Research

My early security research explored problems in multilevel security and non-interference. Much of this research focussed on capturing and verifying mandatory-security requirements in terms of information-flow semantics and models. In more recent years my research has diversified, with results covering topics that include security properties, security risk management, security configuration, trust and distributed security and socio-technical security.

Some recent and ongoing projects

Socio-technical security
Dynamic Policies for Shared Cyber-Physical Infrastructures under Attack (DYPOSIT)
IMT Chaire CyberCNI
Anomaly detection based on application system logs
Mobile Autonomic Security for Network Access Controls
Security Risk Management and Network Access Controls
Analysis of Physical Access Control policies