Mattia Mossano, M.Sc. M.A.

Mattia Mossano, M.Sc. M.A.

Contact

PGP-Key: key External Link
Fingerprint: 1B45 2776 BB5A 6231 8F6E 5083 4BA2 D855 D286 D5F6

S/MIME-Certificate: Certificate

Curriculum Vitae

Mattia Mossano has been working as a research assistant at SECUSO since December 2019. Before joining KIT, he completed his master's degree in cognitive science at the School of Informatics University of Edinburgh. The thesis dealt with the investigation of general advice against phishing attacks found on various public websites. He also wrote a master's thesis in philosophy at the University of Genoa, which criticized the use of evolutionary algorithms to generate general AIs.

Research interests

  • Anti-phishing training
  • User awareness material
  • URL readability enhancement
  • Accessible cybersecurity

Teaching

2023
  • Organiser SECUSO Research Seminar
  • WiSe: Praktikum "Security, Usability, und Society"
2022
  • Organiser SECUSO Research Seminar
  • SoSe: Praktikum "Security, Usability, und Society"
2021
  • Organiser SECUSO Research Seminar
  • WiSe: Praktikum "Security, Usability, und Society"
  • SoSe: Praktikum "Security, Usability, und Society"
2020
  • Organiser SECUSO Research Seminar
  • SoSe: Praktikum "Security, Usability, und Society"

Co-supervision

Open Theses
  • LiveText: Phishing Attacks Based on LiveText - in collaboration with the Research Group Intelligent System Security (ISEC); more info here

  • Usability study of mobile authentication for elderly users with rheumatoid arthritis

    Description. Authentication on mobile devices is an ever-present challenge nowadays: from accessing your email, to check your bank account balance, to simply starting your smartphone.
    Plenty of literature exists on authentication, with various recommendations on how to create a password, the length of a pin, their complexity, etc.
    However, some users have huge difficulties manipulating smartphone, e.g., elders affected by rheumatoid arthritis.
    This affliction causes reduced mobility and pain to junctions, leading to an increase difficulty while entering credentials on mobile devices.
    To evaluate how much rheumatoid arthritis limits users of the aforementioned target group, the student will design a lab study protocol using arthritis simulation gloves (e.g., https://idarinstitute.com/products/arthritis-simulation-gloves).
    These gloves allows healthy users to approximate the reduced mobility caused by reumatoid arthritis.
Bachelor Thesis
  • Rozalina Doneva  (supervised by Prof. Dr. Melanie Volkamer, Prof. Dr. Jörn Müller-Quade and Mattia Mossano): Development and Evaluation of Interventions to Motivate Users to Take Security Protection Measures (May 2021)

Scientific Services

Reviewing activities

  • TOPS 2022
  • ARES 2022
  • EuroUSEC 2020

Talks

Design and Evaluation of an Anti-Phishing Artifact Based on Useful Transparency
International Workshop on Socio-Technical Aspects in Security (STAST) - Copenhagen
29th September 2022

Security and Privacy for Everyone
DFS Deutsche Flugsicherung GmbH - Online
31st March 2022

Security and Privacy for Everyone
Nacht der Wissenschaft - Online
26th November 2021

SMILE - Smart eMaIl Link domain Extractor
Security, Privacy, Organizations, and Systems Engineering (SPOSE) - Online
8th October 2021

Analysis of publicly available anti-phishing webpages: contradicting information, lack of concrete advice and very narrow attack vector
European Workshop on Usable Security (EuroUSEC) - Online
7th September 2020

Publications


Design and Evaluation of an Anti-Phishing Artifact Based on Useful Transparency
Beckmann, C.; Berens, B.; Kühl, N.; Mayer, P.; Mossano, M.; Volkamer, M.
2022. International Workshop on Socio-Technical Aspects in Security
SMILE - Smart eMaIl Link Domain Extractor
Mossano, M.; Berens, B.; Heller, P.; Beckmann, C.; Aldag, L.; Mayer, P.; Volkamer, M.
2022. Computer Security. ESORICS 2021 International Workshops – CyberICPS, SECPRE, ADIoT, SPOSE, CPS4CIP, and CDT&SECOMANE, Darmstadt, Germany, October 4–8, 2021, Revised Selected Papers. Ed.: S. Katsikas, 403–412, Springer International Publishing. doi:10.1007/978-3-030-95484-0_23
Phishing awareness and education – When to best remind?
Berens, B. M.; Dimitrova, K.; Mossano, M.; Volkamer, M.
2022. Symposium on Usable Security and Privacy (USEC), co-located with the Network and Distributed System Security Symposium (NDSS 2022), San Diego, CA, April 23, 2022
SMILE - Smart eMaIl Link domain Extractor
Mossano, M.; Berens, B.; Heller, P.; Beckmann, C.; Aldag, L.; Mayer, P.; Volkamer, M.
2021. Computer Security : ESORICS 2021 International Workshops : CyberICPS, SECPRE, ADIoT, SPOSE, CPS4CIP, and CDT&SECOMANE, Darmstadt, Germany, October 4–8, 2021. Ed.: S. Katsikas, 403–412, Springer. doi:10.1007/978-3-030-95484-0
Reporting on insights gained into UK citizens’ perceptions of contactless card risks
Aldag, L.; Renaud, K.; Berens, B.; Düzgün, R.; Mossano, M.; Volkamer, M.
2020. Karlsruher Institut für Technologie (KIT). doi:10.5445/IR/1000137542
How to Increase Smart Home Security and Privacy Risk Perception
Duezguen, R.; Mayer, P.; Berens, B.; Beckmann, C.; Aldag, L.; Mossano, M.; Volkamer, M.; Strufe, T.
2021. 20th IEEE International Conference on Trust, Security and Privacy in Computing and Communications (TrustCom), 18 - 20 Augus 2021, Shenyang, China, 997–1004, Institute of Electrical and Electronics Engineers (IEEE). doi:10.1109/TrustCom53373.2021.00138
Analysis of publicly available anti-phishing webpages: contradicting information, lack of concrete advice and very narrow attack vector
Mossano, M.; Vaniea, K.; Aldag, L.; Düzgün, R.; Mayer, P.; Volkamer, M.
2020. IEEE European Symposium on Security and Privacy 2020, (EuroS&PW) - The 5th European Workshop on Usable Security, September 7, 2020, Online (ursprünglich: June 15, 2020, Genova, Italy), 130–139, Institute of Electrical and Electronics Engineers (IEEE). doi:10.1109/EuroSPW51379.2020.00026
An investigation of phishing awareness and education over time: When and how to best remind users
Reinheimer, B. M.; Aldag, L.; Mayer, P.; Mossano, M.; Düzgün, R.; Lofthouse, B.; Landesberger, T. von; Volkamer, M.
2020. Proceedings of the Sixteenth Symposium on Usable Privacy and Security (SOUPS 2020) : August 10-11, 2020, 259–284, Advanced Computing Systems Association (USENIX)