at the Faculty of Electrical Engineering, Mathematics, and Computer Science
The Cybersecurity group conducts research into various topics, ranging from cryptography to data analytics, and focuses on improving cybersecurity. We aim to make – in particular the digital – world safer by furthering state-of-the-art computer science theories, algorithms, and implementations.
In privacy, we develop advanced methods for homomorphic encryption and multi-party computing with application in data sharing and blockchain. In hardware, we use machine learning to develop new attack mechanisms for side-channel analysis, and evolutionary algorithms to create improved hardware designs. In networking, we build crawlers and fuzzers to collect big data sets that give us an overview of the latest security threats. In software, we develop new algorithms for automated reverse engineering or analysis of applications.
We develop solutions that contribute to the very latest technology in the fields of computer security and artificial intelligence (AI). Examples include the development of learning algorithms that can handle large network data flows, deep learning methods that are immune to common side-channel defenses, machine learning algorithms that can operate on encrypted data, and analysis of the latest security threats. We aim to publish our results in scientific journal and conferences of A and A* quality, and to transfer our scientific know-how and technologies to students, and our public and private partners in the field of cybersecurity.
We are responsible for cybersecurity education at B.Sc. and M.Sc. level in the computer science program. Since 2013, a specialization program on cybersecurity exists within the master program in Computer Science. We closely collaborate in teaching, student supervision and research with other groups within Computer Science (such as Software Engineering, Distributed Systems, and Delft Blockchain lab), and in particular with our colleagues in the Cybersecurity group at the Faculty of Technology, Policy and Management through the Computer Science special program Cybersecurity, and the Executive Master program Cybersecurity.
Collaborations with external organizations are essential for education and research in cybersecurity. The cybersecurity group has an extensive network of public and private partnerships, which in many cases provide us with use cases, cybersecurity data, and financial support. Our research and education can therefore be characterized as being use-inspired and fundamental, ranging from developing new security and AI algorithms to engaging with real use cases of our partners.
The research activities are organized around our faculty members.
Machine LearningWe develop new machine learning technology, in particular, state machine learning with applications in cybersecurity and software engineering. Our machine learning solutions are interpretable and useful for tasks other than prediction, such as analysis, optimization, control, and verification.
Secure Data Sharing and IntelligenceSharing privacy sensitive or commercially valuable data for improving existing services and creating new ones is essential. While doing so, it is also vital to not leak personal information about individuals. To achieve this goal, we research solutions based on Privacy Enhancing Technologies.
15 mei 2018
Lecture on the basics of Machine Learning for the School of Architecture of NXP’s Business Unit Security & Connectivity
On April 10, Stjepan Picek gave a lecture on the basics of Machine Learning for the School of Architecture of NXP’s Business Unit Security & Connectivity. In his lecture he discussed artificial intelligence and machine learning and more in-depth about applications to security domain. The audience were senior technical engineers from almost all parts of the world with in total 27 participants from US, India, China, Brazil, Austria, Romania, France, The Netherlands and Germany.
11 april 2018
Samaneh Tajalizadehkhoob shortlisted for Dutch Cyber Security Research best Paper Award competition 2018
The paper of Samaneh Tajalizadehkhoob et al. titled ‘Herding Vulnerable Cats: A Statistical Approach to Disentangle Joint Responsibility for Web Security in Shared Hosting’ was shortlisted for Dutch Cyber Security Research best Paper Award competition 2018.
04 april 2018
CyberSecurity@TUDelft special event on H2020/European Funding
14 februari 2018
Mobiel bankieren bij ING kwetsbaar voor fraude
Mobiel bankieren bij de ING bank is kwetsbaar voor fraude. Een extra optie met een bevestigingscode maakt dat ING-klanten makkelijker kunnen worden misleid door oplichters. Dat constateert Michel van Eeten, hoogleraar Internetveiligheid aan de TU Delft in de uitzending van Kassa van 10 februari.
08 februari 2018
How internet providers can reduce cyber crime
Internet providers can function as control points for cyber security, says Dr Samaneh Tajalizadehkhoob. She discovered that most of the cyber crime originates from large and cheap providers offering shared hosting.
29 januari 2018
TU versterkt banden met cyber security-wereld
Twee Delftse cyber security-onderzoekers werken sinds kort intern bij het Delftse Fox-IT. Zo hebben ze structureler toegang tot data van het beveiligingsbedrijf en kan de toenemende stroom studenten er gemakkelijker binnenkomen voor afstudeeronderzoek. Hun eerste drie studenten gaan nu beginnen.
15 januari 2018
Afstudeeronderzoekers TU Delft vinden vaste thuisbasis bij Fox-IT
Afstudeeronderzoekers van de TU Delft wisten altijd al hun weg te vinden naar beveiligingsbedrijf Fox-IT maar sinds kort hebben de Delftse ‘buren’ de intentie uitgesproken hun samenwerking verder te intensiveren. Vanuit een gezamenlijk perspectief; ‘samenwerken aan een veiligere digitale samenleving, en het bedenken van innovatieve oplossingen in cyber security’ hebben de TU Delft en Fox een gezamelijke onderzoeksagenda opgesteld. Door onderzoekers van de TU Delft een vaste plek in het bedrijf te geven kan er gedegen maar vlot en zonder (veiligheids)belemmeringen gewerkt worden aan gezamenlijke onderzoeksprojecten.
11 januari 2018
Research Paper Tobias Fiebig about security risks of Domain-Validated Certificates
Assistant professor Tobias Fiebig from the ESS department recently published a research paper in which a new procedural way to reduce the risks of Domain-Validated Certificates is presented. The paper called ‘Cloud Strife: Mitigating the Security Risks of Domain-Validated Certificates’ was co-written with scientists from amongst others University of California.
15 december 2017
20 november 2017
DSyS open call for joint research proposals on cyber security won by the 3ME/EWI team
The DSyS open call for joint research proposals on cyber security has been won by the 3ME/EWI team members Dr. Tamas Keviczky, Dr. Zekeriya Erkin and Mr. Lakshminarayanan Nandakumar.