Security in Network and Systems

Captura de pantalla 2016-07-26 a las 12.30.33Malware is defined as any computer software explicitly designed to damage computers or networks. Their major motivation has evolved to malicious economic considerations. The anti-malware software or intrusion prevention systems are highly dependent on a signature database. A signature is a sequence of bits that is present within malicious executables and in the files already infected. Another features that can be used to face obfuscated and previously unseen malware are techniques based on dynamically extracted characteristics. Dynamic analysis executes the inspected specimen in a controlled environment called ‘sandbox’. The main advantages of static techniques are that they are safer because they do not execute malware, they are able to analyse all the execution paths of the executable, and the analysis and detection is usually fast.

The RAAP group has started this research line recently, significant advances have been done and published in conferences, and Ph. D candidate students have been incorporated to this research field.


    • Malware detection based on machine learning and semi-supervised learning
    • Malware obfuscation technique to avoid anti-malware software
    • Intrusion Detection System for IoT infraestructure
    • Reversing engineering
    • Forensic malware 

Relevant Publications:


José Luis Martínez, PhD
Full Professor
Phone number: +34 967 592 00 – Ext. 2294
Email: iD icon dblp.icon.18x18
  Javier Carrillo Mondejar
PhD student
Phone number: +34 967 599 200 – Ext. 2696
Email: iD icon dblp.icon.18x18
 234806 Juan Manuel Castelo Gómez
PostDoctoral Fellow
Phone number: +34 967 599 200 – Ext. 2696
Email: iD icon dblp.icon.18x18
José Roldán Gómez
PhD studentPhone number: +34 967 599 200 – Ext. 2696
Sergio Ruiz Villafranca
PhD studentPhone number: +34 967 599 200 – Ext. 2696