Massimiliano Albanese
Department of Applied Information Technology
Center for Secure Infotmation System
Volgenau School of Engineering

George Mason University





News & Announcements

I am an Assistant Professor in the Department of Applied Information Technology at George Mason University, the Associate Director of the Center for Secure Information Systems (CSIS), and the Codirector of the Laboratory for IT Entrepreneurship (LITE). I received my Ph.D. degree in Computer Science and Engineering in 2005 from the University of Naples “Federico II”, and joined George Mason University in 2011 after serving as a Postdoctoral Researcher at the University of Maryland.

Research Research

My research interests are in the areas of Modeling and Recognition of Cyber Attack, Scalable Detection of Cyber Attacks, Network Hardening, and Moving Target Defense One of the primary objectives of my research is to find efficient solutions to the problem of reducing massive amounts of raw data to a manageable amount of actionable intelligence. Additionally, with today's extensive availability of real-time data, many applications require the ability to monitor a large body of streaming data in real-time in order to identify security threats.

Current Sponsors

Office of Naval Research Office of Naval Research

Current Projects

Mission-Centric Operations within Vulnerable Networks

Large distributed networks are imperfect and vulnerable to multiple types of cyber attacks. This project aims at developing the theory and the algorithms required to securely operate missions on such networks. In order to achieve this innovative capability, three important questions must be addressed: (1) How do we select a set of computational resources that is the most suitable to securely execute a mission? (2) How do we protect such set of resources? (3) How do we respond to incidents involving one or more of these resources? These problems are inherently complex, and exact solutions cannot be computed efficiently. The use of approximation schemes to find suboptimal solutions in a time-effective manner will be investigated.

Computer-aided Human Centric Cyber Situation Awareness

When security incidents occur, the top three questions security administrators would ask are: What has happened? Why did it happen? What should I do? Answers to the first two questions form the core of Cyber Situation Awareness. My main contribution to this project consists in providing the capability to answer the first question efficiently. Indeed, the question becomes: What is happening? Attackers can exploit vulnerabilities to incrementally penetrate a network and compromise critical systems. The enormous amount of raw security data involved in the process and the complex interdependencies among vulnerabilities make manual analysis extremely labor-intensive and error-prone. To address this important problem, I proposed an automated framework to manage very large attack graphs and analyze high volumes of incoming alerts to detect occurrences of known attack patterns in real-time.

Recent Publications Publications

  • M. Albanese, A. De Benedictis, S. Jajodia, and P. Shakarian. “A Probabilistic Framework for Localization of Attackers in MANETs”. To appear in Proceedings of the 17th European Symposium on Research in Computer Security (ESORICS 2012), Pisa, Italy, September 10-14, 2012.

    Conference web site    
  • M. Albanese, S. Jajodia, and S. Noel. “Time-Efficient and Cost-Effective Network Hardening Using Attack Graphs”. To appear in Proceedings of the 42nd Annual IEEE/IFIP International Conference on Dependable Systems and Networks (DSN 2012), Boston, Massachusetts, USA, June 25-28, 2012.

    Conference web site    
  • M. Albanese, A. Pugliese, and V. S. Subrahmanian. “Fast Activity Detection: Indexing for Temporal Stochastic Automaton based Activity Models”. To appear in IEEE Transactions on Knowledge and Data Engineering, 2012.

    Journal web site     PDF file (Preprint)
  • M. Albanese, S. Jajodia, A. Pugliese, and V. S. Subrahmanian. “Scalable Detection of Cyber Attacks”. In Proceedings of the 10th International Conference on Computer Information Systems and Industrial Management Applications (CISIM 2011), pages 9-18, Kolkata, India, December 14-16, 2011.

    Conference web site    
  • S. Jajodia, S. Noel, P. Kalapa, M. Albanese, and J. Williams. “Cauldron: Mission-Centric Cyber Situational Awareness with Defense in Depth”. In Proceedings of the Military Communications Conference (MILCOM 2011), Baltimore, Maryland, USA, November 7-10, 2011.

    Conference web site    


FaLL 2014 Courses

AIT 670 Best Practices Managing Security and Privacy for Cloud Computing

Last updated September 15, 2014

Valid XHTML 1.0 Transitional Valid CSS!