Stefano Berlato

Computer Scientist, PhD

Email: sb.berlatostefano@gmail.com

Researcher, De Cifris member.
Keen on cloud security and applied cryptography.
Football coach, KH fan, D&D master.

Researcher@FBK Teaching Assistant@UniTN Football Coach@PGS Concordia

Research Interests

Working on

Applied Cryptography

Authorization

Authentication

Reverse Engineering

Will work on

Cloud Native

DevSecOps

Worked on

Internet of Things

Automotive

Android

I speak

Italian - native

English - C1

Experience

Researcher

Fondazione Bruno Kessler

November 2023 - now

Research on applied cryptography, security, and access control for cloud native applications

Topics:

Applied Cryptography

Authentication

Authorization

DevSecOps

Cloud Native

PhD Student

University of Genoa & Fondazione Bruno Kessler

November 2020 - October 2023

Joint PhD on cryptographic access control in cloud-edge-IoT applications (e.g., Cooperative Connected and Automated Mobility) and design of architectural models for optimal enforcement of cryptographic access control policies

Topics:

Applied Cryptography

Authorization

Internet of Things

Automotive

Research Assistant

Fondazione Bruno Kessler

October 2018 - October 2020

Research activities on access control in the Cloud, mobile and automotive security. Research activities on Cooperative, Connected and Automated Mobility (5G-CARMEN project). Study and design of reverse engineering protections for Java and Android Apps

Topics:

Applied Cryptography

Authorization

Automotive

Reverse Engineering

Internship

2ASPIRE

July 2018 - October 2018

Research and analysis of best practices against malicious Reverse Engineering (RE) to increase the company's knowhow in Android RE antitampering and anti-debugging protections

Topics:

Reverse Engineering

Android

IT Assistant

University of Trento

July 2017 - August 2017

150 hours working contract under the "Information Systems Management" office, Support the deployment of the Digital University project, a new platform serving as Knowledge HUB within the university itself

Internship

Heas srl

June 2016 - September 2016

Design of 2 plugins for the web-based SCADA platform ATVISE® in compliance with high-level HMI industrial standards. Developed gestures and tablet-style functionalities, dynamic object instantiation and linking to PLC data

Education

PhD

University of Genoa & Fondazione Bruno Kessler

November 2020 - October 2023

PhD in Security, Risk and Vulnerability, Cybersecurity and Reliable Artificial Intelligence curriculum with the thesis "A Security Service for Performance-Aware End-to-End Protection of Sensitive Data in Cloud Native Applications".

Master degree

University of Trento

September 2017 - July 2019

Master degree in Computer Science, ICT Innovation - Security&Privacy curriculum (110L) with the thesis "A Pragmatic Approach to Handle "Honest but Curious" Cloud Service Providers: Cryptographic Enforcement of Dynamic Access Control Policies".
Awarded 3rd prize at Thesis Award «Innovating information security» 15th edition - 2019, Clusit.

Bachelor degree

University of Trento

September 2014 - July 2017

Bachelor degree in Computer Science (110L) with the thesis "Development of a web based Interface for the Orchestration of Machine Learning Components".

Teaching

Teaching Assistant

University of Trento

September 2020 - now

Teaching Assistant for the Computer Science course "Programmazione 1".

Teacher

University of Genoa

October 2023 - November 2023

Teacher at the Cybersecurity and Critical Infrastructure Protection Master

Publications

Stefano Berlato, Silvio Cretti, Domenico Siracusa, Silvio Ranise

Multi-Objective Microservice Orchestration: Balancing Security and Performance in CCAM

in 27th Conference on Innovation in Clouds, Internet and Networks (ICIN 2024)

Davide Pizzolotto, Stefano Berlato, Mariano Ceccato

Mitigating Debugger-based Attacks to Java Applications with Self-Debugging

in ACM Transactions on Software Engineering and Methodology (TOSEM)

Stefano Berlato, Umberto Morelli, Roberto Carbone, Silvio Ranise

End-to-End Protection of IoT Communications Through Cryptographic Enforcement of Access Control Policies

in 36th Annual IFIP WG 11.3 Conference on Data and Applications Security and Privacy (DBSec 2022)

Stefano Berlato, Marco Centenaro, Silvio Ranise

Smart Card-Based Identity Management Protocols for V2V and V2I Communications in CCAM: a Systematic Literature Review

in IEEE Transactions on Intelligent Transportation Systems (T-ITS)

Stefano Berlato, Roberto Carbone, Adam J. Lee, Silvio Ranise

Formal Modelling and Automated TradeOff Analysis of Enforcement Architectures for Cryptographic Access Control in the Cloud

in ACM Transactions on Privacy and Security (TOPS)

Marco Centenaro, Stefano Berlato, Roberto Carbone, Gianfranco Burzio, Giuseppe Faranda Cordella, Roberto Riggio, and Silvio Ranise

Safety-Related Cooperative, Connected, and Automated Mobility Services: Interplay Between Functional and Security Requirements

in IEEE Vehicular Technology Magazine (VTM)

Andreas Heider-Aviet, Danny Roswin Ollik, Stefano Berlato, Silvio Ranise, Roberto Carbone, Van Thanh Le, Nabil El Ioini, Claus Pahl, Hamid R. Barzegar

Blockchain Based RAN Data Sharing

in IEEE International Conference on Smart Data Services 2021 (SMDS 2021)

Stefano Berlato, Roberto Carbone, Silvio Ranise

Cryptographic Enforcement of Access Control Policies in the Cloud: Implementation and Experimental Assessment

in 18th International Conference on Security and Cryptography (SECRYPT 2021)

Marco Centenaro, Stefano Berlato, Roberto Carbone, Gianfranco Burzio, Giuseppe Faranda Cordella, Silvio Ranise, Roberto Riggio

Security Considerations on 5G-Enabled Back-Situation Awareness for CCAM

in IEEE 3rd 5G World Forum (5GWF 2020)

Stefano Berlato, Roberto Carbone, Adam J. Lee, Silvio Ranise

Exploring Architectures for Cryptographic Access Control Enforcement in the Cloud for Fun and Optimization

in 15th ACM ASIA Conference on Computer and Communications Security (ASIACCS 2020)

Stefano Berlato, Mariano Ceccato

A Large-Scale Study on the Adoption of Anti-Debugging and Anti-Tampering Protections in Android Apps

in Journal of Information Security and Applications (JISA), Issue number 52

Supervised Theses

Simone Brunello

Cryptographic Access Control for Balancing Trust, Protection, and Performance

Bachelor in Computer Science at the University of Trento (2024)

Ion Andy Ditu

Leveraging Trusted Execution Environment for Efficient Revocation and Security in Cryptographic Access Control

Bachelor in Computer Science at the University of Trento (2023)

Erica Elia

A Key Recovery Protocol based on Threshold Secret Sharing for Cryptographic Access Control in the Cloud: The CryptoAC Use Case

Master in Mathematics at the University of Trento (2023)

Enrico Marconi

Combining Blockchain-as-a-Service and Cryptographic Access Control for Secure Data Sharing Across Multiple Organizations

Bachelor in Computer Science at the University of Trento (2022)

Alessandro Colombo

Attribute Based Encryption for Advanced Data Protection in IoT with MQTT

Bachelor in Computer Science at the University of Trento (2022)

Veronica Cristiano

Key Management for Cryptographic Enforcement of Access Control Policies in the Cloud: The CryptoAC Use Case

Master in Mathematics at the University of Trento (2021)

Chaudhry Muhammad Suleman

Cyber-security Risk Assessment for Cooperative, Connected and Automated Mobility: Application to Cooperative Lane Merging

master in Computer Science at the University of Trento (2021)

Projects

Kotlin Multiplatform for OpenABE

March 2022 - now

Team size: 1 people

My role: Developer

Scope: Open Source Project

Category: Library, Open source

A wrapper allowing to easily use the OpenABE library for Attribute-based Encryption (ABE) from Kotlin multiplatform.

Technologies:

Kotlin

Joni

February 2018 - July 2018

Team size: 6 people

My role: Back-end Developer

Scope: University Project

Category: Android app, Open source

University project for building Joni, a tool meant to help blind and visually impaired people to keep in touch with the world. The project comprised the validation of the business idea through concrete analysis on the field and market research with the goal to make news and podcasts accessible by the blind community.

Technologies:

Raspberry

Python

Glumo

February 2017 - June 2017

Team size: 3 people

My role: Back-end Developer

Scope: University Project

Category: Android app, Open source

University project for building an Android app, called Glumo, to help people who suffer from diabetes with features like automatic alarms and emergency SMS. The project comprised the design of monitoring services with direct bluetooth connection with modern glycemic sensors.

Technologies:

Android

Arduino

Bluetooth

Eater

February 2016 - June 2016

Team size: 5 people

My role: Back-end Developer

Scope: University Project

Category: Web app, Open source

University project for building a web application for finding and reviewing restaurants. The project comprised the Agile design and development of the web application with a Java backend, the implementation of the Model-View-Control (MVC) and the DAO pattern for decoupling logic and storage.

Technologies:

Java

Apache

SQL

Reviewer Activity

2024

IEEE - TIFS · ICIN · WWW · ITASEC

2023

EURASIP - JIS · DBSec · ITASEC · SECRYPT · CODASPY · SACMAT · ICISS · FPS

2022

CODASPY · SECRYPT · DBSec · FedCSIS · ICISSP · FPS

2021

Elsevier - JISA · SECRYPT · DPM · SACMAT · ITASEC · DBSec · FPS

2020

SECRYPT · FPS · ICISS · DPM · DBSec · SACMAT

2019

ICISS