As you can see here, COSIC is a very large group consisting of around 60 people. COSIC is divided in several semi-formal subgroups each focusing on a research area, and one of my tasks within COSIC is to coordinate the Privacy and Identity Management subgroup, which consists of around ten people.
The research questions I am most interested in are:
modeling and quantification of privacy properties such as
anonymity, unlinkability, unobservability and deniability. The
goal of this line of work is to define models that provide a
better understanding of what is meant by privacy,
and metrics that are useful to assess the level of privacy
protection provided by different systems. One of my main
research contributions has been the proposal of information-theoretic
analysis of privacy preserving systems. A big part of my
work in this area has dealt with anonymous
communication systems, whose goal is to preserve the
confidentiality of communication relationships – i.e., to
conceal who talks to whom. This is an important
problem because these relationships leak information that can be
used to infer lots of sensitive personal data; and also a
difficult one since it is much easier to gather and analyze traffic data than to design secure and practical
systems that protect against traffic analysis
attacks. I am also interested in other applications such as privacy-preserving
identity management, social
file systems, negative
databases, and private
· Interdisciplinary aspects of privacy. Privacy is not just a technical discipline – it has relevant legal, social, economic, cultural, and political aspects. Therefore, it is very important for researchers working on privacy to have a good understanding of the broader context of the subject. For many years, I have worked in close collaboration with the lawyers at the Interdisciplinary Centre for Law and ICT (ICRI), as well as with researchers of the DistriNet group at the Dept. of Computer Science, in the context of the APES, ADAPID, and SPION projects. Between 2004 and 2009 I have been actively involved with the FP6 FIDIS Network of Excellence, where I have worked together with researchers from a variety of backgrounds.
Besides writing research papers, I spend a fair amount of time doing reviews for conferences, journals, and projects. I am or have been a Program Committee member in more than thirty conferences, and I have reviewed papers for more than a dozen journals. I have also reviewed project proposals for the Dutch security research program Sentinels, and I am project reviewer for IST FP7 projects funded by the European Commission.
I have organized a number of events, most of which were project related workshops. I was the General Chair of the 8th Privacy Enhancing Technologies Symposium (PETS’08), Pogram co-Chair of the 16th European Symposium on Research in Computer Security (ESORICS 2011), and Local Organizing Chair of the Workshop on Trustworthy Elections (WOTE'08). I am a member of the Advisory Board of the PET Symposium and the Scientific Committee of the CPDP Conference, as well as an Associate Editor of the IDIS journal.
COSIC participates in a lot of projects,
and I contribute in one way or
another to several of them. Between 2005 and 2009 I was in
charge of coordinating ADAPID,
and I was the main contact person in the group for the FIDIS Network of Excellence
(2004-09). I am currently the scientific coordinator of SPION. You
can find here
more information about the projects I am (or have been) involved
with, and the project
reports I have co-authored are available here.
I have given more than 100 talks and participated several discussion panels as either panelist or moderator (the slides are available here). I try to keep track of the events I have attended by maintaining a list here.