Research

This section hosts a non-exhaustive list of my published work. Lots of these works are under copyright restrictions from their respective owners (which do not necessarily include me), so please do not reproduce without properly citing or quoting.

If it happens that you require a piece of my work that cannot be directly downloaded from this site contact me with an -at least fair- reason. I will probably send it to you by some means (with no guarantee on timings).

Books

Research Journals and Magazines

  • Patsos D., Ciechanowicz C., and Piper F., The status of National PKIs – A European overview, Information Security Technical Report, Vol. 15, No.1, (Protocols and Cryptography) Elsevier, 2010. [.pdf]
  • Patsos D., Mitropoulos S., and Douligeris C., Expanding Topological Vulnerability Analysis to Intrusion Detection through the Incident Response Intelligence System, Information Management & Computer Security, Vol. 18, Issue 4, Emerald, 2010. [.pdf]
  • Mitropoulos S., Patsos D., and Douligeris C., Incident Response Requirements for Distributed Security Information Management, Information Management & Computer Security, Emerald, Vol. 15, Issue 3, 2007. [.pdf]
  • Mitropoulos S., Patsos D., and Douligeris C., On Incident Handling and Response: A State of the Art Approach, Computers and Security, Elsevier, Vol. 25, Issue 5, pp. 351-370, July 2006.[.pdf]

Conference Proceedings

  • Patsos D, and Sotiropoulos G., An Incident Response approach to Risk Assessment (invited), Proceedings of the 18th Annual IEEE Symposium International Symposium on Personal, Indoor and Mobile Radio Communications, Athens, Greece, 3-7 September 2007.
  • Patsos D., Mitropoulos S., and Douligeris C., Generating adaptive security policies and automated configuration scenarios by correlating vulnerability and intrusion information, Proceedings of the PCI07, 11th Panhellenic Conference on Informatics, Patras, Greece, 18-20 May 2007. [.pdf][.ppt]
  • Mitropoulos S., Patsos D., and Douligeris C., A framework for Corporate Incident Response, Proceedings of the PCI05, 10th Panhellenic Conference on Informatics, Volos, Greece, 11-13 November 2005. [.pdf] [.ppt]
  • Patsos D., Delivering Information Security projects: a practitioner’s perspective (invited), Proceedings of the Network-Centric Defense (NCD) Conference: A challenge for the Hellenic Armed Forces in the 21st Century, 9-10 November, Athens, Greece, 2005.
  • Mitropoulos S., Patsos D., and Douligeris C., Network Forensics: Towards a classification of traceback mechanisms, Proceedings of Network Forensics Research Workshop, First IEEE/CreateNet International Conference on Security and Privacy for Emerging Areas in Communication Networks (SECURECOMM 2005), Athens, Greece, 5-9 September 2005. [.pdf] [.ppt]

Theses and Dissertations

  • Patsos D., Effective management support on network and communications security: identifying and responding to security incidents, Ph.D. Thesis, property of University of Piraeus, Piraeus, 2009 (Supervised by Professor C. Douligeris) abstract
  • Patsos D., A Strategic Approach to Incident Response, M.Sc. Thesis, property of Royal Holloway University of London, London, 2002 (Supervised by Dr. Ciechanowicz Z.).
  • Patsos D., Theoretical Approach and Practical Demonstration of key VPN Technologies, B.Sc. Thesis (in Greek), property of the Athens University of Economics and Business, Athens, 2001 (supervised by Professor Polyzos G.).

Supervisions and Industrial Placements

  • Sotiriou P., “Web Application Security”, Undergraduate Thesis (in Greek), Department of Informatics, University of Piraeus, (with Professor C. Douligeris), 2012.
  • Psarros A., “Penetration Testing as a frequently delivered service”, Undergraduate Thesis (in Greek), Department of Informatics, University of Piraeus, (with Professor C. Douligeris), 2010.
  • Konios A., “Disassembling Web Applications”, Undergraduate Thesis (in Greek), Department of Informatics, University of Piraeus, (with Professor C. Douligeris), 2009.
  • Kyritsi E., “Risk Management and Information Security Standards: Case Study on a mission-critical infrastructure”, Graduate Thesis (in Greek), Department of Informatics, University of Piraeus, (with Professor C. Douligeris), 2008.
  • Kokmadi A., “Developing a Network Infrastructure Risk Assessment Tool using the NIST SP800-30”, Graduate Thesis (in Greek), Department of Informatics, University of Piraeus, (with Professor C.Douligeris), 2008.
  • Spahis K., “Risk Assessment in the Banking Sector”, Graduate Thesis (in Greek), Department of Informatics, University of Piraeus, (with Professor C. Douligeris), 2008.
  • Vassileiadou E., “Risk Assessment in Systems Integrator and the case of ISO 27001 Compliance”, (Industrial Placement in Space Hellas), M.Sc. Thesis, Information Security Group/Department of Mathematics, Royal Holloway University of London (with Professor Peter Wild), 2006.
  • Delatolla E., “Security in Broadband Communications: Developing a Secure Peer-to-Peer protocol”, Undergraduate Thesis (in Greek), Department of Informatics, University of Piraeus, (with Professor C. Douligeris), 2006.
  • Kokmadi A., “Operating Systems Security: Hardening Public Windows 2003 Servers”, Undergraduate Thesis (in Greek), Department of Informatics, University of Piraeus, (with Professor C. Douligeris), 2006.

Academic Lectures and Seminars (Partial List)

  • Patsos D., Internet of Everything and Cultural Cyber Security Challenges (invited), Lecture at the Information Security Group (ISG), Royal Holloway University of London, Egham, Surrey, UK, June 25th, 2018,
  • Patsos D., Our Cyber Security Challenges Are Cultural (invited), Lecture at the American College of Greece, Lecture at the 3rd Internet Security Day of the American College of Greece, November 22nd, 2017,
  • Patsos D., Are We Getting Better in Cyber Security? Why We Don’t Know and How We Can Tell (invited), Lecture at the Information Security Trends: Disruption, Support, Assurance,  Athens Metropolican College, Athens, Greece, May 22nd, 2017,
  • Patsos D., Security Projects: An Overview (invited), Lecture at the Athens University of Economics and Business, Athens, Greece, November 1st, 2013,
  • Patsos D., Trends in Data Security: Leakage Prevention and Rights Management (invited), Lecture at the Athens University of Economics and Business, Athens, Greece, October 25th, 2010,
  • Patsos D., National PKI: Open Issues and Lessons Learned (invited), Lecture at the Information Security Group (ISG), Royal Holloway University of London, Egham, Surrey, UK, July 5th, 2010.

Conferences, Forums and Invited Talks (Partial List)

  • Patsos D., Briefing the Board on Cyber Security Debt (invited), 7th Infocom Security, Athens, Greece, March 29th-30th, 2017, 
  • Patsos D., Building an Effective Data Governance Program: the field experience, 2nd Information Security Conference, Athens, Greece, March 10, 2016,
  • Patsos D., Cloudy with a chance of..breach: managing threat exposure and service effectiveness for the modern enterprise (invited), Infosec 2015 Cyprus: Rethinking Cybersecurity, 9th International Information Security Conference and Workshops,  Nicosia, Cyprus, October 10th, 2015,
  • Patsos D., Hands-off Security: protecting the information journey from mobile to cloud (invited), 5th INFOCOM Security, Athens, Greece, April 1st, 2015,
  • Patsos D., Security projects in Greece: An overview, European Cyber Security Month Workshop, ENISA/AUEB, Athens, Greece, October 1st, 2013,
  • Patsos D., Achieving Compliance with the National Bank of Serbia Decision on Minimal Standards of Managing IT Systems in Financial Institutions (invited), TECHNOBANK 2013, Belgrade, Serbia, April 10th – 11th, 2013,
  • Patsos D., and Apostolopoulos G., No user Left Behind: Managing and securing mobile devices (invited), 2nd INFOCOM Security Conference, Athens, Greece, April 5, 2012,
  • Patsos D., and Ventouris C., Attack Kits & Malicious Websites: A Visual Presentation (invited), Win The Game: Beat IT Threats, IDC IT Security Roadshow, Athens, Greece, March 11th, 2011,
  • Patsos D., Pentesting 2.0 – What You Do Not See Is What We Get (invited), Battling Sophisticated Threats: Security Strategies for the Resilient Enterprise, IDC Security, Virtualization and Datacenter Roadshow, Belgrade, Serbia, June 10th 2010,
  • Patsos D., Enterprise Security Services: the Value Proposition of Managed Security Services (invited), Balkans RISK Conference 2009, Maribor, Slovenia, February 10-11, 2009.
  • Patsos D, Risk in Security Management: New Trends, Challenges and the Road Ahead (invited), ICT Security 2008: Digital security in the new and complex environment of e-services, Athens, Greece, 30 September-1 October 2008.
  • Patsos D., Identity Management Systems and Role Based Access Control (invited) eSecurity Forum, COMDEX 2005, Athens, Greece, June 2005.
  • Patsos D., Innovative Security Techniques: The Case of Identity Management Systems and Access Control in the Financial Sector (invited), Proceedings of EXPOSEC, Homeland & Corporate Security Conference, Athens, Greece, 19-20 April 2005.
  • Patsos D., Information Security and Computer Crime (invited), COMDEX 04, Athens, Greece, November 2004.
  • Patsos D., Threats in Modern IT Systems (in Greek), Space Hellas Systems Integration Solutions Forum, Athens, Greece, November 2002.

Advertorials and Commercial Articles (Partial List)

  • Patsos D., Risk Based Authentication: The Next Generation of Strong Authentication Systems, IT Security Professional, Athens Greece, 2015 
  • Patsos D., Security in E-Banking Applications (in Greek), On-Line Magazine (Journal of the Hellenic Institute of Computer Engineers), Athens, Greece, 2004.
  • Patsos D., Souris A., Security issues in E-Government Systems (in Greek), Journal of the Greek Computer Society, Athens, Greece, 2004.
  • Patsos D., Incident Response: Handling of Security Incidents (in Greek), Communications Solutions, Athens, 2002.