Paolo Gasti, Ph.D.

Assistant Professor

School of Engineering and Computing Sciences
New York Institute of Technology
Room 808, Edward Guiliano Global Center
1855 Broadway, New York 10023
pgasti@nyit.edu - Click here to download my PGP key


I am an Assistant Professor at the New York Institute of technology, where I am affiliated with the Computer Science Department of the School of Engineering and Computing Sciences (SoECS).

My research focuses on applied cryptography, behavioral authentication, privacy-preserving techniques for sharing sensitive information, and security in future Internet architectures, including Named Data Networking (NDN) and Content-Centric Networking (CCN).

I am a co-director of the Lab for behavioral Authentication, Machine learning, and Privacy (LAMP), at the School of Engineering and Computing Sciences of NYIT.

Before joining NYIT, I was a research scientist at University of California, Irvine. I received a Ph.D. in Computer Science from University of Genoa, Italy, in 2010. During my Ph.D. I was a visiting scholar at the Johns Hopkins University's ISI under the supervision of Prof. Giuseppe Ateniese.

Working with me

Please send me a short email with your CV, a list of 2 references, and 200-300 words summarizing your research interests. Please indicate whether you have funding, and if you already contacted someone at NYIT's School of Engineering and Computing Sciences. I currently have open positions for visiting Ph.D. students and Postdocs.

Recommendation Letters

I will be happy to write you a recommendation letter if you have worked on a project with me. Class assignments do not qualify as projects.

Selected Publications

Privacy-Aware Caching in Information-Centric Networking
(with Gergely Acs, Mauro Conti, Cesar Ghali, Gene Tsudik, and Christopher Wood)
IEEE Transactions on Dependable and Secure Computing (TDSC), 2017

On Inferring Browsing Activity on Smartphones via USB Power Analysis Side-channel
(with Q. Yang, G. Zhou, A. Farajidavar, and K. Balagani)
IEEE Transactions on Information Forensics and Security (T-IFS), 2016

Secure, Fast, and Energy-Efficient Outsourced Authentication for Smartphones
(with K. Balagani, J. Sedenka, Q. Yang, G. Zhou)
IEEE Transactions on Information Forensics and Security (T-IFS), 2016

FLEX: A Flexible Code Authentication Framework for Delegating Mobile App Customization
(with G. Costa, A. Merlo, and Shung-Hsi Yu)
11th ACM Symposium on Information, Computer and Communication Security (AsiaCCS), 2016

HMOG: New Behavioral Biometric Features for Continuous Authentication of Smartphone Users
(with Z. Sitova, J. Sedenka, Q. Yang, G. Peng, G. Zhou, K. Balagani)
IEEE Transactions on Information Forensics and Security (T-IFS), 2015

Privacy-preserving User Matching
(with K. Rasmussen)
The 2015 ACM Workshop on Privacy in the Electronic Society (WPES15), 2015

Violating Consumer Anonymity: Geo-locating Nodes in Named Data Networking
(with A. Compagno, M. Conti, L. V. Mancini and G. Tsudik)
13th International Conference on Applied Cryptography and Network Security (ACNS), 2015

Secure Outsourced Biometric Authentication with Performance Evaluation on Smartphones
(with J. Sedenka, S. Govindarajan, and K. Balagani)
IEEE Transactions on Information Forensics and Security (T-IFS), 2015

Secure Sensing over Named Data Networking
(with J. Burke, N. Nathan and G. Tsudik)
The 13th IEEE International Symposium on Network Computing and Applications (NCA), 2014

Privacy-Preserving Population-Enhanced Biometric Key Generation from Free-Text Keystroke Dynamics
(with J. Sedenka, K. Balagani and V. Phoha)
International Joint Conference on Biometrics (IJCB), 2014

Continuous Authentication with Cognition-Centric Text Production and Revision Features
(with H. Locklear, Z. Sitova, S. Govindarajan, A. Goodkind, D. Brizan, A. Rosenberg, V. Phoha and K. Balagani)
International Joint Conference on Biometrics (IJCB), 2014

Automatic Identification of Solid-Phase Medication Intake Using Wireless Wearable Accelerometers
(with R. Wang, Z. Sitova, X. Jia, X. He, T. Abramson, K. Balagani and A. Farajidavar)
36th Annual International IEEE Engineering in Medicine and Biology Society Conference (EMBS), 2014

Privacy-Preserving Distance Computation and Proximity Testing on Earth, Done Right
(with Jaroslav Sedenka)
9th ACM Symposium on Information, Computer and Communication Security (AsiaCCS), 2014

Covert Ephemeral Communication in Named Data Networking
(with Moreno Ambrosin, Mauro Conti and Gene Tsudik)
9th ACM Symposium on Information, Computer and Communication Security (AsiaCCS), 2014

Optimizing Bi-Directional Low-Latency Communication in Named Data Networking
(with Mishari Almishari, Naveen Nathan and Gene Tsudik)
ACM Computer Communication Review (CCR), 2013

Privacy-Preserving Symptoms-to-Disease Mapping on Smartphones
(with Michael Holmes, Jerald Liu and Huanying Gu)
Mobile and Information Technologies in Medicine (MobileMed), 2013

EsPRESSo: Efficient Privacy-Preserving Evaluation of Sample Set Similarity
(with Carlo Blundo and Emiliano De Cristofaro)
Journal of Computer Security (JCS), 2013

A Lightweight Mechanism for Detection of Cache Pollution Attacks in Named Data Networking
(with Mauro Conti and Marco Teoli)
Elsevier Journal on Computer Networks (COMNET), Special Issue on Mobile Computing for Content/Service Oriented Networking Architecture (2013)

Poseidon: Mitigating Interest Flooding DDoS Attacks in Named Data Networking
(with Alberto Compagno, Mauro Conti and Gene Tsudik)
38th Annual IEEE Conference on Local Computer Networks (LCN 2013), Sydney, Australia

Secure Privacy-Preserving Protocols for Outsourcing Continuous Authentication of Smartphone User with Touch Data
(with Sathia Govindarajan and Kiran S. Balagani)
Biometrics: Theory, Applications and Systems (BTAS 2013), 2013

Privacy-Preserving Matching of Community-Contributed Content
(with Mishari Almishari, Ekin Oguz and Gene Tsudik)
European Symposium on Research in Computer Security (ESORICS 2013), 2013

DoS and DDoS in Named Data Networking
(with Gene Tsudik, Ersin Uzun and Lixia Zhang)
International Conference on Computer Communications and Networks (ICCCN 2013-NACSD), 2013

Cache Privacy in Name-Data Networking
(with Gergely Acs, Mauro Conti, Cesar Ghali and Gene Tsudik)
International Conference on Distributed Computing Systems (ICDCS 2013), 2013

Securing Instrumented Environments over Content-Centric Networking: the Case of Lighting Control and NDN
(with Jeff Burke, Naveen Nathan and Gene Tsudik)
International Workshop on Emerging Design Choices in Name-Oriented Networking (INFOCOM NOMEN 2013), 2013

Efficient and Private Computation of Set Intersection and Set Union Cardinality
(with Emiliano De Cristofaro and Gene Tsudik)
International Conference on Cryptology and Network Security (CANS 2012), 2012

GenoDroid: Are Privacy-Preserving Genomic Tests Ready for Prime Time?
(with Emiliano De Cristofaro, Sky Faber and Gene Tsudik)
CCS Workshop on Privacy in the Electronic Society Chicago (WPES 2012), 2012

EsPRESSo: Efficient Privacy-Preserving Evaluation of Sample Set Similarity
(with Carlo Blundo and Emiliano De Cristofaro)
7th International Workshop on Data Privacy Management (DPM 2012), 2012

On The Security of Password Manager Database Formats
(with Kasper Bonne Rasmussen)
European Symposium on Research in Computer Security (ESORICS 2012), 2012

ANDaNA: Anonymous Named Data Networking Application
(with Steven DiBenedetto, Gene Tsudik and Ersin Uzun)
19th Annual Network and Distributed System Security Symposium (NDSS 2012), 2012

Countering GATTACA: Efficient and Secure Testing of Fully-Sequenced Human Genomes
(with Pierre Baldi, Roberta Baronio, Emiliano De Cristofaro and Gene Tsudik)
18th ACM Conference on Computer and Communications Security (CCS 2011), 2011

Secure and Efficient Protocols for Iris and Fingerprint Identification
(with Marina Blanton)
European Symposium on Research in Computer Security (ESORICS 2011), 2011

On Re-use of Randomness in Broadcast Encryption
(with Alessio Merlo)
Ninth Annual Conference on Privacy, Security and Trust (PST 2011), 2011.

A New Approach to Securing Audio Conference Tools
(with Zhenkai Zhu, Yanbin Lu, Jeffrey Burke, Van Jacobson and Lixia Zhang)
Asia Workshop on Future Internet Technologies (AWFIT2011), 2011.

Deniable Cloud Storage: Sharing Files via Public-key Deniability
(with Giuseppe Ateniese and Marina Blanton)
Workshop on Privacy in the Electronic Society (CCS WPES 2010), 2010.

On the Integrity of Network Coding-based Anonymous P2P File Sharing Networks
(with Alessio Merlo, Giuseppe Ciaccio and Giovanni Chiola)
The 9th IEEE International Symposium on Network Computing and Applications (IEEE NCA 2010), 2010.

Breaking and Fixing the Self Encryption Scheme for Data Security in Mobile Devices
(with Yu Chen)
2010 18th Euromicro Conference on Parallel, Distributed and Network-based Processing (PDP 2010), 2010.

Resource Management with X.509 Inter-domain Authorization Certificates (InterAC)
(with Vishwas Patil, Luigi V Mancini and Giovanni Chiola)
The 2009 European PKI Workshop (EuroPKI'09), 2009.

Universally Anonymous IBE based on the Quadratic Residuosity Assumption
(with Giuseppe Ateniese).
RSA Conference 2009, Cryptographers' Track (CT-RSA '09), 2009.

StemCerts-2: Pairs of X.509 v3 Certificates for Greater Security, Flexibility and Convenience
(with Giovanni Chiola)
6th Annual IEEE Consumer Communications & Networking Conference, 2009.

StemCerts: customizable X.509 v3 certificates for higher security, flexibility, and convenience
(with Giovanni Chiola)
Prise, Workshop Italiano su Privacy e Security, 2006.

Grants and Scholarships

NSF SaTC Award #1619023, October 2016

DARPA Active Authentication Grant FA8750-13-2-0266, September 2013

CISCO grant #573525, June 2012

Fulbright Scholarship, October 2007 to October 2008


Invited Talks


Recent Activities