He is mostly interested in the following research areas: attack attribution, underground economy, trustworthy infrastructure, intrusion detection, core internet security, systems and network security
Current Research Memberships
He has cofounded in 1998, with Kathleen Jackson from the Los Alamos National Lab, the Symposium on "Research in Attacks, Intrusions and Defenses" (previously named "Recente Advances on Intrusion Detection") (RAID), now considered as one of the main conferences in the area.
He has been chairing its steering committee for 20 years to step down in 2017 in favor of Davide Balzarotti (Eurecom). He has been PC chair of that 2017 edition.
He has served in more than 100 program committees of major security and dependability conferences
He is frequently invited as a keynote speaker in major events.
He has served on the editorial board of the following journals: IEEE, TDSC, ACM TISSEC and JIAS.
He has been actively involved in a number of European projects over the last two decades.
Among other things, he was the co-director, with Brian Randell from Newcastle University, of the MAFTIA European Project and the technical coordinator of the WOMBAT project.