Personal information

Lorena González Manzano, Ph.D.

COSEC -Computer Security Lab
www.seg.inf.uc3m.es

University Carlos III of Madrid

Email: lgmanzan@inf.uc3m.es

Office: 2.2.A04

Address: Avda. de la Universidad, 30 -28911 Leganés(Madrid) Spain

Phone: (+34) 91624 9113

linkedin

Short bio

Currently: Lecturer at the Computer Science Department at Carlos III Univ. of Madrid

June 2014: PhD in Computer Science and Technology at Carlos III Univ. of Madrid

February 2012: Master in Computer Science and Technology at Carlos III Univ. of Madrid

October 2010: Computer Engineering at Carlos III Univ. of Madrid

Research interest

My researches are particularly focused on on different areas of cybersecurity but I am opened to any other field related to computer science. Particularly, I am currently working on:

  • Cloud computing
  • Internet Of Things
  • Authentication
  • Access control
  •  

     

    Publications

    2018

    J. M de Fuentes, L. González-Manzano, A. Solanas, F. Veseli “Attribute-Based Credentials for Privacy-Aware Smart Health Services in IoT-based Smart Cities”. Computer. In press.

    J. M de Fuentes, L. González-Manzano, A. Ribagorda “Secure and usable user-in-a-context authentication continuous”.Sensor Networks. [pdf]

    C. Camara, P. Peris, L. González-Manzano, J. E. Tapiador. “ Real-time Electrocardiogram Streams for Continuous Authentication”.Applied Soft Computing, 2018. [doi]

    P. Peris, L. González-Manzano, C. Camara, J. M de Fuentes. “ Effect of attacker characterization in ECG-based continuous authentication mechanisms for Internet of Things”.Future Generation Computer Systems, 2018. [doi]

    O. Mirzaei, J. M de Fuentes, L. González-Manzano. “Dynamic Risk Assessment in IT Environments: A Decision Guide”.Book chapter in Book "Preserving Information and Cyber Security in the Fourth Industrial Revolution", IGI Global, 2018.

    2017

    A. Blanco Blanco, J.M. de Fuentes, L. González Manzano, L. Hernández Encinas, A. Martín Muñoz, J.L. Rodrigo Oliva, I. Sánchez García. “A Framework for Acquiring and Analyzing Traces from Cryptographic Devices”, 13th EAI International Conference on Security and Privacy in Communication Networks 2017 (SecureComm). SePrIoT workshop. Oct. 2017 [pdf]

    L. González-Manzano, M. Slaymaker, J. M de Fuentes, D. Vayenas. “SoNeUCON_{ABC}Pro: an access control model for social networks with translucent user provenance”, 13th EAI International Conference on Security and Privacy in Communication Networks 2017 (SecureComm). ATCS workshop. Oct. 2017 [pdf]

    L. González-Manzano, P. Peris, J. M de Fuentes, C. Camara. “ Encryption by Heart (EbH) - Using ECG for time-invariant symmetric key generation”.Future Generation Computer Systems, 2017. [doi]

    V. Gayoso, A. Martín, L. González-Manzano. “Secure elliptic curves in Cryptography”.Book chapter in Book "Computer and Network Security Essentials", Springer, 2017.[doi]

    J. M de Fuentes, L. González-Manzano, J. Serna-Olvera, F. Veseli. “Assessment of attribute-based credentials for privacy-preserving road traffic services in smart cities”.Personal and Ubiquitous Computing, 2017. [pdf]

    2016

    J. M de Fuentes, L. González-Manzano, P. Peris, J.E. Tapiador. “PRACIS: Privacy-preserving and Aggregatable Cybersecurity Information Sharing”.International Journal of Computers & Security, 2016. [pdf]

    J. M de Fuentes, L. González-Manzano, O. Mirzaei. “Privacy models in Wireless Sensor Networks - A survey”. Journal of Sensors, 2016.

    R. Garrido, L. González-Manzano, S. Pastrana. “Shall we collaborate? A model to analyse the benefits of information sharing”. 13rd ACM Workshop on Information Sharing and Collaborative Security (WISCS 2016) in conjunction with 23rd ACM Conference on Computer and Communications Security (CCS 2016). [pdf]

    L. González-Manzano, J. M de Fuentes, K.-K. R. Choo. “ase-PoW: a Proof of Ownership mechanism for cloud deduplication in hierarchical environments”., 12th EAI International Conference on Security and Privacy in Communication Networks 2016 (SecureComm). [doi]

    L. González-Manzano, J. M de Fuentes, S. Pastrana, P. Peris, L. Hernandez. “PAgIoT - Privacy-preserving Aggregation protocol for Internet of Things”. Journal of Network and Computer Applications, 2016. [doi] [pdf]

    2015

    J. Rodríguez-Canseco, J. M de Fuentes, L. González-Manzano, A. Ribagorda. "MONOCLE – Extensible open-source forensic tool applied to cloud storage cases", VIII Congreso Iberoamericano en Seguridad Informática (CIBSI), 2015. [pdf]

    L. González-Manzano, J. M de Fuentes, A. Orfila. “Access control for the Cloud based on multi-device authentication”. IEEE 14th International Conference on Trust, Security and Privacy in Computing and Communications, 2015. [pdf]

    E. Palomar, L. González-Manzano, A. Alcaide, A. Galán. "Implementing a Privacy-enhanced ABC System for Online Social Networks with Co-Ownership Management", IET Information Security, 2015. [pdf]

    L. González-Manzano, A. Orfila. "An efficient confidentiality-preserving Proof of Ownership for Deduplication", Journal of Network and Computer Applications, 2015. [pdf]

    2014

    Ph.D. Thesis: A user-managed access control model and mechanisms for Web Based Social Networks. Enhancing expressive power, co-ownership management, interoperability and authorized data exposures. June 2014. Supervisors: A. Isabel González-Tablas and Arturo Ribagorda

    A. Alcaide, E. Palomar, J.M. de Fuentes, L. González-Manzano. "A Privacy-aware Average Speed Monitoring System for VANETs", IET Intelligent Transport Systems, 2014.

    L. González-Manzano, Ana I. González-Tablas, J. M de Fuentes, A. Ribagorda. "CooPeD: Co-owned Personal Data Management", International Journal of Computers and Security , 2014. [pdf]

    L. González-Manzano, Ana I. González-Tablas, J. M de Fuentes, A. Ribagorda. “SoNeUCON_{ADM}: the administrative model for SoNeUCON_{ABC} usage control model”. XII Reunión española sobre Criptología y Seguridad de la Información (RECSI), Sep 2014.

    L. González-Manzano, Ana I. González-Tablas, J. M de Fuentes, A. Ribagorda. "Extended U+F Social Network Protocol: Interoperability, reusability, data protection and indirect relationships in Web Based Social Networks", International Journal of Systems and Software, 2014. [pdf]

    L. González-Manzano, G. Brost, M.Aumuller. "An architecture for trusted PaaS cloud computing for personal data", Proceedings of the Workshop Wissenschaftliche Ergebnisse der Trusted Cloud Initiative, Springer Verlang, 2014. [pdf]

    L. González-Manzano, Ana I. González-Tablas, J. M de Fuentes, A. Ribagorda. "SoNeUCON_ABC, an expressive usage control model for Web-Based Social Networks", International Journal of Computers & Security, 2014. [pdf]

    J. M de Fuentes, J. Blasco, Ana I. González-Tablas, L. González-Manzano. "Applying information hiding in VANETs to covertly report misbehaving vehicles", International Journal of Distributed Sensor Networks, 2014. [pdf]

    2013

    J. M de Fuentes, L. González-Manzano, Ana I. González-Tablas, J. Blasco. "Security models in vehicular ad-hoc networks: a survey", IETE Technical review, 2013. [pdf]

    J. M de Fuentes, L. González-Manzano, Ana I. González-Tablas, B. Ramos. "El proyecto E-SAVE: asegurando las comunicaciones vehiculares para la mejora de la seguridad vial", VII Congreso Iberoamericano en Seguridad Informática (CIBSI), 2013.

    L. González-Manzano, Ana I. González-Tablas, J. M de Fuentes, A. Ribagorda. "Seguridad en Redes Sociales: problemas, tendencias y retos futuros", VII Congreso Iberoamericano en Seguridad Informática (CIBSI), 2013. [pdf]

    L. González-Manzano, Ana I. González-Tablas, J. M de Fuentes, A. Ribagorda. Security and Privacy Preserving in Social Networks. Springer. Chapter "User-Managed Access Control in Web Based Social Networks", 2013. [pdf]

    J. M de Fuentes, Ana I. González-Tablas, J. Blasco, L. González-Manzano. “WEVAN: a mechanism for evidence creation and verification in VANETs”, Journal of Systems Architecture, 2013. [pdf]

    2012

    L. González-Manzano, Ana I. González-Tablas, J. M de Fuentes, A. Ribagorda. “U+F Social Network Protocol: Achieving interoperability and reusability between Web Based Social Networks”. 2012 IEEE 11th International Conference on Trust, Security and Privacy in Computing and Communications, 2012. [pdf]

    L. González-Manzano, Ana I. González-Tablas, J. M de Fuentes, B. Ramos. “Control de Acceso en Redes Sociales Web”. XII Reunión española sobre Criptología y Seguridad de la Información (RECSI), 2012. [pdf]

    J. M de Fuentes, Ana I. González-Tablas, L. González-Manzano, A. Ribagorda, B. Ramos. “Diseño de un protocolo para el envío de notificaciones de tráfico a través de las tecnologías ITS”. XII Congreso Español sobre Sistemas Inteligentes de Transporte, 2012. [pdf]

    Research projects

    Current

    SMOG: Security mechanism for fog computing. Date: 2016-2019. Founding: Spanish Ministry of Economy and Finance.

    CIBERDINE: Cybersecurity: data, information and risk. Date: 2014-2018. Founding: Autonomous community of Madrid.

    Previous

    SPINY: Security and Privacy in the Internet-of-You. Date: 2014-2016. Founding: Spanish Ministry of Economy and Finance.

    SACO: An Advanced Cyberdefense Simulator. Date: 2011-2014. Founding: Spanish Ministry of Science and Innovation.

    Collaborative system to fill in and submit European accident statements using smartphones. Date: 2014-2015. Founding: Mapfre, Spain (Research grants Ignacio H. de Larramendi 2013).

    Research visits

    University of Birmingham, Birmingham (United Kingdom). 2016. Hosted by Prof. Dr. Mark Ryan

    Research Institution for Applied and Integrated Security (AISEC), Munich (Germany). 2013. Hosted by Mr. Mario Hoffmann and Prof. Dr. Claudia Eckert

    Scientific Services

    Editorial board

    Future Generation Computer Systems (FGCS).

    Reviewer

    Security and communication networks.

    Journal of Network and Computer Applications.

    Security and communication networks (SCN).

    Journal of Mobile Networks and Applications.

    Journal of Computers & Electrical Engineering.

    Journal of Future Generation Computer Systems.

    Program committee member

    The 8th International Conference on Emerging Ubiquitous Systems and Pervasive (EUSPN-2017).

    International Conference on Availability, Reliability and Security (ARES 2016/ ARES 2017).

    8th IEEE International Symposium on Cyberspace and Security (CSS 2016).

    5th International Conference on Performance Evaluation and Modeling of Wireless and Wired Networks (PEMWN 2016).

    Annual Privacy Forum (APF 2016/ APF 2017).

    9th IEEE International Conference on Open Source Systems & Technologies (ICOSST 2015).

    14th IEEE International Conference on Trust, Security and Privacy in Computing and Communications (IEEE TrustCom-15, IEEE TrustCom-16).

    The IEEE International Conference on Cloud and Big Data Computing (CBDCom 2015/ CBDCom 2016/ CBDCom 2017).

    13th International Symposium on Pervasive Systems, Algorithms, and Networks (I-SPAN 2014).

    Teaching (selected ones)

    Cyber Security Basics: A Hands-on Approach MOOC in edX, 2º ed. open April 2018

    System software exploitation (Master in Cybersecurity). Course 2014:2015; 2015:2016; 2016:2017

    Cryptography and Security Information (Degree in Computer Engineering). Courses 2013-2014; 2014:2015; 2015:2016; 2016:2017

    Information hidden techniques (Degree in Computer Engineering at Civil Guard Officers Academy of Aranjuez, Madrid (SP)). Courses 2012-2013; 2013-2014; 2014:2015; 2015:2016; 2016:2017

    IT Security (Degree in Computer Engineering). Course 2011-2012

    Security Engeneering (Degree in Computer Engineering). Courses 2011-2012; 2012-2013; 2013-2014

    Security in Mobile Devices (Degree in Computer Engineering). Course 2011-2012

    Registered software & Patent

    Patent (2015):: Procedimiento y sistema de acreditación de autorizaciones para vehículos en circulación (Acreditation system and procedure of authorizations for passing by vehicles).

    Method to do remote verification of the validity of administrative authorizations for passing by vehicles. Co-invented with A. Isabel González-Tablas and J. de Fuentes.

    MONOCLE - plugin for iCloud and BOX (2015): free software for forensic analysis.

    These plugins allow the identification of forensic traces in cloud storage tools, namely in BOX and iCloud. Co-invented with J.Rodríguez, J. de Fuentes and P.Peris.

    Answer2Pass Pro (2015): e-learning software platform based on quizzes.

    E-learning software platform integrated in Facebook which enables teachers to evaluate their students through quizzes. Every quizz is different, showing different board sizes, category colours, randomly picked questions and answers and joker squares. Co-invented with H. Cornejo and J. de Fuentes.

    E-RETO (2014): e-mail usage pattern analyzer.

    Analyser of e-mails to extract usage patters. It connects to given e-mail servers and download and process all stored e-mails. Co-invented with E. Muñoz and J. de Fuentes.

    Software of interactive learning PAB (2012): Bridge learning system.

    Software that helps to learn basical skills regarding the Bridge card game. Co-invented with Antonio Castells and J. de Fuentes.

    eStorePass (2012): Password manager based on DNIe.

    eStorePass focuses on managing passwords making use of the DNIe as a mechanism to protect passwords files. Passwords are stored encrypted applying the DNIe keys, though a pair of options are offered, the user can make use of a master key or simply encrypt passwords using exclusively the DNIe. Co-invented with J. de Fuentes.


    Former Students (selected ones)

    “Android bug-hunting: mutational fuzzing approach”. Luis Buendía. Master in Cibersecurity. September 2017.

    “Adversarial Neural Cryptography in Multilayer Perceptron Architectures: Replicating a Scenario”. Elena del Portillo Peña. Master in Cibersecurity. September 2017.

    “LuminApp: A multi-factor and social-empowered early risk warning app for Android”. Iván Hurtado. Master in Cibersecurity. September 2016.

    “Development of an Extensible Forensic Analysis Framework. Application to user-side cloud scenarios”. Jorge Rodríguez. Bachelor in Informatics Engineering. July 2015.

    “Web application to manage P2P lending between individuals”. M. Ángel Rodriguez. Informatics Engineering. January 2015.

    “Application for email usage analysis”. Eduardo Muñoz. Informatics Engineering. April 2014.

    “Design and implementation of an electronic notification protocol based on VANET networks for E-SAVE”. Eduardo Ruíz. Bachelor in Informatics Engineering. July 2013.

    “Access control in social networks: interoperability and data exposure minimization”. Alberto Marín. Bachelor in Informatics Engineering. September 2012.