Steven M. Bellovin
From Wikipedia, the free encyclopedia
Steven M. Bellovin is a researcher on networks, security and why the two do not communicate. He is currently a Professor in the Computer Science department at Columbia University, having previously been a long time employee at AT&T Labs Research in Florham Park, New Jersey.
As a graduate student, Bellovin was one of the originators of USENET. He later suggested that Gene Spafford should create the Phage mailing list as a response to the Morris Worm.
Bellovin and Michael Merritt invented the Encrypted key exchange password-authenticated key agreement methods.
Bellovin has been active in the IETF. He was a member of the Internet Architecture Board from 1996-2002. Bellovin later was Security Area co-director, and a member of the Internet Engineering Steering Group (IESG) from 2002-2004. He identified some key security weaknesses in the Domain Name System; this and other weaknesses eventually led to the development of DNSSEC.
Bellovin received 2007 National Computer Systems Security Award by the National Institute of Standards and Technology (NIST) and the National Security Agency (NSA).
Bellovin is the author and co-author of several books, RFCs and technical papers, including:
- Firewalls and Internet Security: Repelling the Wily Hacker ISBN 0-201-63357-4 (with W. Cheswick) - one of the first books on internet security.
- RFC 1579 Firewall-Friendly FTP
- RFC 1675 Security Concerns for IPng
- RFC 1681 On Many Addresses per Host
- RFC 1948 Defending Against Sequence Number Attacks
- RFC 3514 The Security Flag in the IPv4 Header (April fools joke)
- RFC 3554 On the Use of Stream Control Transmission Protocol (SCTP) with IPsec (with J. Ioannidis, A. Keromytis, R. Stewart.)
- RFC 3631 Security Mechanisms for the Internet (with J. Schiller, Ed., C. Kaufman)
- RFC 4107 Guidelines for Cryptographic Key Management (with R. Housley)
Bellovin is an active NetBSD user and has been a NetBSD developer focusing on architectural, operational, and security issues.
