Training and Research

PhD Programme Courses/classes

A.A. 2025/2026 A.A. 2024/2025 A.A. 2023/2024 A.A. 2022/2023

This page shows the PhD course's training activities for the academic year 2024/2025. Further activities will be added during the year. Please check regularly for updates!

Instructions for teachers: lesson management

Introduction to Blockchain

Credits: 3

Language: English

Teacher:  Nicola Fausto Spoto

Principles and Applications of Abstract Interpretation

Credits: 3

Language: English

Teacher:  Michele Pasqua

AI and explainable models

Credits: 5

Language: English

Teacher:  Lorenza Brusini

Automated Software Testing

Credits: 4

Language: English

Teacher:  Mariano Ceccato

Multi Omics Patient Stratification

Credits: 3

Language: English

Teacher:  Rosalba Giugno

Cyber-physical systems security

Credits: 3

Language: English

Teacher:  Massimo Merro

ACADEMIC WRITING IN LATEX

Credits: 3

Language: English

Teacher:  Enrico Gregorio

A practical interdisciplinary PhD course on exploratory data analysis

Credits: 4

Language: English

Teacher:  Rui Pedro Fernandes Ribeiro

Elements of Machine Learning

Credits: 3

Language: English

Teacher:  Ferdinando Cicalese

Genomica informazionale: contenuto informativo dei genomi e s divergenza dalla randomicità

Credits: 3

Language: English
Introduction to Quantum Machine Learning

Credits: 3

Language: English

Teacher:  Alessandra Di Pierro

Laboratory of quantum information in classical wave-optics analogy

Credits: 3

Language: English

Teacher:  Claudia Daffara

Cyber-physical systems security  (2024/2025)

Teacher

Massimo Merro

Referent

Massimo Merro

Credits

3

Language

English

Class attendance

Free Choice

Location

VERONA

MoodleMoodle Seminars 0

Learning objectives

The aim of the course is to investigate the peculiar vulnerabilities of cyber-physical systems and the cyber-physical attacks that can exploit them.

Prerequisites and basic notions

A master's degreee in Computer Science or Computer Engineering.

Program

Day 1
- 10 years Research on the security of IoT and CPSs
- STUXnet: a complex cyber-physical attack against Iranian nuclear facilities (2008-2010)
- More details on STUXnet
- Ukraine Power Grids Attacks (2015-16): BlackEnergy, CRASHOVERRIDE, Industroyer 1 and 2
- More on Ukraine Power Grids Attacks 1/2
- More on Ukraine Power Grids Attacks 2/2 URL
- TRITON/TRITIS Attack on petrochemical pland (2017)
- Overview on CPSs
- Industrial Control Systems and operations
- Formal Languages for Safety Verification of CPSs
- Formal Threat model of Physics-Based Attacks
- Attempts of Static Security Analysis for CPSs
DAY 2
- Runtime Enforcement of Security properties of CPSs
- Industrial Networks
- Hacking Industrial Control Systems
- Reverse Engineering (aka Process Comprehension) of Industrial Control Systems
- Ad Hoc Obfuscation Techniques for Industrial Control Systems
DAY 3
- Privacy in CPSs
- Threats to CPSs in other domains
- Honeypots for Industrial Control Systems
- HoneyICS: A High-interaction Physics-aware Honeynet for Industrial Control Systems
Day 4
- Implementation of a small Industrial Control System

Didactic methods

Lessons, videos and seminars

Learning assessment procedures

Presentation and discussion of an original project

Students with disabilities or specific learning disorders (SLD), who intend to request the adaptation of the exam, must follow the instructions given HERE

Assessment

Originality and understanding

Criteria for the composition of the final grade

Yes/No

Scheduled Lessons

When Classroom Teacher topics
Monday 15 September 2025
14:30 - 17:30
Duration: 3:00 AM 		Ca' Vignal 2 - I [94 - terra] Massimo Merro - 10 years Research on the security of IoT and CPSs - STUXnet: a complex cyber-physical attack against Iranian nuclear facilities (2008-2010) - More details on STUXnet - Ukraine Power Grids Attacks (2015-16): BlackEnergy, CRASHOVERRIDE, Industroyer 1 and 2 - More on Ukraine Power Grids Attacks 1/2 - More on Ukraine Power Grids Attacks 2/2 URL - TRITON/TRITIS Attack on petrochemical pland (2017) - Overview on CPSs - Industrial Control Systems and operations - Formal Languages for Safety Verification of CPSs - Formal Threat model of Physics-Based Attacks - Attempts of Static Security Analysis for CPSs
Tuesday 16 September 2025
14:30 - 17:30
Duration: 3:00 AM 		Ca' Vignal 2 - I [94 - terra] Massimo Merro - Runtime Enforcement of Security properties of CPSs - Industrial Networks - Hacking Industrial Control Systems - Reverse Engineering (aka Process Comprehension) of Industrial Control Systems - Ad Hoc Obfuscation Techniques for Industrial Control
Thursday 18 September 2025
14:30 - 17:30
Duration: 3:00 AM 		Ca' Vignal 2 - I [94 - terra] Massimo Merro - Privacy in CPSs - Threats to CPSs in other domains - Honeypots for Industrial Control Systems - HoneyICS: A High-interaction Physics-aware Honeynet for Industrial Control Systems
Friday 19 September 2025
09:30 - 12:30
Duration: 3:00 AM 		Ca' Vignal 2 - I [94 - terra] Massimo Merro Laboratory: - Implementation of a small simulated Industrial Control System