About Me

I am a PhD student at NEU SecLab, Northeastern University, College of Computer & Information Science in Boston, where I get to work with smart and all-around great people everyday.

My research interests span a wide array of systems and Internet security topics with a recent focus on operating systems security. I particularly enjoy low-level hacking.

Previously I was a visiting researcher at iSecLab, Eurecom in Sophia Antipolis, France. I hold MS and BS degrees in Computer Engineering from Bilkent University, Ankara, Turkey.

Publications

WHOIS Lost in Translation: (Mis)Understanding Domain Name Expiration and Re-Registration
Tobias Lauinger, Kaan Onarlioglu, Abdelberi Chaabane, William Robertson, Engin Kirda
ACM Internet Measurement Conference (IMC)
Santa Monica, CA USA, November 2016
Trellis: Privilege Separation for Multi-User Applications Made Easy
Andrea Mambretti, Kaan Onarlioglu, Collin Mulliner, William Robertson, Engin Kirda, Federico Maggi, Stefano Zanero
International Symposium on Research in Attacks, Intrusions and Defenses (RAID)
Paris, FR, September 2016
Overhaul: Input-Driven Access Control for Better Privacy on Traditional Operating Systems
Kaan Onarlioglu, William Robertson, Engin Kirda
IEEE/IFIP International Conference on Dependable Systems and Networks (DSN)
Toulouse, FR, June 2016
CrossFire: An Analysis of Firefox Extension-Reuse Vulnerabilities
Ahmet Salih Buyukkayhan, Kaan Onarlioglu, William Robertson, Engin Kirda
Network and Distributed System Security Symposium (NDSS)
San Diego, CA USA, February 2016
Sentinel: Securing Legacy Firefox Extensions
Kaan Onarlioglu, Ahmet Salih Buyukkayhan, William Robertson, Engin Kirda
Computers & Security, 49, pages 147-161
Elsevier, March 2015
BabelCrypt: The Universal Encryption Layer for Mobile Messaging Applications
Ahmet Talha Ozcan, Can Gemicioglu, Kaan Onarlioglu, Michael Weissbacher, Collin Mulliner, William Robertson, Engin Kirda
Financial Cryptography and Data Security (FC)
Isla Verde, PR, January 2015
TrueClick: Automatically Distinguishing Trick Banners from Genuine Download Links
Sevtap Duman, Kaan Onarlioglu, Ali Osman Ulusoy, William Robertson, Engin Kirda
Annual Computer Security Applications Conference (ACSAC)
New Orleans, LA USA, December 2014
Toward Robust Hidden Volumes using Write-Only Oblivious RAM
In alphabetical order Erik-Oliver Blass, Travis Mayberry, Guevara Noubir, Kaan Onarlioglu
ACM Conference on Computer and Communications Security (CCS)
Scottsdale, AZ USA, November 2014
Beehive: Large-Scale Log Analysis for Detecting Suspicious Activity in Enterprise Networks
Ting-Fang Yen, Alina Oprea, Kaan Onarlioglu, Todd Leetham, William Robertson, Ari Juels, Engin Kirda
Annual Computer Security Applications Conference (ACSAC)
New Orleans, LA USA, December 2013
Holiday Pictures or Blockbuster Movies?
Insights into Copyright Infringement in User Uploads to One-Click File Hosters
Tobias Lauinger, Kaan Onarlioglu, Abdelberi Chaabane, Engin Kirda, William Robertson, Mohamed Ali Kaafar
International Symposium on Research in Attacks, Intrusions and Defenses (RAID)
St. Lucia, LC, October 2013
Securing Legacy Firefox Extensions with Sentinel
Kaan Onarlioglu, Mustafa Battal, William Robertson, Engin Kirda
Conference on Detection of Intrusions and Malware & Vulnerability Assessment (DIMVA)
Berlin, DE, July 2013
PrivExec: Private Execution as an Operating System Service
Kaan Onarlioglu, Collin Mulliner, William Robertson, Engin Kirda
IEEE Symposium on Security and Privacy (S&P)
San Francisco, CA USA, May 2013
Clickonomics: Determining the Effect of Anti-Piracy Measures for One-Click Hosting
Tobias Lauinger, Martin Szydlowski, Kaan Onarlioglu, Gilbert Wondracek, Engin Kirda, Christopher Kruegel
Network and Distributed System Security Symposium (NDSS)
San Diego, CA USA, February 2013
Insights into User Behavior in Dealing with Internet Attacks
Kaan Onarlioglu, Utku Ozan Yilmaz, Engin Kirda, Davide Balzarotti
Network and Distributed System Security Symposium (NDSS)
San Diego, CA USA, February 2012
G-Free: Defeating Return-Oriented Programming through Gadget-less Binaries
Kaan Onarlioglu, Leyla Bilge, Andrea Lanzi, Davide Balzarotti, Engin Kirda
Annual Computer Security Applications Conference (ACSAC)
Austin, TX USA, December 2010
Efficient Broadcast Encryption with User Profiles
Murat Ak, Kamer Kaya, Kaan Onarlioglu, Ali Aydin Selcuk
Information Sciences, 180 (6), pages 1060-1072
Elsevier, March 2010

Patents

Detecting Suspicious Web Traffic from an Enterprise Network
Ting-Fang Yen, Alina Oprea, Kaan Onarlioglu
US Patent 9,503,468
Time Sanitization of Network Logs from a Geographically Distributed Computer System
Ting-Fang Yen, Ari Juels, Kaan Onarlioglu, Alina Oprea
US Patent 9,430,501
Anomaly Sensor Framework for Detecting Advanced Persistent Threat Attacks
Ting-Fang Yen, Ari Juels, Aditya Kuppa, Kaan Onarlioglu, Alina Oprea
US Patent 9,378,361
Framework for Mapping Network Addresses to Hosts in an Enterprise Network
Ting-Fang Yen, Kaan Onarlioglu
US Patent 9,124,585
Detecting Suspicious Web Traffic from an Enterprise Network
Ting-Fang Yen, Alina Oprea, Kaan Onarlioglu
US Patent 9,049,221