Cyber-Security Threats, Actors, and Dynamic Mitigation

Nicholas Kolokotronis is an Associate Professor and head of the Cryptography and Security Group at the Department of Informatics and Telecommunications, University of the Peloponnese. He received his B.Sc. in mathematics from the Aristotle University of Thessaloniki, Greece, in 1995, an M.Sc. in highly efficient algorithms (highest honors) in 1998 and a Ph.D. in cryptography in 2003, both from the National and Kapodistrian University of Athens. Since 2004, he has held visiting positions at the University of Piraeus, University of the Peloponnese, the National and Kapodistrian University of Athens, and the Open University of Cyprus. During 2002–04, he was with the European Dynamics S.A., Greece, as a security consultant. He has been a member of working groups for the provisioning of professional cyber–security training to large organizations, including the Hellenic Telecommunications and Posts Commission (EETT). He has published more than 85 papers in international scientific journals, conferences, and books and has participated in more than 20 EU–funded and national research and innovation projects. He has been a co–chair of conferences (IEEE CSR 2021), workshops (IEEE SecSoft 2019, IEEE CSRIoT 2019, 2020, and ACM EPESec 2020), and special sessions focusing on IoT security. Moreover, he has been a TPC member in many international conferences, incl. IEEE ISIT, IEEE GLOBECOM, IEEE ICC, ARES, and ISC. He is currently a Guest Editor in "Engineering – cyber security, digital forensics and resilience" area of Springer’s Applied Sciences Journal (since 2019) and in the Reviewer Board of MDPI’s Cryptography journal (since 2020), whereas he has been an Associate Editor of the EURASIP Journal on Wireless Communications and Networking (2009–17) and a regular reviewer for a number of prestigious journals, incl. IEEE TIFS, IEEE TIT, Springer’s DCC, etc. His research interests span the broad areas of cryptography, security, and coding theory. Stavros Shiaeles is an Assistant Professor in cyber-security at the University of Portsmouth, UK. He worked as an expert in cyber-security and digital forensics in the UK and EU, serving companies and research councils. His research interest span in the broad area of cyber-security and more specifically in OSINT, social engineering, distributed denial-of-service attacks, cloud security, digital forensics, network anomaly detection, and malware mitigation. Dr Shiaeles has authored more than 60 publications in academic journals and conferences, co-chaired many workshops and conferences and actively involved in research projects as Principal Investigator leading his cyber-security research team. He is currently a Guest Editor in the topical collection "Cyber security, digital forensics and resilience" at Springer’s Applied Sciences Journal (since 2019), Topic Editor at MDPI Forensic Sciences Journal (since 2020), Guest editor in the Special Issue "Advancements in Networking and Cyber Security" at MDPI Electronics Journal (2020), Guest editor in the "Special Issue on Novel Cyber-Security Paradigms for Software-defined and Virtualized Systems" at Elsevier Computer Networks Journal (2020), Active member at IEEE Technical Committee on Information Infrastructure and Networking (TCIIN) and a regular reviewer for several prestigious journals. Further to his academic qualifications, he holds a series of professional certifications, namely EC-Council Certified Ethical Hacker (CEH), EC-Council Advanced Penetration Testing (CAST611), ISACA Cobit 5 Foundation and a Cyberoam Certified Network and Security Professional (CCNSP), and he is EC-Council accredited instructor providing professional certifications training on cyber-security and penetration testing. He is also a Fellow of the BCS and a Fellow of the Higher Education Academy in the UK. Before entering academia, Dr Shiaeles was in the industry, where he has more than ten years of experience, and he has worked on various aspects of IT and cyber-security, gaining invaluable hands-on knowledge on various systems and software developing.

1. Cyber–attackers’ profiling. 2. Reconnaissance. 3. System threats. 4. Cryptography threats. 5. Network threats. 6. Malware detection and mitigation. 7. Dynamic risk management. 8. Attack graph generation. 9. Intelligent intrusion response.