I'm a cyber-security researcher focusing on practical aspects of systems and software cyber-security. I analyse potential cyber-security attacks at various architectural levels, and in different environments (OS, hypervisor and mobile), and propose countermeasures for them. My recent work investigate the arms-race among malware and anti-malware and the application of AI/ML in cyber-security. I'm currently the Research and Team Lead of Huawei Artificial Intelligence for Cyber Security (AI4Sec) Research Team at Munich Research Center.
Our paper, "Active TLS Stack Fingerprinting: Characterizing TLS Server Deployments at Scale.", has been awarded the Best paper award at Network Traffic Measurement and Analysis Conference (TMA) 2022! Authors: Sosnowski, Markus; Zirngibl, Johannes; Sattler, Patrick; Carle, Georg; Grohnfeldt, Claas; Russo, Michele; Sgandurra, Daniele. The paper preprint is available here.
Our research Alexa versus Alexa: Controlling Smart Speakers by Self-Issuing Voice Commands" has been featured on The Register, on Ars Technica and on Wired.it! See also our informational website.
Our paper "Alexa versus Alexa: Controlling Smart Speakers by Self-Issuing Voice Commands" has been accepted at AsiaCCS 2022! Authors: Sergio Esposito, Daniele Sgandurra, Giampaolo Bella. The paper preprint is available here.
I am member of the steering committee of ACM Workshop on Robust Malware Analysis (WoRMA).
Our research "RansomClave: Ransomware Key Management using SGX" has been featured on The Record by Recorded Future!