prof.dr. A. Peter (Andreas)

With the digitalization of our society, the amount of collected data and computational demands is ever-increasing. However, the underlying, vital digital systems are threatened by a plethora of cyber-attacks. Examples include impersonation attacks or data exfiltration attacks that frequently lead to mega breaches exposing sensitive data from millions of innocent people to criminals. On an almost daily basis, newspapers world-wide report about such cyber-attacks and the impact that they have on our digital society.

Due to the central role and importance of data, my group's research strategy follows a data-centric approach. This approach tackles the challenge of defending computer systems as a whole from two different angles, namely by mitigating the risk imposed by ubiquitous data but also by taking the opportunities provided by data richness. First, we research security mechanisms to provide security for data not only while stored and transmitted over networks as implemented by conventional systems but even during data processing. Second, we research the use of data for security and envision a world in which the continuously increasing amounts of data are utilized to identify, analyze, prevent, and respond to cyber-threats. Both research directions are based on the analysis of existing systems and software but also on the design of novel systems.

Security for Data

Data breaches happen in various forms but eventually are mainly attributed to an improper protection of data. While traditional encryption technology can be used for the protection of data at rest and in transit, it requires a decryption step for processing the data which in turn exposes the data in the clear and makes it vulnerable to attacks. To close this security vulnerability, my research group investigates the construction of cryptographic protocols based on non-traditional encryption, such as homomorphic encryption, that allow for the processing of data under encryption without the need to decrypt. Growing amounts of data and increasing complexities of the processing algorithms are complicating factors that largely lead to efficiency problems. We approach this by sacrificing some security for efficiency. Concretely, we explore allowing for some quantifiable leakage (e.g. in terms of differential privacy) to gain efficiency. By studying the success of possible leakage-abuse attacks, we can quantify the loss in security and achieve application-specific, practical tradeoffs between security and efficiency. Lastly, to effectively protect against data breaches, we need to control who has or had access to data at a given point in time. Traditional access control mechanisms typically rely on the complete trust in a single system or administrator, which constitutes a single point of failure. To mitigate this issue, we study decentralized access control approaches based on attribute-based encryption and distributed ledger technologies.

Data for Security

Traditional security solutions are targeted towards the protection from known threats and are dominantly based on insights acquired through costly manual analysis, which is often too slow to cope with the rapid emergence of new threats. To overcome this, my research group aims at a fully automated threat identification, analysis, and response and research the use of artificial intelligence, such as machine learning-based threat classification and clustering, to automatically analyze known threats with corresponding mitigation strategies to learn prediction models that allow for the identification of new/unseen threats and adapted mitigation approaches. Moreover, to be one step ahead of possible attackers, we explore automated security testing techniques to learn models of vulnerable system and software components and associated patches that we use to discover and patch new vulnerabilities. We put a special focus on the threat of data leakage for which we also build new (automated) attacks for data exfiltration and leakage exploitation that we use to learn models to detect and quantify data leakage. Throughout all our research in this context, we make extensive use of simulations and real-world experiments for the validation of achieved results.

 

Output and Impact Goals

My group's research covers the complete range of steps necessary to develop secure solutions for the real world, starting from the analysis of existing attacks and vulnerabilities and their proper modelling, to the engineering of targeted protection, mitigation, detection, and response solutions, all the way to the implementation of prototypes and proof-of-concepts, combined with extensive evaluation. In each of these steps, we are paying explicit attention to the demands imposed by the socio-economic context and the involved human factor, which can be part of the threat and part of the solution at the same time.

 

Publications

See all research output of this employee

View my profile

My group's education strategy is tightly coupled with our research strategy. We offer fundamental bachelor courses on cybersecurity (ranging from cryptography and data security over software, web and system security, to AI for security) that are mandatory in the computer science bachelor program to provide our students with the basics and to prepare them for more advanced studies. On the master level, we coordinate the 4TU Cybersecurity specialization of our computer science master, which delivers cybersecurity graduates having a T-shaped profile with 2/3 of deep technical knowledge and 1/3 of socio-economic knowledge in cybersecurity. The curriculum is designed in collaboration with our advisory board consisting of senior leaders from industry and government to meet the demands from the real-world. We offer advanced cybersecurity master courses that are tightly coupled with our research, ranging from secure data management, over software and system security, to secure cloud computing and privacy-enhancing technologies. Furthermore, to educate our future cybersecurity innovators and entrepreneurs, we coordinate our participation in the EIT Digital Cybersecurity Master, which puts a particular focus on innovation and entrepreneurship in an international context. 

We involve students in our research as much as possible, mostly when they start working on their final projects. We stimulate master projects on real-world challenges in collaboration with our industry partners (for instance through dedicated internships). While our courses in the Master program are mostly targeted towards our Master students, they are offered to our industry partners as well and we offer dedicated educational programs, such as the PdEng program, supporting our industry partners in upskilling their current workforce, even when they already have a Master degree in cyber security. While most of our teaching happens on campus, many of our courses allow for remote (online) participation by attending video conferences and live streams and other forms of digital teaching as well.

We aim to make students interested in cybersecurity and particularly in our research as early as possible by supporting and mentoring students in so-called Capture The Flags (CTFs), which are game-based information security competitions aimed at teaching how to identify, exploit, and patch software vulnerabilities, and, as a consequence, how to write secure code. Together with the Twente Hacking Squad (THS), our own CTF team, we organize cyber security workshops to introduce our students to practical security problems. Our students participate in national and international competitions, such as the European Cyber Security Challenge.

• Technical Computer Science

• Computer Science

Courses in the current academic year are added at the moment they are finalised in the Osiris system. Therefore it is possible that the list is not yet complete for the whole academic year.

 

• 191211650 - Multi-Disciplinary Design Project
• 192166200 - Capita Selecta I-TECH
• 192199508 - Research Topics CS+IST
• 192199968 - Internship CS
• 192199978 - Final Project CS+IST
• 192399979 - Final Project BIT
• 201300058 - Research Topics BIT
• 201300059 - Internship BIT
• 201400171 - Capita Selecta Software Technology
• 201600017 - Final Project Preparation
• 201800524 - Research Topics EIT
• 201900124 - Capstone Cyber Security (4TU)
• 201900194 - Research Topics I-Tech
• 201900195 - Final Project I-Tech
• 201900200 - Final Project EMSYS
• 201900234 - Internship I-Tech
• 202001022 - Pearls of Computer Science Core
• 202001434 - Internship EMSYS
• 202001521 - Capita Selecta EngD (external course)
• 202001522 - Capita Selecta EngD (in-company tr.)
• 202001613 - MSc Final Project BIT + CS
• 202100340 - Combined Final Project EE/S&C
• 202200251 - Capita Selecta DST

• 191211650 - Multi-Disciplinary Design Project
• 192166200 - Capita Selecta I-TECH
• 192199508 - Research Topics CS+IST
• 192199968 - Internship CS
• 192199978 - Final Project CS+IST
• 192399979 - Final Project BIT
• 201300058 - Research Topics BIT
• 201300059 - Internship BIT
• 201400171 - Capita Selecta Software Technology
• 201500028 - Economics of Security (4TU)
• 201500527 - Capita Selecta DST
• 201600017 - Final Project Preparation
• 201800524 - Research Topics EIT
• 201900124 - Capstone Cyber Security (4TU)
• 201900194 - Research Topics ITECH
• 201900195 - Final Project ITECH
• 201900200 - Final Project EMSYS
• 201900234 - Internship ITECH
• 202001022 - Pearls of Computer Science Core
• 202001434 - Internship EMSYS
• 202001444 - Placement Course for Exchange EEMCS
• 202100339 - Combined Final Project EE/S&C/CS
• 202100340 - Combined Final Project EE/S&C

Organisations

• 4TU.Federation (4TU)
• 4TU Cyber Security (4TU-CYBSEC)
• 4TU Netherlands Institute for Research on ICT (4TU-NIRICT)
• Faculty of Electrical Engineering, Mathematics and Computer Science (EEMCS), Services, Cybersecurity & Safety (SCS)