search menu icon-carat-right cmu-wordmark

Grace A. Lewis

Principal Researcher

Grace A. Lewis is the principal investigator for two research projects related to IoT Security:

High-Assurance Software-Defined IoT Security
is creating an IoT framework that operates, with high assurance, in a resilient and trustworthy manner even in the presence of a powerful and realistic attacker who can compromise IoT devices, control nodes, and other intermediaries. The software-defined IoT infrastructure is composed of (i) a high-assurance control node that monitors security-relevant events and alters the "security postures" of IoT devices to enforce specific policies; (ii) trusted data nodes that execute these security postures for each IoT device using "micro-middleboxes"; and (iii) firmware-hardened IoT device nodes, which can be untrusted (e.g., commodity), or trusted (e.g., custom-built by a trusted contractor) but have verifiably secure communication with the control node and data nodes.
Authentication and Authorization of IoT Devices in Tactical Environments
is evaluating, adapting, and implementing an IETF proposal for authentication and authorization in constrained environments (ACE) such that it is resilient to high-priority threats of tactical environments (e.g., node impersonation and capture) that are currently not addressed in ACE.

She also led the work in Tactical Computing and Communications (TCC) that developed tactical cloudlets. The tactical cloudlet software is available as KD-Cloudlet on GitHub.

Areas of expertise: edge computing, cloud computing, software architecture, service-oriented architecture, technology evaluation, IoT security

Professional Background

Grace Lewis is a Principal Researcher at the Software Engineering Institute at Carnegie Mellon University. Lewis has over 25 years of professional software development experience in industry and research environments. Her main areas of expertise and interest include edge computing, cloud computing, software architecture, service-oriented architecture, IoT security, and technology evaluation.

Before joining the SEI, Lewis was Chief of Systems Development for Icesi University, where she served as project manager and technical lead for the university-wide administrative systems. Other work experience includes Design and Development Engineer for the Electronics Division of Carvajal S.A. where she developed software for communication between PCs and electronic devices and embedded software on devices microcontrollers.

At the SEI she has worked in the area of Commercial-of-the-Shelf (COTS) Based Systems, Legacy System Modernization, Systems of Systems Engineering, and Service-Oriented Architecture (SOA), where she has a vast number of publications. Her current areas of work are secure and efficient computing and communications in resource-constrained environments and IoT security.

Lewis has teaching experience at the graduate and undergraduate level. She serves various roles in the Master of Software Engineering professional programs at Carnegie Mellon University.

Lewis hold a BSc in Software Systems Engineering from Icesi University in Cali, Colombia; a Post-Graduate Specialization in Business Administration from Icesi University; a Master of Software Engineering from Carnegie Mellon University in Pittsburgh, PA USA; and a PhD in Computer Science from Vrije Universiteit Amsterdam, Netherlands.

Publications

Dissertation

Grace Alexandra Lewis. Software Architecture Strategies for Cyber-Foraging Systems. June 2016. ISBN: 978-94-6295-483-0

Selected External Publications

SEI Publications

Books

Additional Publications by Grace A. Lewis

Teams

Tactical Technologies Group (TTG)

High-Assurance Software-Defined IoT Security

Authorization and Authentication of IoT Devices in Tactical Environments

Education

  • PhD, Computer Science, Vrije Universiteit Amsterdam
  • MS, Software Engineering, Carnegie Mellon University
  • Post-Graduate Specialization, Business Administration, Icesi University
  • BS, Software Systems Engineering, Icesi University

Professional Memberships

  • IEEE Technical Council on Software Engineering, Executive Vice Chair
  • IEEE Computer Society Technical & Conference Activities Board (T&C) Executive Committee, Treasurer
  • IEEE - Senior Member
  • CMU MSE Executive Committee

Current Professional Activities

Conference Organization

Industrial Co-Chair
ECSA 2018 - 12th European Conference on Software Architecture - September 24-28, 2018 - Madrid, Spain

Current Program Committees

MOBILITY 2018
8th International Conference on Mobile Services, Resources, and Users - July 22-26, 2018 - Barcelona, Spain
ICSME 2018
34th International Conference on Software Maintenance and Evolution - September 23-29, 2018 - Madrid, Spain
ECSA 2018
12th European Conference on Software Architecture - September 24-28, 2018 - Madrid, Spain
ECSA 2018 - Women in Software Architecture
Third ECSA Track for Women in Software Architecture - September 24-28, 2018 - Madrid, Spain
CASCON 2018
28th Annual International Conference on Computer Science and Software Engineering - October 29-31, 2018 - Markham, ON Canada
MILCOM 2018
37th International Conference for Military Communications - Cyber Security and Trusted Computing Track - October 29-31, 2018 - Los Angeles, CA USA
CSEE&T 31
31st Conference on Software Engineering Education and Training - Invited Track at HICSS-52 - January 8-11, 2019 - Maui, HI USA
ICSE 2019 - Technical Track
41st ACM/IEEE International Conference on Software Engineering - Technical Track - May 25-31, 2019 - Montreal, QC Canada
ICSE 2019 - Doctoral Symposium
41st ACM/IEEE International Conference on Software Engineering - Doctoral Symposium - May 25-31, 2019 - Montreal, QC Canada