Amir Naseredini
Ubuntu Security Engineer

• Open Source Software
• Rowhammer Attack
• Secure Information Flow
• Formal Security
• Vulnerability Analysis
• Vulnerability Patching
• Programming Languages
• Microarchitectural Attacks
• Pi-Calculus & Applied Pi
• Security Protocols
• Lambda-Calculus
• Cryptographic Hash Functions

Sep. 2018 - Oct. 2023

University of Sussex, Brighton, UK
Ph.D. in Informatics(Computer Science)

• Ph.D. Thesis: “Towards Automatic Analysis of Microarchitectural Attacks”

Sep. 2015 - Feb. 2018

Amirkabir University of Technology (Tehran Polytechnic), Tehran, Iran
Master in IT Specialized in Information Security

• Master’s Thesis: “Algebraic Cryptanalysis of ARX-Design Hash Functions”, (Ranked 3rd among 10 classmates)

Sep. 2011 - July 2015

University of Kurdistan, Sanandaj, Iran
Bachelor of Science in Information Technology

• Overall GPA: 18.47/20 - 3.9/4.0 (142 units)
• Main and Technical modules GPA: 18.97/20 - 4.0/4.0 (90 units)
• 1st Student Award, in Computer Eng. and Information Technology Department

• Awarded with the School of Engineering and Informatics' Fully-Funded Scholarship by University of Sussex, September 2018
• Selected as a Talented Student, two times in a row at University of Kurdistan, Dec 2013 to Dec 2015.
• Ranked #27 in the PhD National Entrance Test of Iran (Among 1093 participants)
• Ranked #55 in the MSc National Entrance Test of Iran, Totally and Irrespective of my BSc GPA (Among more than 30,000 participants)
• Ranked #2 in the MSc National Entrance Test of Iran, With Respect to my BSc GPA
• Ranked #6 in Lahijan ACM Contest, on site, March 2014
• Ranked #10 in Sharecode.ir (ACM online judge) ranking list (June 2015)
• Ranked #6000 in uva.onlinejudge.org (ACM online judge) ranking list (June 2015)

• A. Naseredini, M. Berger, M. Sammartino, S. Xiong, "ALARM: Active LeArning of Rowhammer Mitigations", Hardware and Architectural Support for Security and Privacy (HASP) 2022, October 1, 2022 -- co-located with MICRO 2022 [Download]
• A. Naseredini, S. Gast, M. Schwarzl, P. Bernardo, A. Smajic, C. Canella, M. Berger, D. Gruss, "Systematic Analysis of Programming Languages and Their Execution Environments for Spectre Attacks", 8th Internation Conference on Information Systems Security and Privacy (ICISSP2022), February 2022 [Download]
• “ALARM: Active LeArning of Rowhammer Mitigations”. Presented at the Informatics department, King's College London, UK, March 2023.
• “Systematic Analysis of Programming Languages and Their Execution Environments for Spectre Attacks”. Presented at the Computer Science department, University College London (UCL), UK, February 2022.
• “Systematic Analysis of Programming Languages and Their Execution Environments for Spectre Attacks”. Presented at the Informatics department, University of Sussex, UK, March 2021.
• A. Naseredini, B. Sadeghiyan, "Security Assessment of ARX-Design Hash Functions against Algebraic Cryptanalysis ", 26th Iranian Conference on Electrical Engineering (ICEE2018), May 2018
• “Cryptographic Hash Functions: Definition, History and Cryptanalysis”. Presented at CE department, Amirkabir University of Technology (Tehran Polytechnic), Iran, May 2017.
• “Revocable Group Signatures”. Report prepared for Data Security Research laboratory (DSRLab), Amirkabir University of Technology (Tehran Polytechnic), Iran, June 2016.
• “Algebraic Cryptanalysis of GOST Block Cipher”. Report prepared for Data Security Research laboratory (DSRLab), Amirkabir University of Technology (Tehran Polytechnic), Iran, January 2016.

Jan. 2023 - present

Canonical, London, UK
Ubuntu Security Engineer

• To analyse, fix, and, test vulnerabilities in Ubuntu packages.
• To keep track of vulnerabilities in Ubuntu releases as they are discovered, researched, and fixed.
• To maintain Node.js security in Ubuntu.
• To review snaps before granting non-default privileges to them at the Snap Store.
• To audit source code for vulnerabilities.
• Work under the management of Alex Burrage.

Sep. 2022 - Dec. 2022

Google, London, UK
Security Engineer Intern

• To develop kernel modules and device drivers.
• To analyse VirtIO devices.
• To develop a full stack device in crosvm in order to make the DRAM analysis easier.
• Worked under the management of Alexandra Sandulescu.

March. 2022 - Sep. 2022

Royal Holloway University of London - Centre for Programming Languages and Systems, London, UK
Postdoctoral Research Assistant

• To carry out research on Active Automata Learning and DRAM security.
• To develop our open source tool, ALARM, to analyse a DRAM model against Rowhammer.
• Worked under the supervision of Dr. M. Sammartino.

Sep. 2018 - Oct. 2023

University of Sussex - FoSS Group, Brighton, UK
Researcher

• Conduct research on “Automation” and “Formal Security” under the supervision of Dr. M. Berger.

Sep. 2020 - March 2021

TU Graz - Secure Systems Group, Graz, Austria
Visiting Researcher

• To carry out research on Microarchitectural Attacks and Programming Languages and Execution Environments.
• To develop a tool, Speconnector, to analyse and perform Spectre independent of the target language and execution environment.
• Worked under the supervision of Dr. D. Gruss.

Feb. 2017 - Sep. 2018

Amirkabir University of Technology - APA Research Center, Tehran, Iran
Researcher

• Researched on “Computer Security Assessment (Penetration Testing)” under the supervision of Dr. B. Sadeghiyan and Dr. S. Niksefat.
• Researched on “Smart phone and Computer forensics” under the supervision of Dr. B. Sadeghiyan and Dr. S. Niksefat.
• Conducted research on “SMC and OT Protocols” under the supervision of Dr. S. Niksefat.

Sep. 2015 - Feb. 2018

Amirkabir University of Technology, Tehran, Iran
Researcher

• Conducted research on Algebraic Cryptanalysis under the supervision of Dr. B. Sadeghiyan at Data Security Research laboratory (DSRLab).
• Researched and implemented “Analysis and Verify KryptoKnight Protocol using
  CASPA Tool” under the supervision of Dr. B. Sadeghiyan.
• Conducted research on “Linear and Differential Cryptanalysis of Reduced-round Twofish Block Cipher” under the supervision of Dr. B. Sadeghiyan
• Conducted research on “How to Extend S-box of Twofish Block Cipher with Property Preserving” under the supervision of Dr. B. Sadeghiyan

Sep. 2018 - Sep. 2022

University of Sussex, Brighton, UK
Associate Tutor

• Assisted Dr. I. Mackie in “Comparative Programming” module, ran weekly lab sessions(2021).
• Assisted Dr. N. De Beaudrap and Dr. Hsi-Ming Ho in “Compilers and Computer Architecture” module(2021).
• Assisted Prof. D. Weir in “Databases” module.
• Assisted Dr. B. Reus in “Further Programming” module, ran weekly lab sessions.
• Assisted Dr. G. Parisis in “Operating Systems” module, ran weekly lab sessions.
• Assisted Dr. B. Reus in “Limits of Computation” module, ran weekly lab sessions.
• Assisted Dr. I. Khan in “Introduction to Computer Security” module, ran weekly lab sessions(2020).
• Assisted Dr. I. Mackie in “Comparative Programming” module, ran weekly lab sessions(2020).
• Assisted Dr. N. De Beaudrap in “Compilers and Computer Architecture” module(2020).
• Assisted Dr. D. Dmitrenko in “Programming for Engineers” module.
• Assisted Prof. I. Wakeman in “Further Programming” module.
• Delivered a lecture about "Rowhammer attacks" and "Penetration Testing" to “Introduction to Computer Security” class (139 third-year undergraduate students), 21 November 2019.
• Assisted Dr. I. Khan in “Introduction to Computer Security” module, ran weekly lab sessions(2019).
• Assisted Dr. I. Mackie in “Comparative Programming” module, ran weekly lab sessions(2019).
• Assisted Dr. G. Memoli in “Professional Skills” module.
• Delivered a lecture about "Penetration Testing" to “Introduction to Computer Security” class (144 third-year undergraduate students), 7 December 2018.
• Assisted Dr. I. Khan in “Introduction to Computer Security” module, ran weekly lab sessions(2018).

2016 - 2017

Amirkabir University of Technology, Tehran, Iran
Lecturer

• Taught “Operating Systems Laboratory” module, lectured, and administered all grades.
• Taught “Computer Workshop” module, lectured, and administered all grades.

2016 - 2017

Amirkabir University of Technology, Tehran, Iran
Teaching Assistant

• Assisted Dr. B. Sadeghiyan in “Applied Cryptography” module (graduate).
• Assisted Professor M. Dehghan TakhtFooladi in “Data Structures” module.
• Assisted Dr. E. Nazerfard in “Fundamental of Programming” module.

2012 - 2015

University of Kurdistan, Sanandaj, Iran
Teaching Assistant

• Assisted Dr. P. Moradi in “Programming in C/C++” module.
• Assisted Dr. P. Moradi in “Data Structures” module.
• Assisted Dr. A. Khorramian in “Data Structures” module.
• Assisted Dr. A. Abdollahpouri in “Programming in Java” module.
• Assisted Dr. A. Abdollahpouri in “Design and Analysis of Algorithms” module.

Cryptography

• Symmetric Block Cipher Cryptanalysis
• Hash Function Cryptanalysis
• Algebraic Cryptanalysis
• Design and Analysis of Security Protocols
• Sage Math tool

Programming Language

• Rust
• Haskell
• Java
• Python
• C/C++
• C#

Information Security Tools

• Metasploit
• Tenable Nessus
• Nmap
• Netsparker
• Wireshark

Operating Systems

• Linux (Ubuntu, Kali, Fedora)
• Android
• Windows
• iOS

Web Technology

• PHP
• CSS/XHTML
• JavaScript

Database

• MySQL
• MSSQL
• Oracle

Others

• JIRA
• GitHub
• NetBeans
• LaTeX
• MPLab
• Android Programming
• Microsoft office
• Windows Phone Programming
• Power Designer
• Eclipse
• Public Speaking

• Kurdish: Native proficiency
• Farsi: Native proficiency
• English: Full Professional proficiency
• Arabic: Elementary proficiency

• Student Volunteer at PLDI 2020
• Student Volunteer at ECOOP and Curry On 2019
• ACM Membership: May 2013 to Apr 2016
• IEEE Membership: 01-Jan-2012 to 31-Dec-2012
• IEEE Computer Society Membership: 01-Jan-2012 to 31-Dec-2012
• IT association Chairman and primary member, University of Kurdistan: Sep 2013 to Sep 2014

• Reading
• Rubik Solving
• Sudoku Solving
• Listening to Music
• Walking
• Physical Fitness
• Swimming
• Volleyball

Should you need more information, please do let me know