About Me

I'm a PostDoc in the Trustworthy and Secure Future Internet of Istituto di Informatica e Telematica (Institute of Informatics and Telematics) at the National Research Council of Italy (CNR). My research Focuses on mobile and distributed system security with emphasis on machine learning techniques for Android malware detection, access and usage control for mobile devices, distributed trust in large scale system. Recently I also started working on collaborative, privacy preserving (big) data analysis.

Contact Details

Dr. Andrea Saracino
Via G. Moruzzi, n. 1
56124, Pisa, IT

+39 050 315 3488
andrea.saracino@iit.cnr.it

Latest News

  • 09/02/2017 I will be teaching a short Ph.D. course on attacks and defense techniques for mobile devices at NECS winter school .
  • 19/12/2017 MADAM is now more accurate and efficient. Thanks to a collaboration with University of Sannio, MADAM is now evolved in BRIDEMAID. Check the new paper accepted and presented in PST 2016 , held in New Zealand here.

Academic Titles

Ph.D. in Computer Science. Start January 2012 - End June 2015

I got a Ph.D. in Ingegneria dell'Informazione (equivalent to Ph.D. in Computer Science) from the University of Pisa, Italy, under the supervision of Prof. Gianluca Dini and Dr. Fabio Martinelli, with a thesis titled "Enforcing Application Security on Android Mobile Devices" . During my Ph.D., I spent most of the time working in the Trustworthy and Secure Future Internet group, at Istituto di Informatica e Telematica of Italian National Research council (IIT-CNR) under the supervision of Dr. Fabio Martinelli. I also spent three months at Missouri University of Science and Technology (MST) under the supervision of Dr. Sajal K. Das, working on trust in large scale distributed systems. From the University of Pisa I also got Laurea Specialistica (M.Eng) and Laurea Triennale (B.Sc.), respectively in 2011 and 2010.

Publications

In construction

In the meanwhile you can find an almost up-to-date list of my publications at my DBLP page: DBLP page or Google Scholar page.

  • Gianluca Dini, Fabio Martinelli, Ilaria Matteucci, Marinella Petrocchi, Andrea Saracino, Daniele Sgandurra: Risk analysis of Android applications: A user-centric solution, Elsevier Future Generation Computing Systems (2016) Link .
  • Aliaksandr Lazouski, Fabio Martinelli, Paolo Mori, Andrea Saracino: Stateful Data Usage Control for Android Mobile Devices, Springer International Journal of Information Security (2016).
  • Andrea Saracino, Daniele Sgandurra, Fabio Martinelli, Gianluca Dini: MADAM: Effective and Efficient Behavior-based Android Malware Detection and Prevention. IEEE Transactions on Dependable and Secure Computing (2016).
  • Alessandro Aldini, Fabio Martinelli, Andrea Saracino, Daniele Sgandurra: Detection of repackaged mobile applications through a collaborative approach. Concurrency and Computation: Practice and Experience 27(11): 2818-2838 (2015)
  • Antonio La Marra, Fabio Martinelli, Andrea Saracino, Mina Sheikhalishahi: MalProfiler: Automatic and Effective Classification of Android Malicious Apps in Behavioral Classes. FPS 2016: 3-19. (2016)
  • Andrea Saracino, Fabio Martinelli, Gaetano Alboreto, Gianluca Dini: Data-Sluice: Fine-grained traffic control for Android application. ISCC 2016: 702-709
  • Mario Faiella, Fabio Martinelli, Paolo Mori, Andrea Saracino, Mina Sheikhalishahi: Collaborative Attribute Retrieval in Environment with Faulty Attribute Managers, ARES 2016.
  • Fabio Martinelli, Andrea Saracino, Mina Sheikhalishahi: Modeling Privacy Aware Information Sharing Systems: A Formal and General Approach, IEEE Trustcom 2016.
  • Fabio Martinelli, Paolo Mori, Andrea Saracino: Enhancing Android Permission through Usage Control: A BYOD Use-Case, in Proceedings of ACM Symposium on Applied Computing 2016.
  • Mina Sheikhalishahi, Andrea Saracino, Mohamed Mejri, Nadia Tawbi, Fabio Martinelli: Fast and Effective Clustering of Spam Emails by Structural Similarity, in Proceedings of Foundations and Practice of Security 2015.
  • Francesco Restuccia, Andrea Saracino, Sajal K. Das, Fabio Martinelli:Preserving QoI in participatory sensing by tackling location-spoofing through mobile WiFi hotspots. PerCom Workshops 2015: pp. 81-86
  • Andrea Saracino, Daniele Sgandurra, Dayana Spagnuelo: Addressing privacy issues in location-based collaborative and distributed environments. CTS 2014: 166-172
  • Fabio Martinelli, Ilaria Matteucci, Andrea Saracino, Daniele Sgandurra: Enforcing Mobile Application Security Through Probabilistic Contracts. ESSoS Doctoral Symposium 2014
  • Aliaksandr Lazouski, Fabio Martinelli, Paolo Mori, Andrea Saracino: Stateful Usage Control for Android Mobile Devices. STM 2014: 97-112
  • Gianluca Dini, Fabio Martinelli, Andrea Saracino, Daniele Sgandurra: Probabilistic Contract Compliance for Mobile Applications. ARES 2013: 599-606
  • Gianpiero Costantino, Fabio Martinelli, Andrea Saracino, Daniele Sgandurra: Towards enforcing on-the-fly policies in BYOD environments. IAS 2013: 61-65
  • Fabio Martinelli, Andrea Saracino, Daniele Sgandurra, Alessandro Aldini: A collaborative framework for generating probabilistic contracts. CTS 2013: 139-142
  • Fabio Martinelli, Andrea Saracino, Daniele Sgandurra: Classifying Android Malware through Subgraph Mining. DPM/SETOP 2013: 268-283
  • Gianluca Dini, Fabio Martinelli, Ilaria Matteucci, Andrea Saracino, Daniele Sgandurra: Introducing Probabilities in Contract-Based Approaches for Mobile Application Security. DPM/SETOP 2013: 284-299
  • Gianluca Dini, Fabio Martinelli, Ilaria Matteucci, Marinella Petrocchi, Andrea Saracino, Daniele Sgandurra: Evaluating the Trust of Android Applications through an Adaptive and Distributed Multi-criteria Approach. TrustCom/ISPA/IUCC 2013: 1541-1546
  • Gianluca Dini, Fabio Martinelli, Ilaria Matteucci, Marinella Petrocchi, Andrea Saracino, Daniele Sgandurra: A Multi-criteria-Based Evaluation of Android Applications. INTRUST 2012: 67-82
  • Gianluca Dini, Fabio Martinelli, Andrea Saracino, Daniele Sgandurra: MADAM: A Multi-level Anomaly Detector for Android Malware. MMM-ACNS 2012: 240-253

Projects and

Editorial Activity

I am involved in the activities of the H2020 C3ISP , the EIT Digital project HII on Trusted cloud management, and I have been involved in the FP7 Coco-Cloud Project (GA #), EIT-ICT labs Mobile Security and Privacy project, and MCloudDaaS project.

I have been reviewer for several journals and conferences including, among the others: Transaction on Mobile Computing (IEEE), Computer Communications (Springer), International Journal of Information Security (Springer), MASS 2015, Infocom 2016, Infocom 2015, Codaspy 2015, NSS 2015, Infocom 2014.

I am or I have served in the TPC of the ICISSP 2016 - 2018 conference, FPS 2016, FoRSE 2017, ARES Workshops 2016.

Personal and Free Time

My (not too much) spare time, is dedicated to the things I like most, different from research and teaching.

  • I practice archery (Recurve Bow) as much regularly as possible (some pics here and here . I'm involved as member of the directory board of my archery club Frecce Pisane . I also do some archery teaching and coaching to novices and I'm working to become a Federal Instructor.
  • I costantly fight the formation of a research gut through fitness (mainly weightlifting and cardio). Mens sana... you know the drill :)
  • Leisure travelling. OK, not so much original I must admit, but I love to visit new places. I considered a place visited after that (i) I watched at least three cultural PoI, (ii) I ate at least three typical meals, (iii) I took at least three worthy photos, or have my favorite photographer take them for me. I'll start soon a weblog out of this.
  • Working out something new. I wanted to do it for a long time, now I'm finally moving my first "steps". Updates coming soon (I hope).
  • [UPDATE] I got on 23/11/2015 my driving licence A (A3 in Italy) to drive motorbikes of any size.

Get In Touch.

My office is located in the A building of the CNR research area in Pisa. Head for entrance 7, after the stairs my office is the third on the right hand side.

form
Something was wrong, message not sent.
Your message was sent, thank you!