Tu sei qui

Francesca Pampaloni

I was born in Bagno a Ripoli (Florence), Italy, on September 16th 1986.

In 2008 and 2010 I obtained respectively the Bachelor degree in Mathematics and the Master degree in Mathematics for Application at the University of Florence, "Ulisse Dini" department. Since March 2014 I am a PhD in Computer Science and Engineering at IMT Lucca.

From January to April of 2013 I spent a research period at  Saarland University, Saarbrücken, Germany. 

 

 Research Interests:

  • Quantitative Information flow
  • Anonymity protocols
  • Declassification policies
  • Integrity
  • Differential Privacy for aggregated data
  • Multiparty aggregation

 

Papers:

In journals:

1.  Asymptotic Information Leakage under One-Try Attacks  (full version)
     Michele Boreale, Francesca Pampaloni and Michela Paolini

     To appear in Mathematical Structures in Computer Science (MSCS).   [pdf]

In conference proceedings:

  1. Quantitative information flow under generic leakage functions and adaptive adversaries
    Michele Boreale, Francesca Pampaloni                                                                                                         To appear in Proc. of Formal Techniques for Distributed Objects, Components and Systems (FORTE), 2014.
  2. Quantitative multirun security under active adversaries
    Michele Boreale, Francesca Pampaloni
    In Proc. of 9th International Conference on Quantitative Evaluation of SysTems (QEST), 2012. IEEE Computer Society, pp. 158–167, 2012. [pdf][slides]
  3. Quantitative Information Flow, with a View
    Michele Boreale, Francesca Pampaloni and Michela Paolini
    In Proc. of 16th European Symposium on Research in Computer Security (ESORICS), 2011.  Lecture Notes in Computer Science, Volume 6879, pp. 588-606, 2011. [pdf][slides]
  4. Asymptotic Information Leakage under One-Try Attacks
    Michele Boreale, Francesca Pampaloni and Michela Paolini
    In Proc. of 14th International Conference on Foundations of Software Science and Computation Structures (FoSSaCS), 2011. Lecture Notes in Computer Science, Volume 6604, pp. 396-410, 2011. [pdf]

 

Research Interest

My research activity, with Prof. Michele Boreale, falls in the area of Network Security. In particular, I'm interested in the (quantitative) analysis of the Information Flow (the leakage of some sensitive information via public outputs) in programs or cryptographic devices. My research line consists in modeling various attack scenarios, refining the attacker's power, and quantifying the security of a system depending on the information leaked. Following the studies performed in my Master's Thesis, my first works [3,4] have been concerned on the analysis of simple models, with passive attackers (not able to directly interact with the system), studying what happens when they can observe several re-executions of the system, throughout which the secret is kept fixed, and then apply some statistical attacks. In [4], we have also defined a more sophisticated scenario, where there is a coalition of passive attackers. In [3], we have improved some of the previous results and then analyzed the case of a weaker attacker, that this time aims to discover if a property related to the secret holds or not. In [1,2], then, we have extended the previous results to a more complex scenario, where we are faced with a real active attacker, able to control part of the input, studying non-adaptive strategies in [2], adaptive in [1] . In [1] we have also compared these two kinds of strategies.

I\'m also interested in Web statistics and how to guarantee Differential Privacy for aggregated data.

 

Papers:

In journals:

1.  Asymptotic Information Leakage under One-Try Attacks  (full version)
     Michele Boreale, Francesca Pampaloni and Michela Paolini

     To appear in Mathematical Structures in Computer Science (MSCS), 2012.   [pdf]

In conference proceedings:

  1. Quantitative information flow under generic leakage functions and adaptive adversaries.
    Michele Boreale, Francesca Pampaloni                                                                                                        To appear in Proc. of Formal Techniques for Distributed Objects, Components and Systems (FORTE), 2014.
  2. Quantitative multirun security under active adversaries
    Michele Boreale, Francesca Pampaloni
    In Proc. of 9th International Conference on Quantitative Evaluation of SysTems (QEST), 2012. IEEE Computer Society, pp. 158–167, 2012. [pdf][slides]
  3. Quantitative Information Flow, with a View
    Michele Boreale, Francesca Pampaloni and Michela Paolini
    In Proc. of 16th European Symposium on Research in Computer Security (ESORICS), 2011.  Lecture Notes in Computer Science, Volume 6879, pp. 588-606, 2011. [pdf][slides]
  4. Asymptotic Information Leakage under One-Try Attacks
    Michele Boreale, Francesca Pampaloni and Michela Paolini
    In Proc. of 14th International Conference on Foundations of Software Science and Computation Structures (FoSSaCS), 2011. Lecture Notes in Computer Science, Volume 6604, pp. 396-410, 2011. [pdf]