffen. Principles of Remote Attestation. International Journal of Information Security, accepted. PDF
  2. Joshua D. Guttman, Amy L. Herzog, John D. Ramsdell, and Clement W. Skorupka. Verifying Information-Flow Goals in Security-Enhanced Linux. Journal of Computer Security, 13(1), 2005. PDF
  3. Joshua D. Guttman and Amy L. Herzog. Rigorous automated network security management. International Journal for Information Security, 3(3), 2005. PDF
  4. Joshua D. Guttman, F. Javier Thayer, and Lenore D. Zuck. The faithfulness of abstract protocol analysis: Message authentication. Journal of Computer Security, 12(6):865--891, 2004. PDF
  5. Joshua D. Guttman. Authentication tests and disjoint encryption: a design method for security protocols. Journal of Computer Security, 12(3--4):409--433, 2004. PDF
  6. J. D. Guttman and F. J. Thayer. Authentication Tests and the Structure of Bundles. Theoretical Computer Science, June, 2002. PDF
  7. W. M. Farmer and J. D. Guttman. A set theory with support for partial functions. Studia Logica, 66:59--78, 2000. PDF
  8. F. J. Thayer, J. C. Herzog, and J. D. Guttman. Strand spaces: Proving security protocols correct. Journal of Computer Security, 7(2/3):191--230, 1999. PDF
  9. Joshua D. Guttman, John D. Ramsdell, and Mitchell Wand. VLISP: A verified implementation of Scheme. Lisp and Symbolic Computation, 8(1/2):5--32, 1995. PS
  10. Joshua D. Guttman, John D. Ramsdell, and Vipin Swarup. The VLISP verified Scheme system. Lisp and Symbolic Computation, 8(1/2):33--110, 1995. PS
  11. W. M. Farmer, J. D. Guttman, and F. J. Thayer. Contexts in mathematical reasoning and computation. Journal of Symbolic Computation, 19:201--216, 1995. PS
  12. W. M. Farmer and J. D. Guttman. A simple theory of types with partial functions and subtypes. Journal of Symbolic Logic, 58:754, 1993. Abstract.
  13. W. M. Farmer, J. D. Guttman, and F. J. Thayer. IMPS: An Interactive Mathematical Proof System. Journal of Automated Reasoning, 11:213--248, 1993. PDF

Refereed Conferences and Invited Publications

  1. Marco Carbone and Joshua Guttman. Choreographies with Secure Boxes and Compromised Principals. Interaction and Concurrency Experience (ICE 09). Workshop affiliated with Concur. September 2009. Post-proceedings to appear in EPTCS, http://www.eptcs.org/. PDF
  2. Joshua D. Guttman. Security Theorems via Model Theory. Express: Expressiveness in Concurrency, Workshop affiliated with Concur. September 2009. Post-proceedings to appear in EPTCS, http://www.eptcs.org/. PDF.
  3. Joshua D. Guttman. Fair Exchange in Strand Spaces. SecCo: Security and Concurrency, Workshop affiliated with Concur. September 2009. Post-proceedings to appear in EPTCS, http://www.eptcs.org/. PDF.
  4. Joshua D. Guttman. Transformations between Cryptographic Protocols. In Joint Workshop on Automated Reasoning for Security Protocol Analysis and Issues in the Theory of Security, ETAPS, March 2009. Post-proceedings to appear in LNCS. PDF.
  5. Joshua D. Guttman. Cryptographic Protocol Composition via the Authentication Tests. In Foundations of Software Science and Computation Structures (FOSSACS, 2009), LNCS, March 2009. PDF
  6. Marco Carbone and Joshua Guttman. Execution Models for Choreographies and Cryptoprotocols. Programming Language Approaches to Concurrency and Communication-cEntric Software (Places 09), Workshop affiliated with ETAPS. March 2009. Post-proceedings to appear in EPTCS, http://www.eptcs.org/. PDF.
  7. George S. Coker, Joshua D. Guttman, Peter A. Loscocco, Justin Sheehy, and Brian T. Sniffen. Attestation: Evidence and Trust. In International Conference on Information and Communications Security, LNCS 5308, October 2008. Invited PDF
  8. Joshua D. Guttman. How to Do Things with Cryptographic Protocols. In Asian Computer Science Conference, LNCS 4846. December 2007. Invited lecture.
  9. Jay A. McCarthy, Shriram Krishnamurthi, Joshua D. Guttman, and John D. Ramsdell. Compiling cryptographic protocols for deployment on the web. In 16th International Conference on World Wide Web, WWW. ACM. 2007. PDF
  10. Shaddin F. Doghmi, Joshua D. Guttman, and F. Javier Thayer. Completeness of the Authentication Tests. In European Symposium on Research in Computer Security (ESORICS), Springer Lecture Notes in Computer Science, September 2007. PDF
  11. Shaddin F. Doghmi, Joshua D. Guttman, and F. Javier Thayer. Skeletons, Homomorphisms, and Shapes: Characterizing Protocol Executions. In Mathematical Foundations of Program Semantics, Electronic Notes in Theoretical Computer Science, North Holland, April 2007. PDF
  12. Shaddin F. Doghmi, Joshua D. Guttman, and F. Javier Thayer. Skeletons and the Shapes of Bundles. In Workshop on Issues in the Theory of Security (WITS), ETAPS, Braga, Portugal, March 2007. PDF
  13. Shaddin F. Doghmi, Joshua D. Guttman, and F. Javier Thayer. Searching for shapes in cryptographic protocols. In Tools and Algorithms for Construction and Analysis of Systems (TACAS), number 4424 in LNCS, pages 523--538. Springer, March 2007. TACAS version PDF. Extended version at IACR eprints 2006/435
  14. Joshua D. Guttman, Jonathan C. Herzog, John D. Ramsdell, and Brian T. Sniffen. Programming cryptographic protocols. In Rocco De Nicola and Davide Sangiorgi, editors, Trust in Global Computing, LNCS 3705, 2005. PDF
  15. Joshua D. Guttman, F. Javier Thayer, Jay C. Carlson, Jonathan C. Herzog, John D. Ramsdell, and Brian T. Sniffen. Trust Management in Strand Spaces. European Symposium on Programming. Springer Verlag LNCS, March 2004. PDF
  16. Joshua D. Guttman. Security protocol design via authentication tests. In Proceedings, 15th Computer Security Foundations Workshop. IEEE Computer Society Press, June 2002. PDF
  17. Joshua D. Guttman, F. Javier Thayer, and Lenore D. Zuck. The Faithfulness of Abstract Protocol Analysis: Message Authentication. Proceedings, Eighth ACM Conference on Computer and Communications Security. November 2001. PDF
  18. Joshua D. Guttman. Key compromise and the authentication tests. Electronic Notes in Theoretical Computer Science, 47, 2001. Editor, M. Mislove. Invited lecture, Mathematical Foundations of Programming Semantics. PDF
  19. Joshua D. Guttman. Security goals: Packet trajectories and strand spaces, in: R. Gorrieri and R. Focardi, editors, Foundations of Security Analysis and Design, LNCS 2171, Springer Verlag, 2001. PDF
  20. Joshua D. Guttman, Amy L. Herzog and F. Javier Thayer. Authentication and Confidentiality via IPsec. In ESORICS 2000: European Symposium on Research in Computer Security. Springer Verlag, LNCS 1895, October 2000. PDF
  21. Joshua D. Guttman and F. Javier Thayer. Authentication tests. In Proceedings, 2000 IEEE Symposium on Security and Privacy. May 2000. PDF
  22. Joshua D. Guttman and F. Javier Thayer. Protocol Independence via Disjoint Encryption. In Proceedings of the 13th IEEE Computer Security Foundations Workshop. July 2000. PDF
  23. F. Javier Thayer, Jonathan C. Herzog, and Joshua D. Guttman. Mixed strand spaces. In Proceedings of the 12th IEEE Computer Security Foundations Workshop. IEEE Computer Society Press, June 1999. PDF
  24. F. Javier Thayer, Jonathan C. Herzog, and Joshua D. Guttman. Strand Spaces: Why is a Security Protocol Correct? In Proceedings, 1998 IEEE Symposium on Security and Privacy. May 1998. PDF
  25. F. Javier Thayer, Jonathan C. Herzog, and Joshua D. Guttman. Honest ideals on strand spaces. In Proceedings of the 11th IEEE Computer Security Foundations Workshop. IEEE Computer Society Press, June 1998. PDF
  26. Joshua D. Guttman. Filtering Postures: Local enforcement for global security policies. In Proceedings, 1997 IEEE Symposium on Security and Privacy. May 1997. PDF
  27. Shimshon Berkovits, Joshua D. Guttman, and Vipin Swarup. Authentication for Mobile Agents. In Mobile Agents and Security, G. Vigna (Ed.). Springer, LNCS 1419. 1998. PDF
  28. William M. Farmer, Joshua D. Guttman, and Vipin Swarup. Security for mobile agents: authentication and state appraisal. In ESORICS '96. Springer Verlag Lecture Notes in Computer Science, September 1996. PDF
  29. William M. Farmer, Joshua D. Guttman, and Vipin Swarup. Security for mobile agents: Issues and Requirements. In 19th National Information Systems Security Conference. National Institute of Standards and Technology. 1996. PDF
  30. William M. Farmer, Joshua D. Guttman, Mark E. Nadel, and F. Javier Thayer. Proof Script Pragmatics in IMPS. In Automated Deduction: CADE-12. LNCS 814. 1994. PDF
  31. Joshua D. Guttman and Dale M. Johnson. Three Applications of Formal Methods at MITRE. In Symposium of Formal Methods Europe, FME. LNCS 873. 1994.
  32. William M. Farmer, Joshua D. Guttman, and F. Javier Thayer. Reasoning with Contexts. In Design and Implementation of Symbolic Computation Systems, International Symposium, DISCO '93. LNCS 722. 1993.
  33. William M. Farmer, Joshua D. Guttman, and F. Javier Thayer. Little theories. In Automated Deduction: CADE-11, LNCS 607. 1992. PDF
  34. William M. Farmer, Joshua D. Guttman, and F. Javier Thayer. IMPS: An Interactive Mathematical Proof System. System Description. In Conference on Automated Deduction (CADE). LNCS 449. 1990. (Updated in CADE 1992 and 1996.)
  35. Joshua D. Guttman and H.-P. Ko. Verifying a Hardware Security Architecture. In Proceedings, 1990 IEEE Symposium on Security and Privacy. May 1990.
  36. Joshua D. Guttman and Mark E. Nadel. What Needs Securing. in Computer Security Foundations Workshop, I. 1988.
  37. Joshua D. Guttman. Information Flow and Invariance. In Proceedings, 1987 IEEE Symposium on Security and Privacy. May 1987.

Recently submitted

  1. Joshua D. Guttman. Fair Exchange in Strand Spaces. Submitted, 15 Oct 2009. Revised, 17 Mar 2010. PDF.
  2. Joshua D. Guttman. Shapes and Security Goals. Submitted, 6 Oct 2009. PDF.
My curriculum vitae is here, as well as a research statement.

FOSSACS slides