Amir Sharif

Amir Sharif Researcher

Amir Sharif is a researcher in the Security & Trust Research Unit of the Cybersecurity Center of Fondazione Bruno Kessler. He received his Ph.D. in Secure and Reliable Systems from Università Degli Studi di Genova in 2021. He is currently involved in the Security & Trust Research Unit at FBK, in the context of a joint laboratory between FBK and the Italian Government Printing Office and Mint (Poligrafico e Zecca dello Stato Italiano, responsible for producing Italian eID cards), whose primary goal is to conduct research and innovation activities in digital identity solutions.

He is working on different projects related to identity and access management that involves the design, and security analysis of access delegation and single sign-on protocols (e.g., OAuth 2.0 and OpenID Connect). Recently, he starts to work on the topic of decentralized identity solutions and more specifcally explore the various topics in the context of European Digital Identity Wallet (e.g., PID issuance).

His research interests include identity management solution design and security analysis, decentralized identity, and data hiding techniques.


2022 (2)

  • Amir Sharif, Matteo Ranzi, Roberto Carbone, Giada Sciarretta, Silvio Ranise
    SoK: A Survey on Technological Trends for (pre)Notified eIDAS Electronic Identity Schemes
    In: 17th International Workshop on Frontiers in Availability, Reliability and Security (FARES2022) (DOI, complementary material, news)
  • Amir Sharif, Matteo Ranzi, Roberto Carbone, Giada Sciarretta, Francesco Antonio Marino, Silvio Ranise
    The eIDAS Regulation: A Survey of Technological Trends for European Electronic Identity Schemes
    In: MDPI Journal of Applied Science (APPLSCI) (DOI, complementary material, news)

2021 (2)

  • Salimeh Dashti, Amir Sharif, Roberto Carbone, Silvio Ranise
    Automated Risk Assessment and What-if Analysis of OpenID Connect and OAuth 2.0 Deployments
    In: Proceedings of the 35th Annual IFIP WG 11.3 Conference on Data and Applications Security and Privacy (DBSec 2021) (news)
  • Amir Sharif, Roberto Carbone, Giada Sciarretta, Silvio Ranise
    Best Current Practices for OAuth/OIDC Native Apps: A Study of their Adoption in Popular Providers and Top-Ranked Android Clients
    In: Journal of Information Security and Applications (JISA) (DOI, news)

2020 (1)

  • Amir Sharif, Roberto Carbone, Giada Sciarretta, Silvio Ranise
    Automated and Secure Integration of the OpenID Connect iGov Profile in Mobile Native Applications
    In: 3rd International Workshop on Emerging Technologies for Authorization and Authentication (ETAA2020) (DOI, complementary material)

2019 (1)

  • Amir Sharif, Roberto Carbone, Silvio Ranise, Giada Sciarretta
    A Wizard-Based Approach for Secure Code Generation of Single Sign-On and Access Delegation Solutions for Mobile Native Apps
    In: 16th International Conference on Security and Cryptography (SECRYPT 2019) (DOI, complementary material, news)