Security Master's

Master's Projects in Security
UiO Department of Informatics

Supervised by Prof. Audun Jøsang, Networks and Distributed Systems Group (ND Group), IFI.

Take contact (josang@ifi.uio.no) if you are interested in doing one of the proposed security Master's projects, or if you want to discuss other security topics for a Master's project.

Open Master's projects

Title Description
 Cybersecurity Master's 
 
 Various projects 
 

Current Master's projects

Title Description
Security by design with Scrum
 
Master's student:
Hanne Rygge
This Master's project investigates how security-by-design can be integrated with the Scrum software development management model. This involves running experiments with a group of 2nd year Bachelor students who follow the course IN2000 System Development. Yngve Linsjørn is co-supervisor.
The Effect of Quantum Hard-Forks on Blockchain Currencies
 
Master's student:
Trung Trinh
This Master's project focuses on online currencies based on block-chains. A serious challenge for digital currencies is when advances in mathematics and hardware such as quantum computing makes obsolete the technology on which the currency is based, in which case the blockchain must fork based on new technology. Vincent Olislagers from Mikrobank, and Sondre Rønjom from NSM are co-supervisors.
Cybersecurity Threat Analysis
 
Master's student:
Håkon Struijk Holmen
This Master's project is part of the Oslo Analytics project.
Online Anonymous Authentication
 
Master's student:
Halvor Bjørn
This Master's project is part of the OffPAD project.
Encryption in IP Telephony
 
Master's student:
Angélique Colle
This Master's project focuses on solutions for encryption in IPT (IP Telephony). Co-supervisor is Leif Nilsen from Thales.
Sikker lagring av sertifikater pâ mobiltelefon  for lesing av elektroniske ID-kort
 
Master's student:
Henrik Heide
Dette Master-prosjektet inngâr i G3kko-prosjektet, som er en del av IDeALT-programmet i Politidirektoratet. Oppgaven er én av tre oppgaver som inngâr i samme fagmiljø og med tilstøtende problemstillinger. Politiet ønsker â teste ut bruken av standard mobiltelefon som leseutstyr for MRTD (Machine Readable Travel Documents ). Den biometriske informasjonen er kryptert og nøklene mâ beskyttes. Spørsmâlet oppgaven skal besvare er om det i praksis mulig â oppbevare nøklene sikkert pâ en mobiltelefon slik at en møter alle krav satt i policy samtidig som løsningen er nyttig for politiet i en kontrollsituasjon. Hva sikkert betyr er bestemt av policy. Oppgaven kan fokuseres i flere retninger, avhengig av studentens kunnskaper og interesser. Se detaljer
 
Sikkerhet for nasjonale ID-kort
 
Master's student:
Daniel Høgli Olufsen
Dette Master-prosjektet inngâr i G3kko-prosjektet, som er en del av IDeALT-programmet i Politidirektoratet.
Investigating Trade-Offs in Biometrics Solutions
 
Master's student:
Thorvald Henrik Glad Munch-Møller
Biometrics represent an important class of technologies for identification and authenticaiton of individuals, with applications in areas ranging from criminal forensics investigation to online access control. Every forensics solution can potentially produce false positives and false negatives, i.e. selecting the wrong individual, or failing to select the correct individual. This project focuses on investigating the trade-off between false positives and false negatives in biometrics solutions. This involves methods for analysing and specifying the utilities of making decisions based on biometrics, and on proposing methods for setting the most optimal trade-off based on those utilities. This Master's project is specified in collaboration with Steria which is one of the 4 largest global players in the biometrics industry. Co-supervisor for this project will be Ole Marius Steinkjer from Steria.
 
Fordeler og barrierer ved innføring av ledelsessystem for informasjonssikkerhet basert på ISO 27001
 
Master's student:
Ole Martin Refvik
This Master's project is part of the UiO program for Management in IT.

 
 
 
 
 
 
 
 
 
 
 
 
 
 
 

Completed Master's projects

Title Description
Applying Machine Learning for Detecting Exploit Kit Traffic
 
Jonas Sandnes, MSc
Completed in October 2017
This Master's project focused on analysing exploit kit traffic traffic analysis with machine learning. Martin Eian from mnemonic was co-supervisor.
Strategic measures to counter advanced network operations: Standardisation and automation of detection and warnings
 
Tor Saltveit, MSc
Completed in June 2017
This Master's project focused on analysing and proposing a general model for cyberthreat detection and response.
Sikker som lokalbanken
 
Thomas Johansen, MSc
Completed in April 2017
This Master's project focused on security management for financial institutions, and was part of the UiO program for Management in IT.
Integrated Threat Modelling
 
Dag Eng, MSc
Completed in April 2017
This Master's project proposed a framework for integrating multiple threat models. Co-supervisor is Rune Dyrlie from Telenor.
Visual Data Authentication
 
 
Marius Portaas-Haugen, MSc
Completed in December 2016
The OffPAD (Offline Personal Authentication Device) can be a separate hardware device or it can be integrated with a smartphone. The OffPAD enables multiple security solutions such as for user authentication, server authentication, data authentication and secure storage. However, it is crucial that the solutions are user friendly. This project focuses on investigating the usability of the various security solutions offered by the OffPAD. This Master's project is part of the OffPAD research project at IfI. The OffPAD research project is a Eurostars project managed by the industry partner TazTag in France. Prototype smartphones from TazTag can be used as part of this Master's project.
 
Formal Intelligence Analysis
 
Ole Kristian Rosvold, MSc
Completed in September 2016
This Master's project was part of the ABRI-project funded by the US Army Research Labs.
Multi-factor authentication using Secure Elements on the World Wide Web
 
Lars Thorsen, MSc
Completed in June 2016
This Master's project investigated identity management and user authentication solutions for the Web.
 
End-To-End Verifiability in Electronic Elections
 
Chris Csomo Risvik, MSc
Completed in June 2016
This Master's project investigated to what degree it is possible to achieve end-to-end verifiability of votes cast in electronic elections.
 
An eMRTD inspection system on Android
 
Halvdan Hoem Grelland, MSc
Completed in June 2016
This Master's prosject was part of the G3kko-project of the IDeALT-program in the National Police Directorate.
 
Politiet ønsker â teste ut bruken av standard mobiltelefon som leseutstyr for MRTD (Machine Readable Travel Documents). Oppgaven gâr helt kort ut pâ â lage en app for Android og teste om dette er en funksjonelt fullgod løsning. Se detaljer
 
Data Authentication in the OffPAD using Hash
 
Sijan Gurung, MSc
Completed in May 2016
This Master's project focuses on analysing and designing a solution for authenticating data (i.e. what the user sees) to a remote host. This involves generating and verifying authentication codes generated by and external OffPAD device for ensuring the authenticity of data. This Master's project is part of IfI's OffPAD research project which focuses on supporting trusted online interactions in environments of malware-infected hosts. The OffPAD research project is a Eurostars project managed by the industry partner TazTag in France.
 
Threat Analysis of Mobile Banking Platforms
 
Henrik Stene, MSc
Completed in 2015
The smartphone has for many become the primary platform for accessing online services such as online banking. The innovative combination of smartphones and online banking is commonly called mobile banking. New solutions and innovative technology are typically affected by security vulnerabilities and threats. This Master's project focused on analysing potential vulnerabilities and threats that could lead to a compromise of mobile banking transactions, and on identifying possible security controls for mitigating the security risks of mobile banking.
 
Attribute Based Access Control in Cloud Environments
 
Jamal Sealiti, MSc
Completed in 2015
This Master's project investigated the use of ABAC (Attribute Based Access Control) models to handle special AC needs in cloud environments.
Legal Aspects of Security
 
Therese Vaagan, MSc.
Completed in 2014
This Master's project investigated legal aspects of information security.
IDS-based Passive Asset Detection.
 
Philip Christian Scheel, MSc.
Completed in 2014
The Master's project investigated how to use IDS (Intrusion Detection Systems) for hardware and software asset detection in networks.
Fuzzing analysis: Evaluation of properties for developing a feedback driven fuzzer tool.
 
Kris Gundersen, MSc.
Completed in 2014
The Master's project focused on leveraging the feedback from instrumenting fuzzing executions to continuously optimize the fuzzing analysis.
Security Incident Detection with Passive DNS Logs.
 
Martin Boassen Nordby, MSc.
Completed in 2014
The Master's project focused on using log data gathered by DNS sensors to automatically deteect previously known and unknown malicious domains and possibly infected clients.
Authenticating HTTPS servers through the use of DNS in an Offline Personal Authentication Device (OffPAD).
 
Joakim Hovlandsvåg, MSc.
Completed in 2013
The Master's project investgated how to strenghten server authentication for end users based on an Offline Personal Authenticaiton Device (OffPAD), especially when combined with DNSSEC.
Strategies for Password Management.
 
Shazia Rahman Obedur, MSc.
Completed in 2013
The Master's project analysed password habits of end users.
Risikohåndtering  -  Risky business?
 
Morten Weea, MSc.
Completed in 2013
The Master's project investigated the various approaches to and interpretations of risk assessment in organisations.
Cognitive Entity Authentication with Petname Systems.
 
Kent Are Varmedal, MSc.
Completed in 2013
The Master's project investigated the design and practical test of a petname system implemented on a prototype OffPAD (Offline Personal Authentication Device) in order to reduce the vulnerability to phishing attacks.
Requirements and Analysis of Extended HTTP Digest Access Authentication.
 
Henning Klevjer, MSc.
Completed in 2013
The Master's project investigated local user-centric identity management for user authentication and describes a prototype implementation of a simple, secure and user friendly authentication mechanism based on the OffPAD (Offline Personal Authentication Device).
Passive Asset Detection using NetFlow.
 
Mats Erik Klepsland, MSc.
Completed in 2012
The Master's project focused on the implementation of a passive asset detection system based on NetFlow, allowing network administrators to detect hosts and services on the network using network traffic data that already has been collected.
Program Crash Analysis: Evaluation and Application of Current Methods.
 
Hakon Lønmo (Krohn-Hansen), MSc.
Completed in 2012
The Master's project demonstrated how fuzzing can produce a large set of different crashes in a real program, and conducts an empirical study to explore methods for analyzing these crashes.
Honeypots in network perimeter defense systems.
 
John Børge Holen-Tjelta, MSc.
Completed in 2011
The Master's project investigated how information from honeypots can be used to improve network security.
A message-level security approach for RESTful services.
 
Omar Slomic, MSc.
Completed in 2011
The Master's project proposed a prototype solution for message-level security for RESTful (Representational State Transfer) services based on the combination of well-known, cross-platform RESTful mechanisms.

Back to Homepage.

Last Updated 14 September 2015.