Biography

Ciao, I am Daniele, an Assistant Professor at EURECOM with the software and system security (S3) group. I am doing research and teaching in applied system security and privacy with an emphasis on wireless communication, such as Bluetooth and Wi-Fi, embedded systems, such as cars and fitness trackers, mobile systems such as smartphones, and cyber-physical systems such as industrial control systems.

I spent one year and a half as a Postdoc with Mathias Payer’s HexHive group at École Polytechnique Fédérale de Lausanne (EPFL). During my postdoc, among others, I’ve participated in the design, implementation and evaluation of DP3T/GAEN, a privacy-preserving contact-tracing technology now used by Android and iOS for proximity tracing.

I hold a PhD in Computer Science from the Singapore University of Technology and Design (SUTD). My PhD thesis is titled “Design, Implementation, and Evaluation of Secure Cyber-Physical and Wireless Systems”. During my PhD I spent six months at the Computer Science Department of the University of Oxford as a visiting researcher advised by Kasper Rasmussen, and ten months as a visiting researcher at the Helmholtz Center for Information Security (CISPA) advised by Nils Ole Tippenhauer.

I hold a BS and MS in Electronics and Telecommunications Engineering from the University of Bologna (UniBO). I spent three months at the University of Massachusetts (UMass Amherst) as a research assistant to prepare my master thesis titled Design and Testing of Random Number Generators (RNG) advised by Wayne Burleson and Riccardo Rovatti.

Interests
  • Mobile and Wireless Systems
  • Cyber-Physical Systems
  • Industrial Control System
  • Automotive Systems
  • IoT Protocols
  • Applied Cryptography
  • SoCurity
Education
  • PhD in Computer Science, 2019

    Singapore University of Technology and Design (SUTD)

  • MS in Electronics and Telecommunications Engineering, 2013

    University of Bologna (UniBO)

  • BS in Electronics and Telecommunications Engineering, 2010

    University of Bologna (UniBO)

Publications

Talks

On the Insecurity of Vehicles Against Protocol-Level Bluetooth Threats

Talk on Automotive Bluetooth Security at AMUSEC'25.

Cars are some of the most security-critical consumer devices. On the one hand, owners expect rich infotainment features, including audio, hands-free calls, contact management, or navigation through their connected mobile phone. On the other hand, the infotainment unit exposes exploitable wireless attack surfaces. This talk focuses on protocol-level Bluetooth threats on vehicles, a critical but unexplored wireless attack surface. These threats are crucial because they are portable across vehicles, and they can achieve impactful goals, such as accessing sensitive data or even taking remote control of the vehicle. Their evaluation is novel as prior work focused on other wireless attack surfaces, notably Bluetooth implementation bugs. Among relevant protocol-level threats, we pick the KNOB and BIAS attacks because they provide the most effective strategy to impersonate arbitrary Bluetooth devices and are not yet evaluated against vehicles.

Posts

NDSS'26 Artifact Evaluation Comitee Self-Nomination

Mathy Vanhoef and I are co-chairing NDSS'26 Artifact Evaluation (AE).

We are looking for motivated PhD and Postdocs to self-nominate themselves for the NDSS'26 Artifact Evaluation Committee (AEC). Joining it would offer them practical experience and may ease developing artifact submissions for their papers.

KNOB Attack and Crypto 101 by Alfred Menezes

Alfred Menezes has published a fantastic online course on real-world cryptography called Crypto 101: Real-World Deployments.

It is an honor to be featured in the Bluetooth Security Lecture (Lecture 4) which talks about the KNOB attack.

Reviews

Summary

  • 257 submissions reviewed since 2016 (last update 2025-04-11)
  • Associate Editor (AE): ACM Transactions on Privacy and Security (TOPS)
  • Distinguished reviewer: NDSS'24, WOOT'21
  • Chair: Artifact Evaluation (NDSS'26), Poster&Demo (WiSec'24), Publicity (NSS'20)

Conferences and Workshops

  • 2026: PETS, S&P, NDSS
  • 2025: WiSec, DIMVA, CPSS, WOOT, RAID, ACSW
  • 2024: WiSec, SEC, NDSS, DIMVA, CPSS, AsiaCCS, CPSS, RAID
  • 2023: WOOT, WiSec, SEC, NDSS, CPSS, AsiaCCS, CPSS
  • 2022: WOOT, S&P, SEC, CPSS, AsiaCCS, CPSS
  • 2021: WOOT, SEC, AsiaCCS, NSS

Journals

  • ACM Transactions on Privacy and Security (TOPS)
  • IEEE Transactions on Information Forensics and Security (TIFS)
  • IEEE Transactions on Wireless Communications (TWC)
  • IEEE Transactions on Dependable and Secure Computing (TDSC)
  • IEEE Network
  • Computer Networks (ComNet)
  • Journal of Systems Research (JSys)
  • Journal of Computer Science and Technology (JCST)
  • IEEE Computer (COM)

Grants

  • German Research Foundation (DFG)

Publishers

  • Manning Publications

Students

PhD

Graduated PhD

Master (selected)

  • Victor.Fresno-Gomez (Double-degree EURECOM UPM)
  • Yavuz Akin (EURECOM)
  • Elyssa Boulila (EURECOM)
  • Riccardo Cestaro (UniPD, Mille E Una Lode Award, CLUSIT Award'22)
  • Alex Ferragni (EPFL, HexHive, CSEM lab)
  • Emiljano Gjiriti (EPFL, HexHive, CSEM lab)

Courses

At EURECOM (since 2021)

  • 2021–current: Mobile System Security (MOBISEC) MSc.
    • Android and iOS security
  • 2022–current: A Bluetooth Course (ABC) MSc.
    • Bluetooth, wireless, and network security

TA as a PhD (2015-2018)

  • 2018: Security Principles (SPR) MSc, University of Oxford UK, Prof K.B. Rasmussen
    • CIA, Authentication, Cryptography, RSA, Protocols
    • Exercises and presentation of Scyther
  • 2017: Networks BSc, SUTD Singapore, Prof N.O. Tippenhauer
    • TCP/IP, UDP, BGP, SDN, HTTP, REST, TLS, tunnels, NAT
    • Lab session, grading, office hours
  • 2017: Security BSc, SUTD Singapore, Prof N.O. Tippenhauer
    • CIA, Cryptography, Exploitation, TLS, CTF, Network Security
    • Lab session, grading, office hours

For fun and micro profit (2013-2015)

  • External Prof for High School Final Exams in Informatics (Italy) LAMP, SQL, PHP, JS, relational DB, MVC, HTTP(S)
  • Grad/undergrad private lessons: linear algebra, calculus, programming (C, Pascal)
  • High school private lessons: math, physics, programming (C++)

Contact