William Robertson

Systems security
Web security
Mobile security

PhD in computer science, University of California, Santa Barbara
BS in computer science, University of California, Santa Barbara

William Robertson is an associate professor in the Khoury College of Computer Sciences and the College of Engineering at Northeastern University, based in Boston. He co-directs the Northeastern Systems Security Lab and is principal investigator for the Cybersecurity and Privacy Institute's Diverge Lab.

Robertson’s research revolves around improving the security of operating systems, mobile devices, and the web, as well as making use of techniques such as security by design, program analysis, and anomaly detection. Prior to joining Northeastern in 2011, he was a postdoctoral researcher at UC Berkeley.

Robertson was involved in the California Top-to-Bottom-Review and the Ohio EVEREST project as a red team member. In this capacity, he demonstrated that electronic voting systems were susceptible to large-scale attacks that could exploit vulnerabilities in both the firmware and the physical security of the components. His work led to significant changes in electronic voting policy in both states.

Robertson has extensive experience organizing and participating in capture the flag exercises. With Shellphish, a team composed of UC Santa Barbara-affiliated members, he won the 2005 edition of the DEFCON CTF competition. He was also instrumental in helping to organize the UCSB iCTF, the largest distributed CTF competition.

Robertson chaired or co-chaired the Annual Computer Security Applications Conference for 2015–2016, the 2013 USENIX Workshop on Offensive Technologies, and the 2012 Conference on the Detection of Intrusions and Malware & Vulnerability Assessment. He has participated on the program committees of a number of top-tier systems security venues, including IEEE Security and Privacy, USENIX Security, NDSS, ACSAC, and RAID. He has also authored more than 30 peer-reviewed journal and conference papers on systems and network security.

Published: February 18th, 2016
Multi-Disciplinary Preparation of Next Generation Information Assurance Practitioners

Lead PI: Guevara Noubir

Co PIs: David Kaeli, William Robertson
Published: March 9th, 2016
Automated Reverse Engineering of Commodity Software

Lead PI: Engin Kirda

Co PI: William Robertson
Published: October 14th, 2021
LAVA: Large-scale Automated Vulnerability Addition

Lead PI: Brendan Dolan-Gavitt (New York University)

Co PIs: Engin Kirda, William Robertson, Andrea Mambretti

Published: July 16th, 2015
BabelCrypt: The Universal Encryption Layer for Mobile Messaging Applications

Citation: Ozcan, Ahmet Talha, et al. "BabelCrypt: The Universal Encryption Layer for Mobile Messaging Applications." Financial Cryptography and Data Security. Springer Berlin Heidelberg, 2015. 355-369.|
Published: August 1st, 2017
Game of Registrars: An Empirical Analysis of Post-Expiration Domain Name Takeovers

Citation: Tobias Lauinger, Abdelberi Chaabane, Ahmet Salih Buyukkayhan, Kaan Onarlioglu, William Robertson. Game of Registrars: An Empirical Analysis of Post-Expiration Domain Name Takeovers. USENIX Security Symposium. August 2017.
Published: September 1st, 2017
Lens on the endpoint: Hunting for malicious software through endpoint data analysis

Citation: Ahmet Salih Buyukkayhan, Alina Oprea, Zhou Li, William Robertson. Lens on the endpoint: Hunting for malicious software through endpoint data analysis. International Symposium on Research in Attacks, Intrusions and Defenses (RAID). September 2017.

News at Northeastern
3Qs: Could cyberattacks threaten to steal the 2016 election?

October 18th, 2016
News at Northeastern
The Equifax hack and ‘virtual certainty’ of future cybertheft

September 12th, 2017
General News at Northeastern
Why politically motivated cyberattacks might be the new normal

June 30th, 2017

Dean's Welcome

Experiential Learning

Global Campus Experience

NDIF at Northeastern: $9 million NSF grant to launch groundbreaking project

Hiring a co-op student: What to know

Careers at Khoury College

Multi-Disciplinary Preparation of Next Generation Information Assurance Practitioners

Automated Reverse Engineering of Commodity Software

LAVA: Large-scale Automated Vulnerability Addition

BabelCrypt: The Universal Encryption Layer for Mobile Messaging Applications

Game of Registrars: An Empirical Analysis of Post-Expiration Domain Name Takeovers

Lens on the endpoint: Hunting for malicious software through endpoint data analysis

3Qs: Could cyberattacks threaten to steal the 2016 election?

The Equifax hack and ‘virtual certainty’ of future cybertheft

Why politically motivated cyberattacks might be the new normal

Related News

Live Nation Entertainment blamed bots for the Taylor Swift ticket fiasco. Is it a legitimate explanation or just an excuse?

Your Capital One Account Was Hacked. There Was Nothing You Could Have Done About It.

Security and Privacy Research awards

Current PhD Students

Cassidy Waldrip

Kai Bernardini

Geno Fossas

Steve Sprecher

Andrew Fasano

Previous PhD Students

Sajjad Arshad

Joshua Bundt

Mohammad Amin Kharraz

William Robertson

Research interests

Education

Biography

Projects

Recent publications

Related news