| Both sides previous revisionPrevious revisionNext revision | Previous revision |
| start [2023/08/07 09:10] – fabio.massacci@unitn.it | start [2025/07/21 16:20] (current) – [NEW Openings] fabio.massacci@unitn.it |
|---|
| See the [[security_group|members]] page to see the members of the security group. | See the [[security_group|members]] page to see the members of the security group. |
| |
| | ==== NEW Openings ==== |
| | |
| | We are always looking for interested phd and post-doc (so please send an email to security.positions.disi@unitn.it if you would like to express your interest). Beware that we always formally need to open a position and you'll need to apply. |
| |
| ===== Research Topics ==== | ===== Research Topics ==== |
| |
| Our research topics span these directions: | Our research topics span these directions: |
| | * technological research (biometrics, mobile phone security, [[malware_analysis|testbeds and malware testing]], crypto for fintech) |
| * technological research (biometrics, mobile phone security, [[malware_analysis|testbeds and malware testing]], crypto for fintech, [[http://disi.unitn.it/~massacci/CryptoSAT/|SAT-based cryptanalysis]]) | |
| * empirical research ([[Security economics]], [[Validation of Risk and Security Requirements Methodologies|empirical risk assessment]], [[Vulnerability_discovery_models|vulnerability analysis]]) | * empirical research ([[Security economics]], [[Validation of Risk and Security Requirements Methodologies|empirical risk assessment]], [[Vulnerability_discovery_models|vulnerability analysis]]) |
| | * fundamental research: [[https://squera.github.io/research/|programming language security and secure compilation]], [[http://disi.unitn.it/~massacci/CryptoSAT/|SAT-based cryptanalysis]] |
| * fundamental research: [[https://squera.github.io/research/|programming language security and secure compilation]]. | |
| |
| ===== Research Projects ==== | ===== Research Projects ==== |
| We participate in a number of research projects. The most recent ones are | We participate in a number of research projects. The most recent ones are |
| |
| | * Horizon Europe project [[https://www.sec4ai4sec.eu|Sec4AI4Sec]] on machine learning and software security |
| | * Horizon Europe project [[https://crosscon.eu/|CrossCon]] on the O.S. software stack security |
| | * Horizon Europe MSCA PF [[https://securitylab.disi.unitn.it/doku.php?id=prosved|ProSVED]] on forecasting vulnerabilities |
| * H2020 European Project [[https://assuremoss.eu|AssureMOSS]] on software vulnerability analysis | * H2020 European Project [[https://assuremoss.eu|AssureMOSS]] on software vulnerability analysis |
| * Horizon Europe project [[https://crosscon.eu/|CrossCon]] on the O.S. software stack security | |
| * H2020 Marie Curie Project [[https://cordis.europa.eu/project/id/101067199|ProSVED]] on predicting vulnerabilities | |
| * Horizon Europe project [[Sec4AI4Sec]] on machine learning and software security | |
| |
| |
| ===== Courses and Seminars ==== | ===== Courses and Seminars ==== |
| * **Academic Program:** the [[teaching activities|Cyber Security track in Trento]] offered both as Entry and Exit point in the framework of the [[https://masterschool.eitdigital.eu/programmes/cse/|EIT Digital Master School, Cyber Security track]], of the [[https://www.eitdigital.eu/|European Institute of Innovation and Technology]] (EIT Digital). These courses can also be taken by the students enrolled in the Computer Science Master and the Master in Mathematics offered by the University of Trento. | * **Academic Program:** the [[teaching activities|Cyber Security track in Trento]] offered both as Entry and Exit point in the framework of the [[https://masterschool.eitdigital.eu/programmes/cse/|EIT Digital Master School, Cyber Security track]], of the [[https://www.eitdigital.eu/|European Institute of Innovation and Technology]] (EIT Digital). These courses can also be taken by the students enrolled in the Computer Science Master and the Master in Mathematics offered by the University of Trento. |
| |
| * **Professional courses:** the [[teaching activities:cvss|CVSS Training]] offers a one-day training course on the use and interpretation of the third revision of Common Vulnerability Scoring System (See above) | * **Professional courses:** Common Vulnerability Scoring System (CVSS) v4.0 is out! and Trento's researchers (Fabio Massacci and Giorgio Di Tizio) are again among the authors. In the past we have organized a [[teaching activities:cvss|CVSS v3.0 Training]] on the use and interpretation of the latest revision. If you are interested in getting a new version let us know. |
| | |
| * **Professional presentations:** the [[presentation activities:environmental|CVSS V3 Environmental Metrics Presentation]] offers a one-day presentation on the use and interpretation of CVSS V3 - Environmental Metrics (See above) | * ** Osservatorio Cybersecurity ** (In Italian) provide information to companies and SMEs. Find more information [[https://cybersecuritydisi.unitn.it|here]]. |
| |
| ===== CTF Team ==== | ===== CTF Team ==== |
| ===== Contacts ==== | ===== Contacts ==== |
| |
| You can use an email alias security AT disi DOT unitn DOT it. | You can use an email alias security research DOT disi AT unitn DOT it. |
| | |
| Nevertheless, the best thing is to send an email directly to one of our members. | Nevertheless, the best thing is to send an email directly to one of our members. |
