Mar. 2013 – Present
Mougins, France

Senior Researcher

SAP Labs

  • Automated approaches to the identification, assessment and mitigation of vulnerabilities in open-source software
  • Machine learning for software security analysis and vulnerability detection
Oct. 2010 – Feb. 2013
Mougins, France


SAP Labs

  • Security certification of Web Services
  • Lead architect in EU-funded project Assert4SOA
Jan. 2010 – Sep. 2010
Pisa, Italy

Post-doc Fellow (2006-2008), then Researcher (2008-2010)


I woorked in the broad domain of software testing, in particular on aspects related to service-oriented systems, performance analysis, and monitoring.
May. 2006 – Aug. 2006
Ottawa, Canada

Vising Researcher (I)

Carleton University

Using graph grammars as a way to abstract information from software models, as a preliminary step for futher model transformation to a different target representation.

May. 2005 – Jul. 2005
Ottawa, Canada

Vising Researcher (II)

Carleton University

I worked with Dorina Petriu on an approach to use methods from the Aspect-Oriented paradigm and graph grammars to represent crosscutting concerns (performance, security) in software models.

Oct. 2003 – Jun. 2007
Rome, Italy

PhD Candidate

Univ. of Rome ‘Tor Vergata’

My PhD thesis was on model-driven methods to analyze the performance of software systems

Selected Publications



  • (ICSE-SEIP 2020) 42th International Conference on Software Engineering (track: Software Engineering in Practice), 23-29 May 2020, Seoul, South Korea.
  • (ESEC-FSE 2020) ACM Joint European Software Engineering Conference and Symposium on the Foundations of Software Engineering, Sun 8 - Fri 13 November 2020 Sacramento, California, United States
  • (ACM SAC SA-TTA 2020) The 8th track on Software Architecture: Theory, Technology, and Applications (SA-TTA) at the 35th ACM/SIGAPP Symposium On Applied Computing (SAC 2020), Mar 30 - Apr 3, 2020, Brno, Czech Republic.
  • (SANER 2020) 27th IEEE International Conference on Software Analysis, Evolution and Reengineering, February 18-21, 2020, London, Ontario.


  • (FAACS 2019) 3rd Workshop on Formal Approaches for Advanced Computing Systems – co-located with the 13th European Conference on Software Architecture (ECSA 2019), 9-13 September 2019, Paris
    • Submission deadline: May 31, 2019
  • (QUATIC 2019) 12th International Conference on the Quality of Information and Communications Technology, Ciudad Real, Spain, September 11-13, 2019
  • (ARES 2019) 14th International Conference on Availability, Reliability and Security (ARES 2019)
  • (IWSSEC 2019) International Workshop on Security Engineering for Cloud Computing (event website under construction)
  • (MobileSoft 2019) 6th IEEE/ACM International Conference on Mobile Software Engineering and Systems
    • Submission deadline: April 30, 2019