Former People

Former Heads of Unit

  • Alessandro Armando (Founder and Head of Unit from 2010 to 2016, now Full Professor at University of Genoa)
  • Silvio Ranise (Head of Unit from 2017 to 2020, now Director of the Center for Cybersecurity at Fondazione Bruno Kessler, Full Professor at University of Trento)

Former Members

  • Alberto Siena (Researcher until 2020, now Innovation Manager at Securics)
  • Annibale Panichella (Post-doc Researcher in 2014, now Assistant Professor at Delft University of Technology)
  • Biniam Fisseha Demissie (Researcher from 2019 to 2022, now Senior Security Researcher at Technology Innovation Institute)
  • Clara Bertolissi (Visiting Researcher from 2011 to 2013)
  • Emanuele Viglianisi (Technologist until 2019, now Data Engineer at Runtastic)
  • Giovanni Maria Abbiati (Consultant until 2020, now Research Fellow at University of Milan)
  • Mariano Ceccato (Researcher until 2019, now Assistant Professor at University of Verona)
  • Matteo Leonelli (Junior Researcher from 2019 to 2020)
  • Riccardo Traverso (Post-doc Researcher from 2014 to 2016)
  • Salimeh Dashti (Researcher from 2021 to 2022)
  • Sergii Kushch (Researcher until 2019, now Senior Research Fellow at University of Limerick)

Former PhD Students

  • Alessio Coletta (Cycle XXIX, University of Trento, 2018)
    Thesis: Specification-based Predictive Continuous Monitoring for Cyber Physical Systems with Unobservables (link)
    Supervisor: Alessandro Armando
  • Amir Sharif (Cycle XXXIII, University of Genoa, 2021)
    Thesis: Analysis of Best Current Practices to Assist Native App Developers with Secure OAuth/OIDC Implementations (link)
    Supervisor: Roberto Carbone | Co-supervisors: Silvio Ranise, Giada Sciarretta
  • Avinash Sudhodanan (Cycle XXIX, University of Trento, 2017)
    Thesis: Black-Box Security Testing of Browser-Based Security Protocols (link)
    Supervisor: Alessandro Armando | Co-supervisors: Roberto Carbone, Luca Compagna
  • Biniam Fisseha Demissie (Cycle XXX, University of Trento, 2019)
    Thesis: Security Testing of Permission Re-delegation Vulnerabilities in Android Applications (link)
    Supervisor: Mariano Ceccato
  • Daniel Ricardo dos Santos (Cycle XXIX, University of Trento, 2017)
    Thesis: Automatic Techniques for the Synthesis and Assisted Deployment of Security Policies in Workflow-based Applications (link)
    Supervisor: Silvio Ranise | Co-supervisors: Luca Compagna, Serena Ponta
  • Federico Sinigaglia (Cycle XXXI, University of Genoa, 2020)
    Thesis: Security Analysis of Multi-Factor Authentication Security Protocols (link)
    Supervisors: Roberto Carbone, Gabriele Costa
  • Giada Sciarretta (Cycle XXX, University of Trento, 2018)
    Thesis: A Methodology for the Design and Security Assessment of Mobile Identity Management: Applications to real-world scenarios (link)
    Supervisor: Silvio Ranise | Co-supervisors: Alessandro Armando, Roberto Carbone
  • Hari Siswantoro (Cycle XXIX, 2018)
    Thesis: Automated Analysis and Synthesis for the Compliance of Privacy and Other Legal Provisions (link)
    Supervisor: Silvio Ranise | Co-supervisor: Alessandro Armando
  • Nadia Metoui (Cycle XXIX, University of Trento, 2018)
    Thesis: Privacy-Aware Risk-Based Access Control Systems (link)
    Supervisor: Alessandro Armando | Co-supervisor: Michele Bezzi
  • Salimeh Dashti (Cycle XXXIII, University of Genoa, 2021)
    Thesis: An Assisted Methodology to Conduct Data Protection Impact Assessment (link)
    Supervisor: Silvio Ranise
  • Tahir Ahmad (Cycle XXXII, University of Genoa, 2020)
    Thesis: Access Control for IoT: Problems and Solutions in the Smart Home (link)
    Supervisors: Alessandro Armando, Silvio Ranise
  • Tuan Anh Truong (Cycle XXVII, University of Trento, 2015)
    Thesis: Efficient Automated Security Analysis of Complex Authorization Policies (link)
    Supervisor: Alessandro Armando | Co-supervisor: Silvio Ranise

Former Bachelor's and Master's Students

  • Adrien Beaugendre (Master's Student, University of Rennes 1 and University of Trento, 2021)
    Thesis: A Flexible Risk Analysis on MuFASA Tool
    Supervisor: Silvio Ranise | Co-supervisors: Giada Sciarretta, Marco Pernpruner
  • Alessandro Pegoraro (Bachelor's Student, University of Trento, 2021)
    Thesis: Payment Services Directive 2 in the Wild - A comparison between Open Banking UK and NextGenPSD2
    Supervisor: Silvio Ranise | Co-supervisors: Giada Sciarretta, Salvatore Manfredi
  • Alessandro Colombo (Bachelor's Student, University of Trento, 2022)
    Thesis: Attribute Based Encryption for Advanced Data Protection in IoT with MQTT
    Supervisor: Silvio Ranise | Co-supervisors: Stefano Berlato, Roberto Carbone
  • Alessio Valenza (Bachelor's Student, University of Trento, 2020)
    Thesis: Autenticazione bancaria post-PSD2: siamo al sicuro? Analisi automatica del rischio di protocolli di autenticazione
    Supervisor: Silvio Ranise | Co-supervisors: Giada Sciarretta, Marco Pernpruner
  • Carlotta Tagliaro (Bachelor's Student, University of Trento, 2019)
    Thesis: Security and Performance tradeoffs in the Internet of Things
    Supervisor: Silvio Ranise | Co-supervisor: Umberto Morelli
    Awards: 4th place at thesis award "Innovare la sicurezza delle informazioni 2020", sponsored by CLUSIT
  • Chaudhry Muhammad Suleman (Master's Student, University of Trento, 2021)
    Thesis: Cyber-security Risk Assessment for Cooperative, Connected and Automated Mobility Application to Cooperative Lane Merging
    Supervisor: Silvio Ranise | Co-supervisors: Roberto Carbone, Stefano Berlato
  • Claudio Grisenti (Bachelor's Student, University of Trento, 2020)
    Thesis: A pentesting tool for OAuth and OIDC deployments
    Supervisor: Silvio Ranise | Co-supervisors: Andrea Bisegna, Roberto Carbone
  • Damiano Sartori (Bachelor's Student, University of Trento, 2018)
    Thesis: Attribute Based Access Control over a Hyperledger Fabric Network: An application for Electronic Health Records
    Supervisor: Silvio Ranise | Co-supervisors: Umberto Morelli, Alessandro Tomasi
  • Daniele Del Sale (Bachelor's Student, University of Trento, 2018)
    Thesis: Procedure di autenticazione multi-fattore basate su push notification: Analisi dello stato dell'arte e specifica delle best-practice per un'implementazione sicura
    Supervisor: Silvio Ranise | Co-supervisor: Giada Sciarretta
  • Davide Piva (Bachelor's Student, University of Trento, 2019)
    Thesis: Assisting Developers in Securing OAuth 2.0 Deployment: Demystifying Threats and Protection Techniques for Bearer Credentials
    Supervisor: Silvio Ranise | Co-supervisor: Giada Sciarretta
  • Eleonora Marchesini (Master's Student, University of Trento, 2022)
    Thesis: Design and Implementation of a Cybersecurity Chatbot for Identity Management Protocols: the SAML and Slack Use Case
    Supervisor: Silvio Ranise | Co-supervisors: Andrea Bisegna, Roberto Carbone
  • Enrico Donatoni (Bachelor's Student, University of Trento, 2018)
    Thesis: Blockchain in Finance: a comparison of Ripple, Quorum and Corda
    Supervisor: Silvio Ranise | Co-supervisors: Umberto Morelli, Alessandro Tomasi
  • Enrico Marconi (Bachelor's Student, University of Trento, 2022)
    Thesis: Combining Blockchain-as-a-Service and Cryptographic Access Control for Secure Data Sharing Across Multiple Organizations
    Supervisor: Silvio Ranise | Co-supervisors: Roberto Carbone, Stefano Berlato
  • Federico Cucino (Bachelor's Student, University of Trento, 2022)
    Thesis: Miglioramento delle capacità di analisi di TLSAssistant - Automatizzazione delle mitigazioni per NGINX
    Supervisor: Silvio Ranise | Co-supervisors: Salvatore Manfredi, Giada Sciarretta
  • Francesco Defilippo (Bachelor's Student, University of Trento, 2021)
    Thesis: Attack Patterns for Pentesting SAML 2.0 Web Browser Single Sign-On deployments
    Supervisor: Silvio Ranise | Co-supervisors: Andrea Bisegna, Roberto Carbone
  • Giacomo Zanolli (Bachelor's Student, University of Trento, 2021)
    Thesis: FIDO2 Passwordless Authentication: From the basics to an implementation in the context of an authorization system
    Supervisor: Silvio Ranise | Co-supervisors: Giada Sciarretta, Marco Pernpruner
  • Giovanni Ferronato (Bachelor's Student, University of Trento, 2018)
    Thesis: Multi-factor Authentication Through Push Notification and NFC-enabled Identity Card: A solution for secure authentication in unsecure contexts
    Supervisor: Silvio Ranise | Co-supervisor: Giada Sciarretta
    Awards: 3rd place at thesis award "Innovare la sicurezza delle informazioni 2019", sponsored by CLUSIT
  • Giulio Pellizzari (Bachelor's Student, University of Trento, 2018)
    Thesis: Design and implementation of a tool to detect Login Cross-Site Request Forgery in SAML SSO: G Suite case study
    Supervisor: Silvio Ranise | Co-supervisors: Andrea Bisegna, Roberto Carbone
  • Giulio Pellizzari (Master's Student, University of Trento, 2020)
    Thesis: Micro-Id-Gym: A Tool to Support Sandboxing and Automated Pentesting of Identity Management Protocols
    Supervisor: Silvio Ranise | Co-supervisors: Andrea Bisegna, Roberto Carbone
  • Giuseppe Lamorgese (Bachelor's Student, University of Trento, 2021)
    Thesis: Autenticazione password-less con FIDO2: Descrizione del flusso e considerazioni sulla sicurezza
    Supervisor: Silvio Ranise | Co-supervisor: Giada Sciarretta
  • Giuseppe Alessio Sciumè (Bachelor's Student, University of Trento, 2022)
    Thesis: A Comprehensive Analysis of the OAuth 2.0 Threat Model to Develop a Chatbot Providing Actionable Security Suggestions
    Supervisor: Silvio Ranise | Co-supervisors: Roberto Carbone, Andrea Bisegna
  • Ivan Martini (Bachelor's Student, University of Trento, 2018)
    Thesis: An automated security testing framework for SAML SSO deployments
    Supervisor: Silvio Ranise | Co-supervisors: Andrea Bisegna, Roberto Carbone
  • Ivan Valentini (Bachelor's Student, University of Trento, 2022)
    Thesis: Estensione delle capacità di analisi di TLSAssistant - Rilevazione e mitigazione di ALPACA, POODLE e Raccoon
    Supervisor: Silvio Ranise | Co-supervisors: Salvatore Manfredi, Giada Sciarretta
  • Leonardo Xompero (Bachelor's Student, University of Trento, 2021)
    Thesis: A Survey of Risk-Based Authentication: How features and security actions can be used to mitigate attackers
    Supervisor: Silvio Ranise | Co-supervisors: Giada Sciarretta, Marco Pernpruner
  • Lorenzo Tait (Bachelor's Student, University of Trento, 2019)
    Thesis: A Customized Threat Modeling for Secure Deployment And Pentesting of SAML SSO Solutions
    Supervisor: Silvio Ranise | Co-supervisors: Andrea Bisegna, Roberto Carbone
  • Lorenzo Bellesso (Postgraduate Student, University of Genoa, 2021)
    Thesis: Implementazione di una soluzione di generazione e rilascio credenziali in ambito IoT fondata sull'uso della Carta d'Identità Elettronica (CIE)
    Supervisor: Silvio Ranise | Co-supervisor: Umberto Morelli
  • Luca Morgese (Bachelor's Student, University of Trento, 2019)
    Thesis: Designing and Implementing a DLT Based Access Control Mechanism for Healthcare Data - A Proof of Concept
    Supervisor: Silvio Ranise | Co-supervisor: Alessandro Tomasi
  • Luca Bazzanella (Bachelor's Student, University of Trento, 2021)
    Thesis: Analysis of the State of the Art of DevSecOps: The Gitlab case study
    Supervisor: Silvio Ranise | Co-supervisors: Andrea Bisegna, Roberto Carbone
  • Marco Pernpruner (Master's Student, University of Verona, 2019)
    Thesis: A passwordless out-of-band authentication protocol based on eID cards and push notifications: Design and formal security analysis
    Supervisor: Massimo Merro | Co-supervisors: Giada Sciarretta, Roberto Carbone
  • Marta Toniolli (Bachelor's Student, University of Trento, 2019)
    Thesis: Developing an Android client for user enrollment with CIE 3.0 and distributed ledger interaction: An application to electronic health record access control
    Supervisor: Silvio Ranise | Co-supervisor: Alessandro Tomasi
  • Marta Arisi (Master's Student, University of Trento, 2019)
    Internship topic: Blockchain and e-health: seeking compliance with the General Data Protection Regulation
  • Martina Vecellio Reane (Bachelor's Student, University of Trento, 2022)
    Thesis: Automated Security and Risk Analysis of Remote Identity Proofing Procedures
    Supervisor: Silvio Ranise | Co-supervisors: Marco Pernpruner, Giada Sciarretta
  • Matteo Rizzi (Bachelor's Student, University of Trento, 2021)
    Thesis: TLS Analyzers for Android Apps: State-of-the-art Analysis and Integration in TLSAssistant
    Supervisor: Silvio Ranise | Co-supervisors: Giada Sciarretta, Salvatore Manfredi
    Awards: 3rd place at thesis award "Innovare la sicurezza delle informazioni 2021", sponsored by CLUSIT
  • Matteo Longato (Bachelor's Student, University of Trento, 2021)
    Thesis: Verifiable credentials applied to self reporting applications
    Supervisor: Silvio Ranise | Co-supervisors: Giada Sciarretta, Alessandro Tomasi
  • Matteo Leonelli (Bachelor's Student, University of Trento, 2021)
    Thesis: Open and Cross-platform Ecosystem for Enterprise Services: Secure and Authenticated Access with the use of Italian Identity Cards and FIDO
    Supervisor: Silvio Ranise | Co-supervisor: Umberto Morelli
  • Matteo Bitussi (Bachelor's Student, University of Trento, 2022)
    Thesis: Declarative Specification of Pentesting Strategies for Browser-based Security Protocols: the Case Studies of SAML and OAuth/OIDC
    Supervisor: Silvio Ranise | Co-supervisors: Andrea Bisegna, Roberto Carbone
  • Michele Zucchelli (Bachelor's Student, University of Trento, 2022)
    Thesis: Pimp My Micro-Id-Gym: Enhancing the Automation and Usability of a Security Testing Tool for Digital Identity Protocol
    Supervisor: Silvio Ranise | Co-supervisors: Andrea Bisegna, Roberto Carbone
  • Mirco Bisoffi (Bachelor's Student, University of Trento, 2022)
    Thesis: Lo Smishing e la Threat Intelligence Platform
    Supervisor: Silvio Ranise | Co-supervisor: Biniam Fisseha Demissie
  • Mirko Schicchi (Bachelor's Student, 2018)
    Thesis: IOTA and the Internet of Things: A possible solution for autonomous driving vehicles
    Supervisor: Silvio Ranise | Co-supervisors: Umberto Morelli, Alessandro Tomasi
  • Nicola Casagrande (Bachelor's Student, University of Trento, 2022)
    Thesis: Dematerialized Documents: The Italian Driving License Use Case
    Supervisor: Silvio Ranise | Co-supervisors: Giada Sciarretta, Tahir Ahmad
  • Rupert Gobber (Master's Student, University of Trento, 2022)
    Thesis: Design and implementation of a verifiable credentials service for a data marketplace
    Supervisor: Silvio Ranise | Co-supervisors: Giada Sciarretta, Alessandro Tomasi
  • Salvatore Manfredi (Master's Student, University of Trento, 2019)
    Thesis: Assisting users in securing TLS configurations
    Supervisor: Silvio Ranise | Co-supervisor: Giada Sciarretta
  • Saverio Turetta (Bachelor's Student, University of Trento, 2018)
    Thesis: Analysis of the State of the Art in Android Dynamic Analysis Tools
    Supervisor: Silvio Ranise | Co-supervisors: Roberto Carbone, Amir Sharif
  • Sofia Puttin (Master's Student, University of Trento, 2020)
    Internship topic: 5G-BSA-ID cryptoband – Analisi giuridica alla luce delle disposizioni in materia di trattamento dei dati e tutela della privacy
  • Sofia Zanrosso (Bachelor's Student, University of Trento, 2022)
    Thesis: Enlarging the Pen-Test Coverage of SAML Single Sign-On Solutions with Cyber Threat Intelligence
    Supervisor: Silvio Ranise | Co-supervisors: Andrea Bisegna, Roberto Carbone
  • Sonia Eccher (2014)
    Internship topic: Risk Assessment Smart Campus
  • Stefano Berlato (Master's Student, University of Trento, 2019)
    Thesis: A Pragmatic Approach to Handle "Honest But Curious" Cloud Service Providers: Cryptographic Enforcement of Dynamic Access Control Policies
    Supervisor: Silvio Ranise | Co-supervisor: Roberto Carbone
    Awards: 3rd place at thesis award "Innovare la sicurezza delle informazioni 2020", sponsored by CLUSIT
  • Stefano Facchini (Bachelor's Student, University of Trento, 2020)
    Thesis: Design and implementation of an automated tool for checking SAML SSO vulnerabilities and SPID compliance
    Supervisor: Silvio Ranise | Co-supervisors: Andrea Bisegna, Roberto Carbone
  • Stefano Da Roit (Bachelor's Student, University of Trento, 2022)
    Thesis: Automated Detection of DoS Attacks in MQTT 5.0 Brokers
    Supervisor: Silvio Ranise | Co-supervisor: Umberto Morelli
  • Valentina Odorizzi (Bachelor's Student, University of Trento, 2018)
    Thesis: Progettazione e sviluppo di uno strumento per l'analisi automatica di vulnerabilità "Missing XML Validation" in SAML SSO
    Supervisor: Silvio Ranise | Co-supervisors: Andrea Bisegna, Roberto Carbone
  • Veronica Cristiano (Master's Student, University of Trento, 2021)
    Thesis: Key Management for Cryptographic Enforcement of Access Control Policies in the Cloud: The CryptoAC use case
    Supervisor: Silvio Ranise | Co-supervisors: Roberto Carbone, Stefano Berlato
  • Vincenzo Chiarini (University of Trento, 2017)
    Internship topic: Studio dell'usabilità di soluzioni di Single Sign-On e autenticazione forte per applicazioni mobile.
  • Wendy Barreto (Bachelor's Student, University of Trento, 2021)
    Thesis: Design and implementation of an attack pattern language for the automated pentesting of OAuth/OIDC deployments
    Supervisor: Silvio Ranise | Co-supervisors: Andrea Bisegna, Roberto Carbone