CURRICULUM VITAE. Gianluca Papaleo MS Degree in Computer Science: 110/110 with distinction

Transcription

1 CURRICULUM VITAE Gianluca Papaleo Date of Birth: 09/11/1980 Place of Birth: Sarno, Italy Nationality: Italian Address: Via Conservatori del Mare 13, Genova, Italy Phone: Education 2005 MS Degree in Computer Science: 110/110 with distinction Full-Time Positions 2013 Present: Technical Director and President at Cleis Security S.r.l Present: Research Fellow at National Research Council of Italy : Network & Security Engineer at Cleis Security S.r.l. Languages Italian: mothertongue English: Professional working proficiency IT Programs Developed LMA (Log Mail Analyzer): log analyzer of Sendmail and Postfix Mail Servers. ( WormPoacher: software able to detect worms spreading through s analyzing log mail SMTPsniffer: real-tima traffic analyzer with db archive

2 NETVAN (New Easy Tool for Virtual Access Networking): tool that allow access and secure control of remote computers useful for help-desk and network management SLOWDROID: Proof of Concept about Application Level DOS attacks. Mobile application available on Google Play Store. ( ) IT Skills Good knowledge of Windows and Unix family Operating Systems Basic knowlege of different program languages: C, Java, php, perl, bash script, python, javascript, html Strong experience in management and configuration of different Network Services: Apache2, OpenLDAP, OpenSSH, ProFtpd, Postfix, Squid, OpenCA, Snort, Freeradius, Ntop, OSSEC-HIDS, Courier, Dovecot, Zimbra, OCS, Bind, Iptables, Sendmail, IIS, Active Directory, IAS, NPS Strong experience in management and configuration of the following firewalls: Sonicwall, CheckPoint, Fortinet, Juniper, Cisco Strong experience in managament and configuration of the following switches: HP, Allied Telesys, 3COM, CISCO Good knowledge of IBM BladeCenter and Vmware ESX Great knowledge of Vulnerability Assessment and Penetration Testing tool: Nmap, OpenVas, Nexpose, Metasploit, Dnswalk, Netcat, Aircrack-ng, Hping, Nikto, Dsniff, John the Ripper, Wireshark, Ettercap, Sqlmap and other many tools available on Kali Linux Distribution Great knowledge of TCP/IP stack and security protocols in data-link, network, trasport and application layers Great knowledge on Wireless Security: attack and defense methods on different WIFI protocols (WEP, WPA, WPA2, Capitve Portals) Great knowledge on tunneling and firewall bypassing methods and related tools: Dns2tcp, Ozymandns, Ptunnel, Iodine, Nstx, Corkscrew, Stunnel, HttpTunnel, ProxyTunnel Good knowledge of Application Dos attacks and UDP amplification attacks IT Consultant Activities for Customers Network Design Network Assessment Vulnerability Assessment Penetration Testing

3 Security Plan Development Vulnerability Remediation Plan Nework and Security Training Course Security Appliances Management, Deployment and Configuration Software Development for Police Forces (e.g. Trojan Horse, Viruses) Security Analysis of Web Applications Security Mentoring for Software Development Teams Courses attended Sonicwall CSSA2: SonicOS Enhanced Security Checkpoint Security Administration NGX I ICT Infrastrutture and System Administrator Sonicwall One Day Training IPv6: theoretical and practical course for network administrators Security Course: FORENSIC ANALYSIS of WINDOWS SISTEMIS GRID Cluster Laboratory Mobile Forensiscs Certifications CISCO CCNA1 Certified Sonicwall Security Administrator (2007, renewed in 2011 and 2013) ZIMBRA ZCS Network Edition Advanced Administration Training Publications National Conferences: 1. Maurizio Aiello, David Avanzini, Davide Chiarella, Gianluca Papaleo. Worm Detection Using Data Mining. PRISE 2006, Primo Workshop Italiano su PRIvacy e Security. 2. Maurizio Aiello, David Avanzini, Davide Chiarella, Gianluca Papaleo. SMTP sniffing for intrusion detection purposes. PRISE 2007, Secondo Workshop Italiano su PRIvacy e Security, pp 53-58

4 3. Maurizio Aiello, Davide Chiarella, Alessio Merlo, Gianluca Papaleo. Improvements in physical intrusion detection on LAN. PRISE 2008, Terzo Workshop Italiano su PRIvacy e Security, pp International Conferences: 4. Maurizio Aiello, David Avanzini, Davide Chiarella, Gianluca Papaleo. A Tool for Complete Log Mail Analysis: LMA. TNC 2006, part of session Security on the Backbone: Detecting and Responding to Attacks. 5. Maurizio Aiello, Davide Chiarella, Gianluca Papaleo. Statistical anomaly detection on real traffic. CISIS 2008, International Workshop on Computational Intelligence in Security for Information Systems, Book Series: ADVANCES IN SOFT COMPUTING Volume: 53 pp ACS53 Springer Luca Caviglione, Maurizio Aiello, Gianluca Papaleo, A Scalable and Cost- Effective Framework for Traffic Monitoring in Virtual LANs, oral presentation at 21st International Tyrrhenian Workshop on DigitalCommunications (ITWDC): Trustworthy Internet, Luca Caviglione, Franco Davoli, Gianluca Papaleo, Roberto Marcialis, Maurizio Aiello, Security Analysis and Architectural Requirements for the Deployment of Remote Instrumentation Services, 6th Workshop on e-science and e-infrastructure, INGRID Alessio Merlo, Gianluca Papaleo, Stefano Veneziano, Maurizio Aiello A Comparative Performance Evaluation of DNS Tunneling Tools. CISIS 2011, 4 th International Conference on Computational Intelligence in Security for Information Systems, pp 84-91, LNCS 6694, Springer Livia Torterolo, Gianluca Papaleo, Silvia Scaglione, Francesco Ruffino, Maurizio Aiello 3D Cloud in Life Sciences: an innovative framework for remote 2D/3D Visualization and Collaboration, 25 th IEEE International Symposium on Computer-Based Medical Systems (CBMS 2012) 10. Enrico Cambiaso, Gianluca Papaleo, Maurizio Aiello Taxonomy of Slow DoS Attacks to Web Applications, SNDS 12, International Conference on Security in Computer Networks and Distributed Systems, pp , Volume 0335, Communications in Computer and Information Science series, Springer 2012

5 11. Maurizio Aiello, Enrico Cambiaso, Silvia Scaglione, Gianluca Papaleo A similarity based approach for application DoS attacks detection, 2013 IEEE Symposium on Computers and Communications, ISCC, Split, Croatia, 7-10 July, 2013, pp , ISCC proceedings, IEEE Maurizio Aiello, Maurizio Mongelli, Gianluca Papaleo Basic classifiers for DNS tunneling detection, 2013 IEEE Symposium on Computers and Communications, ISCC, Split, Croatia, 7-10 July, 2013, pp , ISCC proceedings, IEEE Maurizio Aiello, Gianluca Papaleo, Enrico Cambiaso SlowReq: A Weapon for Cyberwarfare Operations. Characteristics, Limits, Performance, Remediations, International Joint Conference SOCO'13-CISIS'13-ICEUTE'13- Salamanca, Spain, September 11th-13th, 2013, pp , Volume 239, Advances in Intelligent System and Computing, Springer 2014 Journal: 14. Maurizio Aiello, Davide Chiarella, Gianluca Papaleo. Statistical anomaly detection on real traffic. JIAS, Journal of Information Assurance and Security 2009 Vol 4 Issue 6, pag Maurizio Aiello, Alessio Merlo, Gianluca Papaleo. Performance assessment and analysis of DNS tunneling tools. Logic Journal of IGPL 2013, Vol 21, Number 4, pag Enrico Cambiaso, Gianluca Papaleo, Giovanni Chiola, Maurizio Aiello. Slow DoS attacks: definition and categorisation, International journal of security, privacy and trust management 2013, Vol. 1, Number 3-4, pag Book Chapters: 17. Gianluca Papaleo, Davide Chiarella, Maurizio Aiello, Luca Caviglione, Analysis, Development and Deployment of Statistical Anomaly Detection Techniques for real Traffic, Book Chapter in T.-S. Chou, Ed., Information Assurance and Security Technologies for Risk Assessment and Threat Management: Advances, IGI Global, 2011

6 Technical Reports 1. Alessio Merlo, Gianluca Papaleo, Maurizio Aiello, Claudio Martini, A taxonomy of WLAN attacks and coutermeasures, Rapporto Tecnico n. 1/2010 IEIIT-GE 2. Maurizio Aiello, Dario Miccoli, Luca Papi, Gianluca Papaleo, Captive Portal with Radius Authentication for Wireless Users, Rapporto Tecnico n. 1/2011 IEIIT-GE 3. Maurizio Aiello, Gianluca Papaleo, Zimbra Collaboration Suite: problematiche d integrazione e metodologie di utilizzo come strumento di produttività, Rapporto Tecnico n. 2/2011 IEIIT-GE 4. Maurizio Aiello, Paolo Sala, Gianluca Papaleo, Confronto di due Mail- Gateway Appliance: ESVA 2.0 e Sophos ES4000, Rapporto Tecnico n. 3/2011 IEIIT-GE 5. Maurizio Aiello, Stefano Balocco, Gianluca Papaleo, Tunneling HTTP, Rapporto Tecnico n. 4/2011 IEIIT-GE 6. Maurizio Aiello, Gianluca Papaleo, Wireless Intrusion Detection Systems: a preliminary study, Rapporto Tecnico n.5/2011 IEIIT-GE 7. Giacinto Marcellino, Gianluca Papaleo, Maurizio Aiello, Penetration Test: Analisi, Metodologie, Applicazioni, Rapporto Tecnico n. 1/2012 IEIIT-GE 8. Enrico Cambiaso, Maurizio Aiello, Silvia Scaglione, Gianluca Papaleo, Analisi delle problematiche di sicurezza in ambiente Cloud, Rapporto Tenico n. 2/2012 IEIIT-GE 9. Enrico Cambiaso, Gianluca Papaleo, Maurizio Aiello, Introducing the SlowNext Attack (Exploiting the Network Connection Structure), Rapporto Tecnico n 1/2013 IEIIT-GE 10. Maurizio Aiello, Paolo Farina, Gianluca Papaleo, Attacchi a Intfrastrutture di Rete Enterprise: Dinamica e Difese, Rapporto Tecnico n 2/2013 IEIIT-GE 11. Paolo Farina, Enrico Cambiaso, Gianluca Papaleo, Maurizio Aiello, DDoS Botnets: Operations and Toolkits, Rapporto Tecnico n 1/2014 IEIIT-GE Academic Activities Collaboration for BS Thesis "Virtualized trusted tools of remote network access " of Computer Science Course,

7 Assistant Teacher for Second Level Master Tecnologie Avanzate per Sistemi Intelligenti Integrati - Collaboration for BS Thesis " Studio ed implementazione di un IDS per la detection di intrusioni fisiche in LAN" of Computer Science Course, Assistant Teacher for Class IT Security of Computer Science Course, Collaboration for BS Thesis "Confronto funzionale e prestazionale tra due soluzioni di Mail-Gateway, una commerciale ed una open-source" of Computer Science Course, Assistant Teacher for Class IT Security of Computer Science Course, Supervisor for BS Thesis Autenticazione RADIUS per client wireless of Computer Science Course, - Collaboration for Tipologie di attacchi a reti wireless protette of Computer Science Course, - Collaboration for MS Thesis "Analisi di proposta riorganizzazione/ottimizzazione dell Infrastruttura ICT del Comando Provinciale dei VV.F. di Genova" of Computer Science Course, - Supervisor for BS Thesis Un confronto tra protocolli Voip e aspetti di sicurezza of Computer Science Course, - Supervisor for BS Thesis DNS Tunneling: Analisi prestazionale e confronto tra diversi tools of Computer Science Course, University of Genoa - Assistant Teacher for Class IT Security of Computer Science Course, - Assistant Teacher for Second Level Master ICT & S. ICT e Sicurezza, per l innovazione dei contesti produttivi e lo sviluppo di nuovi mercati,

8 Supervisor for BS Thesis Network Address Translation tassonomia moderna, sicurezza e metodi di attraversamento of Computer Science Course, - Assistant Teacher for Class IT Security of Computer Science Course, Supervisor for BS Thesis Penetration Test: Analisi, Metodologie, Applicazioni of Computer Science Course, - Supervisor for MS Thesis Analysis of Slow DoS Attacks of Computer Science Course, - Assistant Teacher for Class Security 1 of Computer Engineering Course, - Assistant Teacher for Class IT Security of Computer Science Course, Assistant Teacher for Class Computer Security of Computer Engineering Course, - Assistant Teacher for Class Network Security of Computer Science Course, - Assistant Teacher for Class Introductory IT and Network Forensic Investigations" at University College of Dublin for the project Redevelopment of the ECTEG Introductory IT Forensics & Network Investigations Course. Member of the Technical Program Committee 2014 International Workshop on Mobile Applications International Journal of Computing and Digital Systems Second International Conference on Security in Computer Networks and Distributed Systems (SNDS-2014)

9 2014 International Workshop on the Design and Performance of Networks on Chip (DPNoC 2014) Research Projects EU Projects: o Coordination and support Action FP7 program Grant agreement SiS-CT-2007, 4Seas: Synergies between science and society for a shared approach to european seas o ISEC Programme European Commission Directorate-General Justice, Freedom and Security. Cybercrime Training National Projects: o Regional Program of Innovative Actions European Fund, , Statistical methods applied to electronic mail messages for enhancing enterprise security o Technological ICT District of Liguria (SIIT), Sistema INTEgrato per la Sicurezza ad Intelligenza distribuita (Sintesis) o Regional Program Action 1.2.2, Plant Design As a Service (PDAaS) based on Cloud technology " o Regional Program High Technology integrated projects C-MES: Manufacturing Execution Systems (MES) based on Cloud technology o Regional Program POR - FESR, Action On Cloud security Analysis for Naval sector (OCEAN) o Regional Program POR - FESR Action I.1.3 Innovation and SME Vulnerability and Risk Assessment (VaRA) o MIE Urban Intelligence Mobility Connectivity