Mattia Mossano, M.Sc. M.A.
- Research Assistant
- Room: 3A-28
CS 5.20 - Phone: +49 721 608-46038
- mattia mossano ∂does-not-exist.kit edu
Contact
PGP-Key: key 
Fingerprint: 1B45 2776 BB5A 6231 8F6E 5083 4BA2 D855 D286 D5F6
S/MIME-Certificate: Certificate
Curriculum vitae
Mattia Mossano has been working at SECUSO as a research assistant since December 2019. Before KIT, he completed his Master in Cognitive Science at the School of Informatics of the University of Edinburgh. His thesis dealt with the study of general advice against phishing attacks found on various public websites. He also wrote a Master thesis in Philosophy at the University of Genoa, criticizing the use of evolutionary algorithms to generate general AIs.
Research interests
- Anti-phishing training
- User awareness material
- URL readability enhancement
- Accessible cybersecurity
Teaching
2023
- Organiser SECUSO Research Seminar
- WiSe: Praktikum "Security, Usability and Society"
2022
- Organiser SECUSO Research Seminar
- SoSe: Praktikum "Security, Usability and Society"
2021
- Organiser SECUSO Research Seminar
- WiSe: Praktikum "Security, Usability and Society"
- SoSe: Praktikum "Security, Usability and Society"
2020
- Organiser SECUSO Research Seminar
- SoSe: Praktikum "Security, Usability and Society"
Co-supervision
Open Theses
- LiveText: Phishing Attacks Based on LiveText - in collaboration with the Research Group Intelligent System Security (ISEC); more info here
- Usability study of mobile authentication for elderly users with rheumatoid arthritis
Description. Authentication on mobile devices is an ever-present challenge nowadays: from accessing your email, to check your bank account balance, to simply starting your smartphone.
Plenty of literature exists on authentication, with various recommendations on how to create a password, the length of a pin, their complexity, etc.
However, some users have huge difficulties manipulating smartphone, e.g., elders affected by rheumatoid arthritis.
This affliction causes reduced mobility and pain to junctions, leading to an increase difficulty while entering credentials on mobile devices.
To evaluate how much rheumatoid arthritis limits users of the aforementioned target group, the student will design a lab study protocol using arthritis simulation gloves (e.g., https://idarinstitute.com/products/arthritis-simulation-gloves).
These gloves allows healthy users to approximate the reduced mobility caused by reumatoid arthritis.
Bachelor Thesis
- Rozalina Doneva (supervised by Prof. Dr. Melanie Volkamer, Prof. Dr. Jörn Müller-Quade and Mattia Mossano): Development and Evaluation of Interventions to Motivate Users to Take Security Protection Measures (May 2020)
Talks
Design and Evaluation of an Anti-Phishing Artifact Based on Useful Transparency
International Workshop on Socio-Technical Aspects in Security (STAST) - Copenhagen
29th September 2022
Security and Privacy for Everyone
DFS Deutsche Flugsicherung GmbH - Online
31st March 2022
Security and Privacy for Everyone
Nacht der Wissenschaft - Online
26th November 2021
SMILE - Smart eMaIl Link domain Extractor
Security, Privacy, Organizations, and Systems Engineering (SPOSE) - Online
8th October 2021
Analysis of publicly available anti-phishing webpages: contradicting information, lack of concrete advice and very narrow attack vector
European Workshop on Usable Security (EuroUSEC) - Online
7th September 2020
Publications
Development and Evaluation of an Anti-Phishing Shooting Game
Dietmann, H.; Länge, T.; Matheis, P.; Pawelek, A. A.; Berens, B.; Mossano, M.; Veit, M.; Mayer, P.; Volkamer, M.
2022. Karlsruher Institut für Technologie (KIT). doi:10.5445/IR/1000153329
Dietmann, H.; Länge, T.; Matheis, P.; Pawelek, A. A.; Berens, B.; Mossano, M.; Veit, M.; Mayer, P.; Volkamer, M.
2022. Karlsruher Institut für Technologie (KIT). doi:10.5445/IR/1000153329
The Phishing Master Anti-Phishing Game
Dietmann, H.; Länge, T.; Matheis, P.; Pawelek, A. A.; Berens, B.; Mossano, M.; Veit, M.; Mayer, P.; Volkamer, M.
2022, December 8. Annual Computer Security Applications Conference (ACSAC 2022), Austin, TX, USA, December 5–9, 2022
Dietmann, H.; Länge, T.; Matheis, P.; Pawelek, A. A.; Berens, B.; Mossano, M.; Veit, M.; Mayer, P.; Volkamer, M.
2022, December 8. Annual Computer Security Applications Conference (ACSAC 2022), Austin, TX, USA, December 5–9, 2022
Design and Evaluation of an Anti-Phishing Artifact Based on Useful Transparency
Beckmann, C.; Berens, B.; Kühl, N.; Mayer, P.; Mossano, M.; Volkamer, M.
2022. International Workshop on Socio-Technical Aspects in Security
Beckmann, C.; Berens, B.; Kühl, N.; Mayer, P.; Mossano, M.; Volkamer, M.
2022. International Workshop on Socio-Technical Aspects in Security
SMILE - Smart eMaIl Link Domain Extractor
Mossano, M.; Berens, B.; Heller, P.; Beckmann, C.; Aldag, L.; Mayer, P.; Volkamer, M.
2022. Computer Security. ESORICS 2021 International Workshops – CyberICPS, SECPRE, ADIoT, SPOSE, CPS4CIP, and CDT&SECOMANE, Darmstadt, Germany, October 4–8, 2021, Revised Selected Papers. Ed.: S. Katsikas, 403–412, Springer International Publishing. doi:10.1007/978-3-030-95484-0_23
Mossano, M.; Berens, B.; Heller, P.; Beckmann, C.; Aldag, L.; Mayer, P.; Volkamer, M.
2022. Computer Security. ESORICS 2021 International Workshops – CyberICPS, SECPRE, ADIoT, SPOSE, CPS4CIP, and CDT&SECOMANE, Darmstadt, Germany, October 4–8, 2021, Revised Selected Papers. Ed.: S. Katsikas, 403–412, Springer International Publishing. doi:10.1007/978-3-030-95484-0_23
Phishing awareness and education – When to best remind?
Berens, B. M.; Dimitrova, K.; Mossano, M.; Volkamer, M.
2022. Symposium on Usable Security and Privacy (USEC), co-located with the Network and Distributed System Security Symposium (NDSS 2022), San Diego, CA, April 23, 2022. doi:10.14722/usec.2022.23075
Berens, B. M.; Dimitrova, K.; Mossano, M.; Volkamer, M.
2022. Symposium on Usable Security and Privacy (USEC), co-located with the Network and Distributed System Security Symposium (NDSS 2022), San Diego, CA, April 23, 2022. doi:10.14722/usec.2022.23075
Reporting on insights gained into UK citizens’ perceptions of contactless card risks
Aldag, L.; Renaud, K.; Berens, B.; Düzgün, R.; Mossano, M.; Volkamer, M.
2020. Karlsruher Institut für Technologie (KIT). doi:10.5445/IR/1000137542
Aldag, L.; Renaud, K.; Berens, B.; Düzgün, R.; Mossano, M.; Volkamer, M.
2020. Karlsruher Institut für Technologie (KIT). doi:10.5445/IR/1000137542
How to Increase Smart Home Security and Privacy Risk Perception
Duezguen, R.; Mayer, P.; Berens, B.; Beckmann, C.; Aldag, L.; Mossano, M.; Volkamer, M.; Strufe, T.
2021. 20th IEEE International Conference on Trust, Security and Privacy in Computing and Communications (TrustCom), 18 - 20 Augus 2021, Shenyang, China, 997–1004, Institute of Electrical and Electronics Engineers (IEEE). doi:10.1109/TrustCom53373.2021.00138
Duezguen, R.; Mayer, P.; Berens, B.; Beckmann, C.; Aldag, L.; Mossano, M.; Volkamer, M.; Strufe, T.
2021. 20th IEEE International Conference on Trust, Security and Privacy in Computing and Communications (TrustCom), 18 - 20 Augus 2021, Shenyang, China, 997–1004, Institute of Electrical and Electronics Engineers (IEEE). doi:10.1109/TrustCom53373.2021.00138
Analysis of publicly available anti-phishing webpages: contradicting information, lack of concrete advice and very narrow attack vector
Mossano, M.; Vaniea, K.; Aldag, L.; Düzgün, R.; Mayer, P.; Volkamer, M.
2020. IEEE European Symposium on Security and Privacy 2020, (EuroS&PW) - The 5th European Workshop on Usable Security, September 7, 2020, Online (ursprünglich: June 15, 2020, Genova, Italy), 130–139, Institute of Electrical and Electronics Engineers (IEEE). doi:10.1109/EuroSPW51379.2020.00026
Mossano, M.; Vaniea, K.; Aldag, L.; Düzgün, R.; Mayer, P.; Volkamer, M.
2020. IEEE European Symposium on Security and Privacy 2020, (EuroS&PW) - The 5th European Workshop on Usable Security, September 7, 2020, Online (ursprünglich: June 15, 2020, Genova, Italy), 130–139, Institute of Electrical and Electronics Engineers (IEEE). doi:10.1109/EuroSPW51379.2020.00026
An investigation of phishing awareness and education over time: When and how to best remind users
Reinheimer, B. M.; Aldag, L.; Mayer, P.; Mossano, M.; Düzgün, R.; Lofthouse, B.; Landesberger, T. von; Volkamer, M.
2020. Proceedings of the Sixteenth Symposium on Usable Privacy and Security (SOUPS 2020) : August 10-11, 2020, 259–284, Advanced Computing Systems Association (USENIX)
Reinheimer, B. M.; Aldag, L.; Mayer, P.; Mossano, M.; Düzgün, R.; Lofthouse, B.; Landesberger, T. von; Volkamer, M.
2020. Proceedings of the Sixteenth Symposium on Usable Privacy and Security (SOUPS 2020) : August 10-11, 2020, 259–284, Advanced Computing Systems Association (USENIX)
Analysis of publicly available anti-phishing webpages: contradicting information, lack of concrete advice and very narrow attack vector (Online Material)
Mossano, M.; Vaniea, K.; Aldag, L.; Düzgün, R.; Mayer, P.; Volkamer, M.
2020, June 25. doi:10.5445/IR/1000120357
Mossano, M.; Vaniea, K.; Aldag, L.; Düzgün, R.; Mayer, P.; Volkamer, M.
2020, June 25. doi:10.5445/IR/1000120357