Allen School News

Distributed systems are hard to get right in large part because they must tolerate faults gracefully: machines may crash and the network may drop, reorder, or duplicate packets. Verdi is a framework from the University of Washington to implement and formally verify distributed systems.

UW CSE’s Verdi team (students James Wilcox, Doug Woos, and Pavel Panchekha, and faculty members Zach Tatlock, Xi Wang, Mike Ernst, and Tom Anderson) has just completed the first full formal verification of the Raft consensus protocol – a landmark achievement. (In addition to garnering lots of attention, they garnered more than 120 stars on GitHub!)

Learn more about Verdi here. GitHub here. Raft here.

The University of Washington’s Graduate School has approved the creation of a Ph.D. option in “Advanced Data Science” – an initiative of UW’s $2.8 million National Science Foundation IGERT (Integrative Graduate Education and Research) award in data science, led by UW CSE’s Magda Balazinska.

The goal of the option is not to educate all students in the foundations of data science, but rather to provide advanced education to the students who will push the state-of-the-art in data science methods in their domain – to educate the next generation of thought leaders who will both build and apply new methods of data science.

An important characteristic of this advanced data science option is that, independent of their home department, students will complete the same set of core data science courses. This shared core curriculum will ensure that students are not only knowledgeable in data science but that they also had the opportunity to interact with each other and form interdisciplinary cohorts.To complete the option – which will be noted on their transcripts – students will take three out of the following four courses:

• Data Management: CSE 544
• Machine Learning, CSE 546 or STAT 535
• Data Visualization: CSE 512
• Statistics: STAT 509 or STAT 512-513

Additionally, to further expand students’ education and create a campus-wide community, students will register for at least 4 quarters in the weekly eScience Community Seminar.

Six academic programs are the “launch partners”: Astronomy, Chemical Engineering, Computer Science & Engineering, Genome Sciences, Oceanography, and Statistics.

Learn more about the Advanced Data Science option from the proposal here. Read more →

 Data Science Workshop 2015, sponsored by the National Science Foundation, will be held at the University of Washington on August 5-7. The workshop will bring together 100 graduate students from across the nation, representing diverse science and engineering domains, to interact with data scientists from industry and academia.

David Beck, the UW eScience Institute’s Director of Research for the Life Sciences, chairs the Organizing Committee. Program partners include the UW eScience Institute (CSE’s Ed Lazowska is the Director, and CSE’s Bill Howe is the Associate Director), the UW Data Science IGERT (interdisciplinary graduate education) program (CSE’s Magda Balazinska is the Director), and UW Computer Science & Engineering, Astronomy, Chemical Engineering, and Oceanography. The program includes a keynote by UW CSE’s Oren Etzioni, panel participation by UW CSE’s Magda Balazinska, and Joe Hellerstein, and mentor participation by UW CSE’s Alvin Cheung.

Check out the UW News press release here. Learn more here. Read more →

The University of Washington has waived indirect cost on cloud services.

This decision removes one of several bizarre disincentives to the rational selection of research computing and storage options – disincentives that plague universities nationwide.

Federal guidelines waive indirect cost on purchased equipment – so purchasing a $100K cluster costs a grant budget $100K, despite the fact that this equipment must be housed, powered, cooled, backed up, replaced …

Meanwhile, indirect cost is charged on outsourced cloud services – so purchasing $100K of AWS or Azure services costs $157K (at UW’s rates – different institutions have different markups), despite the fact that the only actual overhead is paying an invoice.

UW IT and the UW Office of Research have now decided to unilaterally waive this nonsensical charge.

Progress! Hopefully others will follow!

Read more here.

Three footnotes:

1. There is precedent for national action: several years ago it was ruled, nationally, that indirect cost should not be charged on outsourced gene sequencing services.
2. There are additional bizarre disincentives to the rational selection of research computing and storage options. If you want to purchase a large cluster, your NSF program officer will send you to the Major Research Instrumentation program, which is not charged against any specific Program, Division or Directorate – so it’s “free” to his/her program … what could be finer? And once the cluster arrives at your university, Santa Claus pays for the power, Mrs. Santa Claus pays for the cooling, Rudolf shares his space, and the Elves do the backup … all of these, which have very real costs, appear free to the investigator at most universities.
3. Finally, it goes without saying that cloud services are not the right choice for every application. What UW’s decision does is simply to take one step towards leveling the playing field, leading to rational choice.

We are thrilled to announce that Kurtis Heimerl will be joining the UW CSE faculty in early winter 2016. Kurtis’ research interests span information and communication technologies and development (ICTD), human-computer interaction, and networks and systems. He was recognized with a 2014 MIT Technology Review TR35 Award for his work on Community Cellular, a low-cost, low-power system for providing small-scale, locally-owned cellular networks to rural communities that lack existing cellular coverage. After building the first network in a small village in Papua, Indonesia in 2013, Kurtis co-founded Endaga, a startup company that brings independent cellular technology to remote regions of the world.

Kurtis joins UW CSE following an M.S., Ph.D., and postdoc at U.C. Berkeley, followed by 18 months at Endaga. His UW CSE connections are extensive. To note a few:

• Kurtis received his Bachelors degree in Computer Engineering from UW CSE in 2007.
• His Berkeley graduate co-advisor was 2007 UW CSE Ph.D. alum (and UC Berkeley Associate Professor) Tapan Parikh.
• His fellow UW CSE Bachelors recipient and Tapan Parikh Ph.D. advisee Kuang Chen – founder of ICTD startup Captricity – was also a  2014 TR35 recipient. (Tapan himself received a TR35 award and was named the TR35 “Humanitarian of the Year” in 2007.)

We’re excited to have Kurtis back home at UW CSE!

Normally, we don’t play around when it comes to cyber-security. But according to UW CSE professor Mike Ernst, playing around may be just what we need in order to better defend against hackers and cyber-criminals. BBC News reported this week on the Verigames project – part of DARPA’s Crowd Sourced Formal Verification (CSFV) program – which harnesses the power of citizen science to make software less vulnerable. Mike talked to the BBC about engaging players of casual games, including those developed at UW CSE’s Center for Game Science, to make formal software verification more efficient – and help make the world a safer place.

From the article:

“[A]s software is critical in the running of almost everything these days, from national energy networks to police drones, air traffic control systems to emergency services, formal verification is an essential process….

“The problem is that formal verification – providing mathematical proof that a piece of software is error-free – is a complex business.

“‘Formal verification is wildly expensive and very difficult,’ says Michael Ernst, a computer science professor at the University of Washington who is involved with the DARPA project.

“‘That’s because you usually need a highly skilled, highly paid software engineer to carry out the process.’”

Verigames is helping to speed up that process by enlisting a “volunteer army” of players who solve puzzle-based games that aid in the formal verification of an underlying piece of software. Other efforts to promote citizen science through gaming, led by the Center for Game Science, have been useful in advancing synthetic biology research and helping scientists to better understand diseases such as the Ebola virus and AIDS.

Read the BBC News article here. Learn more about Verigames here, and try your hand at Paradox, one of the games developed by UW CSE’s Center for Game Science, here. Read more →

UW CSE faculty member Chris Diorio, who co-founded the RFID company Impinj based on technology developed here at UW CSE and at his Ph.D. alma mater, Caltech, was named Innovator of the Year at the ACE (Annual Creativity in Electronics) Awards by the EDN Network and EE Times.

Chris was honored for “his pioneering work in advancing next-generation UHF RFID technology,” and for being a “tireless promoter of RFID’s potential since entering the industry in 2002.” In addition to his role as CEO of Impinj, Chris serves as chairman of the RAIN RFID Alliance, which promotes universal adoption of the UHF RFID technology.

Read more in this nice article about Chris’s work (and car racing!), courtesy of EDN.

Congratulations, Chris! Read more →

UW CSE professor Yoshi Kohno was quoted in this week’s big, scary story in The Washington Post on hacking and the Internet of Things, inspired by his past research on the vulnerability of motor vehicle systems.

Last fall, Yoshi and a team of students were featured in this segment that aired on 60 Minutes in which they remotely took control of a car driven around a UW parking lot (a deserted UW parking lot!) by correspondent Lesley Stahl. Recently, another team of researchers demonstrated the ability to hack into another make and model on a public highway – once again bringing the topic of motor vehicle security in an increasingly connected world to the fore.

Noting that the cars on the market today are “computers on wheels,” the article, “Hacks on the Highway,” explains what makes them so vulnerable:

“Once inside, most computer systems on modern vehicles are somehow connected, if only indirectly. Researchers who have hacked their way into computers that control dashboard displays, lighting systems or air bags have found their way to ones running transmission systems, engine cylinders and, in the most advanced cars, steering controls. Nearly all of these systems speak a common digital language, a computer protocol created in the 1980s when only motorists and their mechanics had access to critical vehicle controls….

“Scientists from the University of Washington and the University of California at San Diego reported in 2010 that, with physical access to a car, they could control almost any computerized system within it. When some critics questioned the realism of that scenario — if you were in the car, you could simply turn off the engine or hit the brakes yourself, they said — the researchers found a way to do many of the same things remotely….

“’We can do this from a thousand miles away,’ said Tadayoshi Kohno, one of the University of Washington researchers who worked on the project, published in 2011.”

The article provides an in-depth look at the factors that make automobiles vulnerable and how regulators are trying to address the threat. It is definitely worth a read if you drive a car (particularly if you drive a Jeep). Check out the full article here, our past blog post on the 60 Minutes demonstration here, and the 2011 article by The New York Times on the UW and UCSD research here. Read more →

Matt Reynolds and Shwetak Patel

Research led by UW CSE and EE professors Matt Reynolds and Shwetak Patel that will enable “command by gesture” for smartphones is the topic of a special report on human-machine interfaces in the July issue of IEEE Signal Processing Magazine. The technology, known as SideSwipe, relies on a phone’s own wireless transmissions, using small antennae to read changes in the signal caused by different hand motions.

From the article:

“Smartphones have become increasingly affordable and more widely used over the past several years. Yet smartphones and their applications are difficult to control in situations where the user lacks direct access to the touchscreen, such as while driving a car, cooking a meal, or exercising. While voice recognition technology promises a partial solution to the problem, such systems are far from foolproof and particularly unreliable in noisy environments.

“In an effort aimed at creating an alternate ‘hands off’ control technology, University of Washington researchers have created a new type of low-power wireless sensing technology that promises to allow users to ‘train’ their smartphones to recognize and respond to specific hand gestures….”

Read the full article here, and check out past CSE blog coverage of SideSwipe here and here. Read more →

UW CSE professor Franzi Roesner, graduate students Polina Charters and Tobin Holliday of UW’s DUB Group, and Susan McGregor of the Columbia Journalism School have released the results of a new study examining journalists’ computer security practices in an age of widespread data collection and surveillance.

The researchers analyzed the security habits of 15 working journalists, including how they communicate with sources and what tools and strategies they use to protect sensitive information that they receive in the course of their work. They found that the method of communication is often driven by the source rather than the journalist, and that journalists often use personal mobile devices and cloud-based systems to transmit or store information — practices which could compromise security despite the journalists’ best intentions.

From the UW news release:

“‘The way people try to bridge gaps can introduce security issues,’ said UW senior author Franziska Roesner … ‘If you use your iPhone to translate speech to text, for example, it sends that information to Apple. So if you record a sensitive conversation, you have to trust that Apple isn’t colluding with an adversary or that Apple’s security is good enough that your information is never going to be compromised …’

“’The flip side is that it’s not just a matter of giving journalists information about the right tools to use — it’s that the tools are often not usable,’ Roesner said. ‘They often fail because they’re not designed for journalists.’”

The team hopes its findings will help members of the computer security community to better understand the needs of journalists. These insights will help them to develop security solutions that protect journalist-source communications without hindering the journalistic process.

Read the full new release here and the team’s detailed findings, which will be presented at the 24^th USENIX Security Symposium next month, here. Read more →