Mattia Mossano, M.Sc. M.A.

Mattia Mossano, M.Sc. M.A.


PGP-Key: key External Link
Fingerprint: 1B45 2776 BB5A 6231 8F6E 5083 4BA2 D855 D286 D5F6

S/MIME-Certificate: Certificate

Curriculum vitae

Mattia Mossano has been working at SECUSO as a research assistant since December 2019. Before KIT, he completed his Master in Cognitive Science at the School of Informatics of the University of Edinburgh. His thesis dealt with the study of general advice against phishing attacks found on various public websites. He also wrote a Master thesis in Philosophy at the University of Genoa, criticizing the use of evolutionary algorithms to generate general AIs.

Research interests

  • Anti-phishing training
  • User awareness material
  • URL readability enhancement
  • Accessible cybersecurity


  • Organiser SECUSO Research Seminar
  • SoSe: Praktikum "Security, Usability and Society"
  • Organiser SECUSO Research Seminar
  • WiSe: Praktikum "Security, Usability and Society"
  • SoSe: Praktikum "Security, Usability and Society"
  • Organiser SECUSO Research Seminar
  • SoSe: Praktikum "Security, Usability and Society"


Open Theses
  • LiveText: Phishing Attacks Based on LiveText - in collaboration with the Research Group Intelligent System Security (ISEC); more info here
  • Replication and extension of "What is this URL's destination?" - Based on Sara Albakry, Kami Vaniea, and Maria K. Wolters. 2020. What is this URL's Destination? Empirical Evaluation of Users' URL Reading. Proceedings of the 2020 CHI Conference on Human Factors in Computing Systems. ACM, New York, NY, USA, 1–12.
Bachelor Thesis
  • Rozalina Doneva (supervised by Prof. Dr. Melanie Volkamer, Prof. Dr. Jörn Müller-Quade and Mattia Mossano): Development and Evaluation of Interventions to Motivate Users to Take Security Protection Measures (May 2020)

Scientific Services

Reviewing activities

  • ARES 2022
  • EuroUSEC 2020


Security and Privacy for Everyone
DFS Deutsche Flugsicherung GmbH - Online
31st March 2022

Security and Privacy for Everyone
Nacht der Wissenschaft - Online
26th November 2021

SMILE - Smart eMaIl Link domain Extractor
Security, Privacy, Organizations, and Systems Engineering (SPOSE) - Online
8th October 2021

Analysis of publicly available anti-phishing webpages: contradicting information, lack of concrete advice and very narrow attack vector
European Workshop on Usable Security (EuroUSEC) - Online
7th September 2020


SMILE - Smart eMaIl Link Domain Extractor
Mossano, M.; Berens, B.; Heller, P.; Beckmann, C.; Aldag, L.; Mayer, P.; Volkamer, M.
2022. Computer Security. ESORICS 2021 International Workshops – CyberICPS, SECPRE, ADIoT, SPOSE, CPS4CIP, and CDT&SECOMANE, Darmstadt, Germany, October 4–8, 2021, Revised Selected Papers. Ed.: S. Katsikas, 403–412, Springer International Publishing. doi:10.1007/978-3-030-95484-0_23
Phishing awareness and education – When to best remind?
Berens, B. M.; Dimitrova, K.; Mossano, M.; Volkamer, M.
2022. Symposium on Usable Security and Privacy (USEC), San Diego, CA, April 23, 2022
Reporting on insights gained into UK citizens’ perceptions of contactless card risks
Aldag, L.; Renaud, K.; Berens, B.; Düzgün, R.; Mossano, M.; Volkamer, M.
2020. Karlsruher Institut für Technologie (KIT). doi:10.5445/IR/1000137542
How to Increase Smart Home Security and Privacy Risk Perception
Duezguen, R.; Mayer, P.; Berens, B.; Beckmann, C.; Aldag, L.; Mossano, M.; Volkamer, M.; Strufe, T.
2021. 20th IEEE International Conference on Trust, Security and Privacy in Computing and Communications (TrustCom), 18 - 20 Augus 2021, Shenyang, China, 997–1004, Institute of Electrical and Electronics Engineers (IEEE). doi:10.1109/TrustCom53373.2021.00138
Analysis of publicly available anti-phishing webpages: contradicting information, lack of concrete advice and very narrow attack vector
Mossano, M.; Vaniea, K.; Aldag, L.; Düzgün, R.; Mayer, P.; Volkamer, M.
2020. IEEE European Symposium on Security and Privacy 2020, (EuroS&PW) - The 5th European Workshop on Usable Security, September 7, 2020, Online (ursprünglich: June 15, 2020, Genova, Italy), 130–139, Institute of Electrical and Electronics Engineers (IEEE). doi:10.1109/EuroSPW51379.2020.00026
An investigation of phishing awareness and education over time: When and how to best remind users
Reinheimer, B. M.; Aldag, L.; Mayer, P.; Mossano, M.; Düzgün, R.; Lofthouse, B.; Landesberger, T. von; Volkamer, M.
2020. Proceedings of the Sixteenth Symposium on Usable Privacy and Security (SOUPS 2020) : August 10-11, 2020, 259–284, Advanced Computing Systems Association (USENIX)