Ranjan Pal Provost Fellow   Department of Computer Science Viterbi School of Engineering University of Southern California Los Angeles, CA 90089, USA Email: rpal@usc.edu

Research Interests

Economics of Information Security, Network Economics, Applied Game Theory

Education

Ph.D Candidate - University of Southern California, USA (Advisors: Professors Leana Golubchik and Konstantinos Psounis)

M.S. - Computer Science, University of California Davis, USA, 2007

S.M. - Computer Science, National University of Singapore and Massachusetts Institute of Technology, 2005

B.E. - Computer Science, Birla Institute of Science and Technology, Mesra, 2002

Research Affiliations

VSRC (Visiting Student Research Collaborator) - Princeton University, USA (Mentor: Professor Mung Chiang)

Visiting Researcher - Deutsch Telekom Research Laboratories (T-Labs), Berlin, Germany (Mentor: Dr. Pan Hui)

About Myself

I am an Indian fourth year Ph.D candidate in the Department of Computer Science at the University of Southern California's (USC) Viterbi School of Engineering . My major research interest lies in the area of economics of distributed network security. I also have a minor research interest in network economics and applied game theory. I am a recipient of the prestigious Provost Fellowship at USC. In the past, as an undergraduate and as a masters student, I have held research positions related to network reliability and optimization at Indian Institute of Technology, Kharagpur, India, Indian Institute of Management, Calcutta, India, and Center for TeleInfrastruktur, Aalborg, Denmark. I am a member of Pi Mu Epsilon (the National Mathematics Honor Society of USA). My Erdos number is 4. In my spare time I do international travel, watch movies, and play/watch cricket.

The Flavor of My Research

I am a non-algorithmic theory guy primarily interested in mathematical modeling and analysis of networked and distributed systems. I solve problems that are challenging, interesting, and have good practical value. My Ph.D research is on investigating the role of cyber-insurance markets in cyber-security. The research is inter-disciplinary in nature and lies at the boundary of information security, micro-economics, game theory, and systems optimization.

Ph.D Thesis Statement

Most defense, corporate, and civilian systems today are Internet-based. The trustworthiness of Internet-based systems heavily depends on their security characteristics. It has been forecasted by national defense experts that the next big terrorist threat is a cyber-war. Thus, strong data protection and efficient cyber risk management is the need of the hour. Despite the increasing amount of research in strengthening security solutions, and large body of products being designed to increase security, e.g.,anti-virus software, anti-spam software, and firewalls, such self-protection tools can at best reduce the risk of end-users but cannot eliminate it. One of my main reasons for this is the effect of misaligned incentives between security product vendors, network users, and regulatory agencies. To this end, in this thesis I propose to address residual risk elimination through cyber-insurance - simply put, I consider solutions where risk is transferred to another entity (i.e., insurance company) in return for a fee (i.e.,the insurance premium). Cyber-insurance is a promising, potentially multi-billion dollar industry that can help secure the cyber-space, with profound benefits to individuals, corporations, and the government. I am not the first to argue in favor of cyber-insurance. Economists have attempted to extend conventional insurance models into the cyber-insurance context, and, quite recently, a few researchers from the broader networking and performance analysis communities have attempted to shed some light on the issues associated with cyber-insurance. However, despite this body of work, cyber-insurance has not yet become a reality due to a number of unresolved research challenges as well as practical considerations. A number of these challenges are rooted in some fundamental differences between cyber-insurance and other forms of insurance. Most notably, the networked environment over which cyber-insurance operates implies that the usual assumptions of independent security and non-correlated risk among end-users cannot be made. Moreover, information asymmetries between insured and insurers are particularly pronounced, making the modelling of such entities quite complex. My goal in this thesis is to focus on those aspects of the problem that are particular to cyber-insurance (in contrast to other forms of insurance), with the end goal of moving towards the realization of cyber-insurance markets.

Tools used in my thesis: Microeconomics, Game Theory, Probability Theory and Stochastic Processes, Mathematical Optimization, Graph Theory

Publications in Ph.D (Main Thesis)

1. Cyber-Insurance for Cyber-Security: A Topological Take on Modulation Insurance Premiums, accepted in ACM SIGMETRICS Workshop (MAMA 2012), London, UK. A slightly modified version of this paper will appear in ACM SIGMETRICS Performance Evaluation Review, 2012
2. Cyber-Insurance for Cyber-Security: A Solution to the Information Asymmetry Problem, accepted in SIAM Annual Meeting 2012, Minnesota, USA
3. Aegis: A Novel Cyber-Insurance Model accepted in GameSec, 2011, Maryland, USA. (one out of the 16 papers accepted in the conference)
4. Modeling Investments in Internet Security: Tackling Topological Information Uncertainty accepted in GameSec, 2011, Maryland, USA. (one out of the 16 papers accepted in the conference)
5. On Economic Perspectives of Internet Security: The Problem of Designing Optimal Cyber-Insurance Contracts, accepted in ACM SIGMETRICS Workshop (MAMA 2010), New York, USA. A slightly modified version of this paper appeared in ACM SIGMETRICS Performance Evaluation Review, 2010.
6. Analyzing Self-Defense Investments in Internet Security Under Cyber-Insurance Coverage accepted in IEEE ICDCS, 2010, Genoa, Italy. (Acceptance rate 14.3%)

Publications in Ph.D (Network Economics and Applied Game Theory)

My publications here cover topics that I got associated with during course projects at USC, and my summer visits at Princeton University, Aalborg University, and Deutsch Telekom Research Laboratories. As a versatile researcher, I proposed simple solutions to a few small-scale problems in health networks, monetary file-sharing systems, social community networks, mobile social networks, and cloud computing.

1. A Real-Time Pricing Model for Electricity Consumption, accepted in SIAM Conference on Financial Mathematics and Engineering, 2012, Minnesota, USA
2. On Social Community Networks: The Cost Sharing Problem, accepted in ACM SIMPLEX 2012, in conjunction with WWW conference, Lyon, France
3. Economic Models for Cloud Service Markets: Pricing and Capacity Planning accepted for publication in Elsevier Theoretical Computer Science.
4. Economic Models for Cloud Service Markets accepted in ICDCN 2012, Hong Kong. (Also invited by INFORMS Annual Meeting 2011, Charlotte, North Carolina, USA)
5. Settling For Less : A QoS Compromise Mechanism for Mobile Opportunistic Networks accepted in ACM SIGMETRICS Workshop (MAMA 2011), San Jose, USA. A slightly modified version of this paper appeared in ACM SIGMETRICS Performance Evaluation Review, 2011
6. Sharing-Mart: Online Auctions for Digital Content Trading and Content Incentivization, accepted in GameNets, 2011, Shanghai, China.
7. On Wireless Social Community Network Routers: The Design and Cost Sharing Problem for Better Deployment , accepted in IEEE GLOBECOM 2010, Florida, USA.
8. Sharing Costs in Social Community Networks accepted in IEEE ICNC Workshop on Computing Networking and Communications, 2012, Maui, Hawaii, USA.
9. Playing Games with Human Health: A Game-Theoretic Approach to Optimizing Reliability in Wireless Health Networks, accepted in IEEE ISABEL 2010, Rome, Italy.

Academic Materials

Full Resume

Publications prior to joining Ph.D (UG, MS)

Selected Graduate Coursework

Design and Analysis of Algorithms

Mathematical Analysis

Probability Theory and Stochastic Processes

Mathematical Optimization (primarily convex optimization, slight emphasis on vector space optimization)

Network Economics and Network Game Theory

Performance Analysis of Systems

Computer Networks (The Internet, wireless networks, and distributed systems)

Teaching Activities

1. Analysis of Algorithms (Graduate Level): Teaching Assistant, (Spring 2012, Fall 2011, Fall 2010), USC

2. Unix and C Programming (Undergraduate Level): Teaching Assistant, Spring 2006, UC Davis

Summer Research Appointments

1. Visiting Researcher - Deutsche Telekom Laboratories (T-Labs), Berlin, Germany, Summer 2011

2. Visiting Researcher - Electrical Engineering Department, Princeton University, USA, Summer 2010

3. Visiting Researcher - Center for TeleInfrastruktur (CTiF), Aalborg University, Denmark, Summer 2009

Invited Talks

1. Real-Time Pricing in Power Grids: Ecole Polytechnique Federal De Lausanne (EPFL), June 2011

2. Trends in Information Security Economics, Technical University of Lisbon, December 2009.

3. Trends in Information Security Economics, Nokia-Siemens Networks, Portugal, December 2009

Traveling

I love to travel. Life is boring without it!!!. I consider myself immensely lucky to have travelled to various parts of the world for both, academic as well as for holidaying purposes, at an young age. I generally make short yearly trips with friends, and really enjoy and relish the culture, food, nature, and monumental architecture in all the countries I visit. Listed below are the countries I have visited till date (airports not included :) ).

Asia: Singapore, Japan, Hong Kong, Thailand, Malaysia

North America: USA

Europe: Germany, Austria, Czech Republic, France, Switzerland, Italy, Vatican City, Holland, Belgium, Denmark, England, Sweden, Finland, Norway, Spain, and Portugal