Als u wijzigingen in Pure hebt gemaakt, zullen deze hier binnenkort zichtbaar zijn.

Persoonlijk profiel

Quote

“The real voyage of discovery consists not in seeking new landscapes but in having new eyes.” - Marcel Proust

Research profile

Luca Allodi is an Assistant Professor in the Security Group of the Eindhoven University of Technology (TU/e). His research focuses on vulnerability laws, with a strong accent on attackers’ behavior and strategies, seeking quantitative answers to the economics of vulnerability exploitation and the management of cyber risk. His research looks for technical, economic, and strategic factors that drive vulnerability exploitation ‘in the wild’. To this aim, he investigates the dynamic optimization problems the attacker solves when engineering a new attack, the underground markets in which the attackers operate, the technology they employ, and the rates at which attacks are delivered to the final users. This research draws from several field, including computer security, economics, risk analysis, and criminology.

Luca is currently working on new ways to integrate security metrics with cyber attacks economics; in particular, he is interested in understanding if analysis of new trends in cybercrime attacks (APTs, black markets, botnet rentals...) can be exploited to improve current metrics for security.

Academic background

Luca Allodi obtained his PhD in 2015 from the University of Trento, Italy, with a thesis entitled: "Risk-based Vulnerability Management. Exploiting the economic nature of the attacker to build sound and measurable vulnerability mitigation strategies". Whilst studying for his MSc, he became interested in Social Network Dynamics, the diffusion of information within networks, and the different roles of nodes. He is also an acknowledged authoring member of the First.org SIG Team for the upcoming CVSS v3 framework (the worldwide standard-de-facto for vulnerability assessment)

Vingerafdruk Duik in de onderzoeksthema's waar Luca Allodi actief is. Deze onderwerplabels komen voort uit het werk van deze persoon. Samen vormen ze een unieke vingerafdruk.

Internet Engineering en materiaalwetenschappen
Social Networks Rekenkunde
Economics Engineering en materiaalwetenschappen
Risk assessment Engineering en materiaalwetenschappen
Computer systems Engineering en materiaalwetenschappen
Heavy Tails Rekenkunde
Crime Engineering en materiaalwetenschappen
Association rules Engineering en materiaalwetenschappen

Netwerk Recente externe samenwerking op landenniveau. Duik in de details door op de stippen te klikken.

Onderzoeksoutput 2011 2019

  • 167 Citaten
  • 21 Conferentiebijdrage
  • 4 Paper
  • 3 Tijdschriftartikel
  • 1 Hoofdstuk

CARONTE: crawling adversarial resources over non-trusted, high-profile environments

Campobasso, M., Burda, P. & Allodi, L., 1 jun 2019, Proceedings - 4th IEEE European Symposium on Security and Privacy Workshops, EUROS and PW 2019. Piscataway: Institute of Electrical and Electronics Engineers, blz. 433-442 10 blz. 8802484

Onderzoeksoutput: Hoofdstuk in Boek/Rapport/CongresprocedureConferentiebijdrageAcademicpeer review

Scalability
Servers
Resources
Data collection
Monitoring

Characterizing the redundancy of DarkWeb .onion services

Burda, P., Boot, C. & Allodi, L., 26 aug 2019, Proceedings of the 14th International Conference on Availability, Reliability and Security, ARES 2019. New York: Association for Computing Machinery, Inc, 10 blz. 19. (ACM International Conference Proceeding Series).

Onderzoeksoutput: Hoofdstuk in Boek/Rapport/CongresprocedureConferentiebijdrageAcademicpeer review

Redundancy
Law enforcement
Mirrors

Cognitive triaging of phishing attacks

van der Heijden, A. & Allodi, L., 6 mei 2019, Proceedings of the 28th USENIX Security Symposium. Usenix Association, blz. 1309-1326 18 blz.

Onderzoeksoutput: Hoofdstuk in Boek/Rapport/CongresprocedureConferentiebijdrageAcademic

Open Access
Bestand
Electronic mail
Remediation
Learning systems

Privacy-conscious threat intelligence using DNSBLoom

van Rijswijk-Deij, R., Rijnders, G., Bomhoff, M. & Allodi, L., 16 mei 2019, 2019 IFIP/IEEE Symposium on Integrated Network and Service Management, IM 2019. Piscataway: Institute of Electrical and Electronics Engineers, blz. 98-106 9 blz. 8717908

Onderzoeksoutput: Hoofdstuk in Boek/Rapport/CongresprocedureConferentiebijdrageAcademicpeer review

Internet
Monitoring
Privacy
Threat
Malware
1 Citaat (Scopus)
2 Downloads (Pure)

Productivity and patterns of activity in bug bounty programs: analysis of hackerone and Google vulnerability research

Luna, D., Allodi, L. & Cremonini, M., 26 aug 2019, Proceedings of the 14th International Conference on Availability, Reliability and Security, ARES 2019. New York: Association for Computing Machinery, Inc, 10 blz. 67

Onderzoeksoutput: Hoofdstuk in Boek/Rapport/CongresprocedureConferentiebijdrageAcademicpeer review

Productivity
Fruits
Personnel

Cursussen

Cyberattacks Crime and Defenses

1/09/15 → …

Cursus

Networks and security

1/09/17 → …

Cursus

Scriptie

Boarding a sinking ship: trust mechanisms in the underground in the face of high market platform volatility

Auteur: Wouters, R., 25 nov 2019

Begeleider: Allodi, L. (Afstudeerdocent 1)

Scriptie/masterproef: Master

Bestand

Characterization of illegal dark web arms markets

Auteur: Ubbink, J., 25 nov 2019

Begeleider: Allodi, L. (Afstudeerdocent 1)

Scriptie/masterproef: Master

Bestand

Cognitive triaging of phishing attacks

Auteur: van der Heijden, A., 28 jan 2019

Begeleider: Allodi, L. (Afstudeerdocent 1) & Docters van Leeuwen, M. (Externe persoon) (Externe coach)

Scriptie/masterproef: Master

Darknet markets : competitive strategies in the underground of illicit goods

Auteur: Evangelista, A., 24 sep 2018

Begeleider: Allodi, L. (Afstudeerdocent 1) & Cremonini, M. (Externe persoon) (Externe coach)

Scriptie/masterproef: Master

Bestand

DNSSEC policies in the wild

Auteur: Le, P., 31 aug 2017

Begeleider: Zannone, N. (Afstudeerdocent 1), Allodi, L. (Afstudeerdocent 2) & van Rijswijk-Deij, R. (Externe persoon) (Externe coach)

Scriptie/masterproef: Master

Bestand