M. Mannan -- Students and Teaching

Prospective students

If you are interested in Ph.D., you must have at least one publication in a decent security venue. For both Ph.D. and Master's, I expect you to have the following qualities: highly motivated to solve difficult security/privacy problems; strong academic background (e.g., good university with good GPA); and strong systems knowledge and programming experience. Students with diverse background and life experiences will be given special consideration. If you meet my criteria, please send me an email with your CV and transcripts. I will definitely try to respond within a day or two. I have open positions for both Ph.D. (fully funded), MASc (partial support).

Ph.D. Students

  1. Sajjad Pourali
  2. Shaoqi Jiang

Master's Students

  1. Fahimeh Rezaei
  2. Tariq Houis
  3. Manar Adel Mohamed Taha Hamed

Undergraduate/Visiting Students

Student Success Highlights

  1. Dr. Lianying Zhao has joined as an assistant professor at Carleton University (now an associate professor).
  2. Dr. Xavier de Carné de Carnavalet has joined as an assistant professor at Radbound University (the Netherlands).
  3. Dr. Nayanamana Samarasinghe has joined as the Lead Cybersecurity Engineer at Morgan Stanley.
  4. The Masters graduates went mostly into leading security companies or security positions in other small and large companies, including: Fortinet, Meta/Facebook, Deloitte, Offchain Labs, Tigera, SAP Canada, RBC Canada, BNP Paribas, Amazon.
  5. My students published at top systems security conferences, including NDSS, ACM CCS, Usenix Security, and journals: ACM TISSEC/TOPS, IEEE TIFS, IEEE TDSC.
  6. Our research has been Slashdotted several times. Other media include: BBC, CBC, CTV, ACM Technews; see press coverage.
  7. Xavier de Carné de Carnavalet is the first ENCS/Concordia recipient of Vanier Canada Graduate Scholarship (the most prominent Ph.D. scholarship in Canada).

Alumni

  1. Xin Sun Master's thesis (Dec 5, 2024), A Comprehensive Analysis of Security Questions in Web Authentication
  2. Kazi Farhat Lamisa Master's thesis (Nov 25, 2024), Measuring Improper Token Invalidation in Real-world Web Logins
  3. Philippe Mangeard Master's thesis (Aug 27, 2024), WARNE: A Stalkerware Evidence Collection Tool
  4. Abdelrahman Ragab Master's thesis (Aug 20, 2024), Privacy and Security Analysis of Virtual Shopping and AI Companion Platforms
  5. Supraja Baskaran Master's thesis (Oct 30, 2023), Measuring the Leakage and Exploitability of Authentication Secrets in Super-apps: The WeChat Case
  6. Xiufen Yu Master's thesis (Sept 12, 2023), Privacy Analysis of Technological Solutions Designed for Victims of Intimate Partner Abuse
  7. Rohan Pagey Master's thesis (Jan 23, 2023), Security Weaknesses in E-commerce Platforms
  8. Bhaskar Tejaswi Master's thesis (Jan 25, 2023), Security Weaknesses in IoT Management Platforms
  9. Nayanamana Samarasinghe PhD thesis (Nov 17, 2022), Measuring for privacy: From tracking to cloaking
  10. Pranay Kapoor, MASc thesis (Aug 24, 2022), Silver Surfers on the Tech Wave: Privacy Analysis of Android Apps for the Elderly
  11. Maryna Kluban, MASc thesis (Apr 29, 2022), On Measuring JavaScript Vulnerabilities in the NPM Packages, Websites and Chrome Extensions
  12. Mehdi Salehi, MASc thesis (Apr 28, 2022), An Analysis of Upgradeability, Oracles, and Stablecoins in the Ethereum Blockchain
  13. Behnam Shobiri, MASc thesis (Dec 8, 2021), CDNs' Dark Side: Identifying Security Problems in CDN-to-Origin
  14. Mounir Elgharabawy, MASc thesis (Oct 5, 2021), Cross-vendor Security Analysis of Android Unix Domain Sockets
  15. Md. Shahab Uddin MASc thesis (Aug 25, 2021), HORUS: A Security Assessment Framework for Android Crypto Wallets
  16. Tina Safaie MASc thesis (Mar 31, 2021), ByPass: Reconsidering the Usability of Password Managers
  17. Quentin Duchaussoy, MASc thesis (Nov 3, 2020), Security and Privacy Analysis of Parental Control Solutions
  18. Tousif Osman, MASc thesis (Sept 9, 2020), AppVeto: Securing Android Applications through Resource Access Veto
  19. Mina Jafari, MASc thesis (Sept 3, 2020), Measuring the Effectiveness of Microsoft Authenticode: A Systematic Analysis of Signed Freeware
  20. Suzan Ali, MASc thesis (May 25, 2020), A Large-Scale Evaluation of Privacy Practices of Public Wifi Captive Portals
  21. Xavier de Carné de Carnavalet, PhD thesis (July 24, 2019), Last-Mile TLS Interception: Analysis and Observation of the Non-Public HTTPS Ecosystem
  22. Md Zakir Hossen, MASc thesis (December 11, 2018), On Understanding Permission Usage Contextuality of Android Apps
  23. Lianying Zhao, PhD thesis (July 23, 2018), Authentication and Data Protection under Strong Adversarial Model
  24. Abhimanyu Khanna, MASc thesis (April 24, 2017), Towards Usable and Fine-grained Security for HTTPS with Middleboxes
  25. Parul Khanna, MASc thesis (April 18, 2017), Detecting Privacy Leaks Through Existing Android Frameworks
  26. Briti Sundar Mondal, MASc thesis (August 24, 2016), Bintype: A Scalable Type Inference Tool for Compiled C Programs
  27. Arash Shahkar, MASc thesis (March 1, 2016), On Matching Binary to Source Code
  28. Suryadipta Majumdar, MASc thesis (September 8, 2014), On End-to-end Encryption for Cloud-based Services
  29. Xavier de Carné de Carnavalet, MASc thesis (April 7, 2014), A Large-scale Evaluation of High-impact Password Strength Meters
  30. A. Mert Kara, MASc thesis (January 10, 2014), Malicious Payload Distribution Channels in Domain Name System
  31. Atieh Saberi Pirouz, MASc thesis (August 27, 2013), Securing Email through Online Social Networks
  32. Adam Skillen, MASc thesis (April 3, 2013), Deniable Storage Encryption for Mobile Devices

  33. Chelsea Guan (CUSRA 2021)
  34. Adam Slimi (ENSTA Paris, Summer Intern 2021)
  35. Simon Brillant-Giroux (NSERC USRA 2019)
  36. Nohan Fleurant (NSERC USRA 2019)
  37. Sebastian Proctor-Shah (NSERC USRA 2016)
  38. Philippe Fisher (NSERC USRA 2016)
  39. Devirs Isler, Mitacs Globalink Intern from Zirve University, Turkey (summer 2014)

Some students are/were co-supervised with A. Youssef, Jeremy Clark, Lianying Zhao, Elizabeth Stobert, Mourad Debbabi