Cybersecurity

at the Faculty of Electrical Engineering, Mathematics, and Computer Science

 
The Cybersecurity group conducts research into various topics, ranging from cryptography to data analytics, and focuses on improving cybersecurity. We aim to make – in particular the digital – world safer by furthering state-of-the-art computer science theories, algorithms, and implementations.

 
Research area

In privacy, we develop advanced methods for homomorphic encryption and multi-party computing with application in data sharing and blockchain. In hardware, we use machine learning to develop new attack mechanisms for side-channel analysis, and evolutionary algorithms to create improved hardware designs. In networking, we build crawlers and fuzzers to collect big data sets that give us an overview of the latest security threats. In software, we develop new algorithms for automated reverse engineering or analysis of applications.

We develop solutions that contribute to the very latest technology in the fields of computer security and artificial intelligence (AI). Examples include the development of learning algorithms that can handle large network data flows, deep learning methods that are immune to common side-channel defenses, machine learning algorithms that can operate on encrypted data, and analysis of the latest security threats. We aim to publish our results in scientific journal and conferences of A and A* quality, and to transfer our scientific know-how and technologies to students, and our public and private partners in the field of cybersecurity.


Education

We are responsible for cybersecurity education at B.Sc. and M.Sc. level in the computer science program. Since 2013, a specialization program on cybersecurity exists within the master program in Computer Science. We closely collaborate in teaching, student supervision and research with other groups within Computer Science (such as Software Engineering, Distributed Systems, and Delft Blockchain lab), and in particular with our colleagues in the Cybersecurity group at the Faculty of Technology, Policy and Management through the Computer Science special program Cybersecurity, and the Executive Master program Cybersecurity.

Collaborations with external organizations are essential for education and research in cybersecurity. The cybersecurity group has an extensive network of public and private partnerships, which in many cases provide us with use cases, cybersecurity data, and financial support. Our research and education can therefore be characterized as being use-inspired and fundamental, ranging from developing new security and AI algorithms to engaging with real use cases of our partners.

 

Research activities
The research activities are organized around our faculty members.

News

15 mei 2018

Lecture on the basics of Machine Learning for the School of Architecture of NXP’s Business Unit Security & Connectivity

On April 10, Stjepan Picek gave a lecture on the basics of Machine Learning for the School of Architecture of NXP’s Business Unit Security & Connectivity. In his lecture he discussed artificial intelligence and machine learning and more in-depth about applications to security domain. The audience were senior technical engineers from almost all parts of the world with in total 27 participants from US, India, China, Brazil, Austria, Romania, France, The Netherlands and Germany.

11 april 2018

Samaneh Tajalizadehkhoob shortlisted for Dutch Cyber Security Research best Paper Award competition 2018

The paper of Samaneh Tajalizadehkhoob et al. titled ‘Herding Vulnerable Cats: A Statistical Approach to Disentangle Joint Responsibility for Web Security in Shared Hosting’ was shortlisted for Dutch Cyber Security Research best Paper Award competition 2018.

04 april 2018

CyberSecurity@TUDelft special event on H2020/European Funding

14 februari 2018

Mobiel bankieren bij ING kwetsbaar voor fraude

Mobiel bankieren bij de ING bank is kwetsbaar voor fraude. Een extra optie met een bevestigingscode maakt dat ING-klanten makkelijker kunnen worden misleid door oplichters. Dat constateert Michel van Eeten, hoogleraar Internetveiligheid aan de TU Delft in de uitzending van Kassa van 10 februari.

08 februari 2018

How internet providers can reduce cyber crime

Internet providers can function as control points for cyber security, says Dr Samaneh Tajalizadehkhoob. She discovered that most of the cyber crime originates from large and cheap providers offering shared hosting.

29 januari 2018

TU versterkt banden met cyber security-wereld

Twee Delftse cyber security-onderzoekers werken sinds kort intern bij het Delftse Fox-IT. Zo hebben ze structureler toegang tot data van het beveiligingsbedrijf en kan de toenemende stroom studenten er gemakkelijker binnenkomen voor afstudeeronderzoek. Hun eerste drie studenten gaan nu beginnen.

15 januari 2018

Afstudeeronderzoekers TU Delft vinden vaste thuisbasis bij Fox-IT

Afstudeeronderzoekers van de TU Delft wisten altijd al hun weg te vinden naar beveiligingsbedrijf Fox-IT maar sinds kort hebben de Delftse ‘buren’ de intentie uitgesproken hun samenwerking verder te intensiveren. Vanuit een gezamenlijk perspectief; ‘samenwerken aan een veiligere digitale samenleving, en het bedenken van innovatieve oplossingen in cyber security’ hebben de TU Delft en Fox een gezamelijke onderzoeksagenda opgesteld. Door onderzoekers van de TU Delft een vaste plek in het bedrijf te geven kan er gedegen maar vlot en zonder (veiligheids)belemmeringen gewerkt worden aan gezamenlijke onderzoeksprojecten.

11 januari 2018

Research Paper Tobias Fiebig about security risks of Domain-Validated Certificates

Assistant professor Tobias Fiebig from the ESS department recently published a research paper in which a new procedural way to reduce the risks of Domain-Validated Certificates is presented. The paper called ‘Cloud Strife: Mitigating the Security Risks of Domain-Validated Certificates’ was co-written with scientists from amongst others University of California.

28 december 2017

Michel van Eeten op NOS.nl en NPO Radio 1 over tekort aan cyberspecialisten

De Britse inlichtingendienst GCHQ kan steeds moeilijker personeel vinden, omdat goed opgeleide cyberspecialisten vaker kiezen voor beter betaalde banen bij techreuzen als Facebook en Google. Die betalen tot vijf keer zo veel als de overheid, blijkt uit een onderzoek van een Britse parlementscommissie. Om goed personeel te vinden, vissen de techreuzen en de inlichtingendiensten nagenoeg in dezelfde vijver, zegt hoogleraar cybersecurity aan de TU Delft Michel van Eeten.

15 december 2017

Lustrumlezing: Cyberwar