L. Todd Heberlein

is a Researcher in Computer Science with the University of California, Davis.

Research Interests and Experience

Immediately upon graduating, Mr Heberlein began working for UC Davis as a research staff member. His initial work in the nascent field of intrusion- detection was to develop technologies to analyze network traffic for the presence of malicious activity. This work would eventually lead him to be the principal architect of the Network Security Monitor (NSM), an intrusion-detection system that has been installed at a number of Air Force bases, the Pentagon, and the Department of Justice. This was the first intrusion detection system which attempted to monitor the activities on a network.

Next Mr Heberlein was one of the main architects on a project named the Distributed Intrusion Detection System (DIDS), which was sponsored by the United States Air Force and involved the combining of host-based and network-based intrusion-detection technologies.

Mr. Heberlein continues his work in network security and intrusion-detection. Currently, under sponsorship from the Advanced Research Projects Agency (ARPA), he is investigating the extension of intrusion-detection concepts to very large, interconnected networks.

Mr. Heberlein has authored, coauthored, or edited more than a dozen works in the field of intrusion-detection. He has also been an invited speaker and panel member at a number of computer security conferences and workshops.

Education

Mr. Heberlein completed his B.S. degree in Computer Science and Math at the University of California at Davis in 1988. He obtained his M.S. degree in Computer Science from the same institution in 1991. His thesis was titled, "Towards Detecting Intrusions in a Networked Environment"

Last updated 8/25/95.