The Center for Education and Research in Information Assurance and Security (CERIAS)

The Center for Education and Research in
Information Assurance and Security (CERIAS)

Santiago Torres-Arias

 Santiago Torres-Arias

Title

Assistant Professor 

Research Areas

Secure Systems, Applied Cryptography and Software Supply Chain security 

Key Areas

IoT Security, Software Supply Chain Security, Cloud Security, Applied Crypto 

Biography

My current research focuses on securing the software development life-cycle. Before that, my research focused on secure password storage mechanisms and update systems. Because of this, I’m the team lead of in-toto, a framework to secure the software development life-cycle, as well as PolyPasswordHasher, a password storage mechanism that’s incredibly resilient to offline password cracking. Also, I’m a contributor for The Update Framework (TUF), which is the software update system being integrated on a variety of projects like Docker, CPAN, and others. 

TOPIC AREAS

  • Awareness/ Training / Education
  • Cloud security
  • Communications security
  • Cryptology -- hardware, software, algorithms
  • Cyber conflict and warfare
  • Cyber Ethics
  • Cyberphysical systems and IoT
  • Cyber resiliency
  • DevSecOps
  • Digital Signatures/Watermarking
  • Espionage and CI
  • Integrity
  • Malware
  • Network Security
  • Open Systems & software
  • Operating Systems
  • OT/embedded/real time security
  • Outsourcing and supply chain
  • Secure coding/development
  • Security hardware, processors, semiconductors
  • Security of AI/ML
  • Security tools
  • Standards, frameworks, and models
  • Trust
  • Vulnerabilities and Patch Management