SIMONE LENTI

Dottore di ricerca

ciclo: XXXIII


supervisore: Giuseppe Santucci

Titolo della tesi: Managing Human Factors in Cybersecurity through Visual Analytics

Information technologies are increasingly present in our personal and working lives. The wide variety of available systems ranges from the backbone infrastructures to smart home and wearable devices. These systems are constantly under attack. The attackers responsible for security breaches have evolved in both motivations and capabilities. Social engineering techniques exploiting human vulnerabilities are increasingly popular attack vectors that exploit victims' cognitive biases to grant the attacker unauthorized access to data or systems. The increasing importance of cybersecurity has contributed to the continuous refinement of defense techniques, most of them relying on a human in the loop to perform critical security functions. Applying many of these activities, defenders are prone to errors mainly due to a large amount of relevant data and the time constraints of the decision-making process, highlighting the need for powerful analysis tools to mitigate these issues. The combination of automatic analysis tools and human reasoning capabilities is required to face these problems. Visual Analytics (VA) has proven its effectiveness in this area, facilitating analytical reasoning with interactive visual interfaces. An advantage provided by VA is that decision-makers may focus their full cognitive and perceptual capabilities on the analytical process while applying advanced computational capabilities to enlarge the analysis process. The thesis aims to model the humans' role in cybersecurity, connecting them to standard and repeatable methods, and design Visual Analytics solutions to support them. We focus on modeling the threats posed by the end-users of IT systems and cybersecurity professionals' information needs. We present guidelines for Visual Analytics contributions in cybersecurity according to the operators' needs and frame our contributions according to them. Furthermore, we propose a threat model comprising vulnerabilities of the end-users.

Produzione scientifica

11573/1684303 - 2024 - A Visual Analytics Conceptual Framework for Explorable and Steerable Partial Dependence Analysis
Angelini, Marco; Blasilli, Graziano; Lenti, Simone; Santucci, Giuseppe - 01a Articolo in rivista
rivista: IEEE TRANSACTIONS ON VISUALIZATION AND COMPUTER GRAPHICS (IEEE / Institute of Electrical and Electronics Engineers Incorporated:445 Hoes Lane:Piscataway, NJ 08854:(800)701-4333, (732)981-0060, EMAIL: subscription-service@ieee.org, INTERNET: http://www.ieee.org, Fax: (732)981-9667) pp. 4497-4513 - issn: 1077-2626 - wos: WOS:001262914400033 (5) - scopus: 2-s2.0-85153329099 (12)

11573/1724593 - 2024 - EDD: A Web-Based Editor for Declarative Process Models Using easyDeclare
Blasilli, G.; Ferro, L. S.; Lenti, S.; Maggi, F. M.; Marrella, A.; Catarci, T. - 04b Atto di convegno in volume
congresso: International Conference on Process Mining (Copenhagen; Denmark)
libro: Doctoral Consortium and Demo Track 2024 at the International Conference on Process Mining 2024 (ICPM-D 2024) - ()

11573/1726970 - 2024 - A Version-Based Algorithm for Quality Enhancement of Automatically Generated Vulnerability Inventories
Bonomi, Silvia; Cuoci, Marco; Lenti, Simone - 04b Atto di convegno in volume
congresso: 2004 IEEE International Conference on Cyber Security and Resilience (CSR) (London; United Kingdom)
libro: Proceedings of the 2024 IEEE International Conference on Cyber Security and Resilience (CSR) - (979-8-3503-7536-7; 979-8-3503-7537-4)

11573/1729836 - 2024 - Improving Attack Graph-based Self-Protecting Systems: A Computational Pipeline for Accuracy-Scalability Trade-off
Bonomi, Silvia; Cuoci, Marco; Lenti, Simone; Palma, Alessandro - 04b Atto di convegno in volume
congresso: 19th International Conference on Risks and Security of Inter￾net and Systems (CRiSIS) 2024 (Aix-En-Provence, France)
libro: The Nineteenth International Conference on Risks and Security of Internet and Systems - ()

11573/1714569 - 2024 - SoK: A Unified Data Model for Smart Contract Vulnerability Taxonomies
Ruggiero, Claudia; Mazzini, Pietro; Coppa, Emilio; Lenti, Simone; Bonomi, Silvia - 04b Atto di convegno in volume
congresso: International Conference on Availability, Reliability and Security (ARES 2024) (Vienna; Austria)
libro: ARES '24: Proceedings of the 19th International Conference on Availability, Reliability and Security - (979-8-4007-1718-5)

11573/1726971 - 2024 - Bridging the Gap: Cyber Defence Skills for the Future
Strukova, Sofia; Albaladejo-González, Mariano; Bozhilova, Maya; Fuentes, Alejandro Campos; Lenti, Simone; Perez, Gregorio Martínez; Martínez, Daniel Navarro; Nespoli, Pantaleone; Santucci, Giuseppe; Sotelo-Monge, Marco Antonio; Stoianov, Nikolai; Revuelta, Eugenio Viesca; Ruipérez-Valiente, José A. - 04b Atto di convegno in volume
congresso: 2024 IEEE Global Engineering Education Conference (EDUCON) (Kos Island; Greece)
libro: 2024 IEEE Global Engineering Education Conference (EDUCON). Proceedings - (979-8-3503-9402-3; 979-8-3503-9403-0)

11573/1726972 - 2023 - A Semi-automatic Approach for Enhancing the Quality of Automatically Generated Inventories
Bonomi, Silvia; Cuoci, Marco; Lenti, Simone - 04b Atto di convegno in volume
congresso: 2023 IEEE International Conference on Cyber Security and Resilience (CSR) (Venice; Italy)
libro: Proceedings of the 2023 IEEE International Conference on Cyber Security and Resilience (CSR) - (979-8-3503-1170-9; 979-8-3503-1171-6)

11573/1705962 - 2023 - FuzzPlanner: Visually Assisting the Design of Firmware Fuzzing Campaigns
Coppa, Emilio; Izzillo, Alessio; Lazzeretti, Riccardo; Lenti, Simone - 04b Atto di convegno in volume
congresso: International Workshop on Visualization for Cyber Security (Melbourne; Australia)
libro: 2023 IEEE Symposium on Visualization for Cyber Security (VizSec) - (979-8-3503-1793-0; 979-8-3503-1794-7)

11573/1568591 - 2022 - Effectiveness Error: Measuring and Improving RadViz Visual Effectiveness
Angelini, M.; Blasilli, G.; Lenti, S.; Palleschi, A.; Santucci, G. - 01a Articolo in rivista
rivista: IEEE TRANSACTIONS ON VISUALIZATION AND COMPUTER GRAPHICS (IEEE / Institute of Electrical and Electronics Engineers Incorporated:445 Hoes Lane:Piscataway, NJ 08854:(800)701-4333, (732)981-0060, EMAIL: subscription-service@ieee.org, INTERNET: http://www.ieee.org, Fax: (732)981-9667) pp. 4770-4786 - issn: 1077-2626 - wos: WOS:000873836400058 (7) - scopus: 2-s2.0-85113226002 (7)

11573/1603282 - 2021 - BUCEPHALUS: a BUsiness CEntric cybersecurity Platform for proActive anaLysis Using visual analyticS
Angelini, Marco; Blasilli, Graziano; Bonomi, Silvia; Lenti, Simone; Palleschi, Alessia; Santucci, Giuseppe; Paoli, Emiliano De - 04b Atto di convegno in volume
congresso: 2021 IEEE Symposium on Visualization for Cyber Security (VizSec) (New Orleans; USA)
libro: Proceedings 2021 IEEE Symposium on Visualization for Cyber Security VizSec 2021 - (978-1-6654-2085-3; 978-1-6654-2086-0)

11573/1726973 - 2021 - Lessons learned while supporting Cyber Situational Awareness
Blasilli, Graziano; De Paoli, Emiliano; Lenti, Simone; Picca, Sergio - 04b Atto di convegno in volume
congresso: Visual Analytics (Zurich; Switzerland)
libro: EuroVA2021. Proceedings of the 2021 EuroVis Workshop on Visual Analytics - (978-3-03868-150-2)

11573/1486475 - 2020 - CrossWidgets: Enhancing Complex Data Selections through Modular Multi Attribute Selectors
Angelini, M.; Blasilli, G.; Lenti, S.; Palleschi, A.; Santucci, G. - 04b Atto di convegno in volume
congresso: 2020 International Conference on Advanced Visual Interfaces, AVI 2020 (Salerno; Italy)
libro: AVI '20: Proceedings of the International Conference on Advanced Visual Interfaces - (9781450375351)

11573/1486484 - 2020 - Cyber-attacks and threats for healthcare - A multi-layer thread analysis
Spanakis, E. G.; Bonomi, S.; Sfakianakis, S.; Santucci, G.; Lenti, S.; Sorella, M.; Tanasache, F. D.; Palleschi, A.; Ciccotelli, C.; Sakkalis, V.; Magalini, S. - 04b Atto di convegno in volume
congresso: 42nd Annual International Conferences of the IEEE Engineering in Medicine and Biology Society, EMBC 2020 (Montreal, QC, Canada, Canada)
libro: Proceedings of the Annual International Conference of the IEEE Engineering in Medicine and Biology Society, EMBS - (978-1-7281-1990-8)

11573/1331776 - 2019 - NEMESIS (NEtwork MEdicine analySIS): Towards visual exploration of network medicine data
Angelini, M.; Blasilli, G.; Farina, L.; Lenti, S.; Santucci, G. - 04b Atto di convegno in volume
congresso: 10th International Conference on Information Visualization Theory and Applications, IVAPP 2019 - Part of the 14th International Joint Conference on Computer Vision, Imaging and Computer Graphics Theory and Applications, VISIGRAPP 2019 (Prague; Czech Republic; 25 February 2019 through 27 February 2019; Code 146941)
libro: VISIGRAPP 2019 - Proceedings of the 14th International Joint Conference on Computer Vision, Imaging and Computer Graphics Theory and Applications - (978-989758354-4)

11573/1387815 - 2019 - Towards Enhancing RadViz Analysis and Interpretation
Angelini, M.; Blasilli, G.; Lenti, S.; Palleschi, A.; Santucci, G. - 04b Atto di convegno in volume
congresso: 2019 IEEE Visualization Conference, VIS 2019 (Vancouver; Canada)
libro: 2019 IEEE Visualization Conference, VIS 2019 - (978-1-7281-4941-7)

11573/1331778 - 2019 - MAD: A visual analytics solution for Multi-step cyber Attacks Detection
Angelini, M.; Bonomi, S.; Lenti, S.; Santucci, G.; Taggi, S. - 01a Articolo in rivista
rivista: JOURNAL OF COMPUTER LANGUAGES (Oxford: Elsevier Ltd.) pp. 10-24 - issn: 2590-1184 - wos: WOS:000499682500002 (15) - scopus: 2-s2.0-85065077286 (18)

11573/1325767 - 2019 - SymNav: Visually Assisting Symbolic Execution
Angelini, Marco; Blasilli, Graziano; Borzacchiello, Luca; Coppa, Emilio; D'elia, Daniele Cono; Demetrescu, Camil; Lenti, Simone; Nicchi, Simone; Santucci, Giuseppe - 04b Atto di convegno in volume
congresso: 16th IEEE Symposium on Visualization for Cyber Security (VizSec 2019) (Vancouver, Canada)
libro: Proceedings of the 16th IEEE Symposium on Visualization for Cyber Security (VizSec 2019) - (978-172813876-3)

11573/1180253 - 2019 - Vulnus: Visual Vulnerability Analysis for Network Security
Angelini, Marco; Blasilli, Graziano; Catarci, Tiziana; Lenti, Simone; Santucci, Giuseppe - 01a Articolo in rivista
rivista: IEEE TRANSACTIONS ON VISUALIZATION AND COMPUTER GRAPHICS (IEEE / Institute of Electrical and Electronics Engineers Incorporated:445 Hoes Lane:Piscataway, NJ 08854:(800)701-4333, (732)981-0060, EMAIL: subscription-service@ieee.org, INTERNET: http://www.ieee.org, Fax: (732)981-9667) pp. 183-192 - issn: 1077-2626 - wos: WOS:000452640000018 (26) - scopus: 2-s2.0-85052660456 (36)

11573/1486480 - 2019 - CrossWidget: a D3.js Plugin to Support Multiple Scented Cross Filtering Activities
Blasilli, Graziano; Lenti, Simone; Palleschi, Alessia - 04f Poster
congresso: EUROVIS 2019 (PORTO)
libro: EuroVis 2019 - Posters - ()

11573/1386853 - 2018 - Guess what i want: I am in hurry and i am using my phone while driving
Angelini, M.; Blasilli, G.; Lenti, S.; Santucci, G. - 04b Atto di convegno in volume
congresso: 22nd International Conference Information Visualisation - Biomedical Visualization, Visualisation on Built and Rural Environments and Geometric Modelling and Imaging, IV 2018 (Salerno; Italy)
libro: 2018 22nd International Conference Information Visualisation (IV) - (978-1-5386-7202-0)

11573/1282978 - 2018 - ROPMate: Visually Assisting the Creation of ROP-based Exploits
Angelini, Marco; Blasilli, Graziano; Borrello, Pietro; Coppa, Emilio; D'elia, Daniele Cono; Ferracci, Serena; Lenti, Simone; Santucci, Giuseppe - 04b Atto di convegno in volume
congresso: 15th IEEE Symposium on Visualization for Cyber Security (Berlin; Germany)
libro: 2018 IEEE Symposium on Visualization for Cyber Security (VizSec) - (978-153868194-7)

11573/1119430 - 2018 - Visual exploration and analysis of the italian cybersecurity framework
Angelini, Marco; Blasilli, Graziano; Lenti, Simone; Santucci, Giuseppe - 04b Atto di convegno in volume
congresso: AVI '18 2018 international conference on advanced visual interfaces, AVI '18 (Castiglione della Pescaia, Grosseto, Italy)
libro: Proceedings of the 2018 international conference on advanced visual interfaces (AVI 2018) - (9781450356169)

11573/1119480 - 2018 - STEIN: Speeding up evaluation activities with a seamless testing environment integrator
Angelini, Marco; Blasilli, Graziano; Lenti, Simone; Santucci, Giuseppe - 04b Atto di convegno in volume
congresso: EuroVis 2018 - 20th EG/VGTC Conference on Visualization (Brno, Czech Republic)
libro: EuroVis 2018 eurographics / IEEE VGTC Conference on visualization 2018 Brno, Czech Republic June 4 – 8, 2018 - (978-3-03868-060-4)

11573/1073997 - 2018 - An attack graph-based on-line multi-step attack detector
Angelini, Marco; Bonomi, Silvia; Borzi, Emanuele; Del Pozzo, Antonella; Lenti, Simone; Santucci, Giuseppe - 04b Atto di convegno in volume
congresso: 19th International Conference on Distributed Computing and Networking, ICDCN 2018 (Varanasi; India)
libro: ICDCN '18 Proceedings of the 19th International Conference on Distributed Computing and Networking - (9781450363723)

11573/1017448 - 2017 - The goods, the bads and the uglies: Supporting decisions in malware detection through visual analytics
Angelini, Marco; Aniello, Leonardo; Lenti, Simone; Santucci, Giuseppe; Ucci, Daniele - 04b Atto di convegno in volume
congresso: 14th IEEE Symposium on Visualization for Cyber Security, VizSec 2017 (Phoenix; United States)
libro: 2017 IEEE Symposium on Visualization for Cyber Security (VizSec) - (978-1-5386-2693-1)

11573/1090280 - 2017 - CRUMBS: A cyber security framework browser
Angelini, Marco; Lenti, Simone; Santucci, Giuseppe - 04b Atto di convegno in volume
congresso: 14th IEEE Symposium on Visualization for Cyber Security, VizSec 2017 (Phoenix; United States)
libro: 2017 IEEE Symposium on Visualization for Cyber Security (VizSec) - (978-1-5386-2693-1)

© Università degli Studi di Roma "La Sapienza" - Piazzale Aldo Moro 5, 00185 Roma