Publications

(2023). VulnGen: Vulnerable Virtual Machine Generator. In Proceedings of the 17th IEEE International Conference on Service Operations and Logistics, and Informatics (SOLI’23), IEEE.

DOI

(2023). EARIC: Exploiting ADC Registers in IoT and Control Systems. In Proceedings of the ACNS’23 Workshop on Artificial Intelligence and Industrial IoT Security (AIoTS’23), Springer.

PDF DOI

(2023). IRC-SET 2023: Proceedings of the 9th IRC Conference on Science, Engineering and Technology. In Proceedings of IRC-SET 2023, Springer.

DOI Book on Amazon

(2023). On the Security of Containers: Threat Modeling, Attack Analysis, and Mitigation Strategies. In Computers & Security journal, Elsevier.

PDF DOI

(2022). IRC-SET 2022: Proceedings of the 8th IRC Conference on Science, Engineering and Technology. In Proceedings of IRC-SET 2022, Springer.

DOI Book on Amazon

(2021). Enhance Enterprise Security through Implementing ISO/IEC27001 Standard. In Proceedings of the 15th IEEE International Conference on Service Operations and Logistics, and Informatics (SOLI’21), IEEE.

DOI

(2021). DARUD: Detecting and Arresting Rogue USB Devices in the V2X Ecosystem. In Proceedings of the 15th IEEE International Conference on Service Operations and Logistics, and Informatics (SOLI’21), IEEE.

PDF DOI

(2021). Threat Modeling and Security Analysis of Containers: A Survey. In CoRR abs, arXiv.

PDF Preprint

(2021). IRC-SET 2021: Proceedings of the 7th IRC Conference on Science, Engineering and Technology. In Proceedings of IRC-SET 2021, Springer.

DOI Book on Amazon

(2021). SCOPE: Secure Compiling of PLCs in Cyber-Physical Systems. In International Journal of Critical Infrastructure Protection (IJCIP), Elsevier.

PDF DOI

(2020). CIMA: Compiler-Enforced Resilience Against Memory Safety Attacks in Cyber-Physical Systems. In Computers & Security journal, Elsevier.

PDF DOI CVE-2018-20818

(2019). ICS-SEA: Formally Modeling the Conflicting Design Constraints in ICS. In Proceedings of the Fifth Annual Industrial Control Systems Security (ICSS’19) Workshop, co-located with ACSAC, ACM.

PDF Slides DOI

(2018). Taming the War in Memory: A Resilient Mitigation Strategy Against Memory Safety Attacks in CPS. In CoRR abs, arXiv.

PDF DOI

(2018). Enforcing Full-Stack Memory Safety in Cyber-Physical Systems. In Proceedings of the International Symposium on Engineering Secure Software and Systems (ESSoS’18), Springer.

PDF DOI

(2017). Enforcing Memory Safety in Cyber-Physical Systems. In Proceedings of the ESORICS workshop on Security of Industrial Control Systems and Cyber-Physical Systems (CyberICPS’17), Springer.

PDF DOI

(2014). Attribute Based Access Control for APIs in Spring Security. In Proceedings of the 19th ACM Symposium on Access Control Models and Technologies (SACMAT’14), ACM.

DOI

(2014). Selective Release of Smart Metering Data in Multi-domain Smart Grids. In Proceedings of the Smart Grid Security Workshop (SmartGridSec’14), co-located with ESSoS’14, Springer.

DOI