whoami

I am a Senior Researcher in the Security Research team of SAP and I'm based in Sophia-Antipolis, France; I have been at SAP since 2010. During the previous four years, I was a post-doc fellow and then a full-time researcher at the National Research Council (CNR) (Pisa, Italy), and in 2005 and 2006, during my PhD,I spent several months as a visiting researcher at Carleton University, Ottawa.

I did my studies at the University of Rome "Tor Vergata" (Italy), from which I received both my PhD (2007) and my Master's degree (2003) in Computer Science and Engineering.

You may find additional information about me on LinkedIn public page and my Google Scholar profile.

My current interests are primarily in software security with an emphasis on ways to ensure a secure consumption of open-source software in large enterprise applications and the use of machine-learning to address this challenge (see for example, my ICSME 2015 paper or find my latest publications and patents on Google Scholar).


news

june 2018

  • The paper “Beyond Metadata: Code-centric and Usage-based Analysis of Known Vulnerabilities in Open-source Software” that I co-authored with my colleagues Serena E. Ponta and Henrik Plate was accepted in the main track of ICSME 2018! A pre-print will be made available here soon, stay tuned.

may 2018

My team (SAP Security Research) is (still) hiring; you can contact for more information (I am available for an informal chat before applying).

november 2017

My team (SAP Security Research) is hiring; you can contact me if you need more information (or for an informal chat before applying).