The SSE group is active in two research areas: Software Engineering, and Information Security; in each area there are some research themes shared by group members.
1. Software Engineering
Paolo Falcarin used the Eclipse Modeling Framework (EMF) and Graphical Modeling Framework (GMF) to contribute to the development of different domain-specific languages: SPATEL, a service description language for integrated telecom web services which has been partially reused in the OMG standard TelcoML,and he is working on automated and reconfigurable service composition of telecom and web services, and service personalization in context-aware mobile services.
Islam works on risk analysis and management, and he contributed to the Secure Tropos visual notation for security
John Noll works on Global Software Engineering, Open Source Software Development, and Software Engineering Education.
Fahimeh Jafari works on IoT and Distributed Systems, with focus on System-on-chip network optimization and performance analysis
Paolo Falcarin and Andres Baravalle are collaborating with David Guiliano from the School of Health and Bioscience at UEL; the research collaboration aims at creating a bioinformatics tool-chain in the UEL OpenStack cloud platform.
2. Information Security
Paolo Falcarin was one of the first researchers to use code mobility and a trusted server to create network-based software protections. Currently he is working with Alessandro Cabutto in designing and implementing client-server support for secure binary code updates in the ASPIRE project. Such diversified run-time code updates will serve different purposes: contrasting static analysis, reducing the attacker's time-frame and implementing network-based protections such as remote attestation.
Andres Baravalle's research spans over dark web analysis, web security, and cloud computing.
Ameer al Nemrat's research spans over digital forensics, cybercrime, and malware.
Shareeful Islam developed a framework to support the consideration of laws and regulations during the development of secure software systems. In particular, the novelty of the framework is that it enables software developers to correctly elicit security requirements from the appropriate laws and regulations, and to trace these requirements throughout the development stages in order to ensure that the design indeed supports the required laws and regulations.
Amin Karami works on anomaly detection systems, Big Data analytics and and Internet of Things.
Paolo Falcarin and Gaofeng Zhang are developing a methodology to assess the effectiveness of software protections in terms of additional effort required to the attackers using system modelling techniques, such as Petri nets.