CyberSecurity

My MSc thesis was on the topic: Cyber security assessment for web service-based monitoring of industrial systems, download from here.

During the period (Jan 2015-Dec 2017) I was was coordinating TUT team in the MUSA EU research project which deals with security in multi-cloud applications.

I have been co-author in some security-related research papers:

• Security in Cloud-Based Cyber-Physical Systems
• Methodology to Obtain the Security Controls in Multi-cloud Applications
• Enhancing Security in Cloud-based Cyber-physical Systems

I have knowledge and some experience on:

• Risk assessment
• Threat modelling (STRIDE classification)
• Security by Design (SbD)
• Web Services Security (OASIS WS-Security)
• OAuth 2
• Spring Security for Rest APIs
• Distributed authentication and Json Web Tokens (JWT)
• Access Control List (XACML)
• Authentication for Node.js (Passport)
• Implementation of OAuth 2 flows on Node.js (simple-oauth2, auth2-server)
• Integration of the authentication service Auth0 , with Andriod mobile apps and web-based interfaces, using JWTs.