Main Topics
- Automated Software Testing
- Static Program Analysis
- IoT System Security
We develop tecniques to automatically craft test scenarios for various computing systems, such as mobile apps, web services, and blockchain smart contracts. When executed, these scenarios are used to check compliance with requirements and spot implementation bugs or security vulnerabilities. This approach significantly speeds up the testing process, increases test coverage, and allows for frequent, reliable validation of software changes, leading to more robust and higher-quality applications.
We develop techniques to programmatically examine software source code without executing the program, identifying potential bugs, security vulnerabilities, and adherence to coding standards. By analyzing the code’s structure, data flow, and control flow, this approach helps developers improve software quality and reduce costly fixes down the line. We focus on fully-automated and scalable analyses, such as those based on abstract interpretationa and symbolic execution.
We develop techniques to protect interconnected Internet of Things (IoT) devices and the data they generate from cyber threats. Due to the diverse nature, limited processing power, and often remote deployment of IoT devices, traditional cybersecurity methods are often insufficient. We focuse on safeguarding against vulnerabilities by enforcing authentication and unencryption mechanisms, ensuring the confidentiality, integrity, and availability of data and device functionality.
Ongoing Projects
NeuroPuls (2023-2026)
NEUROmorphic energy-efficient secure accelerators based on Phase change materials aUgmented siLicon photonicS
Funded by the European Union under the “Horizon Europe” research and innovation programme.
Smartitude (2023-2025)
Automated Testing and Security Assessment of Smart Contracts
Funded by the Italian Ministry of University and Research under “PRIN 2022” programme, and by the European Union under the “NextGenerationEU” programme.
iNest (2022-2025)
Interconnected Nord-Est Innovation Ecosystem
Funded by the Italian Ministry of University and Research under the “PNRR” programme, and by the European Union under the “NextGenerationEU” programme.
Recent Projects
PON (2022-2024)
Integrazione di servizi rivolti al cittadino per facilitare la corretta raccolta differenziata dei rifiuti urbani
Funded by the Italian Ministry of University and Research under the “PON – Ricerca e Innovazione” programme.
Muscope (2023)
Automated Testing of REST APIs
Funded by Muscope Cybersecurity Srl.
Equixely (2023)
Machine Learning for automated testing of REST APIs
Funded by Equixely Srl.
MobyGIS (2022)
Requirement elicitation for an environmental engineering software framework for modelling the physical processes that control natural water cycle
Funded by MobyGIS Srl.