1330673
Adjunct Associate Professor
Ernest Foo
Faculty of Science,
School of Computer Science
Biography
Dr. Ernest Foo is an active researcher in the area of information and network security. Over the last 10 years Dr. Foo has worked extensively in the field of electronic commerce protocols investigating secure protocols for electronic tendering and electronic contracting in the Australian construction industry. Dr. Foo has broad interests having published in the area of formal analysis of privacy and identity management protocols as well as proposing secure reputation systems for wireless sensor networks. Recently Dr. Foo has been conducting research in the area of Industrial Control System and critical infrastructure security.Modbus and other control system protocols core to industrial control systems. Dr. Foo has extensive experience with computer networking having worked and taught in this area for over 15 years. Dr. Foo has also been responsible for the design and development of the QUT SCADA security research laboratory. Recently Dr. Foo has been researching the IEC 61850 standard for controlling and automating electricity sub-stations. This standard will be key component of the smart grid. Dr. Foo has published a paper entitled "Gap analysis of Intrusion Detection in Smart Grids" in the proceedings of the 2nd International Cyber Resilience Conference. This paper won the best paper award at the conference in which it was presented.
Dr. Foo has commenced an ARC Linkage grant with the electricity transmission authority Powerlink. The Linkage project will extend knowledge of cyber security for control systems in electricity sub-stations. This work will benefit the practical aspects of this project.
Through his visit and subsequent work with the Institute of Infocomm Research (I2R) in Singapore Dr. Foo has gained expertise in the security of wireless sensor networks. As a result of this Dr. Foo has published four refereed papers in this area. Sensor networks will be a key component of future smart grid and other critical infrastructure architectures.
Dr. Foo has also been working to complete milestones on a project in digital forensics readiness in control systems. The Department of Prime Minister and Cabinet have sponsored this project.
Research theme:
Information and Security
Research discipline:
Computer Science
Research areas
- Examples of ubiquitous wireless computing devices are radio frequency identification (RFID) tags and wireless sensor networks. The combination of mobility, wireless communications and low-power hardware presents unique challenges in the design of suitable security protocols. Dr. Foo has investigated location privacy and proximity authentication. Location privacy is needed to avoid illegitimate tracking of mobile devices.
- Cryptographic primitives and protocols are often verified using reductionist proof methods. Unfortunately this method of evaluation may not be suitable for large and complex cryptographic applications such as identity and privacy management. Dr. Foo has investigated the use of formal modeling tools to model and analyze complex cryptographic applications.
- Wireless vehicle-to-vehicle communication is currently being standardized. Dr. Foo has investigated the vehicle-to-vehicle communication standards and assessed their suitability for safety applications like collision avoidance.
- Industrial control systems are vulnerable to cyber attack. Dr. Foo has investigated control system architectures and standards to assess their vulnerability under cyber attack. In particular he has been involved in project that have identified attacks on the IEC 61850 substation automation standard and is currently proposing mitigation strategies.
Personal details
Positions
- Adjunct Associate Professor
Faculty of Science,
School of Computer Science
Keywords
Computer Security, Industrial Control Systems Security, Wireless Sensor Network Security, VANET Security, Information Security, Intrusion Detection, Internet of Things Security, Cyber Physical Systems Security
Research field
Data management and data science, Software engineering, Distributed computing and systems software
Field of Research code, Australian and New Zealand Standard Research Classification (ANZSRC), 2020
Qualifications
- Doctor of Philosophy (Queensland University of Technology)
Teaching
Research discipline: Computer Science
Dr Foo has contributed to teaching at QUT in both the areas of network communications and in information security. Dr Foo has taught the following classes:
- INB251/INN251 Networks
- INB352/INN351 Network Planning
- INN650 Advanced Network Management
- INN651 Security Technologies
Dr Foo has provided guest lectures for the following classes:
- INB255/INN255 Security
- INB351/INN351 Unix Network Administration
Publications
- Davis, J. & Foo, E. (2016). Automated feature engineering for HTTP tunnel detection. Computers and Security, 59, 166–185. https://eprints.qut.edu.au/94291
- Amoah, R., Camtepe, S. & Foo, E. (2016). Formal modelling and analysis of DNP3 secure authentication. Journal of Network and Computer Applications, 59, 345–360. https://eprints.qut.edu.au/84625
- Rodofile, N., Radke, K. & Foo, E. (2016). DNP3 network scanning and reconnaissance for critical infrastructure. Proceedings of the Australasian Computer Science Week Multiconference, 1–10. https://eprints.qut.edu.au/93117
- Seifi, Y., Suriadi, S., Foo, E. & Boyd, C. (2015). Analysis of two authorization protocols using Colored Petri Nets. International Journal of Information Security, 14(3), 221–247. https://eprints.qut.edu.au/74296
- Akande, A., Fidge, C. & Foo, E. (2015). Component modeling for SCADA network mapping. Proceedings of the 38th Australasian Computer Science Conference (ACSC 2015) [Conferences in Research and Practice in Information Technology, Volume 159], 91–100. https://eprints.qut.edu.au/78238
- Myers, D., Foo, E. & Radke, K. (2015). Internet-wide scanning taxonomy and framework. Proceedings of the 13th Australasian Information Security Conference (AISC 2015) [Conferences in Research and Practice in Information Technology (CRPIT), Volume161], 61–65. https://eprints.qut.edu.au/81897
- Rodofile, N., Radke, K. & Foo, E. (2015). Real-time and interactive attacks on DNP3 critical infrastructure using Scapy. Proceedings of the 13th Australasian Information Security Conference (AISC 2015) [Conferences in Research and Practice in Information Technology (CRPIT), Volume161], 67–70. https://eprints.qut.edu.au/81587
- Foo, E., Djamaludin, C. & Rakotonirainy, A. (2015). Security issues for future intelligent transport systems. Proceedings of the 2015 Australasian Road Safety Conference (ARSC2015), 1–10. https://eprints.qut.edu.au/90175
- Amoah, R., Suriadi, S., Camtepe, S. & Foo, E. (2014). Security analysis of the non-aggressive challenge response of the DNP3 Protocol using a CPN model. Proceedings of the 2014 IEEE International Conference on Communications, 827–833. https://eprints.qut.edu.au/73142
- Djamaludin, C., Foo, E. & Corke, P. (2013). Establishing initial trust in autonomous Delay Tolerant Networks without centralised PKI. Computers and Security, 39, 299–314. https://eprints.qut.edu.au/56953
QUT ePrints
For more publications by Ernest, explore their research in QUT ePrints (our digital repository).
Selected research projects
- Title
- Practical cyber security for next generation power transmission networks
- Primary fund type
- CAT 1 - Australian Competitive Grant
- Project ID
- LP120200246
- Start year
- 2013
- Keywords
- Control Systems; Power Transmission; System Integrity; Information Security
- Title
- Forensic Readiness in Control Systems: Tools and Methods
- Primary fund type
- CAT 1 - Australian Competitive Grant
- Project ID
- PR09-0062
- Start year
- 2010
- Keywords
- Control Systems Security; Digital Forensics; Incident Response; Network Security
- Title
- Technical and Legal Models for Virtual Info-Sharing Networks (VISN) for Critical Infrastructure Protection (CIP)
- Primary fund type
- CAT 1 - Australian Competitive Grant
- Project ID
- DP0773706
- Start year
- 2007
- Keywords
- Information Sharing Network; Critical Infrastructure; Virtual; Legal Framework; SCADA; Information Privacy
Projects listed above are funded by Australian Competitive Grants. Projects funded from other sources are not listed due to confidentiality agreements.
Supervision
Completed supervisions (Doctorate)
- Detecting Cyber Attacks on Industrial Control Systems using Process Mining (2019)
- Generating Attacks and Labelling Attack Datasets for Industrial Control Intrusion Detection Systems (2018)
- eHealth-as-a-Service: A Service Based Design Approach for Large Scale eHealth Architecture (2018)
- Machine Learning and Feature Engineering for Computer Network Security (2017)
- Towards a Framework for Realizing Actionable Insight from Complex Data: A machine-augmented cognition approach to data exploration, information synthesis, and knowledge actualization (2017)
- Barriers to the Adoption of Formal IT Governance Practice: A Malaysian Case (2016)
- Decentralised Key Management for Delay Tolerant Networks (2016)
- Formal Security Analysis of the DNP3-Secure Authentication Protocol (2016)
- Investigating Cybercrime in a Cloud-computing Environment (2016)
Completed supervisions (Masters by Research)
The supervisions listed above are only a selection.