Homepage of Erik PollI am associate professor in the Digital Security (DiS) research group of ICIS (Institute for Computing and Information Science) at the Faculty of Science of Radboud University in Nijmegen. |
|
My core research interest is software security: most cybersecurity problems originate in software and my research aims to address some of the root causes of these problems through the use of formal methods and, more generally, rigorous and systematic approaches in software engineering, such as formal specification and verification, type systems, model-based testing, protocol state fuzzing to analyse protocol and the LangSec approach to secure input handling.
Case studies in the use of formal methods for improve security include analysis of EMV and state machine inference (aka active learning) for various security protocols, incl. EMV bank cards, TLS, SSH and internet banking.
Earlier I worked on program specification and verification, in particular for Java and Java Card using the specification language JML. Research into Java Card in our group resulted in some smartcard software and RFID tools.
In more applied security research I have investigated security and privacy issues across many applications domains, such as smartcards, RFID tags, TEEs, e-passports, payment cards, internet banking, smart grids (incl. smart meters and charging of electric cars) and automotive systems.
Some outliers, topic-wise: with Tommy Koens I wrote a couple of papers analysing the (usually flawed) reasons for thinking that blockchain might be a sensible solution and my former PhD student Alex Serban looked at adversarial attacks.
My current PhD students are Seyed Benham Andarzian, Cristian Daniele, Job Doesburg and Patrick Lodeweegs.
Master courses I teach are part of the Cyber Security specialisation in our Computing Science Master