Academic Centre of Excellence in Cyber Security Research - University of Surrey

Lead Research Organisation: University of Surrey
Department Name: Computing Science

Abstract

Research within the Surrey Centre for Cyber Security falls into the following principal themes:

- Security through Hardware: design and use of secure hardware such as Trusted Platform Modules (TPMs) as the basis of security mechanisms and designs

- Trusted Systems: applied cryptography, modelling and security analysis of systems, verification

- Privacy and Authentication: privacy-preserving computing, passwords, multi-factor authentication, personal data privacy

- Secure Communications: Internet of Things, 5G, connected vehicles, communications protocols, ultra-high-speed mobile and wireless connectivity

- Multimedia Security and Forensics: cybercrime and law enforcement

- Human Factors: cognitive modelling of human behaviour, human-assisted data loss/leakage prevention, reduction of human-related risks in the cyber-physical world.

Within each theme there is a foundational element developing understanding, theory and new technologies, together with applications to specific problem domains and to building practical solutions. Application areas cover a wide range across the cyber-security spectrum, include new cryptographic schemes, security protocols, hardware-enhanced security, network security issues at different layers, formal security modeling and verification, human factors, secure electronic voting, key management, digital rights management and watermarking, image and video forensics, security economics, and biometrics.

The application domains we work in include transportation (automotive, rail), democracy (e-voting), telecommunications, digital economy, health, and law enforcement.

The technical core of the centre includes academics from the Departments of Computer Science, and the 5G Innovation Centre,. The centre also has a number of associates from a wide range of disciplines across the University whose research overlaps with security, and who are involved in interdisciplinary security research. These areas include Artificial and Machine Intelligence, Communication Systems, Vision, Speech and Signal Processing, as well as Surrey Business School, Sociology, Psychology, Law and Economics.

The Centre maintains strong collaborative links with its internationally renowned research partners, participates in technology transfer from academic to small and large businesses, shares knowledge and offers consultancy to government agencies, and is active in cyber-security education and security awareness raising campaigns for the industrial and public sectors.

Planned Impact

The aim of this grant is to securely establish the Surrey Centre for Cyber Security, the proposed Surrey ACE-CSR, by providing support for the planned activities and developing an appropriate infrastructure. These activities are aimed at achieving impact by engaging with the key stakeholders in Cyber Security through high-profile events and trade fairs aimed at practitioners and researchers at the more technical level, with a focus on promoting exchange and collaboration among all ACE-CSR Centres and engaging with industry. These activities will contribute to the vitality of the Cyber Security community, and disseminate relevant and up-to-date information to organisations and people who will benefit from the research produced by the Surrey Centre for Cyber Security and other ACE-CSR Centres.

We also aim to foster direct focused interactions with organisations. The Applied Security Lab will be used to conduct applied security research, and showcase research results to students, collaborators and industrial visitors. The Centre's website and other publicity materials will showcase our expertise and provide a first port of call for external contacts.

We have an Advisory Board of experts from our network of senior contacts in the Cyber Security community. This Board consists of industrialists, policy makers, and leaders in the academic community, to advise on our strategy, and also to provide active involvement and support for our activities, leveraging our impact. This will provide another source of expertise on the most effective ways to achieve impact. Furthermore, Advisory Board members will themselves be from our target community, and their direct involvement with the ACE will provide another route for impact.
Our involvement with the University of Surrey 5G Innovation Centre provides a unique opportunity for the Surrey Centre for Cyber Security to have a direct impact, at an early stage, on security aspects within the development of 5G technology.

The University of Surrey provides a first-class environment in which to achieve impact. The University's mission statement from 1998 states that

"As a University of real international standing, our vision is to work in partnership with industry, commerce and the professions, as well as with other institutions, for the benefit of the world. We will achieve this by providing scholarship attuned to the particular needs of our technological society, by developing leading-edge research and by creating a rich and varied learning environment for our students."

The University has a strong record of exploiting and applying research and has a vibrant commercial activity, with a number of spin-out companies, and substantial contract and consulting work. The culture of the University is very much attuned to "engaging with the world", and there is strong corporate experience and knowledge, and administrative support for achieving impact.

Publications

10 25 50
 
Description This award has supported the growth of the Surrey Centre for Cyber Security and its engagement and advocacy activity. Members of the Centre work with a variety of industrial sectors including transportation, election systems, finance, autonomous systems, robotics, communications, distributed and networked systems, and social networks, and our research has been applied in these sectors in conjunction with industrial partners. Members of the Centre engage with industry to influence major cyber security related standardization activities through involvement in working groups in ISO, Trusted Computing Group, ETSI, IETF, FIDO Alliance, LoRa Alliance, and through the Cyber Security Body of Knowledge.
Exploitation Route The Centre of Excellence provides a focus and driver for the University's research activity in Cyber Security, and enables engagement for applying our research outputs.
Sectors Digital/Communication/Information Technologies (including Software)

Financial Services

and Management Consultancy

Government

Democracy and Justice

Security and Diplomacy

Transport

URL https://www.surrey.ac.uk/surrey-centre-cyber-security
 
Description Researchers within the Academic Centre of Excellence interact with a number of industrial sectors as detailed below. The Centre has established regular cyber-industry facing "Future of Cyber Security" briefings on topics of current interest, such as GDPR, Blockchain and DLT, and Cybercrime, and is providing the focus for growing a network of industrial collaborations and partnerships through joint projects, studentships, CyberInvest activities, and presentation at industry events.
First Year Of Impact 2018
Sector Digital/Communication/Information Technologies (including Software),Financial Services, and Management Consultancy,Government, Democracy and Justice,Security and Diplomacy,Transport
Impact Types Economic

Policy & public services

 
Description Contribution to APPG session on Government, Democracy and Voting
Geographic Reach National 
Policy Influence Type Contribution to a national consultation/review
URL https://lordchrisholmes.com/blockchain-appg-evidence-meeting-government-democracy-and-voting/
 
Description Contribution to Consultation on draft legislation to support identity verification
Geographic Reach National 
Policy Influence Type Contribution to a national consultation/review
URL https://www.gov.uk/government/consultations/draft-legislation-to-help-more-people-prove-their-identi...
 
Description Invited talk on "The CyBOK Formal Methods Knowledge Area" to the High Integrity Software Conference 2021
Geographic Reach National 
Policy Influence Type Influenced training of practitioners or researchers
URL https://www.his-conference.co.uk/index.php?p=programme
 
Description Provision of Annex 4 Technology Report in Sir Ken Knight Electronic Balloting Review
Geographic Reach National 
Policy Influence Type Contribution to a national consultation/review
URL https://www.gov.uk/government/uploads/system/uploads/attachment_data/file/668942/e-balloting-review-...
 
Description Publication of the IET Report "Internet Voting in the UK", as Chair of the IET E-Voting Working Group, The rep[ort considers the opportunities challenges around the prospect of evoting in the UK.
Geographic Reach National 
Policy Influence Type Membership of a guideline committee
URL https://www.theiet.org/media/7025/internet-voting-in-the-uk.pdf
 
Description AP4L: Adaptive PETs to Protect & emPower People during Life Transitions
Amount £2,794,276 (GBP)
Funding ID EP/W032473/1 
Organisation Engineering and Physical Sciences Research Council (EPSRC) 
Sector Public
Country United Kingdom
Start 03/2022 
End 03/2025
 
Description Amazon Gift
Amount £100,000 (GBP)
Organisation Amazon.com 
Sector Private
Country United States
Start 09/2020 
 
Description Design and verification of correct, efficient and secure concurrent systems
Amount $460,000 (AUD)
Funding ID DP190102142 
Organisation Australian Research Council 
Sector Public
Country Australia
Start 01/2019 
End 12/2021
 
Description EPSRC Impact Acceleration Account
Amount £39,922 (GBP)
Organisation Engineering and Physical Sciences Research Council (EPSRC) 
Sector Public
Country United Kingdom
Start 11/2018 
End 10/2019
 
Description EU H2020
Amount € 4,868,890 (EUR)
Funding ID 779391 - FutureTPM 
Organisation European Commission H2020 
Sector Public
Country Belgium
Start 01/2018 
End 12/2020
 
Description EU H2020
Amount € 2,932,297 (EUR)
Organisation European Commission H2020 
Sector Public
Country Belgium
Start 08/2018 
End 08/2021
 
Description FACT: Faithful Composition of Trust
Amount £204,000 (GBP)
Organisation National Cyber Security Centre 
Sector Public
Country United Kingdom
Start 09/2019 
End 03/2021
 
Description GCHQ PhD studentship
Amount £115,000 (GBP)
Organisation Government Communications Headquarters (GCHQ) 
Sector Public
Country United Kingdom
Start 09/2018 
End 03/2022
 
Description GCHQ PhD studentship
Amount £115,000 (GBP)
Organisation Government Communications Headquarters (GCHQ) 
Sector Public
Country United Kingdom
Start 09/2018 
End 03/2022
 
Description GCHQ Small Grants
Amount £12,870 (GBP)
Organisation Government Communications Headquarters (GCHQ) 
Sector Public
Country United Kingdom
Start 11/2017 
End 02/2018
 
Description GCHQ small grant
Amount £10,580 (GBP)
Organisation Government Communications Headquarters (GCHQ) 
Sector Public
Country United Kingdom
Start 01/2018 
End 02/2018
 
Description Persistent Safety and Security
Amount £78,000 (GBP)
Organisation The Research Institute on Verified Trustworthy Software Systems 
Sector Academic/University
Country United Kingdom
Start 09/2019 
End 03/2023
 
Description Transactional Memory Security
Amount £31,063 (GBP)
Organisation National Cyber Security Centre 
Sector Public
Country United Kingdom
Start 01/2021 
End 03/2021
 
Description Verifiably Correct Transactional Memory
Amount £397,680 (GBP)
Funding ID EP/R032556/1 
Organisation Engineering and Physical Sciences Research Council (EPSRC) 
Sector Public
Country United Kingdom
Start 08/2018 
End 09/2022
 
Title Tamarin models of different 5G protocols 
Description These are used to formally verify the security of 5G protocols in different trust models. You can now find these here https://bit.ly/3w4qgQt 
Type Of Material Computer model/algorithm 
Year Produced 2021 
Provided To Others? No  
Impact It will become available to the wider public soon. 
URL https://fmsec.github.io/5gtechsec.github.io/
 
Title Tamarin models of the privacy of IoT LoRa protocols 
Description These models are used to formally verify the privacy of LoRa protocols 
Type Of Material Computer model/algorithm 
Year Produced 2021 
Provided To Others? No  
Impact These are discussed at the LoRa Alliance Technical Committe and Security Working Group meetings and will/may impact future specifications 
URL https://bit.ly/3w5MNN0
 
Title Tamarin models of the security of IoT LoRa protocols 
Description These models have been used for the formal analysis of security and privacy of LoRa protocols. 
Type Of Material Computer model/algorithm 
Year Produced 2020 
Provided To Others? Yes  
Impact These models have lead to improvement in the LoRa specifications. 
URL http://people.itcarlson.com/ioana
 
Description Partnership with Thales 
Organisation Thales Group
Department Thales UK Limited
Country United Kingdom 
Sector Private 
PI Contribution We are having meetings to align our research to a need they have and have a use-case linked to what they do.
Collaborator Contribution We are having meetings to align our research to a need they have and have a use-case linked to what they do.
Impact No outputs to disclose yet. I would need to double-check with Thales
Start Year 2019
 
Description Partnership with the LoRaAlliance 
Organisation LoRa Alliance
Country United States 
Sector Charity/Non Profit 
PI Contribution We work part of the LoRa Alliance Technical committee (TC) and Security Working Group (SWG) on the privacy and security of LoRa devices
Collaborator Contribution They discuss with us our findings in regular TC and SWG meetings and these findings are taken into account in their specs.
Impact one of the work-in-progress input in here (the one where the lead authors is Budykho K.) + the EuroS&P 2020 paper mentioned in the award has already been input into this collaboration
Start Year 2020
 
Description Visiting position in Univ Clermont-Auvergne 
Organisation University of Clermont Auvergne
Country France 
Sector Academic/University 
PI Contribution The PI is a visiting academic there working on aspects related to the project.
Collaborator Contribution PI applied for this position and got it and we are working on these project together as well
Impact none yet, but to follow
Start Year 2020
 
Title Implementing and Verifying Release-Acquire Transactional Memory (Artifact) 
Description Supplementary files for the paper "Implementing and Verifying Release-Acquire Transactional Memory". The upload includes: Isabelle/HOL files for all proofs. The proofs have been developed/tested on Isabelle/HOL 2021-1. C++ implementations of TML-SC and TML-RA 
Type Of Technology Software 
Year Produced 2022 
Impact None to report 
URL https://zenodo.org/record/6899918
 
Title Isabelle/HOL files for "Mechanised Operational Reasoning for C11 Programs with Relaxed Dependencies" 
Description Isabelle/HOL files for the paper "Mechanised Operational Reasoning for C11 Programs with Relaxed Dependencies". Tested for Isabelle 2022. 
Type Of Technology Software 
Year Produced 2022 
Impact None to report. The artifact is a mechanised proof. 
URL https://figshare.com/articles/software/Isabelle_HOL_files_for_Mechanised_Operational_Reasoning_for_C...
 
Title Tamarin Models for "Verifying List Swarm Attestation Protocols" 
Description Tamarin models and proofs of SIMPLE+ and its variations for the paper "Verifying List Swarm Attestation Protocols" to appear in WiSEC 2023. https://doi.org/10.1145/3558482.3581778 The proofs have been tested with Tamarin 1.6.1. 
Type Of Technology Software 
Year Produced 2023 
Impact None to report. The artifact is a mechanised proof. 
URL https://figshare.com/articles/software/Tamarin_Models_for_Verifying_List_Swarm_Attestation_Protocols...
 
Title Verify My Vote - open source vote verification system based on the Selene verifiable voting protocol 
Description Verify My Vote offers the opportunity to check your vote electronically. It provides anonymised use of tracking numbers to ensure vote privacy, enables voters can check that their vote is included in the count exactly as it was cast, and publishes election audit data to ensure that the integrity of the ballot can be independently confirmed. It is intended as a layer to sit on top of an internet voting system to provide verifiability functionality 
Type Of Technology Software 
Year Produced 2019 
Open Source License? Yes  
Impact User trials with a commercial company offering election services 
URL https://vmv.surrey.ac.uk/home
 
Description FDR models for the SEFM 2021 paper "Checking Opacity and Durable Opacity with FDR" 
Type Of Technology Software 
Year Produced 2021 
Impact None to report. The artifact is a mechanised proof. 
URL https://figshare.com/articles/software/FDR_models_for_Checking_Opacity_and_Durable_Opacity_with_FDR_...
 
Description Isabelle files for "Integrating Owicki-Gries for C11-Style Memory Models into Isabelle/HOL".The proofs require Isabelle/HOL 2020. 
Type Of Technology Software 
Year Produced 2021 
Impact None to report. The artifact is a mechanised proof. 
URL https://figshare.com/articles/software/Isabelle_Files_for_Integrating_Owicki-Gries_for_C11-Style_Mem...
 
Description Academic Visit to India 
Form Of Engagement Activity Participation in an open day or visit at my research institution
Part Of Official Scheme? No
Geographic Reach International
Primary Audience Other audiences
Results and Impact As part of the work in Deliverable 1, the PI made a visit to India to collaborate with Prof. Ramanujam from IMSc Chennai. This was not paid under AutoPaSS, but aligned to it. They are now working on a paper together.
Year(s) Of Engagement Activity 2019
 
Description Annual taks the annual conferece of UK-RISE 
Form Of Engagement Activity A talk or presentation
Part Of Official Scheme? No
Geographic Reach National
Primary Audience Public/other audiences
Results and Impact "TimeTrust: Robust Timing via Hardware Roots of Trust and Non-standard Hardware with Application to EMV Contactless Payments", talk at the 3rd Annual Conference of RISE (Research Institute in Hardware Security and Embedded Systems), online Nov. 2020

"TimeTrust: Robust Timing via Hardware Roots of Trust and Non-standard Hardware with Application to EMV Contactless Payments", talk at the 2nd Annual Conference of RISE (Research Institute in Hardware Security and Embedded Systems), London, UK, Nov. 2019
Year(s) Of Engagement Activity 2019,2020
URL http://ukrise.org
 
Description Article in New Statesman 
Form Of Engagement Activity A magazine, newsletter or online publication
Part Of Official Scheme? No
Geographic Reach International
Primary Audience Public/other audiences
Results and Impact An article on verifiable voting in the New Statesman Spotlight supplement special issue on Cyber Security.
Year(s) Of Engagement Activity 2019
URL https://www.eventbrite.co.uk/e/the-volt-project-voting-on-ledger-technologies-tickets-60521857505
 
Description Became an active part of WG8 of the ISO now 
Form Of Engagement Activity A formal working group, expert panel or dialogue
Part Of Official Scheme? No
Geographic Reach International
Primary Audience Industry/Business
Results and Impact We are standardising under ISO 14443 an outcome from a paper.
Year(s) Of Engagement Activity 2022,2023
URL https://practical_emv.gitlab.io/
 
Description Bi-weekly mtgs with the LoRa Alliance Technical Committee or Security Working group 
Form Of Engagement Activity A formal working group, expert panel or dialogue
Part Of Official Scheme? No
Geographic Reach International
Primary Audience Industry/Business
Results and Impact PI active member of the LoRa Alliance technical committee and security working group, on matters linked to the project
Year(s) Of Engagement Activity 2020,2021
 
Description Blockchain and Distributed Ledger Technology (Industry Networking Event) 
Form Of Engagement Activity Participation in an activity, workshop or similar
Part Of Official Scheme? No
Geographic Reach Regional
Primary Audience Industry/Business
Results and Impact The Surrey Centre for Cyber Security (SCCS) are hosting Industry Networking Event, showcasing our activities in the rapidly developing field of Blockchain and Distributed Ledger Technologies and will feature a number of invited talks from academia and industry.

The event will take place on Thursday 24 January 2019, 16:00 - 19:00, in the Lecture Theatre F (LTF), Lecture Theatre Building, University of Surrey, and will include light refreshments.

The agenda will include presentations by:

Welcome from Mark Manulis, Deputy Director, SCCS

Steve Pannifer, Director, Chief Operations Office, Consult Hyperion

Rob Learney, Lead Technologist, Digital Catapult

David Michael, CEO / Co-Founder at Streeva

John Collomosse, Professor in Computer Vision, Centre for Vision Speech & Signal Processing

This event will also be an opportunity for you to network with the Digital Catapult and local businesses as well as University of Surrey academics. If you are a business interested in collaborating with the University of Surrey or an academic keen to work with industry in the domain of Blockchain and Distributed Ledger Technologies, please join us to find out more.
Year(s) Of Engagement Activity 2019
 
Description Cyber Crime and Fraud Awareness seminar 
Form Of Engagement Activity Participation in an activity, workshop or similar
Part Of Official Scheme? No
Geographic Reach National
Primary Audience Professional Practitioners
Results and Impact A seminar organised by Surrey Centre for Cyber Security jointly with Lloyds Bank, aimed at their client base and also aimed at the SCCS network of business and indistry
Year(s) Of Engagement Activity 2017
 
Description Cyber Security in Space workshop 
Form Of Engagement Activity Participation in an activity, workshop or similar
Part Of Official Scheme? No
Geographic Reach National
Primary Audience Industry/Business
Results and Impact 10:30 - 10:45 Welcome remarks by Mark Manulis, SCCS and Chris Bridges, SSC

10:45 - 11:20 Toby Harris, UK Space Agency: "UK Space and Cyber Security''
11:20 - 11:55 Ian Poyner, SSTL: "Threats throughout the life-cycle"

12:20 - 12:55 Andy Davis, NCC Group: "The cyber attack surface of the Space industry"
12:55 - 13:30 Francis Kinsella, Airbus: "Protecting and Defending Sovereign Space Assets"

14:30 - 15:05 Mark Bowyer, Airbus: "Securing Future NanoSats at Physical Layer"
15:05 - 15:40 Tomer Ashur, KU Leuven: "Broadcast Authentication for Europe's Global Navigation Satellite System"
15:40 - 16:00 Panel discussion: "Directions for Research in Space Cyber Security"
Year(s) Of Engagement Activity 2019
 
Description CyberFirst Cyber online activity for Schools for Cyber Security Week 2020 
Form Of Engagement Activity Participation in an activity, workshop or similar
Part Of Official Scheme? No
Geographic Reach National
Primary Audience Schools
Results and Impact An online activity on cryptography, "What's Behind this Coded Message?", for the Cryptography Day of the Empower Cyber Week November 30 - December 4 2020, supported by the National Cyber Security Centre. This is offered as part of CyberFirst. CyberFirst is principally aimed at girls in Years 7 and 8, but as it was offered online in 2020 it was opened up to schools more widely.
Year(s) Of Engagement Activity 2020
URL https://www.ncsc.gov.uk/empower-cyber-week/day-4-cryptography
 
Description International Cybersecurity Forum, Lille 
Form Of Engagement Activity Participation in an activity, workshop or similar
Part Of Official Scheme? No
Geographic Reach International
Primary Audience Industry/Business
Results and Impact Attendance at the International Cybersecurity Forum, Lille, January 2018, on the UK Science and Innovation Stand, representing the ACEs network
Year(s) Of Engagement Activity 2018
URL https://www.forum-fic.com/site/GB,I59984.htm
 
Description Interview for Financial Times of Electronic Voting for their special report on Cyber Security and Society 
Form Of Engagement Activity A press release, press conference or response to a media enquiry/interview
Part Of Official Scheme? No
Geographic Reach National
Primary Audience Public/other audiences
Results and Impact Interviewed and quoted in an article for the Financial Times special report on Cyber Security and Society on the topic of Electronic Voting.
Year(s) Of Engagement Activity 2020
URL https://www.ft.com/content/b4425338-6207-49a0-bbfb-6ae5460fc1c1
 
Description New Formal Methods for Security Netwrok 
Form Of Engagement Activity A formal working group, expert panel or dialogue
Part Of Official Scheme? No
Geographic Reach International
Primary Audience Other audiences
Results and Impact PI set up a network in the UK and abroad on formal methods for security and she is running it. We meet monthly and discuss reasearch and ideas on this topic. We = academia + industry + researchers/enthousiasts of all sorts.
Year(s) Of Engagement Activity 2021
 
Description Organistion of the 2022 UK Cyber Security PhD Winter Schoool 
Form Of Engagement Activity Participation in an activity, workshop or similar
Part Of Official Scheme? No
Geographic Reach International
Primary Audience Postgraduate students
Results and Impact A 3 day virtual winter school aimed primarily at UK PhD students (but also open to international attendees), with a variety of group activities. Example student feedback: "This winter school completely broadened my horizons and encouraged me to look beyond just my current area of research. I never imagined security could be linked to forensic science, neuroscience, society, and human psychology, but after attending these sessions, I've realised that cyber security is also a matter of national health, wealth and service, in the present and future."
Year(s) Of Engagement Activity 2022
URL https://www.youtube.com/watch?v=R0wPcbRQSGM&list=PLLEP5_kbCRN5kRj3MgLmmRUHt_pt7Sub7
 
Description Panel discussion at TEISS 2017 
Form Of Engagement Activity A talk or presentation
Part Of Official Scheme? No
Geographic Reach International
Primary Audience Industry/Business
Results and Impact Participated as panellist in the discussion on the topic of "Segregating third party access in the cloud" with the "Identity & Acess Management" stream of The European Information Security Summit (TEISS) 2017.
Year(s) Of Engagement Activity 2017
URL https://biztechevents.co.uk/teiss/cth_speaker_cat/speaker-2017/page/2/
 
Description Presentation at Future of Distributed Ledger Technology workshop, Newton Institute Cambridge 
Form Of Engagement Activity A talk or presentation
Part Of Official Scheme? No
Geographic Reach National
Primary Audience Other audiences
Results and Impact Discussions around the future of distributed ledger technologies including policy and practice
Year(s) Of Engagement Activity 2019
URL https://gateway.newton.ac.uk/event/tgmw71
 
Description Presentation at the HMG Distroibuted Ledger Technoloigy Communit of Interest event 
Form Of Engagement Activity A talk or presentation
Part Of Official Scheme? No
Geographic Reach Regional
Primary Audience Professional Practitioners
Results and Impact Presentation about verifiable voting and about he VOLT project at the "Community of Interest on DLT's" event.
Year(s) Of Engagement Activity 2018
 
Description Presentation on Secure Electronic Voting to the UK PhD Winter School on Cyber Security, Newcastle 
Form Of Engagement Activity A talk or presentation
Part Of Official Scheme? No
Geographic Reach National
Primary Audience Postgraduate students
Results and Impact Training and education for PhD students in Cyber Security
Year(s) Of Engagement Activity 2020
URL https://sites.google.com/view/phd-cyber-winterschool2020/home?authuser=0
 
Description Presentation on the VOLT project to the DLT Community of Interest 
Form Of Engagement Activity Participation in an activity, workshop or similar
Part Of Official Scheme? No
Geographic Reach National
Primary Audience Industry/Business
Results and Impact Presented on the VOLT project at the DLT Community of Interest event in Whitehall to an audience of approx 100 DLT enthusiasts and practitioners. The talk generated a substantial number of questions.
Year(s) Of Engagement Activity 2018
 
Description Reputation and Privacy in Gig Economy 
Form Of Engagement Activity A talk or presentation
Part Of Official Scheme? No
Geographic Reach National
Primary Audience Professional Practitioners
Results and Impact Presented research results on privacy-preserving reputation management scheme to participants of NCSC Annual Conference.
Year(s) Of Engagement Activity 2019
 
Description Seminar at Royal Holloway University of London 
Form Of Engagement Activity A talk or presentation
Part Of Official Scheme? No
Geographic Reach Local
Primary Audience Postgraduate students
Results and Impact Seminar on the development of the Web Bulletin Board, presented at Royal Holloway, to approx 30 strong audience.
Year(s) Of Engagement Activity 2017
 
Description Seminar at University of Southampton 
Form Of Engagement Activity A talk or presentation
Part Of Official Scheme? No
Geographic Reach Local
Primary Audience Postgraduate students
Results and Impact Seminar at Southampton to talk about the formal development underpinning the web bulletin board used in electronic voting
Year(s) Of Engagement Activity 2017
 
Description Strategic Advisory Board Meeting 
Form Of Engagement Activity Participation in an activity, workshop or similar
Part Of Official Scheme? No
Geographic Reach Local
Primary Audience Other audiences
Results and Impact This was the first mtg with industrial and academic advisors for AutoPaSS. PhD students of the PI, not funded by this, also took part.
Year(s) Of Engagement Activity 2019
 
Description Talk about Verifiable voting and DLT at the Government Digital Service Academy, May 2019 
Form Of Engagement Activity A talk or presentation
Part Of Official Scheme? No
Geographic Reach Regional
Primary Audience Professional Practitioners
Results and Impact Approximately 30 staff from the Government Digital Service attended a talk I was invited to give as part of their Academy termcard. The talk generated questions around verifiable voting and around DLT from a well-informed and engaged audience.
Year(s) Of Engagement Activity 2019
URL https://www.eventbrite.co.uk/e/the-volt-project-voting-on-ledger-technologies-tickets-60521857505
 
Description Talk at the FM-SEC -- formal methods in security network 
Form Of Engagement Activity A talk or presentation
Part Of Official Scheme? No
Geographic Reach National
Primary Audience Professional Practitioners
Results and Impact I gave two talks in 2021 at the fm-sec network, which I also run
Year(s) Of Engagement Activity 2021
URL https://fmsec.github.io/fmsec
 
Description Talk at the UK-SPS international seminar series 
Form Of Engagement Activity A talk or presentation
Part Of Official Scheme? No
Geographic Reach International
Primary Audience Other audiences
Results and Impact title "Practical and Formal Analysis Security of Contactless Mobile Payments"
Year(s) Of Engagement Activity 2021
URL https://www.youtube.com/watch?v=3wzkd07A5ZU
 
Description Workshop on Cyber Security @ British Ambassador's Residence in Paris 
Form Of Engagement Activity Participation in an activity, workshop or similar
Part Of Official Scheme? No
Geographic Reach International
Primary Audience Industry/Business
Results and Impact On invitation from the British Embassy in Paris, a team member participated in a workshop aimed at fostering cross-channel collaborations between French and Bristish businesses, academics and policy-makers surrounding issues of cyber security. The SCCS member led a panel discussion on coming threats and challenges in cyber security. Participation in the event was an excellent opportunity to advertise our research capacity and expertise to both UK and French businesses, and to establish strong contacts in cyber-related policy-making circles in both countries. This has already led to some external visits to SCCS, and is expected to lead to further collaborations in research, but also in relation to our teaching and further outreach activities.
Year(s) Of Engagement Activity 2017
 
Description press release on apple-pay and visa mobile-payment attacks 
Form Of Engagement Activity A press release, press conference or response to a media enquiry/interview
Part Of Official Scheme? No
Geographic Reach International
Primary Audience Media (as a channel to the public)
Results and Impact The work I lead on the GCHQ-funded TimeTrust project, under EPSRC-GCHQ research institute called UK-RISE (ukrise.org) lead to a serious cyber attack being uncover on ApplePay and Visa payment systens. this made the front pages of the BBC, and of most world-wide media outlets; see, e.g., here: https://www.bbc.co.uk/news/technology-58719891
Year(s) Of Engagement Activity 2021
URL https://www.bbc.co.uk/news/technology-58719891