You are here

Roberto Carbone

Researcher
  • Phone: 0461314185
  • FBK Povo
Short bio

Since November 2010, Roberto Carbone is a researcher of the Security and Trust Research Unit at the Center for Information Technologies of Bruno Kessler Foundation in Trento.

He received his Ph.D. in Electronic and Computer Engineering and Telecommunications from the University of Genova in 2009. His PhD Thesis, titled “LTL Model-Checking for Security Protocols”, has been awarded the CLUSIT prize 2010 by the Italian Association for Information Security. His research focuses on the formal analysis of security protocols and services. He has participated in the EU project AVANTSSAR. He has contributed to the development of some key extensions of the SATMC model checker and he is currently the main developer of the tool. He has contributed to the discovery of a serious vulnerability on the SAML-based Single Sign-On for Google Apps, an Authentication flaw in the most common use-case scenario of SAML 2.0 SSO Profile (Errata by OASIS Security Services Technical Committee), and Cross-Site Scripting vulnerabilities in SAML-based SSO for Google Apps and Novell Access Manager v3.1.

He has recently contributed to the detection of serious vulnerabilities in protocols for Strong Authentication.

Publications
  1. Armando, Alessandro; Carbone, Roberto; Costa, Gabriele; Merlo, Alessio,
    Computer Security Foundations Symposium (CSF), 2015 IEEE 28th,
    IEEE,
    2015
    , pp. 320-
    333
    , (28th IEEE Computer Security Foundations Symposium,
    Verona,
    13-17 July 2015)
  2. Carbone, Roberto; Compagna, Luca; Panichella, Annibale; Ponta, Serena Elisa,
    Software Testing, Verification and Validation (ICST), 2015 IEEE 8th International Conference on,
    IEEE,
    2015
    , pp. 1-
    8
    , (8th {IEEE} International Conference on Software Testing, Verification and Validation, {ICST} 2015,
    Graz, Austria,
    April 13-17, 2015)
  3. Armando A.; Carbone R.; Compagna L.,
    in «LECTURE NOTES IN COMPUTER SCIENCE»
    Tools and Algorithms for the Construction and Analysis of Systems- 20th International Conference, {TACAS} 2014,
    Springer Berlin Heidelberg,
    vol.8413,
    2014
    , pp. 31-
    45
    , (20th International Conference on Tools and Algorithms for the Construction and Analysis of Systems (TACAS),
    Grenoble, France,
    5-13 April 2014)
  4. Armando A.; Carbone R.; Chekole E. G.; Ranise S.,
    Attribute Based Access Control for APIs in Spring Security,
    SACMAT '14 Proceedings of the 19th ACM symposium on Access control models and technologies,
    New York, NY, USA,
    ACM New York, NY, USA ©2014,
    2014
    , pp. 85-
    88
    , (ACM Symposium on Access Control Models and Technologies (SACMAT14),
    London, Ontario, Canada,
    June 25-27, 2014)
  5. Armando A.; Carbone R.; Chekole E. G.; Petrazzuolo C.; Ranalli A.; Ranise S.,
    Smart Grid Security,
    Springer,
    vol.8448,
    2014
    , pp. 48-
    62
    , (Second International Workshop, SmartGridSec 2014,
    Munich, Germany,
    February 26, 2014)
  6. A. Armando; R. Carbone; L. Compagna; J. Cuellar; G. Pellegrino; A. Sorniotti,
    in «COMPUTERS & SECURITY»,
    vol. 33,
    2013
    , pp. 41 -
    58
  7. A. Armando; R. Carbone; L. Zanetti,
    Formal Modeling and Automatic Security Analysis of Two-Factor and Two-Channel Authentication Protocols,
    2013
    , (7th International Conference on Network and System Security (NSS 2013),
    Madrid, Spain,
    06/03/2013 a 06/04/2013)
  8. A. Armando; R. Carbone; L. Compagna; G. Pellegrino,
    Automatic Security Analysis of SAML-based Single Sign-On Protocols,
    Digital Identity and Access Management: Technologies and Frameworks,
    Hershey, Pennsylvania,
    IGI Global,
    2012
    , pp. 168 -
    187
  9. A. Armando; G. Pellegrino; R. Carbone; A. Merlo; D. Balzarotti,
    TESTS AND PROOFS,
    Springer,
    vol.7305,
    2012
    , pp. 3-
    18
    , (6th International Conference, TAP 2012,
    Prague, Czech Republic,
    da 05/31/2012 a 06/01/2012)
  10. A. Armando; W. Arsac; T. Avanesov; M. Barletta; A. Calvi; A. Cappai; R. Carbone; Y. Chevalier; L. Compagna; J. Cuéllar; G. Erzse; S. Frau; M. Minea; S. Mödersheim; D. von Oheimb; G. Pellegrino; S. E. Ponta; M. Rocchetto; M. Rusinowitch; M. Torabi Dashti; M. Turuani; L. Viganò,
    TOOLS AND ALGORITHMS FOR THE CONSTRUCTION AND ANALYSIS OF SYSTEMS,
    Springer,
    vol.7214,
    2012
    , pp. 267-
    282
    , (TACAS 2012,
    Talling, Estonia,
    da 03/24/2012 a 04/01/2012)

Pages