I am a Doctoral Researcher in the Information Security Group at University College London, where I study the security and privacy aspects of digital ecosystems with a focus on emerging technologies and previously unknown attack vectors. I work under the supervision of Professor George Danezis and Prof. Emiliano De Cristofaro.

In cooperation with industrial partners, we recently released a prototype of our novel high-assurance cryptographic hardware architecture, that maintains its security properties even in the presence of malicious hardware components. Moreover, our study on ultrasound tracking received wide-spread attention and is considered the seminal work on the security of that ecosystem.

In the past, I developed auditing tools for the Public Key Infrastructure of Deutsche Bank and participated in an international consortium studying large-scale security threats in telecommunication networks. Furthermore, I cooperated with the Computer Security Group of University of California, Santa Barbara in several projects, including a detection system for evasive web-malware.

I hold an M.Sc. in Information Security from UCL, and a B.Sc in Computer Science from University of Macedonia, Greece.

Vasilios Mavroudis

v.mavroudis at cs.ucl.ac.uk
Computer Science Department
University College London
Gower Street
London WC1E 6BT
United Kingdom

Publications

Peer-reviewed

Eavesdropping Whilst Youre Shopping: Balancing Personalisation and Privacy in Connected Retail Spaces
Mavroudis V., Veale M. (Equal Contribution), LawArXiv, January 2018.
A Touch of Evil: High-Assurance Cryptographic Hardware from Untrusted Components [PDF, ArXiv]
Mavroudis V., Cerulli A., Svenda P., Cvrcek D., Klinec D., Danezis G., 24th ACM Conference on Computer and Communications Security, 2017.
On the Privacy and Security of the Ultrasound Tracking Ecosystem [PDF]
Mavroudis V., Hao S., Fratantonio Y., Maggi F., Kruegel C., Vigna G., Proceedings of the Privacy Enhancing Technologies Symposium, 2017
Visual Analytics for enhancing supervised attack attribution in mobile networks [PDF]
Papadopoulos S., Mavroudis V., Drosou A., Tzovaras D., 29th International Symposium on Computer and Information Sciences, 2014
Development of realtime mobile security monitoring system
Mavroudis V., Mavridis I., 2nd conference on information technology applications and administration strategies, 2010.
Use and effective appliance of free and open source software in education
Mavroudis V., Mouratis S., 4th national conference of information technology teachers, 2010.

Technical Reports & Preprints

VAMS: Verifiable Auditing of Access to Confidential Data.
Alexander Hicks, Vasilios Mavroudis, Mustafa Al-Bassam, Sarah Meiklejohn, and Steven J. Murdoch. May 2018
The Ultrasound Tracking Ecosystem.
Vasilios Mavroudis, Shuang Hao, Yanick Fratantonio, Federico Maggi, Giovanni Vigna, and Christopher Kruegel. November 2016
Correlation Analysis and Abnormal Event Detection Module.
EU FP7 Project: Enhanced Network Security for Seamless Service Provisioning in the Smart Mobile Ecosystem
Anomaly detection based on real-time exploitation of billing systems.
EU FP7 Project: Enhanced Network Security for Seamless Service Provisioning in the Smart Mobile Ecosystem
Anomaly detection within femtocell architectures.
EU FP7 Project: Enhanced Network Security for Seamless Service Provisioning in the Smart Mobile Ecosystem
Network information sources.
EU FP7 Project: Enhanced Network Security for Seamless Service Provisioning in the Smart Mobile Ecosystem

Theses
Crux: Privacy-preserving Statistics for Tor, Information Security Group, University College London, UK, 2015.
Supervisor: George Danezis
Cassiopeia: Real-time mobile security monitoring system, Dept. of Applied Informatics, University of Macedonia, Greece, 2012.
Supervisor: Ioannis Mavridis

Media

Talks

High-Assurance Cryptographic Hardware from Untrusted Components. Stanford Security Seminar, Palo Alto, US, 19 April 2018. [Link]

The Good, the Bad and the Ugly of the Ultrasonic Communications Ecosystem. RSA Conference 2018, San Fransisco US, 17 April 2018. [Link]

A witch-hunt for trojans in our chips. London Enterprise Tech Meetup, London, UK, 12 February 2018. [Link]

Cryptographic Hardware from Untrusted Components. Cryptacus Workshop, Nijmegen, Netherlands, 16-18 November 2017. [Link]

Cryptographic Hardware from Untrusted Components. IMDEA Software Inst., Madrid, Spain, 28 Sept 2017. [Link]

 Towards Trojan-tolerant Cryptographic Hardware. ZISC Seminar ETH, Zurich, Switzerland, 20 Sept 2017. [Link]

 OpenCrypto: Unchaining the JavaCard Ecosystem. Blackhat US, Las Vegas, US, 22-27 July 2017. [Link]

 Trojan-tolerant Hardware & Supply Chain Security in Practice. Defcon 25, Las Vegas, US, 27-30 July 2017. [Link]

 On the Privacy & Security of the Ultrasound Tracking Ecosystem. Computer Laboratory Security Seminar, Cambridge, UK, 21 February 2017. [Link]

 Talking Behind Your Back: On the Privacy & Security of the Ultrasound Tracking Ecosystem. Mozilla International Privacy Day, London, UK, 28 January 2017. [Link]

 Talking Behind Your Back: On the Privacy & Security of the Ultrasound Ecosystem. Information Security Seminar, UCL, London, UK, 19 January 2017. [Link]

 Talking Behind Your Back: Tough Love for the Ugly Ultrasound Tracking Ecosystem. Chaos Communication Congress, Hamburg, Germany, 27-30 Dec. 2016. [Link]

 Cross-device Tracking Canaries. Data Transparency Lab Conference 2016, New York, US, 17-19 Nov 2017. [Link]

 Talking Behind Your Back: Attacks and Countermeasures of Ultrasonic Cross-device Tracking. Blackhat Europe, London, UK, 3–4 November 2016. [Link][Slides]

 Cassiopeia: Mobile security monitoring. FOSS conference 2011, Greece.

Academic Service & Teaching

Co-organizing the Hacking Seminars at UCL (September 2017-present).

 Organizing the Information Security Seminars at UCL (January 2017-present).

 External Reviewer for Privacy Enhancing Technologies Symposium (April 2017-present).

 Teaching Assistant for Computer Security I module, Information Security MSc (Winter term 2017-2018).

 Guest Lecture on Acedemic Research, In2ScienceUK Organization (August 2017).

 Teaching Assistant for Computer Security II module, Information Security MSc (Spring term 2016-2017).