PhD position on Characterizing and Detecting IoT Malware

The Centrum voor Veiligheid en Digitalisering (Centre for Safety and Digitalisation, CVD) is a knowledge institute in which companies and public organisations are collaborating on questions related to this theme. In this context,  the University of Twente, Saxion University of Applied Sciences, and the Police Academy of the Netherlands are setting up a joint research program around this time. The research program is centered around the 3 focus areas of the CVD: critical data & infrastructure, actionable intelligence and cyberresilience.


For each research line, they are looking for two PhD students to work on this theme. The PhD students will work in a multidisciplinary fashion, in close collaboration with each other, and with the supervision teams with members from the different CVD partners.

How can they accurately and efficiently characterize and detect malware infections targeting IoT devices? Want to help answering this question? Apply now!

Lees hieronder de hele vacature

Vacature details

Geplaatst op
12-5-2022
Aantal uur
40
Vervaldatum
31-5-2022
Opleidingsniveau
PhD

Functie omschrijving

About the Project:

Internet of Things (IoT) devices have become ubiquitous. While they automate and simplify many aspects of users’ lives, recent large-scale attacks have shown that their sheer number poses a severe threat to the Internet infrastructure. In fact, cybercriminals have started to target this new technology for malicious purposes. In particular, they have witnessed the development and spreading of IoT-targeted malware, which infects IoT devices to create botnets and run distributed attacks. Unfortunately, because of the fundamental technological differences of the IoT ecosystem (e.g., low power and limited computational resources), traditional malware analysis and defense approaches are not applicable in this setting.


In this project, they will first design and develop methodologies and tools to understand and characterize IoT malware. This will allow them to depict a comprehensive picture of the current threat landscape and to identify the common properties of this new class of malicious behaviors. Then, they will leverage the obtained knowledge to research novel lightweight approaches to effectively and efficiently detect malware infections in IoT devices, mitigating dangerous attacks. Finally, they will investigate the scenario of supply chain attacks, i.e., malware being injected into third-party libraries that are embedded in the building process of IoT firmware.

Functievereisten

Your profile:

  • You are a highly motivated and enthusiastic researcher, aspiring to do world-class research and have real-world impact.
  • You have, or will shortly acquire a MSc degree with excellent grades in computer science, or similar;
  • You are interested in the domain of cybersecurity and particularly have a solid background in network and systems security; some good background in reverse engineering and software modeling and prior experience with writing scientific papers are of additional advantage.
  • You are curious and interested in learning how things work and how to make them better.
  • You are an independent and original thinker with a creative mindset.
  • You have good analytical and communication skills.
  • You have a good team spirit and like to work in an internationally oriented environment.
  • You are proficient in English (verbal and written).

Aanbod

Their offer:

  • As a PhD student at UT, you will be appointed to a full-time position for four years, with a qualifier in the first year, within a very stimulating and exciting scientific environment;
  • The University and partner institutes offer a dynamic ecosystem with enthusiastic colleagues;
  • Your salary and associated conditions are in accordance with the collective labour agreement for Dutch universities (CAO-NU);
  • You will receive a gross monthly salary ranging from € 2.443,- (first year) to € 3.122,- (fourth year);
  • There are excellent benefits including a holiday allowance of 8% of the gross annual salary, an end-of-year bonus of 8.3%, and a solid pension scheme;
  • A family-friendly institution that offers parental leave (both paid and unpaid);
  • You will have a training programme as part of the Twente Graduate School where you and your supervisors will determine a plan for a suitable education and supervision;
  • Part of this training programme will be filled by trainings developed especially by the CVD partners;
  • They encourage a high degree of responsibility and independence, while collaborating with close colleagues, researchers and other staff.

Bedrijfsprofiel Universiteit Twente

About the organization:

The faculty of Electrical Engineering, Mathematics and Computer Science (EEMCS) uses mathematics, electronics and computer technology to contribute to the development of Information and Communication Technology (ICT). With ICT present in almost every device and product we use nowadays, they embrace their role as contributors to a broad range of societal activities and as pioneers of tomorrow's digital society. As part of a people-first tech university that aims to shape society, individuals and connections, their faculty works together intensively with industrial partners and researchers in the Netherlands and abroad, and conducts extensive research for external commissioning parties and funders. Their research has a high profile both in the Netherlands and internationally. It has been accommodated in three multidisciplinary UT research institutes: Mesa+ Institute, TechMed Centre and Digital Society Institute.


About the department;

Due to the central role and importance of data, their Cybersecurity research strategy at the Services and Cybersecurity (SCS) group follows a data-centric approach. This approach tackles the challenge of defending computer systems as a whole from two different angles, namely by mitigating the risk imposed by ubiquitous data but also by taking the opportunities provided by data richness. First, they research security mechanisms to provide security for data not only while stored and transmitted over networks as implemented by conventional systems but even during data processing. Second, they research the use of data for security and envision a world in which the continuously increasing amounts of data are utilized to identify, analyze, prevent, and respond to cyber-threats. Both research directions are based on the analysis of existing systems and software but also on the design of novel systems.

Solliciteren

By clicking the application button, you will be navigated to the website of the University of Twente. In case the link is not working anymore, the vacancy has expired and you will no longer be able to apply. We try to keep our job database as up-to-date as possible, we would very much appreciate it if you could let us know in case a link is not working? You can do this by sending an e-mail to vacatures@twente.com. 

Would you like to be kept up-to-date about other interesting jobs in Twente, then sign up here and create your own job account!

Meer informatie

Drienerlolaan 5
7522 NB ENSCHEDE
053 - 4899 111