Category: Events

18th of December at 16h00, Jessica Maciel and Horácio França  will give two short presentations, to promote discussion on two relevant ongoing or disruptive topics. Afterwards, there will be a social gathering where everyone can talk freely on whatever subjects they like.
Location: G4.1

Jessica Maciel – “Developing Attack Detection Models for Microservice Applications”

Bio
Jessica holds a BSc degree in Computer Science and a MSc in Informatics from the Federal University of Paraíba, Brazil. She is currently pursuing a PhD in Informatics Engineering at the University of Coimbra, Portugal, with a focus on runtime security for microservice applications.
Abstract
Microservice architectures provide scalability and flexibility, but their distributed nature and complex service structures introduce new security challenges, especially in detecting cyberattacks. In this talk, we will present our work on developing attack detection models for microservice applications, including a framework designed to generate realistic attack data and develop detection models with illustrations in the context of DDoS attacks.

Horácio França – “Using Generative Pre-trained Transformers to Identify Security Bugs among Bug Reports”

Bio
Horácio is currently a PhD student at the University of Coimbra. He has a bachelor’s degree in Computer Science and a master’s degree in Systems and Computer Engineering from the Federal University of Rio de Janeiro. His research interests include Artificial Intelligence, Cyber Security and the intersection of those subjects.
Abstract
Bug trackers are useful tools for developers to identify issues in their software, however, depending on how many reports are being submitted it may become hard to prioritize what to tackle first. Security issues being reported in this manner need to be identified rapidly for two reasons: Firstly, they need to be addressed in the software as quickly as possible, and secondly because a public issue report about a security bug could inform malicious actors of the existence of an exploitable vulnerability. With the increased use of GPTs across industry and academia, this problem seemed like a good application of this technology. In this presentation, we expound on the results obtained from testing 4 different GPT models on 7 different security bug report datasets.

• 

• 

• 

27th of November at 16h00, Nuno Lourenço (bAI)  will give a presentation entitled“Smart, Sustainable, and Evolved AI” 
Location: G4.1Online: https://meet.google.com/rqf-xofk-dck

Abstract
In this talk, we will present and discuss how nature-inspired approaches, namely evolutionary algorithms (EAs) can address sustainability and robustness challenges in AI, namely in Deep Artificial Neural Networks (ANNs).

Bio
Nuno Lourenço is an Associate Professor at the Department of Informatics Engineering of the University of Coimbra, where he obtained his PhD in Information Science and Technology in 2016. He is the current coordinator of the bio-Inspired Artificial Intelligence (bAI) group and is a member of the Centre for Informatics and Systems of the University of Coimbra (CISUC) since 2009. His main research interests are in the areas of Bio-Inspired Algorithms, Optimisation and Machine Learning. He is the co-creator of Structured Grammatical Evolution, Probabilistic Grammatical Evolution, and DENSER, a novel approach to automatically design Deep Artificial Neural Networks using Evolutionary Computation. He served as chair in the main conferences of the Evolutionary Computation field, namely EuroGP 2020 and 2021 as program chair, and PPSN 2018 and EuroGP 2019 as publication chair. He is a member of the Programme Committee of GECCO, PPSN, and EuroGP; a member of the Steering Committee of EuroGP; and an executive board member of SPECIES.

23rd of October at 16h00, Elias P. Duarte Jr. (UFPR) will give a presentation entitled“NFV-COIN: Leveraging In-Network Computing with Network Function Virtualization” 
Location: G4.1Online: https://meet.google.com/rqf-xofk-dck

Abstract
In this talk we will examine a phenomenon that can resignify communication networks as we know them. Instead of acting just as a data transport medium, multiple technologies have made it possible to leverage networks to run and provide user-level services. This paradigm has been alternately called Computing In the Network (COIN) and In-Network Computing (INC). INC has been mostly used in the context of programmable hardware, which provides support for the implementation of services on the data-layer level. Network Functions Virtualization (NFV) is another alternative technology to deploy novel types of services within the network. NFV allows the implementation in software of middleboxes traditionally available as specialized hardware. Network services can be implemented as SFCs (Service Function Chains) based on virtualization technologies that run on commodity hardware. Although most virtualized functions have classic middlebox functionalities (e.g. firewalls or intrusion detectors) arbitrary COIN services can be implemented using NFV technologies, which we call NFV-COIN. An NFV-COIN architecture has been proposed and published as an IETF Draft. We present case studies of NFV-COIN services for distributed abstractions that are notoriously relevant and hard to implement and maintain, including consensus, reliable and ordered broadcast, and failure detectors.

Bio
Elias P. Duarte Jr. is a Full Professor at Federal University of Parana, Curitiba, Brazil, where he is the head of the Computer Networks, Distributed Systems & Security Lab (LaRSiS). He has been twice (2005 and 2009) Visiting Associate Professor at Tohoku University (Japan) and Visiting Researcher at the University of California at Irvine (1997). His research interests include Computer Networks and Distributed Systems, their Dependability, Management, and Algorithms. He has published over 300 peer-reviewer papers and has supervised more than 130 students both on the graduate and undergraduate levels. Prof. Duarte has been Associate Editor of the Computing (Springer) journal and IEEE Transactions on Dependable and Secure Computing, and has served as chair of 30 conferences and workshops in his fields of interest, including chairing TCPs of SRDS’18, ICDCS’21, and GLOBECOM’24. He received a Ph.D. degree in Computer Science from Tokyo Institute of Technology, Japan, 1997, M.Sc. degree in Telecommunications from the Polytechnical University of Madrid, Spain, 1991, and both BSc and MSc degrees in Computer Science from Federal University of Minas Gerais, Brazil, 1987 and 1991. He chaired the Brazilian National Laboratory on Computer Networks (2012-2016). He is a member of the IFIP WG 10.4 on Dependable Computing & Fault Tolerance, a Member of the Brazilian Computing Society (SBC) and a Senior Member of the IEEE.

• 

• 

• 

• 

• 

9th of October at 16h00, Haytham Hijazi will give a presentation entitled“Where Did I Get Lost? Wearables and Explainable AI to Understand Your Brain’s Comprehension Process” 

Location: G4.1

Abstract
As our digital world becomes increasingly complex, especially with the vast amounts of content and intricate code in the software industry, keeping up with content comprehension can be challenging. Often, we find ourselves getting lost while engaging with complex information (even with the assistance of AI tools like ChatGPT). This talk spots the light on an innovative approach to tackle this issue by integrating physiological data from wearables (such as smartwatches) with eye-tracking technology to estimate cognitive effort during the comprehension process.We combine these insights with explainable machine learning models to predict when, where, and why comprehension difficulties arise. To enhance the explainability, our approach includes a risk analysis framework that assigns a risk score to different sections of content, explaining which parts affect overall understanding the most. This fusion of AI, wearables, and explainability may provide new perspectives on improving content engagement and understanding in various contexts.

Bio
Haytham Hijazi recently obtained his Ph.D. in Informatics Engineering (Intelligent Systems) with highest distinction from the University of Coimbra. His research focuses on predicting content comprehension and engagement levels in individuals using wearable biometric data and AI. His work has been published in top peer-reviewed journals and presented at international conferences.He earned his MSc. in Informatics Engineering from the University of Stuttgart, Germany, with honors, funded by a DAAD scholarship.Hijazi’s expertise spans machine learning, wearable data analysis, and AI in software engineering.

• 

• 

• 

24th of July at 16h00, Paulo Carvalho will give a presentation entitled“Dependability Challenges in Digital Health” 
Location: G4.1

Bio
Paulo de Carvalho holds a PhD in Informatics Engineering (2002) and a Full Professor position at the University of Coimbra. He is a co-founder of the Health Informatics Lab at CISUC. His main research interests are bio-signal processing, feature engineering and intelligent algorithms for medical applications. He has published approx. 300 papers in scientific journals and conferences with over 4000 known citations. He was the coordinator for several national and EU projects in Digital Health. He currently is the coordinator of the Digital Health Division of the International Federation of Medical and Biological Engineering, an Associate Editor of the IEEE International Journal on Biomedical and Health Informatics and the Vice-President of the Ethics Committee at the University of Coimbra. 

Abstract
The broad scope of digital health includes categories such as mobile health (mHealth), health information technology (IT), wearable devices, telehealth and telemedicine, and personalized medicine. These tools are absolutely instrumental in order to provide the much-needed support in today’s social challenges related to chronic diseases and population ageing. In this talk we will discuss some dependability related challenges in digital health as well as some ideas how digital health technology might assist research in dependability. We will start with a short overview of the social and medical context faced in today’s societies as well as an overview of some of the solutions developed inside the Health Informatics Lab. This will serve as the context to introduce and discuss some relevant dependability issues raised by big data/open data spaces requirements, intelligent systems where the human is part of the loop and certification processes. 

• 

3rd of July at 16h30, Diego Gomes and Eduardo Felix  will give two short presentations, to promote discussion on two relevant ongoing or disruptive topics. Afterwards, there will be a social gathering where everyone can talk freely on whatever subjects they like.
Location: G4.1

Diego Gomes – “Vulnerabilities Detection in IoT Gateways Source Code”
Bio
Diego Ribeiro Gomes is a Ph.D. student in the Department of Informatics Engineering at the University of Coimbra. He holds a Bachelor’s degree in Computer Networks and a Master’s degree in Applied Informatics from UFRPE, with a focus on evaluating security requirements in the Internet of Things (IoT). Currently, he is involved in a project on static analysis in IoT, aiming to identify vulnerabilities and enhance the security of IoT systems. His research interests include Information Security, Cybersecurity, and the Internet of Things (IoT).
Abstract
The growth of the Internet of Things (IoT) has brought significant advancements across various industry sectors. Simultaneously, security concerns have also escalated due to the IoT expansion. Cyber-attacks target numerous IoT devices due to firmware, source code, and software vulnerabilities. In this context, static analysis integrates techniques such as taint, syntax, flow, semantics, and graph analysis to detect vulnerabilities without executing the code. However, studies indicate that these techniques have specific limitations in identifying vulnerabilities highlighted by OWASP, a recognized authority for its expertise in identifying significant threats in the community. This project aims to propose a solution based on static analysis techniques to enhance the detection of vulnerabilities highlighted in OWASP’s Top 10 in the source code of IoT gateways. 

Eduardo Felix – “Dynamic Security Evaluation of Smart Home Devices”
Bio
Eduardo Ferreira Felix holds a bachelor’s degree in Computer Science from the Federal Rural University of Pernambuco (UFRPE – Academic Unit of Garanhuns), completing his undergraduate studies in 2018. Subsequently, he obtained a Master’s degree in Applied Informatics from the same institution in Recife, completing his master’s degree in 2022. He is pursuing his Ph.D. and is a researcher at the Department of Informatics Engineering at the University of Coimbra, Portugal. His main research interests include topics such as information security, cybersecurity, and the Internet of Things.
Abstract
The continuous advancement of the Internet of Things (IoT) brings substantial security challenges, demanding approaches that ensure the integrity and confidentiality of interconnected devices. However, safeguarding these devices becomes a challenging task, calling for adaptable security solutions tailored to the distinctive attributes of these devices and the environments in which they operate. This project aims to propose a solution for the dynamic analysis of IoT device security in the context of smart homes, aiming to identify and analyze vulnerabilities listed in the OWASP Top 10 IoT reference. To accomplish this, we will explore techniques, methods, and approaches based on dynamic analysis for vulnerability detection.Our goal is to consider the distinctive characteristics of smart homes and the diversity of IoT devices, ensuring effectiveness in vulnerabilitydetection. 

• 

• 

• 

19th of June at 16h00, Ibéria Medeiros will give a presentation entitled“Software inSecurity: Attack, Detection and Correction of Vulnerabilities” 
Location: G4.1

Bio
Ibéria Medeiros is an Associate Professor in the Department of Informatics, at the Faculty of Sciences of the University of Lisboa, and an integrated researcher of LASIGE. She holds a PhD degree in Computer Science and a MSc degree in Informatics both at the Faculty of Sciences of the University of Lisboa. She has been involved in international and national research projects related to cybersecurity, among them SEAL, XIVT, DiSIEM, SEGRID, and she has more than 50 publications. Her main research focuses on software security, including detection and correction of vulnerabilities, in the context of web and stand-alone applications, and machine learning applied for cybersecurity. More information about her at http://www.di.fc.ul.pt/~imedeiros/

Abstract
The growing use of the web and embedded system products has led to a rise in cyber attacks exploiting software vulnerabilities, thereby causing significant damage to companies and individuals. Although there are many mechanisms to protect network infrastructures and computer systems, such as firewalls, intrusion detection and prevention systems (IDS and IPS), malicious threats are still a constant concern, which a significant amount of malicious activities is caused by vulnerabilities existent in software. 

In this talk, I will present an overview of the causes of the appearance and persistence of software vulnerabilities, the work I have been done to detect and correct them and the challenges that have arisen.

• 

•