I’m full professor of Data-Driven Internet Security in the Design and Analysis of Communication Systems (DACS) group at the Faculty of Electrical Engineering, Maths and Computer Science (EEMCS) at the University of Twente.
My research focuses on defending the Internet against malicious activity and on strengthening the security and resilience of the Internet by improving protocols and operations, and the deployment of new security protocols and mechanisms. I use an empirical approach to these challenges by performing global Internet-scale passive and active measurements.
Expertise
Computer Science
- Domain Name System
- Internet
- Domains
- Attack
- Service
- Public Key Infrastructure
- Testbed
- Distributed Denial of Service Attack
Organisations
Ancillary activities
- Stichting NLnet LabsScientific Advisor
- IPNSecretary IPN Equity, Diversity and Inclusion Working Group
- SIDNMember strategy sounding board SIDN
My research focuses on defending the Internet against malicious activity and on strengthening the security and resilience of the Internet by improving protocols and operations, and the deployment of new security protocols and mechanisms. I use an empirical approach to these challenges by performing global Internet-scale passive and active measurements.
I currently have two particular areas of interest:
- The Domain Name System (DNS) – after IP, DNS is the most critical protocol on the Internet, without which the Internet effectively stops working for most users. I explore the security of the DNS using large scale measurements and statistical analysis, for instance studying the effects of the deployment of the DNS Security Extensions (DNSSEC), both in the positive (added security) and the negative (larger potential for abuse in DDoS attacks) sense. DNS also plays an important role in other security issues on the Internet, such as botnets, phishing and malware.
- Routing Security (RPKI) – much like other early core protocols of the Internet, the interdomain routing protocol BGP was not designed with security in mind. The Resource Public Key Infrastructure (RPKI) aims to remedy this by allowing resource holders to manage authorizations for their resources. Apart from having an interest in the gradual deployment of this technology on the global Internet, I am also interested in studying new applications that further enhance the security of the routing ecosystem.
My research is supported by SURF, the collaborative organisation for ICT in Dutch higher education and research, by the Netherlands Organisation for Scientific Research (NWO), by SIDN Fonds and by European Commission Framework Project grants.
Publications
2025
Research profiles
In the bachelor, I'm on the teaching team for the High-Tech Human Touch minor on Cybersecurity and Cybercrime, in which I teach the basics of Privacy and Information Security. In the master I teach courses on Internetworking, such as Internet Measurements and Advanced Networking.
I also regularly supervise bachelor and master theses, if you're looking for a topic feel free to contact me or drop by my office. I have an extensive network in industry, both in the Netherlands and abroad, so if you're looking for an internship assignment or an external master topic you can also contact me.
Affiliated study programs
Courses academic year 2025/2026
Courses in the current academic year are added at the moment they are finalised in the Osiris system. Therefore it is possible that the list is not yet complete for the whole academic year.
Courses academic year 2024/2025
Address
University of Twente
Zilverling (building no. 11), room 5061
Hallenweg 19
7522 NH Enschede
Netherlands
University of Twente
Zilverling 5061
P.O. Box 217
7500 AE Enschede
Netherlands
Scan the QR code or