Sanket Goutam

Security & Privacy Researcher

I am a Computer Science Ph.D. candidate at Stony Brook University and work in the Ethos Lab. I am advised by Prof. Amir Rahmati.

My research focuses on addressing the critical challenges of systems and network security in emerging technologies, particularly in developing secure and privacy-centric solutions for mobile systems, including smartphones, wearables (such as AR/VR devices), and IoT or smart home ecosystems. As personal devices evolve with increasingly complex designs and continuous sensing capabilities, they introduce new security and privacy threats that can compromise user safety.

I investigate how developers create user-facing systems, analyzing potential security and privacy implications that may arise from obscure design practices and functional indirections. My goal is to develop practical designs that not only meet operational requirements for developers but also uphold robust security and privacy protections for end users.

I collaborate closely with Samsung Research America, through Security Research Engineer Internships, focusing on Samsung Knox for enterprise solutions. Prior to my Ph.D. program, I spent several years with the ArubaOS Infrastructure team, at HPE Aruba Networks, where I enhanced their distributed shared memory infrastructure for large scale deployments. My contributions were recognized with multiple awards for high-impact work during my tenure.

I hold a Master of Science in Computer Science from North Carolina State University, where I was a graduate research student in the Wolfpack Security and Privacy Lab under the guidance of Professors William Enck and Brad Reaves. My MS thesis proposed a novel network-based access control model tailored for smart home ecosystem, which can be accessed here.

Research Funding : I am fortunate to have my research supported by the Office of Naval Research (ONR) and Samsung Research America.

Media Coverage

My research on security hardening of AR and IoT systems has been covered by the Future Force Magazine - Vol. 9, 2023.
Our work on designing a curriculum for Computer Science Teaching Assistants (TAs), as part of the Inclusive Computing Fellowship, was published in a news article by SBU News.

news

Jan 28, 2025	I am on the Program Committee for 2025 IEEE/ACM Workshop on the Internet of Safe Things.
Nov 26, 2024	I am serving on the 2025 USENIX Security Artifact Evaluation Committee.
Sep 01, 2024	I am serving as the Graduate Student Representative in the Computer Science Graduate Committee at Stony Brook University.
Apr 09, 2024	I am serving on the ACM CCS 2024 Artifact Evaluation Committee.
Mar 27, 2024	I am serving on the Program Committee for 2024 IEEE Security & Privacy Symposium Poster Session.

selected publications

USENIX Sec

Erebus: Access Control for Augmented Reality Systems

Sanket Goutam^*, Yoonsang Kim^*, Amir Rahmati, and Arie Kaufman

In 32nd USENIX Security Symposium (USENIX Security 23), 2023

Bib PDF Supp Video Blog Code Poster Slides Website

@inproceedings{kim2023erebus,
  title = {Erebus: Access Control for Augmented Reality Systems},
  author = {Goutam*, Sanket and Kim*, Yoonsang and Rahmati, Amir and Kaufman, Arie},
  booktitle = {32nd USENIX Security Symposium (USENIX Security 23)},
  pages = {929--946},
  year = {2023},
  bibtex_show = true,
}

ACM WiSec

Hestia: Simple Least Privilege Network Policies for Smart Homes

Sanket Goutam, William Enck, and Bradley Reaves

In Proceedings of the 12th Conference on Security and Privacy in Wireless and Mobile Networks (ACM WiSec), 2019

Bib PDF Slides Website

@inproceedings{goutam2019hestia,
  title = {Hestia: Simple Least Privilege Network Policies for Smart Homes},
  author = {Goutam, Sanket and Enck, William and Reaves, Bradley},
  booktitle = {Proceedings of the 12th Conference on Security and Privacy in Wireless and Mobile Networks (ACM WiSec)},
  pages = {215--220},
  year = {2019},
  bibtex_show = true,
}