Payas Gupta
Data Scientist
Pindrop, Atlanta US
Email: payasgupta (at) g m a i l . c o m

About Me

Dr. Payas Gupta is a Data Scientist at Pindrop, Atlanta, US. His primary research interests revolve around telephony security and human aspects of security. Since, telephony and the web are converging, he is exploring security issues in telephony security domain. He is also involved in many research projects related to human subjects and user authentication for smartphones. He has won best paper awards for his recent work on telephone honeypot (Phoneypot) at NDSS 2015 and on keystroke biometrics at NDSS 2013. His work has been published in top security conferences including CCS, Usenix Security and NDSS. He is a frequent participant and a speaker to the work of the M3AAWG VTA-SIG (Voice and Telephony Abuse Special Interest Group). He has given plenty of talks in major security conferences and events including RSA. Some of the detection systems resulted from his recent research on Phoneypot have been integrated in commercial products distributed by Pindrop, that specializes in phone fraud detection to protect enterprise call centers, and other various other robocall blocking companies. 

Payas obtained his Ph.D. from School of Information System at Singapore Management University, Singapore in 2013 and Bachelor of Technology in Communication and Computer Engineering from The LNM Institute of Information Technology, Jaipur, India in 2008. Payas was also a visiting scholar for a year in CyLab and Heinz College, Carnegie Mellon University, US in 2011. Prior to joining Pindrop, he was a research scientist at New York University Abu Dhabi, UAE.

Click here to download my CV.

Research Interest

Telephony Security
Human aspects of Security
Mobile Security
Security issues in Social Networks 

Services and Involvement

Involved in Conferences and Journals

COSE: Computer and Security
TIFS: Transactions on Information Forensics & Security
IJIS: International Journal of Information Security
Oakland 2013: The 34th IEEE Symposium on Security and Privacy
Oakland 2012: The 33rd IEEE Symposium on Security and Privacy
AsiaCCS 2012: 7th ACM Symposium on Information, Computer and Communications Security
RAID 2011: The 14th International Symposium on Recent Advances in Intrusion Detection
ISPEC 2011: The 7th Information Security Practice and Experience Conference
Oakland 2011: The 32nd IEEE Symposium on Security and Privacy
ICIS 2009: The 30th International Conference on Information Systems

Honors, Awards, News and Talks

Feb '16
★ Panel member at M3AAWG 2016, San Fransisco
Nov '15
Nov '15
★ Invited talk at Microsoft, Dubai
Nov '15
Oct '15
★ Panel member at VTA-SIG workshop, M3AAWG 2015, Atlanta
Feb '15
★ Talk at 2nd NYUAD Annual Research Conference 2015
Feb '15
★ Panel member at VTA-SIG workshop, M3AAWG 2015, SFO
Feb '15
Feb '15
★ NDSS 2015 Distinguished Paper Award
Dec '14
★ Invited talk at SKM 2014, Dubai
Nov '14
★ Talk at London Action Plan (LAP), 2014
Oct '14
★ Panel member at VTA-SIG workshop, M3AAWG 2014, Boston
Oct '14
★ Telephone Honeypot work was featured in The National newspaper Phone scammers lured in with 'honeypot' scheme ...
Jun '14
★ Panel member at VTA-SIG workshop, M3AAWG 2014, Montreal
Mar '14
★ Invited talk at Canadian Radio-television Telecommunications Commission (CRTC)
Feb '14
★ Talk at 1st NYUAD Annual Research Conference 2014
Feb '14
★ Panel member at VTA-SIG workshop, M3AAWG 2014, SFO
2013
★ Nominated for iSchool Doctoral Dissertation Award 2014
Feb '13
★ NDSS 2013 Best Paper Award
Nov '12
★ AT&T Best Applied Security Paper Award Nominee
Oct '12
★ SPSM workshop in conjunction with ACM CCS Travel Award
Mar '12
★ Winner of the Keith Block entrepreneurial contest
Aug'11 - May '12
★ Ph.D. Overseas Training Residency at CMU, LARC Scholarship
Jun '11
★ Microsoft Research Summer School on Security and Privacy Travel Award
Aug '10
★ Usenix Security Symposium 2010 Travel Award
Sep '09
★ Summer School On Provable Security Travel Award
2008 - 2013
★ Singapore Management University full Graduate Scholarship

Experience

Pindrop, Atlanta, US

Nov'16 - Present
Data Scientist: Telephony Security

CRISSP-AD, New York University Abu Dhabi, UAE

May'15 - Oct'16
Research Scientist: Telephony Security
Supervisor: Prof. Mustaque Ahamad, Georgia Tech and NYUAD

CRISSP-AD, New York University Abu Dhabi, UAE

May'13 - Apr'15
Postdoctoral Fellow: Telephony Security
Supervisor: Prof. Mustaque Ahamad, Georgia Tech and NYUAD

Heinz College, Carnegie Mellon University, US

Aug'11 - May'12
Visiting Scholar: Online Trust Oracle for User-Centric Trust Establishment
Supervisor: Prof. Adrian Perrig, CyLab, CMU

DIEE, University of Cagliari, Italy

May'08 - Jul'08
Research Intern: HTTPGuard: A multi-model Web Intrusion Detection System
Supervisor: Prof. Giorgio Giacinto, DIEE, Unica, Italy

LGI2P, Ecole des Mines d’Ales, France

May'07 - Jul'07
Research Intern: Intrusion Detection Using Statistical Signature
Supervisor: Prof. Pascal Poncelet, co-head of the LGI2P, France

Indian Institute of Technology (IITK), India

Dec '06
Research Intern: NETlog - Network Logger
Supervisor: Mr. Navpreet Singh, Network Manager, IIT Kanpur
May'06 - Jul'06
Research Intern: MIDS - Malware Intrusion Detection System
Supervisor: Dr. Amitabha Roy & Mr. Navpreet Singh, IIT Kanpur

Teaching Experience

School of Information Systems, Singapore Management University

Jan'11 - Apr'11
Teaching Assistant: IS302 - Information Security & Trust
Jan'10 - Apr'10
Teaching Assistant: IS302 - Information Security & Trust

The LNM Institute of Information Technology

Aug'05 - Nov'05
Laboratory Assistant: Basic Electrical and Electronic Science Lab

Publications

[Euro S&P 2017]
PDF
SoK: Fraud in Telephony Networks
Merve Sahin, Aurélien Francillon Payas Gupta and Mustaque Ahamad
In The 2nd IEEE European Symposium on Security and Privacy (EuroS&P'17)

[COSE 2016]
PDF
Mind your SMSes: Mitigating Social Engineering in Second Factor Authentication
Hossein Siadati, Toan Van Nguyen, Payas Gupta, Markus Jakobsson and Nasir Memon
In The Journal of Computer and Security (COSE 2016)

[SPSM, CCS 2016]
PDF
Exploiting Phone Numbers and Cross-Application Features in Targeted Mobile Attacks
Srishti Gupta, Payas Gupta, Mustaque Ahamad and Ponnurangam Kumaraguru
In The 6th Annual ACM CCS Workshop on Security and Privacy in Smartphones and Mobile Devices (SPSM 2016), Vienna, Austria, October 24-28, 2016

[ESORICS 2016]
PDF
Understanding Cross-Channel Abuse with SMS-Spam Support Infrastructure Attribution
Bharat Srinivasan, Payas Gupta, Manos Antonakakis and Mustaque Ahamad
In The 21st European Symposium on Research in Computer Security (ESORICS 2016), Greece, September 26-30, 2016

[WAY Workshop, SOUPS 2016]
PDF
Position Paper: Measuring the Impact of Alphabet and Culture on Graphical Passwords
Aviv, Adam J., Markus Dürmuth, and Payas Gupta
In Twelfth Symposium on Usable Privacy and Security (SOUPS 2016), Who Are You?! Adventures in Authentication Workshop , Menlo Park, US, June 2016

[AsiaCCS 2016]
PDF
MobiPot: Understanding Mobile Telephony Threats with Honeycards
Marco Balduzzi, Payas Gupta, Lion Gu, Debin Gao and Mustaque Ahamad
In Proceedings of the 11th ACM Symposium on Information, Computer and Communications Security (ASIACCS) 2016, Xian, China, May 2016

[UBICOMM 2015]
PDF
Fortifying Android Patterns using Persuasive Security Framework
Hossein Siadati, Payas Gupta, Sarah Smith, Mustaque Ahamad and Nasir Memon
In The Ninth International Conference on Mobile Ubiquitous Computing, Systems, Services and Technologies (UBICOMM) 2015, Nice, France, July 2015

[NDSS 2015]
Best Paper Award
PDF
Phoneypot: Data-driven Understanding of Telephony Threats
Payas Gupta, Bharat Srinivasan, Vijay Balasubramaniyan and Mustaque Ahamad
In Proceedings of the 20th Annual Network & Distributed System Security Symposium (NDSS) 2015, San Diego, CA, USA , Feb 2015

[SKM 2014]
Invited Paper
PDF
Phoneypot: Data-driven Understanding of Telephony Threats
Payas Gupta, Bharat Srinivasan, Vijay Balasubramaniyan and Mustaque Ahamad
In Proceedings of the International Conference on Secure Knowledge Management in Big-data era (SKM) 2014, Dubai , UAE, Dec 2014

[MAAWG Aug 2014]
PDF
M3AAWG Telephony Honeypots: Benefits and Deployment Options
Payas Gupta, Mustaque Ahamad, Jonathan Curtis, Vijay Balasubramaniyan and Alex Bobotek
In Messaging, Malware and Mobile Anti-Abuse Working Group Aug 2014

[CODASPY 2014]
PDF
Keystroke Biometrics: the user perspective
Chee Meng Tey, Payas Gupta, Kartik Muralidharan and Debin Gao
In Proceedings of the fourth ACM Conference on Data and Application Security and Privacy (CODASPY) 2014 , San Antonio, TX, USA, Mar 2014

[ACNS 2013]
PDF
Keystroke Timing Analysis of on-the-fly Web Apps
Chee Meng Tey, Payas Gupta, Debin Gao and Yan Zhang
In Proceedings of the 11th International Conference on Applied Cryptography and Network Security (ACNS) , Banff, Alberta, Canada, Jun 2013

[AsiaCCS 2013]
PDF
Your love is public now: Questioning the use of personal information in authentication
Payas Gupta, Swapna Gottipati, Jing Jiang and Debin Gao
In Proceedings of the 8th ACM Symposium on Information, Computer and Communications Security (ASIACCS) 2013, Hangzhou, China, May 2013

[SMU-TR 2013]
PDF
Design and Implementation of HuMan Memorable Fingerprints
Payas Gupta, Kiat Wee Tan, Narayan Ramasubbu, David Lo, Debin Gao and Rajesh Krishna Balan
Technical Report SMU-SIS-13-100, Mar 2013

[NDSS 2013]
Best Paper Award
PDF
I can be You: Questioning the use of Keystroke Dynamics as Biometrics
Chee Meng Tey, Payas Gupta and Debin Gao
In Proceedings of the 20th Annual Network & Distributed System Security Symposium (NDSS) 2013, San Diego, CA, USA , Feb 2013

[CCS 2012]
AT&T Best Applied Security Paper Award Nominess PDF
OTO: Online Trust Oracle for User-Centric Trust Establishment   
Tiffany Hyun-Jin, Payas Gupta, Jun Han, Emmanuel Owusu, Jason Hong, Adrian Perrig and Debin Gao
In Proceedings of the 18th ACM Conference on Computer and Communications Security (CCS) 2012, Raleigh, NC, USA , Oct 2012

[AsiaCCS 2012]
PDF
Coercion Resistance in Authentication Responsibility Shifting
Payas Gupta, Xuhua Ding and Debin Gao
In Proceedings of the 7th ACM Symposium on Information, Computer and Communications Security (ASIACCS) 2012, Seoul, Korea, May 2012

[Percom 2012]
PDF
HuMan: Creating Memorable Fingerprints of Mobile Users
Payas Gupta, Tan Kiat Wee, Narayan Ramasubbu, David Lo, Debin Gao and Rajesh Krishna Balan
In IEEE International Conference on Pervasive Computing and Communications (PerCom) 2012, Lugano, Switzerland, Mar 2012

[Usenix 2010]
PDF
Fighting Coercion Attacks in Key Generation using Skin Conductance
Payas Gupta and Debin Gao
In Proceedings of the 19th USENIX Security Symposium (USENIX Security) 2010, Washington, DC, USA, Aug 2010

[ICIW 2009]
PDF
SS-IDS: Statistical Signature based IDS
Payas Gupta, Chedy Raissi, Gerard Dray, Pascal Poncelet and Johan Brissaud
In Proceedings of the 4th International Conference on Internet and Web Applications and Services (ICIW) 2009, Venice, Italy, May 2009

[FDC 2008]
PDF
D´etection d’Intrusion: de l’ utilisation de signatures statistiques
Payas Gupta, Chedy Raissi, Gerard Dray, Pascal Poncelet and Johan Brissaud
Actes du 5ieme Atelier Fouille de Donn´ees Complexes (FDC) 2008, Sophia Antipolis, France, Jan 2008

[AUUG 2006]
PDF
Network Monitoring Tool to Identify Malware Infected Computers
Navpreet Singh, Megha Jain, Payas Gupta and Shikha Bansal
AUUG 2006, Melbourne, Australia, Oct 2006

Posters

[NYUAD ARC 2015]
Know your targets: Privacy and Security Implications in Instant Messaging Applications
Srishti Gupta, Payas Gupta, Mustaque Ahamad and Ponnurangam Kumaraguru
2nd NYUAD Annual Research Conference 2015, Abu Dhabi, UAE

[NYUAD ARC 2014]
Profiling Android Malware
Fatih Haltas,Payas Gupta and Taha Sencar
1st NYUAD Annual Research Conference 2014, Abu Dhabi, UAE

[NYUAD ARC 2014]
PhoneyFarm: the first Global Voice Phishing Data Collection and Analysis System
Venkateswara,Payas Gupta and Mustaque Ahamad
1st NYUAD Annual Research Conference 2014, Abu Dhabi, UAE

[Govt'ware 2011]
PDF
Fighting Coercion Attacks in Key Generation using Skin Conductance
Payas Gupta and Debin Gao
20th Governmentware Seminar and Exhibition, Singapore, September 2011