Welcome to my personal homepage!

I'm a Senior Lecturer at the Information Security Group, Royal Holloway - University of London. I'm also associated with the Systems and Software Security Lab (S3Lab).

My research fields are:

To know more about me, please, visit my pages:

If you are interested in doing a PhD with me please check here.


I've attended the 7th International Cybersecurity Symposium, Keio University, Tokyo, where I've presented the 5-year plan for the Global Capture the Flag CTF initiative called C2C (Country2Country), which is the successor of the Cambridge2Cambridge CTF. This initiative is led by the InterNational Cyber Security Center of Excellence (INCS-CoE).

I'm now Senior Lecturer, and I'm now associated with the Systems and Software Security Lab (S3Lab).

A fully funded PhD studentship starting in October 2018 is available. The focus of the PhD studentship is on threat modelling of Internet of Things (IoT) devices. Please note that only British applicants can apply for this position. To apply, please visit this page.

Post-Doctoral Research Associate in Trustworthy Systems starting July 2018. The Information Security Group at Royal Holloway, University of London, is seeking a highly motivated postdoctoral researcher for the EU Horizon2020-funded FutureTPM project. The successful candidate will join the ISG by working on the development and integration of quantum-resistant cryptography into the Trusted Platform Module (TPM), on the development of a virtual quantum-resistant TPM, and on dissemination and standardization activities of the project. To apply, please visit this page.

We are thrilled to be part of the EU Horizon2020 Project FutureTPM (Future Proofing the Connected World: A Quantum-Resistant Trusted Platform Module)! More info can be found here.

The slides for the Lecture I gave on Ransomware for the Lorenzo Cavallaro's Course Malicious Software are available here.

We have released the dataset for the ransomware analysis: you can find it here.

Our paper, "Efficient Attack Graph Analysis through Approximate Inference", has been accepted at ACM TOPS Journal! Authors: Luis Muñoz-González, Daniele Sgandurra, Andrea Paudice, Emil C. Lupu.

Our paper, "Exact Inference Techniques for the Analysis of Bayesian Attack Graphs", has been accepted at IEEE TDSC Journal! Authors: Luis Muñoz-González, Daniele Sgandurra, Martín Barrère, Emil C. Lupu.

My article titled "CIA hacking Q&A: can your TV spy on you and is your phone listening in?" has been published on The Conversation (March 9, 2017).

I've recently joined the ISG at Royal Holloway as a Lecturer. This year, I'm lecturing Computer Security (Operating Systems) - IY5512: MSc in Information Security, First Term 2016-2017.

Short BIO

I hold a PhD in Computer Science from the University of Pisa (2010), supervised by Prof. F. Baiardi. During my PhD studies I've worked on virtualization security. In particular, my research has focused around virtual machine introspection to enable a secure virtual machine to check the state of a monitored virtual machine. I've also been a visiting student for 5 months at IBM Zurich Research Laboratory, collaborating in the security group supervised by Diego Zamboni and Andreas Wespi, by participating in the Phantom project.

From 2010 to 2013 I've been a PostDoc researcher at the Institute of Informatics and Telematics of the Italian National Research Council (CNR) located in Pisa, where I've mainly worked in the field of mobile security.

From 2014 to October 2016, I've been a Research Associate at the Department of Computing, Imperial College London, working in the Security Group lead by Emil Lupu. Here, I've focused my research in the field of threat modeling for Cloud systems, and I've been involved in the Coco Cloud EU project.

Since October 2016, I'm a Lecturer at the Information Security Group at Royal Holloway, where my research focus is Internet of Things security, where I collaborate with the Smart Card and Internet of Things Security Centre (SCC), and since September 2018 I collaborate with the Systems and Software Security Lab (S3Lab) at ISG.

External Profiles

My publications on the DBLP database
My profile on Google Scholar
My publications on the ACM Author Profile Page

Contact Info

Daniele Sgandurra:
daniele.sgandurra at rhul dot ac dot uk
Information Security Group
Royal Holloway - University of London