I am Lecturer in Networks and Security at the School of Computer Science at the University of Sydney. I also lead the Node for Cybersecurity and Usable Security inside the Human-Centred Technologies cluster.
My research interests revolve around security and network measurement, with a decidedly empirical approach. My current interests are:
My theme is real-world security: security is achieved only by technology that supports its human users. No matter how brilliant the technology, if humans find it hard to operate, it will be insecure. Similarly, technology is always used in a context (at home, in finance, etc.) and this context is important in understanding how a technology must designed.
I have been appointed as a Theme Leader in the Sydney Nano Institute, responsible for developing the research fields nano communication and security, including quantum computing and security.
My term as coordinator for SSP/TSP has ended. From 15 Dec 2017 on, Dr Vera Chung will take over.
My student intake for 2018 for Honours and Master Coursework is already complete, sorry.
Our SecuriTea reading group is open and meeting every week. Join us! Drop me a line and I’ll add you to our Slack, or just show up every Wed 4pm on L4W, The Lounge™.
Our paper Mission accomplished? HTTPS Security after DigiNotar has won the IMC 2017 Community Contribution Award! Check out the dataset here. At 412GB, artefact is a bit of an understatement.
I also am a Visiting Academic at Technical University of Munich. As contributed university staff, I frequently collaborate with Data61 (CSIRO), Australia’s premier innovation group.
My full CV can be found here.
One of the best parts of being an academic is working with students who share my passion for security. I generally offer a range of topics in the area of security and network security. Open topics can be found here. The current research theme for honours/Master by Research projects is described here (slides).
I also offer scholarships/internships within three programmes:
If you want to do a PhD with me, please contact me several months before the application deadline and read the admission criteria carefully. If you are unsure whether you meet the criteria, you may contact Ms Evelyn Riegler to clarify. Please take the time to find out what I am working on.
Prospective PhD students must meet the admission criteria of the University and be competitive for a scholarship. For domestic students, this generally means a very strong High Distinction; international students are expected to have a converted GPA of 3.8 or better. A strong background in computer security and networks is required. Prospective students will need to draft a research proposal that clearly outlines the proposed research, its relationship to my own research agenda, and how it advances current knowledge and the state of the art. Please consult my list of publications to understand my research agenda better.
Once you are sure you meet the criteria and have a good idea of what I am working on, please do contact me. You can start out on your research proposal if you already know what you want to do, but I am also happy to answer emails about possible directions - I always have one or two ideas. Please do not forget to include a transcript and CV in your email.
Note, however, that I delete emails with generic enquiries where it is clear the sender made no attempt to understand what I am doing, how their proposed work would fit with mine, or the admission criteria are clearly not met.
I currently work with and advise the following students:
I am going to teach the following units in S2 2019:
In the past, I have taught and coordinated the following units:
I was a co-lecturer at the University of New South Wales in 2016 and 2017:
I run SecuriTea, a reading and discussion group for students and staff interested in all aspects of computer security. I bring tea, coffee & biscuits, and participants bring a mug and a passion for security. The goal is to grow the security community at USYD.
There is no fixed topic; we follow our interests, the setting is semi-formal. We often choose a paper to talk about for every meeting, but we then often broaden the scope. We also chat about recent events. Recurrent topics include, but are certainly not limited to, blockchain and measuring security with Internet scans and passive traffic monitoring.
Our SecuriTea reading group is open for all and meets every Wednesday, at 6:30pm, on Level 4 West, Building J12 (School of Computer Science), in The Lounge ™ - turn right at the entrance and walk to the end of the hallway.
Join us! You can just turn up or drop me a line and I’ll add you to our Slack, where we coordinate.