Academic Centre of Excellence in Cyber Security Research - University of Surrey
Lead Research Organisation:
University of Surrey
Department Name: Computing Science
Abstract
Research within the Surrey Centre for Cyber Security falls into the following principal themes:
- Security through Hardware: design and use of secure hardware such as Trusted Platform Modules (TPMs) as the basis of security mechanisms and designs
- Trusted Systems: applied cryptography, modelling and security analysis of systems, verification
- Privacy and Authentication: privacy-preserving computing, passwords, multi-factor authentication, personal data privacy
- Secure Communications: Internet of Things, 5G, connected vehicles, communications protocols, ultra-high-speed mobile and wireless connectivity
- Multimedia Security and Forensics: cybercrime and law enforcement
- Human Factors: cognitive modelling of human behaviour, human-assisted data loss/leakage prevention, reduction of human-related risks in the cyber-physical world.
Within each theme there is a foundational element developing understanding, theory and new technologies, together with applications to specific problem domains and to building practical solutions. Application areas cover a wide range across the cyber-security spectrum, include new cryptographic schemes, security protocols, hardware-enhanced security, network security issues at different layers, formal security modeling and verification, human factors, secure electronic voting, key management, digital rights management and watermarking, image and video forensics, security economics, and biometrics.
The application domains we work in include transportation (automotive, rail), democracy (e-voting), telecommunications, digital economy, health, and law enforcement.
The technical core of the centre includes academics from the Departments of Computer Science, and the 5G Innovation Centre,. The centre also has a number of associates from a wide range of disciplines across the University whose research overlaps with security, and who are involved in interdisciplinary security research. These areas include Artificial and Machine Intelligence, Communication Systems, Vision, Speech and Signal Processing, as well as Surrey Business School, Sociology, Psychology, Law and Economics.
The Centre maintains strong collaborative links with its internationally renowned research partners, participates in technology transfer from academic to small and large businesses, shares knowledge and offers consultancy to government agencies, and is active in cyber-security education and security awareness raising campaigns for the industrial and public sectors.
- Security through Hardware: design and use of secure hardware such as Trusted Platform Modules (TPMs) as the basis of security mechanisms and designs
- Trusted Systems: applied cryptography, modelling and security analysis of systems, verification
- Privacy and Authentication: privacy-preserving computing, passwords, multi-factor authentication, personal data privacy
- Secure Communications: Internet of Things, 5G, connected vehicles, communications protocols, ultra-high-speed mobile and wireless connectivity
- Multimedia Security and Forensics: cybercrime and law enforcement
- Human Factors: cognitive modelling of human behaviour, human-assisted data loss/leakage prevention, reduction of human-related risks in the cyber-physical world.
Within each theme there is a foundational element developing understanding, theory and new technologies, together with applications to specific problem domains and to building practical solutions. Application areas cover a wide range across the cyber-security spectrum, include new cryptographic schemes, security protocols, hardware-enhanced security, network security issues at different layers, formal security modeling and verification, human factors, secure electronic voting, key management, digital rights management and watermarking, image and video forensics, security economics, and biometrics.
The application domains we work in include transportation (automotive, rail), democracy (e-voting), telecommunications, digital economy, health, and law enforcement.
The technical core of the centre includes academics from the Departments of Computer Science, and the 5G Innovation Centre,. The centre also has a number of associates from a wide range of disciplines across the University whose research overlaps with security, and who are involved in interdisciplinary security research. These areas include Artificial and Machine Intelligence, Communication Systems, Vision, Speech and Signal Processing, as well as Surrey Business School, Sociology, Psychology, Law and Economics.
The Centre maintains strong collaborative links with its internationally renowned research partners, participates in technology transfer from academic to small and large businesses, shares knowledge and offers consultancy to government agencies, and is active in cyber-security education and security awareness raising campaigns for the industrial and public sectors.
Planned Impact
The aim of this grant is to securely establish the Surrey Centre for Cyber Security, the proposed Surrey ACE-CSR, by providing support for the planned activities and developing an appropriate infrastructure. These activities are aimed at achieving impact by engaging with the key stakeholders in Cyber Security through high-profile events and trade fairs aimed at practitioners and researchers at the more technical level, with a focus on promoting exchange and collaboration among all ACE-CSR Centres and engaging with industry. These activities will contribute to the vitality of the Cyber Security community, and disseminate relevant and up-to-date information to organisations and people who will benefit from the research produced by the Surrey Centre for Cyber Security and other ACE-CSR Centres.
We also aim to foster direct focused interactions with organisations. The Applied Security Lab will be used to conduct applied security research, and showcase research results to students, collaborators and industrial visitors. The Centre's website and other publicity materials will showcase our expertise and provide a first port of call for external contacts.
We have an Advisory Board of experts from our network of senior contacts in the Cyber Security community. This Board consists of industrialists, policy makers, and leaders in the academic community, to advise on our strategy, and also to provide active involvement and support for our activities, leveraging our impact. This will provide another source of expertise on the most effective ways to achieve impact. Furthermore, Advisory Board members will themselves be from our target community, and their direct involvement with the ACE will provide another route for impact.
Our involvement with the University of Surrey 5G Innovation Centre provides a unique opportunity for the Surrey Centre for Cyber Security to have a direct impact, at an early stage, on security aspects within the development of 5G technology.
The University of Surrey provides a first-class environment in which to achieve impact. The University's mission statement from 1998 states that
"As a University of real international standing, our vision is to work in partnership with industry, commerce and the professions, as well as with other institutions, for the benefit of the world. We will achieve this by providing scholarship attuned to the particular needs of our technological society, by developing leading-edge research and by creating a rich and varied learning environment for our students."
The University has a strong record of exploiting and applying research and has a vibrant commercial activity, with a number of spin-out companies, and substantial contract and consulting work. The culture of the University is very much attuned to "engaging with the world", and there is strong corporate experience and knowledge, and administrative support for achieving impact.
We also aim to foster direct focused interactions with organisations. The Applied Security Lab will be used to conduct applied security research, and showcase research results to students, collaborators and industrial visitors. The Centre's website and other publicity materials will showcase our expertise and provide a first port of call for external contacts.
We have an Advisory Board of experts from our network of senior contacts in the Cyber Security community. This Board consists of industrialists, policy makers, and leaders in the academic community, to advise on our strategy, and also to provide active involvement and support for our activities, leveraging our impact. This will provide another source of expertise on the most effective ways to achieve impact. Furthermore, Advisory Board members will themselves be from our target community, and their direct involvement with the ACE will provide another route for impact.
Our involvement with the University of Surrey 5G Innovation Centre provides a unique opportunity for the Surrey Centre for Cyber Security to have a direct impact, at an early stage, on security aspects within the development of 5G technology.
The University of Surrey provides a first-class environment in which to achieve impact. The University's mission statement from 1998 states that
"As a University of real international standing, our vision is to work in partnership with industry, commerce and the professions, as well as with other institutions, for the benefit of the world. We will achieve this by providing scholarship attuned to the particular needs of our technological society, by developing leading-edge research and by creating a rich and varied learning environment for our students."
The University has a strong record of exploiting and applying research and has a vibrant commercial activity, with a number of spin-out companies, and substantial contract and consulting work. The culture of the University is very much attuned to "engaging with the world", and there is strong corporate experience and knowledge, and administrative support for achieving impact.
Publications
Gerault D
(2019)
Distance bounding under different assumptions
Gao W
(2018)
Lattice-based deniable ring signatures
in International Journal of Information Security
Galbraith SD
(2020)
On Index Calculus Algorithms for Subfield Curves
G. Avoine
(2018)
Security of Distance-Bounding: A Survey
in ACM Computing Surveys
Frymann N
(2020)
Asynchronous Remote Key Generation
Fraser A
(2022)
On the role of blockchain for self-sovereign identity
Francesco Belardinelli
(2019)
Verifying Strategic Abilities in Multi-agent Systems with Private Data-Sharing
Fielder A
(2018)
Risk Assessment Uncertainties in Cybersecurity Investments
in Games
Ferrag M
(2020)
Deep learning for cyber security intrusion detection: Approaches, datasets, and comparative study
in Journal of Information Security and Applications
Faisal T
(2020)
AJIT
F. Belardinelli
(2023)
Automatically Verifying Expressive Epistemic Properties of Programs
Dragan C
(2020)
KYChain
Dragan C
(2018)
On the asymptotic idealness of the Asmuth-Bloom threshold secret sharing scheme
in Information Sciences
Dongol B
(2019)
Modular transactions
Dongol B
(2021)
Convolution Algebras: Relational Convolution, Generalised Modalities and Incidence Algebras
in Logical Methods in Computer Science
Dongol B
(2022)
Introduction to the Special Section on iFM 2020
in Formal Aspects of Computing
Doherty, S.
(2018)
Brief announcement: Generalising concurrent correctness to weak memory
in Leibniz International Proceedings in Informatics, LIPIcs
Doherty S
(2019)
Verifying C11 programs operationally
Doherty S
(2022)
Unifying Operational Weak Memory Verification: An Axiomatic Approach
in ACM Transactions on Computational Logic
Derrick, J.
(2021)
On strong observational refinement and forward simulation
in arXiv
| Description | This award has supported the growth of the Surrey Centre for Cyber Security and its engagement and advocacy activity. Members of the Centre work with a variety of industrial sectors including transportation, election systems, finance, autonomous systems, robotics, communications, distributed and networked systems, and social networks, and our research has been applied in these sectors in conjunction with industrial partners. Members of the Centre engage with industry to influence major cyber security related standardization activities through involvement in working groups in ISO, Trusted Computing Group, ETSI, IETF, FIDO Alliance, LoRa Alliance, and through the Cyber Security Body of Knowledge. |
| Exploitation Route | The Centre of Excellence provides a focus and driver for the University's research activity in Cyber Security, and enables engagement for applying our research outputs. |
| Sectors | Digital/Communication/Information Technologies (including Software),Financial Services, and Management Consultancy,Government, Democracy and Justice,Security and Diplomacy,Transport |
| URL | https://www.surrey.ac.uk/surrey-centre-cyber-security |
| Description | Researchers within the Academic Centre of Excellence interact with a number of industrial sectors as detailed below. The Centre has established regular cyber-industry facing "Future of Cyber Security" briefings on topics of current interest, such as GDPR, Blockchain and DLT, and Cybercrime, and is providing the focus for growing a network of industrial collaborations and partnerships through joint projects, studentships, CyberInvest activities, and presentation at industry events. |
| First Year Of Impact | 2018 |
| Sector | Digital/Communication/Information Technologies (including Software),Financial Services, and Management Consultancy,Government, Democracy and Justice,Security and Diplomacy,Transport |
| Impact Types | Economic,Policy & public services |
| Description | Contribution to APPG session on Government, Democracy and Voting |
| Geographic Reach | National |
| Policy Influence Type | Contribution to a national consultation/review |
| URL | https://lordchrisholmes.com/blockchain-appg-evidence-meeting-government-democracy-and-voting/ |
| Description | Contribution to Consultation on draft legislation to support identity verification |
| Geographic Reach | National |
| Policy Influence Type | Contribution to a national consultation/review |
| URL | https://www.gov.uk/government/consultations/draft-legislation-to-help-more-people-prove-their-identi... |
| Description | Invited talk on "The CyBOK Formal Methods Knowledge Area" to the High Integrity Software Conference 2021 |
| Geographic Reach | National |
| Policy Influence Type | Influenced training of practitioners or researchers |
| URL | https://www.his-conference.co.uk/index.php?p=programme |
| Description | Provision of Annex 4 Technology Report in Sir Ken Knight Electronic Balloting Review |
| Geographic Reach | National |
| Policy Influence Type | Contribution to a national consultation/review |
| URL | https://www.gov.uk/government/uploads/system/uploads/attachment_data/file/668942/e-balloting-review-... |
| Description | Publication of the IET Report "Internet Voting in the UK", as Chair of the IET E-Voting Working Group, The rep[ort considers the opportunities challenges around the prospect of evoting in the UK. |
| Geographic Reach | National |
| Policy Influence Type | Membership of a guideline committee |
| URL | https://www.theiet.org/media/7025/internet-voting-in-the-uk.pdf |
| Description | AP4L: Adaptive PETs to Protect & emPower People during Life Transitions |
| Amount | £2,794,276 (GBP) |
| Funding ID | EP/W032473/1 |
| Organisation | Engineering and Physical Sciences Research Council (EPSRC) |
| Sector | Public |
| Country | United Kingdom |
| Start | 04/2022 |
| End | 03/2025 |
| Description | Amazon Gift |
| Amount | £100,000 (GBP) |
| Organisation | Amazon.com |
| Sector | Private |
| Country | United States |
| Start | 10/2020 |
| Description | Design and verification of correct, efficient and secure concurrent systems |
| Amount | $460,000 (AUD) |
| Funding ID | DP190102142 |
| Organisation | Australian Research Council |
| Sector | Public |
| Country | Australia |
| Start | 01/2019 |
| End | 12/2021 |
| Description | EPSRC Impact Acceleration Account |
| Amount | £39,922 (GBP) |
| Organisation | Engineering and Physical Sciences Research Council (EPSRC) |
| Sector | Public |
| Country | United Kingdom |
| Start | 11/2018 |
| End | 10/2019 |
| Description | EU H2020 |
| Amount | € 4,868,890 (EUR) |
| Funding ID | 779391 - FutureTPM |
| Organisation | European Commission H2020 |
| Sector | Public |
| Country | Belgium |
| Start | 01/2018 |
| End | 12/2020 |
| Description | EU H2020 |
| Amount | € 2,932,297 (EUR) |
| Organisation | European Commission H2020 |
| Sector | Public |
| Country | Belgium |
| Start | 09/2018 |
| End | 08/2021 |
| Description | FACT: Faithful Composition of Trust |
| Amount | £204,000 (GBP) |
| Organisation | National Cyber Security Centre |
| Sector | Public |
| Country | United Kingdom |
| Start | 10/2019 |
| End | 03/2021 |
| Description | GCHQ PhD studentship |
| Amount | £115,000 (GBP) |
| Organisation | Government Communications Headquarters (GCHQ) |
| Sector | Public |
| Country | United Kingdom |
| Start | 10/2018 |
| End | 03/2022 |
| Description | GCHQ PhD studentship |
| Amount | £115,000 (GBP) |
| Organisation | Government Communications Headquarters (GCHQ) |
| Sector | Public |
| Country | United Kingdom |
| Start | 10/2018 |
| End | 03/2022 |
| Description | GCHQ Small Grants |
| Amount | £12,870 (GBP) |
| Organisation | Government Communications Headquarters (GCHQ) |
| Sector | Public |
| Country | United Kingdom |
| Start | 11/2017 |
| End | 02/2018 |
| Description | GCHQ small grant |
| Amount | £10,580 (GBP) |
| Organisation | Government Communications Headquarters (GCHQ) |
| Sector | Public |
| Country | United Kingdom |
| Start | 01/2018 |
| End | 02/2018 |
| Description | Persistent Safety and Security |
| Amount | £78,000 (GBP) |
| Organisation | The Research Institute on Verified Trustworthy Software Systems |
| Sector | Academic/University |
| Country | United Kingdom |
| Start | 10/2019 |
| End | 03/2023 |
| Description | Transactional Memory Security |
| Amount | £31,063 (GBP) |
| Organisation | National Cyber Security Centre |
| Sector | Public |
| Country | United Kingdom |
| Start | 01/2021 |
| End | 03/2021 |
| Description | Verifiably Correct Transactional Memory |
| Amount | £397,680 (GBP) |
| Funding ID | EP/R032556/1 |
| Organisation | Engineering and Physical Sciences Research Council (EPSRC) |
| Sector | Public |
| Country | United Kingdom |
| Start | 09/2018 |
| End | 09/2021 |
| Title | Tamarin models of different 5G protocols |
| Description | These are used to formally verify the security of 5G protocols in different trust models. You can now find these here https://bit.ly/3w4qgQt |
| Type Of Material | Computer model/algorithm |
| Year Produced | 2021 |
| Provided To Others? | No |
| Impact | It will become available to the wider public soon. |
| URL | https://fmsec.github.io/5gtechsec.github.io/ |
| Title | Tamarin models of the privacy of IoT LoRa protocols |
| Description | These models are used to formally verify the privacy of LoRa protocols |
| Type Of Material | Computer model/algorithm |
| Year Produced | 2021 |
| Provided To Others? | No |
| Impact | These are discussed at the LoRa Alliance Technical Committe and Security Working Group meetings and will/may impact future specifications |
| URL | https://bit.ly/3w5MNN0 |
| Title | Tamarin models of the security of IoT LoRa protocols |
| Description | These models have been used for the formal analysis of security and privacy of LoRa protocols. |
| Type Of Material | Computer model/algorithm |
| Year Produced | 2020 |
| Provided To Others? | Yes |
| Impact | These models have lead to improvement in the LoRa specifications. |
| URL | http://people.itcarlson.com/ioana |
| Description | Partnership with Thales |
| Organisation | Thales Group |
| Department | Thales UK Limited |
| Country | United Kingdom |
| Sector | Private |
| PI Contribution | We are having meetings to align our research to a need they have and have a use-case linked to what they do. |
| Collaborator Contribution | We are having meetings to align our research to a need they have and have a use-case linked to what they do. |
| Impact | No outputs to disclose yet. I would need to double-check with Thales |
| Start Year | 2019 |
| Description | Partnership with the LoRaAlliance |
| Organisation | LoRa Alliance |
| Country | United States |
| Sector | Charity/Non Profit |
| PI Contribution | We work part of the LoRa Alliance Technical committee (TC) and Security Working Group (SWG) on the privacy and security of LoRa devices |
| Collaborator Contribution | They discuss with us our findings in regular TC and SWG meetings and these findings are taken into account in their specs. |
| Impact | one of the work-in-progress input in here (the one where the lead authors is Budykho K.) + the EuroS&P 2020 paper mentioned in the award has already been input into this collaboration |
| Start Year | 2020 |
| Description | Visiting position in Univ Clermont-Auvergne |
| Organisation | University of Clermont Auvergne |
| Country | France |
| Sector | Academic/University |
| PI Contribution | The PI is a visiting academic there working on aspects related to the project. |
| Collaborator Contribution | PI applied for this position and got it and we are working on these project together as well |
| Impact | none yet, but to follow |
| Start Year | 2020 |
| Title | Verify My Vote - open source vote verification system based on the Selene verifiable voting protocol |
| Description | Verify My Vote offers the opportunity to check your vote electronically. It provides anonymised use of tracking numbers to ensure vote privacy, enables voters can check that their vote is included in the count exactly as it was cast, and publishes election audit data to ensure that the integrity of the ballot can be independently confirmed. It is intended as a layer to sit on top of an internet voting system to provide verifiability functionality |
| Type Of Technology | Software |
| Year Produced | 2019 |
| Open Source License? | Yes |
| Impact | User trials with a commercial company offering election services |
| URL | https://vmv.surrey.ac.uk/home |
| Description | Academic Visit to India |
| Form Of Engagement Activity | Participation in an open day or visit at my research institution |
| Part Of Official Scheme? | No |
| Geographic Reach | International |
| Primary Audience | Other audiences |
| Results and Impact | As part of the work in Deliverable 1, the PI made a visit to India to collaborate with Prof. Ramanujam from IMSc Chennai. This was not paid under AutoPaSS, but aligned to it. They are now working on a paper together. |
| Year(s) Of Engagement Activity | 2019 |
| Description | Annual taks the annual conferece of UK-RISE |
| Form Of Engagement Activity | A talk or presentation |
| Part Of Official Scheme? | No |
| Geographic Reach | National |
| Primary Audience | Public/other audiences |
| Results and Impact | "TimeTrust: Robust Timing via Hardware Roots of Trust and Non-standard Hardware with Application to EMV Contactless Payments", talk at the 3rd Annual Conference of RISE (Research Institute in Hardware Security and Embedded Systems), online Nov. 2020 "TimeTrust: Robust Timing via Hardware Roots of Trust and Non-standard Hardware with Application to EMV Contactless Payments", talk at the 2nd Annual Conference of RISE (Research Institute in Hardware Security and Embedded Systems), London, UK, Nov. 2019 |
| Year(s) Of Engagement Activity | 2019,2020 |
| URL | http://ukrise.org |
| Description | Article in New Statesman |
| Form Of Engagement Activity | A magazine, newsletter or online publication |
| Part Of Official Scheme? | No |
| Geographic Reach | International |
| Primary Audience | Public/other audiences |
| Results and Impact | An article on verifiable voting in the New Statesman Spotlight supplement special issue on Cyber Security. |
| Year(s) Of Engagement Activity | 2019 |
| URL | https://www.eventbrite.co.uk/e/the-volt-project-voting-on-ledger-technologies-tickets-60521857505 |
| Description | Became an active part of WG8 of the ISO now |
| Form Of Engagement Activity | A formal working group, expert panel or dialogue |
| Part Of Official Scheme? | No |
| Geographic Reach | International |
| Primary Audience | Industry/Business |
| Results and Impact | We are standardising under ISO 14443 an outcome from a paper. |
| Year(s) Of Engagement Activity | 2022,2023 |
| URL | https://practical_emv.gitlab.io/ |
| Description | Bi-weekly mtgs with the LoRa Alliance Technical Committee or Security Working group |
| Form Of Engagement Activity | A formal working group, expert panel or dialogue |
| Part Of Official Scheme? | No |
| Geographic Reach | International |
| Primary Audience | Industry/Business |
| Results and Impact | PI active member of the LoRa Alliance technical committee and security working group, on matters linked to the project |
| Year(s) Of Engagement Activity | 2020,2021 |
| Description | Blockchain and Distributed Ledger Technology (Industry Networking Event) |
| Form Of Engagement Activity | Participation in an activity, workshop or similar |
| Part Of Official Scheme? | No |
| Geographic Reach | Regional |
| Primary Audience | Industry/Business |
| Results and Impact | The Surrey Centre for Cyber Security (SCCS) are hosting Industry Networking Event, showcasing our activities in the rapidly developing field of Blockchain and Distributed Ledger Technologies and will feature a number of invited talks from academia and industry. The event will take place on Thursday 24 January 2019, 16:00 - 19:00, in the Lecture Theatre F (LTF), Lecture Theatre Building, University of Surrey, and will include light refreshments. The agenda will include presentations by: Welcome from Mark Manulis, Deputy Director, SCCS Steve Pannifer, Director, Chief Operations Office, Consult Hyperion Rob Learney, Lead Technologist, Digital Catapult David Michael, CEO / Co-Founder at Streeva John Collomosse, Professor in Computer Vision, Centre for Vision Speech & Signal Processing This event will also be an opportunity for you to network with the Digital Catapult and local businesses as well as University of Surrey academics. If you are a business interested in collaborating with the University of Surrey or an academic keen to work with industry in the domain of Blockchain and Distributed Ledger Technologies, please join us to find out more. |
| Year(s) Of Engagement Activity | 2019 |
| Description | Cyber Crime and Fraud Awareness seminar |
| Form Of Engagement Activity | Participation in an activity, workshop or similar |
| Part Of Official Scheme? | No |
| Geographic Reach | National |
| Primary Audience | Professional Practitioners |
| Results and Impact | A seminar organised by Surrey Centre for Cyber Security jointly with Lloyds Bank, aimed at their client base and also aimed at the SCCS network of business and indistry |
| Year(s) Of Engagement Activity | 2017 |
| Description | Cyber Security in Space workshop |
| Form Of Engagement Activity | Participation in an activity, workshop or similar |
| Part Of Official Scheme? | No |
| Geographic Reach | National |
| Primary Audience | Industry/Business |
| Results and Impact | 10:30 - 10:45 Welcome remarks by Mark Manulis, SCCS and Chris Bridges, SSC 10:45 - 11:20 Toby Harris, UK Space Agency: "UK Space and Cyber Security'' 11:20 - 11:55 Ian Poyner, SSTL: "Threats throughout the life-cycle" 12:20 - 12:55 Andy Davis, NCC Group: "The cyber attack surface of the Space industry" 12:55 - 13:30 Francis Kinsella, Airbus: "Protecting and Defending Sovereign Space Assets" 14:30 - 15:05 Mark Bowyer, Airbus: "Securing Future NanoSats at Physical Layer" 15:05 - 15:40 Tomer Ashur, KU Leuven: "Broadcast Authentication for Europe's Global Navigation Satellite System" 15:40 - 16:00 Panel discussion: "Directions for Research in Space Cyber Security" |
| Year(s) Of Engagement Activity | 2019 |
| Description | CyberFirst Cyber online activity for Schools for Cyber Security Week 2020 |
| Form Of Engagement Activity | Participation in an activity, workshop or similar |
| Part Of Official Scheme? | No |
| Geographic Reach | National |
| Primary Audience | Schools |
| Results and Impact | An online activity on cryptography, "What's Behind this Coded Message?", for the Cryptography Day of the Empower Cyber Week November 30 - December 4 2020, supported by the National Cyber Security Centre. This is offered as part of CyberFirst. CyberFirst is principally aimed at girls in Years 7 and 8, but as it was offered online in 2020 it was opened up to schools more widely. |
| Year(s) Of Engagement Activity | 2020 |
| URL | https://www.ncsc.gov.uk/empower-cyber-week/day-4-cryptography |
| Description | International Cybersecurity Forum, Lille |
| Form Of Engagement Activity | Participation in an activity, workshop or similar |
| Part Of Official Scheme? | No |
| Geographic Reach | International |
| Primary Audience | Industry/Business |
| Results and Impact | Attendance at the International Cybersecurity Forum, Lille, January 2018, on the UK Science and Innovation Stand, representing the ACEs network |
| Year(s) Of Engagement Activity | 2018 |
| URL | https://www.forum-fic.com/site/GB,I59984.htm |
| Description | Interview for Financial Times of Electronic Voting for their special report on Cyber Security and Society |
| Form Of Engagement Activity | A press release, press conference or response to a media enquiry/interview |
| Part Of Official Scheme? | No |
| Geographic Reach | National |
| Primary Audience | Public/other audiences |
| Results and Impact | Interviewed and quoted in an article for the Financial Times special report on Cyber Security and Society on the topic of Electronic Voting. |
| Year(s) Of Engagement Activity | 2020 |
| URL | https://www.ft.com/content/b4425338-6207-49a0-bbfb-6ae5460fc1c1 |
| Description | New Formal Methods for Security Netwrok |
| Form Of Engagement Activity | A formal working group, expert panel or dialogue |
| Part Of Official Scheme? | No |
| Geographic Reach | International |
| Primary Audience | Other audiences |
| Results and Impact | PI set up a network in the UK and abroad on formal methods for security and she is running it. We meet monthly and discuss reasearch and ideas on this topic. We = academia + industry + researchers/enthousiasts of all sorts. |
| Year(s) Of Engagement Activity | 2021 |
| Description | Organistion of the 2022 UK Cyber Security PhD Winter Schoool |
| Form Of Engagement Activity | Participation in an activity, workshop or similar |
| Part Of Official Scheme? | No |
| Geographic Reach | International |
| Primary Audience | Postgraduate students |
| Results and Impact | A 3 day virtual winter school aimed primarily at UK PhD students (but also open to international attendees), with a variety of group activities. Example student feedback: "This winter school completely broadened my horizons and encouraged me to look beyond just my current area of research. I never imagined security could be linked to forensic science, neuroscience, society, and human psychology, but after attending these sessions, I've realised that cyber security is also a matter of national health, wealth and service, in the present and future." |
| Year(s) Of Engagement Activity | 2022 |
| URL | https://www.youtube.com/watch?v=R0wPcbRQSGM&list=PLLEP5_kbCRN5kRj3MgLmmRUHt_pt7Sub7 |
| Description | Panel discussion at TEISS 2017 |
| Form Of Engagement Activity | A talk or presentation |
| Part Of Official Scheme? | No |
| Geographic Reach | International |
| Primary Audience | Industry/Business |
| Results and Impact | Participated as panellist in the discussion on the topic of "Segregating third party access in the cloud" with the "Identity & Acess Management" stream of The European Information Security Summit (TEISS) 2017. |
| Year(s) Of Engagement Activity | 2017 |
| URL | https://biztechevents.co.uk/teiss/cth_speaker_cat/speaker-2017/page/2/ |
| Description | Presentation at Future of Distributed Ledger Technology workshop, Newton Institute Cambridge |
| Form Of Engagement Activity | A talk or presentation |
| Part Of Official Scheme? | No |
| Geographic Reach | National |
| Primary Audience | Other audiences |
| Results and Impact | Discussions around the future of distributed ledger technologies including policy and practice |
| Year(s) Of Engagement Activity | 2019 |
| URL | https://gateway.newton.ac.uk/event/tgmw71 |
| Description | Presentation at the HMG Distroibuted Ledger Technoloigy Communit of Interest event |
| Form Of Engagement Activity | A talk or presentation |
| Part Of Official Scheme? | No |
| Geographic Reach | Regional |
| Primary Audience | Professional Practitioners |
| Results and Impact | Presentation about verifiable voting and about he VOLT project at the "Community of Interest on DLT's" event. |
| Year(s) Of Engagement Activity | 2018 |
| Description | Presentation on Secure Electronic Voting to the UK PhD Winter School on Cyber Security, Newcastle |
| Form Of Engagement Activity | A talk or presentation |
| Part Of Official Scheme? | No |
| Geographic Reach | National |
| Primary Audience | Postgraduate students |
| Results and Impact | Training and education for PhD students in Cyber Security |
| Year(s) Of Engagement Activity | 2020 |
| URL | https://sites.google.com/view/phd-cyber-winterschool2020/home?authuser=0 |
| Description | Presentation on the VOLT project to the DLT Community of Interest |
| Form Of Engagement Activity | Participation in an activity, workshop or similar |
| Part Of Official Scheme? | No |
| Geographic Reach | National |
| Primary Audience | Industry/Business |
| Results and Impact | Presented on the VOLT project at the DLT Community of Interest event in Whitehall to an audience of approx 100 DLT enthusiasts and practitioners. The talk generated a substantial number of questions. |
| Year(s) Of Engagement Activity | 2018 |
| Description | Reputation and Privacy in Gig Economy |
| Form Of Engagement Activity | A talk or presentation |
| Part Of Official Scheme? | No |
| Geographic Reach | National |
| Primary Audience | Professional Practitioners |
| Results and Impact | Presented research results on privacy-preserving reputation management scheme to participants of NCSC Annual Conference. |
| Year(s) Of Engagement Activity | 2019 |
| Description | Seminar at Royal Holloway University of London |
| Form Of Engagement Activity | A talk or presentation |
| Part Of Official Scheme? | No |
| Geographic Reach | Local |
| Primary Audience | Postgraduate students |
| Results and Impact | Seminar on the development of the Web Bulletin Board, presented at Royal Holloway, to approx 30 strong audience. |
| Year(s) Of Engagement Activity | 2017 |
| Description | Seminar at University of Southampton |
| Form Of Engagement Activity | A talk or presentation |
| Part Of Official Scheme? | No |
| Geographic Reach | Local |
| Primary Audience | Postgraduate students |
| Results and Impact | Seminar at Southampton to talk about the formal development underpinning the web bulletin board used in electronic voting |
| Year(s) Of Engagement Activity | 2017 |
| Description | Strategic Advisory Board Meeting |
| Form Of Engagement Activity | Participation in an activity, workshop or similar |
| Part Of Official Scheme? | No |
| Geographic Reach | Local |
| Primary Audience | Other audiences |
| Results and Impact | This was the first mtg with industrial and academic advisors for AutoPaSS. PhD students of the PI, not funded by this, also took part. |
| Year(s) Of Engagement Activity | 2019 |
| Description | Talk about Verifiable voting and DLT at the Government Digital Service Academy, May 2019 |
| Form Of Engagement Activity | A talk or presentation |
| Part Of Official Scheme? | No |
| Geographic Reach | Regional |
| Primary Audience | Professional Practitioners |
| Results and Impact | Approximately 30 staff from the Government Digital Service attended a talk I was invited to give as part of their Academy termcard. The talk generated questions around verifiable voting and around DLT from a well-informed and engaged audience. |
| Year(s) Of Engagement Activity | 2019 |
| URL | https://www.eventbrite.co.uk/e/the-volt-project-voting-on-ledger-technologies-tickets-60521857505 |
| Description | Talk at the FM-SEC -- formal methods in security network |
| Form Of Engagement Activity | A talk or presentation |
| Part Of Official Scheme? | No |
| Geographic Reach | National |
| Primary Audience | Professional Practitioners |
| Results and Impact | I gave two talks in 2021 at the fm-sec network, which I also run |
| Year(s) Of Engagement Activity | 2021 |
| URL | https://fmsec.github.io/fmsec |
| Description | Talk at the UK-SPS international seminar series |
| Form Of Engagement Activity | A talk or presentation |
| Part Of Official Scheme? | No |
| Geographic Reach | International |
| Primary Audience | Other audiences |
| Results and Impact | title "Practical and Formal Analysis Security of Contactless Mobile Payments" |
| Year(s) Of Engagement Activity | 2021 |
| URL | https://www.youtube.com/watch?v=3wzkd07A5ZU |
| Description | Workshop on Cyber Security @ British Ambassador's Residence in Paris |
| Form Of Engagement Activity | Participation in an activity, workshop or similar |
| Part Of Official Scheme? | No |
| Geographic Reach | International |
| Primary Audience | Industry/Business |
| Results and Impact | On invitation from the British Embassy in Paris, a team member participated in a workshop aimed at fostering cross-channel collaborations between French and Bristish businesses, academics and policy-makers surrounding issues of cyber security. The SCCS member led a panel discussion on coming threats and challenges in cyber security. Participation in the event was an excellent opportunity to advertise our research capacity and expertise to both UK and French businesses, and to establish strong contacts in cyber-related policy-making circles in both countries. This has already led to some external visits to SCCS, and is expected to lead to further collaborations in research, but also in relation to our teaching and further outreach activities. |
| Year(s) Of Engagement Activity | 2017 |
| Description | press release on apple-pay and visa mobile-payment attacks |
| Form Of Engagement Activity | A press release, press conference or response to a media enquiry/interview |
| Part Of Official Scheme? | No |
| Geographic Reach | International |
| Primary Audience | Media (as a channel to the public) |
| Results and Impact | The work I lead on the GCHQ-funded TimeTrust project, under EPSRC-GCHQ research institute called UK-RISE (ukrise.org) lead to a serious cyber attack being uncover on ApplePay and Visa payment systens. this made the front pages of the BBC, and of most world-wide media outlets; see, e.g., here: https://www.bbc.co.uk/news/technology-58719891 |
| Year(s) Of Engagement Activity | 2021 |
| URL | https://www.bbc.co.uk/news/technology-58719891 |