“No problem can be solved from the same level of consciousness that created it.” - Einstein
Security has become one of the cornerstones in the design of computer systems and networks. My long-term research goal is to support the security and resilience of emerging computing environments against sophisticated threats, which has proven to require a high level of innovation in both theoretical and applied cyber defense.
Intelligent Offense and Defense in Pervasive Computing
This long-term project in fundamental and applied Cyber Security research involves several phases that ultimately lead to the design of secure and resilient large-scale, networked computing systems. This entails rethinking the real-time interactions of system modules (e.g., cyber components and physical nodes) to prepare them to strategically face and recover from potential compromise. The project advocates a number of innovative security engineering concepts, such as the design of intrinsic resilience against zero-day threats and the integration of autonomous defense through learning in non-deterministic environments. Example ongoing sub-projects include: 1) Mitigation of Advanced Persistent Threats (APT) in Intelligent Transportation Systems (ITS); 2) Prevention of Data Corruption Attacks Against Connected and Autonomous Vehicles (CAV); 3) Intelligence-based Security Risk Assessment in Critical Infrastructure (CI); and 4) Neutralizing Stealthy Collusion Attacks Against Large-Scale Federated Learning-based Smart City Applications.
Secure and Resilient Design of Cyber-Physical Systems
This collaborative, multi-disciplinary, and high-impact research project focuses on investigating novel Denial of Service (DoS) and False Data Injection (FDI) attacks against sensors and actuators in emerging Cyber-Physical Systems (CPS) including Industrial Control Systems (ICS) and Automated Highway Systems (AHS). These systems are particularly vulnerable to APTs that stealthily undermine their operations, which impacts their reliability and safety. One of the key objectives is to lay out a new offensive territory against such systems in order to better grasp their zero-day vulnerabilities and eventually improve their resilience against attacks. Example ongoing sub-projects include: 1) Resilience-by-design in Road Traffic Signal Controllers; 2) Cooperative Defense in Multi-Agent Cyber-Physical Systems; 3) Securing Autonomous Platoons Against Cyber-Physical Adversarial Threats; and 4) Moving Target Defense for Resilient Distributed Control over Deterministic Networking.
Strategic Security in The Internet of Things
This multi-year project consists in designing secure, resilient, and trusted Internet of Things (IoT) systems and networks. The key motivation behind this research lies in the fact that security in IoT must be optimized due to the many functional and architectural requirements and constraints dictated by the IoT environment such as large scale, resource limitation, and real-time communication. Example ongoing sub-projects include: 1) Cooperative Attack Prevention and Mitigation in IoT and Edge Computing; 2) Robust and Resource-aware Anomaly Detection in IoT Applications; 3) Game-theoretic Blockchain Design for Data Security in Industrial IoT; and 4) Hybrid Multi-Agent Reinforcement Learning for Botnets Mitigation in IoT Networks.
"The Best for the Group comes when everyone in the group does what's best for himself AND the group." - John Nash