For more details, visit my personal website here.
Luis Muñoz-González is a Research Associate at the Department of Computing at Imperial College London. He is part of the Resilient Information Systems Security Group led by Prof Emil Lupu. He obtained the PhD degree from University Carlos III of Madrid (Spain) in 2014 where he proposed novel Gaussian process models for non-stationary and heteroscedastic regression. His current research interests include machine learning and cyber-security (see below).
Adversarial Machine Learning
Many modern services and applications rely on machine learning to extract valuable information from the huge amount of information available from many different sources, allowing the automation of many processes.But machine learning algorithms are vulnerable to attackers, who may gain a significant advantage by injecting malicious data or exploiting the weaknesses and blind spots of the learning algorithms.
Luis' interests in this area includes:
- Understanding the vulnerabilities that allows an attacker to compromise a machine learning system.
- Proposing new mechanisms to increase the resilience of learning algorithms under the presence of sophisticated attackers.
- Developing new design and testing methodologies for more resilient and secure machine learning systems.
- Investigating mechanisms for assurance of machine learning systems.
Security Risk Assessment with Bayesian Attack Graphs
Despite significant efforts to protect networks against cyber-attacks system administrators cannot cope with the sophistication and complexity of modern attacks, especially on IoT environments. Patching all the vulnerabilities or eliminating all possible threats is not possible in many cases. Thus, identifying, modelling, and assessing the security risks and prioritizing the most critical threats is of essence to optimise the resources for network protection. Attack graphs have been proven as a powerful tool for this tasks. They provide a compact representation of the attacks paths that an attacker can follow to compromise network resources.
Bayesian networks offer a suitable framework to perform static and dynamic security risk assessment, since their capable to model the uncertainty on the attacker behaviour. However, computing the probabilities in Bayesian networks is an NP Hard problem. Luis' interest in this area include the development and application of exact and approximate inference techniques for scalable analysis of Bayesian attack graphs, to help system administrators to harden the network when considering the security posture at rest and to prioritise countermeasures when the system is under attack.
A detailed list of his publications can be found at Google Scholar.
et al., 2022, Redundancy planning for cost efficient resilience to cyber attacks, Ieee Transactions on Dependable and Secure Computing, ISSN:1545-5971
et al., 2022, HA-grid: security aware hazard analysis for smart grids, IEEE International Conference on Communications, Control, and Computing Technologies for Smart Grids, IEEE, Pages:446-452
et al., 2022, Shadow-catcher: looking into shadows to detect ghost objects in autonomous vehicle 3D sensing, ESORICS, Springer International Publishing, Pages:691-711
et al., 2021, Universal adversarial robustness of texture and shape-biased models, IEEE International Conference on Image Processing (ICIP)
et al., 2021, Non-IID data re-balancing at IoT edge with peer-to-peer federated learning for anomaly detection, WiSec '21: 14th ACM Conference on Security and Privacy in Wireless and Mobile Networks, ACM, Pages:153-163