Research Projects

IoT Botnets Detection using Network Traffic - 2019-2022

The main goal of this project is to propose early detection of IoT botnets using network traffic features. A dataset composed of several IoT botnets to evaluate the detection rate of different machine learning algorithms is also part of the the project. This project is being developed in joint work with Prof. Bruno Bogaz Zarpelão (UEL), Prof. Sylvio Barbon (UEL) and Prof. Elaine Paiva (UFU).

Status: active. Grant No. APQ-02196-18 funded by the State Funding Agency of Minas Gerais (FAPEMIG).

Students involved: 2 graduate (master degree) and 2 undergraduate

Detection and Mitigation of DoS Attacks Using IoT Devices - 2018-2020

The main idea of this project is to propose ways to understand the power of DoS attacks when using IoT devices as a reflector and propose effective ways for detect and mitigate such attacks. This project is being developed in joint work with Prof. Bruno Bogaz Zarpelão (UEL), Prof. Sylvio Barbon (UEL) and Prof. Elaine Paiva (UFU).

Status: active. No financial grant until this moment.

Students involved: 1 graduate (master degree) and 3 undergraduate

Related publications:

ZARPELAO, B. B. ; MIANI, R. S. ; KAWAKANI, C. T. ; ALVARENGA, S. . A survey of intrusion detection in Internet of Things. Journal of Network and Computer Applications, p. 25-37, 2017.
COSTA, V. G. T. ; BARBON, S. ; MIANI, R. S. ; RODRIGUES, J. J. P. C. ; ZARPELAO, B. B. . Detecting Mobile Botnets Through Machine Learning and System Calls Analysis. In: IEEE International Conference on Communications (ICC 2017), 2017, Paris. Proceedings of the 2017 IEEE International Conference on Communications (ICC), 2017. p. 917-922.

Analysis of intrusion alerts to support network security - 2015-2017

Intrusion Detection Systems (IDS) are an important tool for protecting computer networks. Despite the benefits of adopting such systems, IDSs have a problem that is not completely solved yet: how to analyze the huge quantity of alerts that are triggered by IDS devices. This research project proposes the study and development of solutions for this problem. This project is being developed in joint work with Prof. Bruno Bogaz Zarpelão (UEL), Prof. Sylvio Barbon (UEL) and Prof. Michel Cukier (University of Maryland).

Status: inactive.

Students involved: 1 graduate (master degree) and 2 undergraduate

Related publications:

DE ALVARENGA, SEAN CARLISTO ; BARBON, SYLVIO ; MIANI, RODRIGO SANCHES ; CUKIER, MICHEL ; BOGAZ ZARPELÃO, BRUNO . Process mining and hierarchical clustering to help intrusion alert visualization. COMPUTERS & SECURITY, p. 474-491, 2017.
Discovering Attackers Past Behavior to Generate Online Hyper-Alerts. iSys: Revista Brasileira de Sistemas de Informação, v. 10, p. 124-149, 2017.
MORAES, E. A. ; TOJEIRO, C. A. C. ; MIANI, R. S. ; ZARPELAO, B. B. . Análise de Alertas de Sistemas de Detecção de Intrusão: Uso de Aprendizado Supervisionado na Redução de Alertas Falsos Positivos. In: XVII Simpósio Brasileiro em Segurança da Informação e de Sistemas Computacionais, 2017, Brasília. Anais do XVII Simpósio Brasileiro em Segurança da Informação e de Sistemas Computacionais, 2017. p. 182-195.
KAWAKANI, C. T. ; BARBON, S. ; MIANI, R. S. ; CUKIER, M. ; ZARPELAO, B. B. . Intrusion Alert Correlation to Support Security Management. In: Simpósio Brasileiro de Sistemas de Informação (SBSI 2016), 2016, Florianópolis. Anais do XII Simpósio Brasileiro de Sistemas de Informação, 2016.
ALVARENGA, S. ; ZARPELAO, B. B. ; BARBON JUNIOR, S. ; MIANI, R. S. ; CUKIER, M. . Discovering Attack Strategies Using Process Mining. In: The Eleventh Advanced International Conference on Telecommunications (AICT 2015), 2015, Brussels. Proceedings of the Eleventh Advanced International Conference on Telecommunications, 2015. p. 119-125.

Analysis of security vulnerabilities in UAVs - 2016-2019

One of the biggest, yet mostly unrecognized, challenges for the use of unmanned aerial vehicles (UAVs) in large-scale real-world applications is security. The main goal of this project is to propose experiments and evaluate the security (confidentiality, integrity and availability) of several types of UAVs. This project is being developed in joint work with Prof. Jefferson Rodrigo de Souza (UFU) and Dr. Victor Guizilini (University of Sydney).

Status: active. No financial grant until this moment.

Students involved: 2 undergraduate

Related publications:

VASCONCELOS, GABRIEL ; CARRIJO, GABRIEL ; MIANI, RODRIGO ; SOUZA, JEFFERSON ; GUIZILINI, VITOR . The Impact of DoS Attacks on the AR.Drone 2.0. In: 2016 XIII Latin American Robotics Symposium and IV Brazilian Robotics Symposium (LARS/SBR), 2016, Recife. 2016 XIII Latin American Robotics Symposium and IV Brazilian Robotics Symposium (LARS/SBR). p. 127.

Quantitative Analysis of Security Incidents in Computer Networks - 2014-2016

The goal of this is to develop statistical models for estimating the relationship between security incidents and intrusion prevention systems (IPS) and also analysing the impact caused by such malicious activities. A secondary goal of this project is related to the development of innovative tools that might be used for security professionals to improve awareness and knowledge of security problems. This project is being developed in joint work with Prof. Bruno Bogaz Zarpelão (UEL) and Prof. Michel Cukier (University of Maryland).

Status: stand-by. Financial grant provided by PROPP-UFU between 2014-2016.

Related publications:

MIANI, RODRIGO SANCHES; ZARPELAO, BRUNO BOGAZ ; SOBESTO, BERTRAND ; CUKIER, MICHEL . A Practical Experience on Evaluating Intrusion Prevention System Event Data as Indicators of Security Issues. In: 2015 IEEE 34th Symposium on Reliable Distributed Systems (SRDS), 2015, Montreal. 2015 IEEE 34th Symposium on Reliable Distributed Systems (SRDS). p. 296-305.
MIANI, R. S.; ZARPELAO, B. B. ; MENDES, L. S. . Um estudo empírico sobre o uso de métricas de segurança em ambientes reais. In: X Simpósio Brasileiro de Sistemas de Informação (SBSI 2014), 2014, Londrina. Anais do Simpósio Brasileiro de Sistemas de Informação, 2014. v. 1. p. 699-710.
MIANI, RODRIGO SANCHES; CUKIER, MICHEL ; ZARPELÃO, BRUNO BOGAZ ; DE SOUZA MENDES, LEONARDO . Relationships between information security metrics. In: the Eighth Annual Cyber Security and Information Intelligence Research Workshop, 2013, Oak Ridge. Proceedings of the Eighth Annual Cyber Security and Information Intelligence Research Workshop on - CSIIRW '13. New York: ACM Press. p. 1.
MIANI, R. S.; CUKIER, M. ; ZARPELAO, B. B. ; BREDA, G. D. ; MENDES, L. S. . An Empirical Study of Connections Between Measurements and Information Security. In: The Sixth International Conference on Emerging Security Information, Systems and Technologies (SECURWARE 2012), 2012, Rome. Proceedings of the Sixth International Conference on Emerging Security Information, Systems and Technologies, 2012. p. 104-111.

GT-Plainc - Platform for Incidents Analysis - 2013-2014

The main goal of this project is to propose a platform for security incident analysis named Plainc (http://www.uel.br/pessoal/zarpelao/gt-plainc/). We propose the development of a Web Service for analyzing security incidents using Kohonen's Self Organizing Maps, named SOM-WS (Self Organizing Maps Web Service). Research conducted in collaboration with Dr. Bruno Zarpelao (DC-UEL) and his research team.

Status: closed. Funded by RNP (https://www.rnp.br/en).