Attack-detection mechanisms should not just be able to detect any critical incident, but also raise alarms only when it is necessary; the more false alarms are raised, the higher the risk that users will ignore warnings or even disable the detection permanently. To provide a strong line of defense, attack detection methods should be complemented by suitable defensive technologies, ideally selected autonomously by the system under attack, to counter whatever threat it encounters. In this research area we pursue this ideal in multiple ways, for example by focusing on the detection and analysis of modern malware, on the prevention and attribution of DDoS attacks, and on the identification and mitigation of novel system vulnerabilities.
Proceedings of the 6th IEEE European Symposium on Security and Privacy6th IEEE European Symposium on Security and Privacy
USENIX Security SymposiumUSENIX Security Symposium
IEEE/IFIP International Conference on Dependable Systems and Networks (DSN 2021)IEEE/IFIP International Conference on Dependable Systems and Networks (DSN 2021)
IEEE Symposium on Security and Privacy (SP)2021 IEEE Symposium on Security and Privacy (SP)
Proceedings of the 2021 ACM Asia Conference on Computer and Communications Security (ASIA CCS '21)AsiaCCS 2021