Concordia Information Security Research (CISR) Lab


The Concordia Information Security Research (CISR) lab aims at solving real-world cybersecurity problems. Specifically, we analyze security of emerging technologies (e.g., cloud, IoT, 5G), build efficient and practical security solutions, and train next generation security experts.



Learn more

Research Areas


IoT Security


Related-information will be added soon.
Related-information will be added soon.
Related-information will be added soon.
Related-information will be added soon.

Network Security


Related-information will be added soon.
Related-information will be added soon.
Related-information will be added soon.
Related-information will be added soon.

Cloud Security


Related-information will be added soon.
Related-information will be added soon.
Related-information will be added soon.
Related-information will be added soon.

News


Open Positions


Note: To apply, please send an email to us (suryadipta.majumdar (at) concordia.ca) with your CV and transcripts (you will only hear from us if you are shortlisted for the interview). To check admission requirements for MASc students click here, and for PhD students click here please.


  1. Multiple MASc/PhD positions in IoT/5G/Container/Cloud security (starting from Fall 2025)
    • With outstanding academic background, strong system skills and research experience.
    • (Preferably) with industrial experience and/or high-quality security/system publication(s).

Latest News


[08/2024] The paper on an empirical study on IoT anomaly detection models is accepted by IEEE Conference on Communications and Network Security (CNS). Congrats Alireza!
[06/2024] Sofya has passed her master defence with flying colors
[06/2024] The paper on IoT-specific threat intelligence using dynamic app-device interactions is accepted by IEEE Internet of Things Journal. Congrats Sofya and Ehsan!
[05/2024] CISR welcomed a new member: Faisal (MASc)
[05/2024] CISR research success is featured at Concordia news.
[05/2024] CISR welcomed a new member: Aathira (MASc)
[04/2024] CISR member, Shafayat, has been selected for FRQNT - 2024-2025 - Master's Training Scholarship (with the 2nd rank). Congrats Shafayat!
[03/2024] The paper on continuously verifying functional integrity of smart home devices is accepted by WiSec'24.
[02/2024] CISR research (in collaboration with Sunphinx Inc., DRDC, and uOttawa) on IoT security monitoring received an NSERC Alliance grant (2024-2029). Thanks all partners!
[02/2024] CISR research (in collaboration with Sunphinx Inc.) on container security received Mitacs Accelerate fund (2024). Thanks Mitacs and Sunphinx!
[02/2024] The paper (with Dr. Wang's IRC) on building cross-cluster security models for edge-core Kubernetes environments is accepted by CODASPY'24.
[02/2024] Another undergraduate research on container security (in collaboration with BUET) is accepted by CLOSER'24. Congrats, Shafayat!
[12/2023] Jiawei has passed his master defence with flying colors
[11/2023] The paper (with Dr. Wang's IRC) on patching vulnerabilities via efficiently blocking system call sequences is accepted by NDSS'24. Congrats Hugo!
[09/2023] CISR welcomed three new members: Shafayat (MASc), Sourov (MASc), and Piyush (MASc)
[09/2023] Shiva has passed his master defence with flying colors
[08/2023] The paper on evaluating the security posture of 5G networks is accepted by ESORICS'23. Congrats, Md Nazmul and Jia Wei!
[06/2023] The paper on layered security analysis for container images (in collaboration with BUET) is accepted by PST'23. Congrats, Shafayat and Sourov!
[05/2023] Wasi has passed his master defence with flying colors
[03/2023] CISR research (in collaboration with Carleton University and Laval University) on IoT security has been selected for the NSERC/FRQNT NOVA program (2023-2026)
[02/2023] Our Master's student, Wasi, has published his thesis work at Security Standardisation Research Conference 2023. Congrats, Wasi!
[01/2023] The paper on proactive non-disruptive attack mitigation for Kubernetes is accepted by ICC'23
[01/2023] CISR welcomed a new member: Mahdieh (MASc)
[12/2022] CISR research on IoT security has been selected for the Gina Cody Research and Innovation Fellowship (2022-2024)
[12/2022] Our PhD student, Ehsan, has published his Master's thesis work (with Dr. Alieraza Shameli-Sendi) at Journal of Parallel and Distributed Computing . Congrats, Ehsan!
[10/2022] The paper on functional integrity verification for 5G cloud-native network functions is accepted by CloudCom'22
[09/2022] CISR welcomed a new member: Alireza (MASc)
[05/2022] CISR welcomed a new member: Armin (MASc)
[03/2022] The paper on combining machine learning and formal method for NFV security verification is accepted by ESORICS'22
[03/2022] Dr. Majumdar will be serving as an Associate Editor in the Peer-to-Peer Networking and Applications (Springer) - please consider submitting to PPNA
[02/2022] Dr. Majumdar will be serving as a track co-chair (Security) at the 19th Annual International Conference on Privacy, Security, and Trust (PST 2022)
[01/2022] Dr. Majumdar will be serving as a program co-chair at the 4th Workshop on Cloud Security and Privacy (CLOUD S&P 2022), collocated with ACNS 2022
[11/2021] Dr. Majumdar (as a mentor) and Ehsan and Sofya (as mentees) attended the Individualized Cybersecurity Research Mentoring Workshop (iMentor), collocated with ACM CCS 2021
[12/2021] The paper on Proactive Security Policy Enforcement for Containers is accepted by CODASPY'22
[11/2021] The paper on Feature Reduction through Data Preprocessing for IDS is accepted by TPS'21
[09/2021] CISR received DND/NSERC Discovery supplement for three years
[09/2021] CISR welcomed two new members: Ehsan (PhD) and Sofya (MASc)
[08/2021] The paper on Artificial Packet-Pair Dispersion (APPD) is accepted by CNS'21
[08/2021] The paper on Context-Aware IoT Device Functionality Extraction is accepted by CNS'21
[08/2021] The paper on Attention-based Accurate Intrusion Detection is accepted by QSHINE'21
[06/2021] CISR received Mitacs Accelerate with Rheinmetall Inc. for five years (with Dr. Mohsen Ghafouri)
[04/2021] CISR received NSERC Discovery grant
[02/2021] The paper on proactive security auditing for clouds (ProSAS) is accepted by IEEE TDSC
[01/2021] CISR welcomed two new members: Nazmul (PhD) and Shiva (MASc)

Publications


Journal & Conference Articles

2024 "An Empirical Study on Learning Models and Data Augmentation for IoT Anomaly Detection", Alireza Toghiani Khorasgani, Paria Shirani, Suryadipta Majumdar, IEEE Conference on Communications and Network Security (CNS), Accepted, 2024 (Acceptance ratio 35/119≈29%)
"ACE-WARP: A Cost-Effective Approach to Proactive and Non-disruptive Attack Mitigation in Kubernetes Clusters", Sima Bagheri, Hugo Kermabon-Bobinnec, Mohammad Ekramul Kabir, Suryadipta Majumdar, Lingyu Wang, Yosr Jarraya, Boubakr Nour, Makan Pouzandi, IEEE Transactions on Information Forensics and Security (TIFS), Accepted, 2024
"PerfSPEC: Performance Profiling-based Proactive Security Policy Enforcement for Containers", Hugo Kermabon-Bobinnec, Mahmood Gholipourchoubeh, Sima Bagheri, Suryadipta Majumdar, Yosr Jarraya, Lingyu Wang, and Makan Pourzandi, IEEE Transactions on Dependable and Secure Computing (TDSC), Accepted, 2024
"Traditional Indicators of Compromise (IOCs) Meet Dynamic App-Device Interactions for IoT-specific Threat Intelligence", Sofya Smolyakova, Ehsan Khodayarseresht, and Suryadipta Majumdar, IEEE Internet of Things Journal, 2024
"On Continuously Verifying Device-level Functional Integrity by Monitoring Correlated Smart Home Devices", Shiva Sunar, Paria Shirani, Suryadipta Majumdar, J. David Brown, 17th ACM Conference on Security and Privacy in Wireless and Mobile Networks (WiSec'24), Seoul, Korea, May 27-30, 2024 (Acceptance ratio 23/109≈21.1%)
"CCSM: Building Cross-Cluster Security Models for Edge-Core Environments Involving Multiple Kubernetes Clusters", Mahmood Gholipourchoubeh, Hugo Kermabon-Bobinnec, Suryadipta Majumdar, Yosr Jarraya, Lingyu Wang, Boubakr Nour, and Makan Pourzandi, Proc. the 14th ACM Conference on Data and Application Security and Privacy (CODASPY 2024), Porto, Portugal, 19–21 June, 2024 (Acceptance ratio 34/160≈21%)
"On Detecting Malicious Code Injection by Monitoring Multi-level Container Activities", Md. Olid Hasan Bhuiyan, Souvik Das, Shafayat Hossain Majumder, Suryadipta Majumdar, and Md. Shohrab Hossain, The 14th International Conference on Cloud Computing and Services Science (CLOSER 2024), Anges, France, 2-4 May, 2024
“Phoenix: Surviving Unpatched Vulnerabilities via Accurate and Efficient Filtering of Syscall Sequences”, Hugo Kermabon-Bobinnec, Yosr Jarraya, Lingyu Wang, Suryadipta Majumdar and Makan Pourzandi, Proc. the Network and Distributed System Security Symposium (NDSS 2024), San Diego, USA, February 26 - March 1, 2024
2023 “iCAT+: An Interactive Customizable Anonymization Tool using Automated Translation through Deep Learning”, Momen Oqaily, Mohammad Ekramul Kabir, Suryadipta Majumdar,Yosr Jarraya, Makan Pourzandi, Lingyu Wang, and Mourad Debbabi, IEEE Transactions on Dependable and Secure Computing (TDSC), Accepted, 2023
“Caught-in-Translation (CiT): Detecting Cross-level Inconsistency Attacks in Network Functions Virtualization (NFV)”, Sudershan Lakshmanan, Mengyuan Zhang, Suryadipta Majumdar, Yosr Jarraya, Makan Pourzandi, Lingyu Wang, IEEE Transactions on Dependable and Secure Computing (TDSC), Accepted, 2023
“Towards Evaluation and Understanding of Large Language Models for Cyber Operation Automation”, Madeena Sultana, Adrian A Taylor, Li Li and Suryadipta Majumdar, Cyber Resilience Workshop (CRW) at IEEE CNS 2023 on October 05, 2023
“Evaluating the Security Posture of 5G Networks by Combining State Auditing and Event Monitoring”, Md Nazmul Hoq, Jia Wei Yao, Suryadipta Majumdar, Luis Suárez, Lingyu Wang, Makan Pourzandi, Amine Boukhtouta and Mourad Debbabi, Proc. the 28th European Symposium on Research in Computer Security (ESORICS), The Hague, The Netherlands, September 25-29, 2023
“Layered Security Analysis for Container Images: Expanding Lightweight Pre-Deployment Scanning”, Shafayat Hossain Majumder, Sourov Jajodia, Suryadipta Majumdar, Md. Shohrab Hossain, Proc. the 20th International Conference on Privacy, Security, and Trust (PST), Copenhagen, Denmark, August 21-23, 2023
“Innovations in Digital Forensics”, Eds. Suryadipta Majumdar, Paria Shirani, Lingyu Wang, World Scientific Series in Digital Forensics and Cybersecurity: Volume 2, July, 2023
“On Reducing Underutilization of Security Standards by Deriving Actionable Rules: An Application to IoT”, Md Wasiuddin Pathan Shuvo, Md Nazmul Hoq, Suryadipta Majumdar, Paria Shirani, Proc. the 8th Security Standardisation Research Conference, Lyon, France, April 22-23, 2023
“Warping the Defence Timeline: Non-disruptive Proactive Attack Mitigation for Kubernetes Clusters”, Sima Bagheri, Hugo Kermabon-Bobinnec, Suryadipta Majumdar, Yosr Jarraya, Lingyu Wang, Makan Pourzandi, Proc. the IEEE International Conference on Communications (ICC 2023), Rome, Italy, 28 May – 01 June, 2023
“A Tenant-based Two-stage Approach to Auditing the Integrity of Virtual Network Function Chains Hosted on Third-Party Clouds”, Momen Oqaily, Suryadipta Majumdar, Lingyu Wang, Mohammad Ekramul Kabir, Yosr Jarraya, A S M Asadujjaman, Makan Pourzandi, Mourad Debbabi, Proc. the 13th ACM Conference on Data and Application Security and Privacy (CODASPY), Charlotte, NC, USA, April 24-26, 2023
2022 “5GFIVer: Functional Integrity Verification for 5G Cloud-Native Network Functions”, A S M Asadujjaman, Mohammad Ekramul Kabir, Hinddeep Purohit, Suryadipta Majumdar, Lingyu Wang, Yosr Jarraya, Makan Pourzandi, Proc. The 13th IEEE International Conference on Cloud Computing Technology and Science (CloudCom), Bangkok, Thailand, December 13-16 2022
“MLFM: Machine Learning Meets Formal Method for Efficient Security Verification in Network Functions Virtualization (NFV)”, Alaa Oqaily, Yosr Jarraya, Lingyu Wang, Makan Pourzandi, Suryadipta Majumdar, Proc. the 27th European Symposium on Research in Computer Security (ESORICS), Copenhagen, Denmark, 26-30 September 2022
“ProSPEC: Proactive Security Policy Enforcement for Containers”, Hugo Kermabon-Bobinnec, Mahmood Gholipourchoubeh, Sima Bagheri, Suryadipta Majumdar, Yosr Jarraya, Makan Pourzandi and Lingyu Wang, Proc. the 12th ACM Conference on Data and Application Security and Privacy (CODASPY), Baltimore-Washington DC Area, USA, April 24-26, 2022

Current Members


Suryadipta Majumdar

Associate Professor

Cloud Computing Security, IoT Security, SDN Security

Md. Nazmul Hoq

Ph.D. Student

IoT Security, Information Retrieval, Natural Language Processing

Ehsan Khodayarseresht

Ph.D. Student

IoT Security, Cyber-Security, Cloud Computing

Armin Mansouri

M.Sc. Student

IoT Security, Cyber-Security, Embedded Systems

Mahdieh Ghorbanian

M.Sc. Student

IoT Security, Cyber-Security

Sourov Jajodia

M.Sc. Student

Cyber-Security, IoT Security, Cloud Security

Shafayat Hossain Majumder

M.Sc. Student

Cloud Computing, Container Security, Secure ML

Piyush Adhikari

M.Sc. Student

IoT Security, Application Security, Cloud Security, Threat-Hunting

Aathira Dineshan

M.Sc. Student

IoT Security, Cyber-Security

Khandoker Faisal

M.Sc. Student

Security Aware 5G Network

Jannatul Ferdous

M.Sc. Student

IoT Security, Cyber-Security, Cloud Security

Research Interns


Francesco Blefari

Ph.D. Student

Web Security,
Security Auditing and Monitoring, Software Security

Collaborators


Dr. Indrakshi Ray

Colorado State University

Dr. Md. Shohrab Hossain

Bangladesh University of Engineering and Technology

Dr. Mohsen Ghafouri

Concordia University

NSERC/Ericsson IRC

Members of NSERC/Ericsson IRC in SDN/NFV Security

Dr. Anoop Singhal

National Institute of Standards and Technology

Dr. Paria Shirani

University of Ottawa

Dr. Lianying Zhao

Carleton University

Dr. Nadia Tawbi

Laval University

Former Members


Md. Wasiuddin Pathan Shuvo

M.Sc. Student

IoT Security, Network Security, Computer Vision

Shiva Sunar

M.Sc. Student

IoT Security, Network Security, Vulnerability Assessment and Penetration Testing

Jia Wei Yao

M.Sc. Student
co-supervised by
Dr. Lingyu Wang

5G Network Security

Sofya Smolyakova

M.Sc. Student

IoT Security, Data Leakage Channels of Speech Information

Funding