PhD and MSc Theses
Open Topics
We have several hot research topics looking for new MSc students. If you are highly motivated to pursue an MSc, are willing to make high impact research, and feel thrilled about security and systems research, please contact Nuno Santos. You can have a look at the areas we are working on currently by checking this link: research. We are also open to all kinds of research ideas you might be interested in, especially the crazy ones. Tell us about it!
Completed PhD Theses
| 2021 | On the Unobservability of Multimedia-based Covert Channels for Internet Censorship Circumvention Diogo Barradas (co-advised with Luís Rodrigues, INESC-ID/IST) [pdf] |
| 2021 | Building Private-by-Design IoT Systems Igor Zavalyshyn (co-advised with Ramin Sadre, UC Louvain) [pdf] |
| 2013 | Improving Trust in Cloud, Enterprise, and Mobile Computing Platforms Nuno Santos [pdf] |
Completed MSc Theses
| 2023 | DevSecOps framework focused on Continuous Security Testing Clarisse Feio (co-advised with Bernardo Pacheco, INOV) [pdf] |
| 2023 | Security Risks and Protection of AI Models in Smart Retail Rodrigo Pedro (co-advised with Paulo Carreira, INESC-ID/IST) [pdf] |
| 2023 | ExplodeQ.js: A Library of Queries to Detect Injection Vulnerabilities in Node.js Applications Miguel Monteiro (co-advised with José Fragoso Santos, INESC-ID/IST) [pdf] |
| 2023 | Data Plane Applications with In-Network Elements João Veríssimo (co-advised with Eduard Marin, Telefonica) [pdf] |
| 2023 | Thwarting Traffic Confirmation Attacks in Tor with Traffic Modulation and Cover Traffic Afonso Gomes (co-advised with Kevin Gallagher, FCT/NOVA) [pdf] |
| 2023 | Efficient Data Provenance for Stream Processing Systems João Antunes (co-advised with Paulo Carreira, INESC-ID/IST) [pdf] |
| 2022 | Research on how to Conduct Penetration Testing Assessments on Cloud Computing Environments using Azure David Alves [pdf] |
| 2022 | Automatic Rule Generation for Network Intrusion Detection Systems João Cruz [pdf] |
| 2022 | Towards Automatic Detection of Exploitable Vulnerabilities in WebAssembly Modules of Real-World Websites Daniel Matos (co-advised with Pedro Adão, IT/IST) [pdf] |
| 2022 | Deanonymization of Tor Onion Services with Acceleration-Based Watermarking Afonso Carvalho (co-advised with Diogo Barradas, U. Waterloo) [pdf] |
| 2022 | Extensible and Flexible Multi-Factor Authentication for an Online Banking Platform Henrique Completo [pdf] |
| 2022 | Enhancing the Tor Anonymity Network with K-Anonymous Flashmobs José Brás (co-advised with Diogo Barradas, U. Waterloo) [pdf] |
| 2022 | Enabling Censorship-Resistant Tor Communications through WebRTC-Based Covert Channels Francisco Silva (co-advised with Diogo Barradas, U. Waterloo) [pdf] |
| 2022 | Tráfico de pessoas online, a exploração pela dark web e as formas de combate técnico-jurídicas Nathália Carvalho [pdf] |
| 2021 | Affordable Managed Security Services for Small and Medium-sized Enterprises in Portugal Marco Reis [pdf] |
| 2021 | A Censorship-Resistant Publish-Subscribe System Based on WebRTC Covert Channels Pedro Custódio [pdf] |
| 2021 | Stegozoa: Securing the Transmission of Covert Internet Communications over WebRTC Gabriel Figueira [pdf] |
| 2021 | Robust Symbolic Execution for WebAssembly Filipe Marques (co-advised with José Fragoso Santos, INESC-ID/IST) [pdf] |
| 2021 | Traceless Execution Support for Privacy Enhancing Technologies Daniela Lopes [pdf] |
| 2021 | Distributed System for Cooperative Deanonymization of Tor Circuits Pedro Medeiros [pdf] |
| 2021 | Hardening Tor against State-Level Traffic Correlation Attacks with K-Anonymous Circuits Vitor Nunes [pdf] |
| 2021 | Building GDPR-Compliant Applications with RuleKeeper Mafalda Ferreira [pdf] |
| 2021 | Discovering Vulnerabilities in WebAssembly with Code Property Graphs Pedro Lopes (co-advised with José Fragoso Santos, INESC-ID/IST) [pdf] |
| 2021 | Security Assessment of the Oeiras Municipality IT Infrastructure José Gomes (co-advised with Ricardo Chaves, INESC-ID/IST) [pdf] |
| 2020 | Concolic Execution for WebAssembly Carolina Costa (co-advised with José Fragoso Santos, INESC-ID/IST) [pdf] |
| 2020 | WArdian: Securing WebAssembly Applications on Untrusted Mobile Operating Systems Francisco Canana [pdf] |
| 2020 | Locksmith: Secure Android Keystore Based on Virtualized Trusted Environments Luís Tonicha [pdf] |
| 2019 | Crystalline: A Privacy-Aware Middleware for the Android Platform Eduardo Gomes (co-advised with João Silva) [pdf] |
| 2019 | Identification of Skype Covert Channels using Sketches in SDNs André Madeira (co-advised with Luís Rodrigues) [pdf] |
| 2019 | An Ecosystem for Securing Vehicle-to-Everything Communication Leonardo Gonçalves (co-advised with Carlos Cardoso, Multicert) [pdf] |
| 2019 | Identidade Digital – o Espectro desde a Anonimização à Identificação Cláudia Sequeira (co-advised with Maria Moniz, CEDIS) [pdf] |
| 2018 | HCE Mobile Ticketing: Providing Security for Mobile Ticketing Applications Backed by TrustZone Pedro Ribeiro [pdf] |
| 2018 | An Investigation into the Relationship between Cryptocurrencies, Anonymisation Networks, and the Darknet Cybercrime Scene Angelos Velissaratos (co-advised with Nelson Escravana, INOV) [pdf] |
| 2018 | DClaims: A Censorship-Resistant Web Annotations System João Santos (co-advised with David Dias, Protocol Labs) [pdf] [repo] |
| 2016 | Centroid - A Remote Desktop With Multi-OS Interoperability Support André Pimenta (co-advised with Ricardo Chaves, INESC-ID/IST) [pdf] |
| 2016 | Trustversion: A Secrecy-Protected Version Control System Marta Sequeira [pdf] |
| 2016 | Darkroom: The Use of ARM TrustZone For Secure Data Processing on the Cloud Tiago Brito [pdf] |
| 2016 | TrustFrame, a Software Development Framework for TrustZone-enabled Hardware João Ramos (co-advised with João Silva, INESC-ID/IST) [pdf] |
| 2016 | Identity Management for Hyper-Linked Entities in reTHINK Gil Dias (co-advised with Ricardo Chaves, INESC-ID/IST) [pdf] |
| 2016 | Security Policies Support for the reTHINK Web Service Architecture Ana Caldeira (co-advised with Ricardo Chaves, INESC-ID/IST) [pdf] |
| 2016 | Unobservable Covert Streaming for Internet Censorship Circumvention Diogo Barradas (co-advised with Luís Rodrigues, INESC-ID/IST) [pdf] |
| 2016 | P-Cop: Securing PaaS Against Cloud Administration Threats Bruno Braga [pdf] |
| 2016 | ShareIff: A Sticky Policy Middleware for Self-Destructing Messages in Android Applications António Monteiro [pdf] |
| 2016 | Storekeeper: A Security-Enhanced Cloud Storage Aggregation Service Sancha Pereira (co-advised with Ricardo Chaves, INESC-ID/IST) [pdf] |
| 2016 | MIPSter32 - A 32 bit MIPS Simulator João Quintas (co-advised with José Monteiro and Ricardo Chaves, INESC-ID/IST) [pdf] |
| 2015 | Floodgate: An Information Flow Control Platform for Distributed Mobile Applications Sérgio Moura [pdf] |
| 2015 | TrUbi - Mobile Operating System Security Miguel Costa (co-advised with Paulo Ferreira, INESC-ID/IST) [pdf] |
| 2015 | On the Effectiveness of Trust Leases in Securing Mobile Applications Nuno Duarte (co-advised with Paulo Ferreira, INESC-ID/IST) [pdf] |