Skip to Content
[CAIDA - Center for Applied Internet Data Analysis logo]
Center for Applied Internet Data Analysis
Alberto Dainotti

Research Scientist
office: San Diego Supercomputer Center, room 331
phone: 858-534-9249
email: alberto AT caida DOT org
address: San Diego Supercomputer Center
              University of California San Diego
              9500 Gilman Drive, MC 0505
              La Jolla, CA 92093-0505

PGP key fingerprint: 039F FC8A C1AA E4EE 371A 7EC3 6948 20E3 FBB5 2865

My Google Scholar page

Short CV

Full publication list



[Dec 2018] Our paper on identifying correlated Internet connectivity failures was accepted to PAM '19.


[Dec 2018] Our Blink paper was accepted to USENIX NSDI '19.

[Aug 2018] Our ARTEMIS paper was accepted to IEEE/ACM Transactions on Networking.

[Aug 2018] Our paper on DoS attacks and BGP blackholing was accepted to IMC.

[Dec 2017] I'll serve as general co-chair for CoNEXT 2018 in Crete, GR together with Xenofontas Dimitropoulos.

[Nov 2017] Our work on inferring Carrier-Grade Deployments using passive measurements was accepted to IEEE INFOCOM 2018.

[Aug 2017] "Millions of Targets Under Attack: a Macroscopic Characterization of the DoS Ecosystem" accepted at IMC 2017

[May 2017] "SWIFT: Predictive Fast Reroute" accepted at ACM SIGCOMM 2017!!

[Jan 2017] I'll be co-chairing the ACM SIGCOMM 2017 Workshop on Big Data Analytics and Machine Learning for Data Communication Networks (Big-DAMA 2017). Consider submitting a paper!

[Dec 2016] Alistair has been awarded the 2017 IRTF Applied Networking Research Prize for our IMC paper on BGPStream!

[Jul 2016] I have been awarded a research grant from Cisco Systems for our work on BGPStream and to collaborate with them to add native support to OpenBMP.

[Jul 2016] Our paper on BGPStream will appear at IMC 2016. (pdf)

[Jul 2016] Read about the CAIDA BGP Hackathon 2016 on ACM SIGCOMM CCR.

[Feb 2016] I'm organizing the 1st CAIDA BGP Hackathon together with USC, RIPE NCC, Route Views, FORTH, UFMG.

[Nov 2015] Check out my invited talk at IETF 94 Measuring and Monitoring BGP

[Nov 2015] We just released BGPStream v1.0

[Sep 2015] Check out our latest paper at IMC 2015 on Leveraging Internet Background Radiation for Opportunistic Network Analysis

[Apr 2015] We published a follow-up analysis of the sipscan at TMA 2015: How Dangerous Is Internet Scanning? A Measurement Study of the Aftermath of an Internet-Wide Scan

[Dec 2014] North Korea got disconnected from the Internet a few times in the last days of 2014. We published a live graph of its BGP reachability status as a preview of our work on detecting and characterizing Internet outages

[Oct 2014] We published a technical report on our Internet census

[Aug 2014] Check our blog post about the recent Time Warner Cable outage

[Aug 2014] Submit your paper to the special issue on the International Journal of Network Management on ``Measure, Detect and Mitigate: Challenges and Trends in Network Security'' (Deadline 1st of December)

[Aug 2014] Our paper on discovering network tarpits in collaboration with Lance and Rob @ CMAND @ NPS was accepted at the Annual Computer Security Applications Conference (ACSAC), 2014.

[Jan 2014] New estimates of IPv4 address space usage in our paper accepted at ACM SIGCOMM CCR: ``Estimating Internet address space usage through passive measurements''

[May 2013] Check out our blog post about the scans from the Carna botnet. Cited also by WIRED (link)

[Dec 2012/Mar 2013] USENIX published the video of my invited talk at USENIX LISA '12 and also a report of it in USENIX Login magazine

[Dec 2012] Check out our blog post on observing the Syrian Internet blackout from the UCSD Network Telescope

[Sep 2012] Our research activity on Internet outages has been covered in September issue of Communications of the ACM Magazine (link)
..more press coverage also at Heise Online (if you can read Deutsch)

[Jul 2012] Our paper ``Analysis of a "/0" Stealth Scan from a Botnet'' has been accepted at IMC 2012

[Jun 2012] Our work on exploiting malware traffic pollution for detecting and analyzing Internet outages has been awarded as one of the three best papers in ACM SIGCOMM Computer Communication Review of the past 12 months. I will present it in a special session at SIGCOMM 2012

[Jun 2012] I've been awarded the IRTF Applied Networking Research Prize 2012 (link)

[Mar 2012] We've been "press-released" :) And covered by the WSJ blog, among others

[Jan 2012] Our work on exploiting malware traffic pollution for detecting and analyzing Internet outages has been published on ACM SIGCOMM Computer Communication Review, January 2012

[Jan 2012] Our paper entitled "Issues and Future Directions in Traffic Classification" has been published on IEEE Network, January 2012

[Nov 2011] Our work on the Internet "kill switch" in Libya and Egypt has been presented at IMC 2011, Berlin, November 2012

Short Bio

I am a Research Scientist at CAIDA, the Center for Applied Internet Data Analysis, University of California San Diego, USA. In 2008 I received my Ph.D. in Computer Engineering and Systems at University of Napoli "Federico II", Italy. My main research interests are in the fields of Internet measurement and Internet security, with a focus on the detection and analysis of large-scale Internet events, such as botnet activities, Internet blackouts, and BGP prefix hijacking attacks. While most of my work is basic research, I also enjoy building running systems (such as IODA) and software tools and APIs (BGPStream, TIE). All of which would not be possible without the talented people I am fortunate to work with.

Research Interests

Internet Measurement, Traffic Analysis, Traffic Classification, Network Security

Recent Publications (full list here)

How to find correlated Internet failures
R. Padmanabhan, A. Schulman, A. Dainotti, D. Levin, N. Spring
PAM 2019

Blink: Fast Connectivity Recovery Entirely in the Data Plane
T. Holterbach, E. Costa Molero, M. Apostolaki, A. Dainotti, S. Vissicchio, L. Vanbever

ARTEMIS: Neutralizing BGP Hijacking within a Minute
P. Sermpezis, V. Kotronis, P. Gigis, X. Dimitropoulos, D. Cicalese, A. King, and A. Dainotti
IEEE/ACM Transactions on Networking

A First Joint Look at DoS Attacks and BGP Blackholing in the Wild
M. Jonker, A. Pras, A. Dainotti, A. Sperotto
ACM SIGCOMM Internet Measurement Conference 2018

Inferring Carrier Grade NAT Deployments in the Wild
I. Livadariu, K. Benson, A. Elmokashfi, A. Dhamdhere, A. Dainotti

Millions of Targets Under Attack: a Macroscopic Characterization of the DoS Ecosystem
M. Jonker, A. King, J. Krupp, C. Rossow, A. Sperotto, A. Dainotti
ACM SIGCOMM Internet Measurement Conference IMC 2017

SWIFT: Predictive Fast Reroute
T. Holterbach, S. Vissicchio, A. Dainotti, L. Vanbever

Other Professional Activities

  • Independent reviewer of projects and evaluator of project proposals for the European Commission (Horizon 2020, FP7 ICT) and the US National Science Foundation
  • Editorial board member for: ACM SIGCOMM Computer Communication Review, IEEE/ACM Transactions on Networking
  • Steering Committee member for the TMA Conference 2018, 2017
  • General chair for CoNEXT 2018
  • TPC chair for: TMA 2014, Big-DAMA 2018, 2017
  • TPC member for: ACM IMC 2019, 2013, ACM CoNEXT 2017, PAM 2019 - 2014, IEEE ICC 2017 - 2014, 2007, TMA 2019 - 2012, IEEE ICNC 2013, IEEE Globecom 2012


I gratefully acknowledge funding from the National Science Foundation, the US Department of Homeland Security, Cisco Systems, Comcast, and the Open Technology Fund

EAGER:Experimental Deployment of the ARTEMIS BGP Hijacking Detection Prototype in Research and Educational Networks, 2018-2019
HIJACKS: Detecting and Characterizing Internet Traffic Interception based on BGP Hijacking, 2014-2019
Sustainable Tools for Analysis and Research on Darknet Unsolicited Traffic (STARDUST), 2017-2020
Investigating the Susceptibility of the Internet Topology to Country-level Connectivity Disruption and Manipulation, 2017-2021
Integrated Platform for Applied Network Data Analysis (PANDA), 2017-2020
Detection and analysis of large-scale Internet infrastructure outages (IODA), 2012-2016

IODA-NP: Multi- source Realtime Detection of Macroscopic Internet Connectivity Disruption, 2018-2019
Advancing Scientific Study of Internet Security and Topological Stability (ASSISTS), 2018

ARTEMIS: Neutralizing BGP Hijacking within a Minute, 2018-2019
Monitoring and Visualizing Internet Outages, 2013

Open Tech Fund
An Observatory for Realtime Monitoring and Analysis of Internet Blackouts Caused by Censorship, 2018-2019

Cisco Systems
Native support for the BGP Monitoring Protocol in BGPStream, 2016-2017

  Last Modified: Sun Feb-17-2019 17:27:17 PST
  Page URL: