Eyasu G. Chekole

Researcher in Cybersecurity

Singapore University of Technology and Design (SUTD)

Short Bio

I earned my PhD in Cybersecurity (Computer Science) from Singapore University of Technology and Design in 2019 (supervised by Assoc. Prof. Sudipta Chattopadhyay, Dr. Martin Ochoa and Assoc. Prof. Huaqun Guo), my MSc in Computer Science from University of Trento in 2012 (supervised by Prof. Bruno Crispo), and my BSc in Computer Science & IT from Arba Minch University in 2008.

Currently, I am a Research Fellow in Cybersecurity with Prof. Jianying Zhou at Singapore University of Technology and Design (in Singapore). Previously, I was a Research Scientist in Cybersecurity at the Institute for Infocomm Research (I2R), A*STAR (in Singapore), a Software Engineer at Femar Consulting s.r.l (in Italy), a Research Collaborator in Cybersecurity at the Security & Trust (ST) unit of Fondazione Bruno Kessler (FBK) (in Italy), a Research Intern at Advanced Digital Sciences Center (ADSC) (in Singapore), and a Software Engineer in Cybersecurity at Information Network Security Agency (INSA) (in Ethiopia).

Interests

Multi-Factor Security
Biometrics
Applied Cryptography
Decentralized Identity
Software & System Security
Memory Safety & Resilience
OT (ICS/CPS) Security
IoT/IIoT Security
ML/AI-Driven Security
V2X Security
Blockchain
Access Control Models
Privacy-Preserving Approaches

Education

PhD in Cybersecurity (Computer Science), 2019

Singapore University of Technology and Design, Singapore
MSc in Computer Science, 2012

University of Trento, Italy
BSc in Computer Science and IT, 2008

Arba Minch University, Ethiopia

News & Updates

News:

22 June 2025: Our research work, BlowPrint: Blow-Based Multi-Factor Biometrics for Smartphone User Authentication, has been accepted at ESORICS’25 (a flagship conference in Cybersecurity)!
7 May 2025: Our work in MFA, Unveiling the Covert Vulnerabilities in Multi-Factor Authentication Protocols: A Systematic Review and Security Analysis, has been published in the ACM Computing Surveys journal (a top-ranked journal in Computer Science with an Impact Factor of 28.0)!
3 May 2025: I will serve as the Web Chair and PC Member of ACM WPES’25, co-located with ACM CCS’25. Consider submitting your latest research findings in electronic privacy and security. Submission Deadline: 7 16 Jul 2025.
15 Feb 2025: I will serve as the Publication Chair of IEEE SOLI’25. Consider submitting your latest research work. Submission deadline: 1 Jun 2025.
8 Nov 2024: I will co-chair ACM CPSS’25 (co-located with ACM AsiaCCS’25). It will be held in Hanoi, Vietnam on 26 Aug 2025. Consider submitting your research work in CPS/ICS security. Submission deadlines: 10 20 Jan 2025 (1st round) & 15 25 Mar 2025 (2nd round).
9 Sep 2023: ACM CPSS’24 (co-located with ACM ASIACCS’24) will be held in Singapore. I am serving as a Web Chair and PC Member. Consider submitting your work. Submission deadlines: 15 Jan 2024 (1st round) & 18 Feb 2024 (2nd round).
23 June 2023: ACM ASIACCS’24 (a flagship conference in Cybersecurity) will be held in Singapore. I am serving as a Web Chair and Local Organizing Committee Member. Consider submitting your work. Submission deadlines: 21 Aug 2023 (1st round) & 7 Dec 2023 (2nd round).
22 June 2023: We are organizing the IEEE SOLI’23 conference in Singapore. I am serving as a PC Co-Chair. Consider submitting your work. Submission Deadline: 30 Sep 2023 (Extended).
03 June 2023: We are organizing the IRC-SET’23 conference in Singapore. I am serving as a PC Co-Chair. Consider submitting your work. Submission Deadline: 15 Jul 2023.
25 May 2022: We are organizing the IRC-SET’22 conference. I am serving as a PC Co-Chair. Consider submitting your recent research work. Submission Deadline: 7 Jul 2022.
15 Sep 2021: We are organizing the IEEE SOLI’21 conference. I am serving as a PC Co-Chair. Consider submitting your research work. Submission Deadline: 20 Nov 2021 (Extended).
05 May 2021: We are organizing the IRC-SET’21 conference. I am serving as a PC Co-Chair. Consider submitting your research work. Submission Deadline: 7 Jul 2021.

Projects

Decentralized Digital Identities

In this project, we design decentralized digital identities for various purposes.

Biometrics

In this project, we design novel behavioural biometric techniques for user identification and verification.

Multi-Factor Security

In this project, we construct multi-factor security schemes for various systems and domains.

In this project, we secure resource-constrained IoT devices against a wide-range of security concerns. In particular, we work on lightweight multi-factor authenticated key exchange schemes to establish secure communication channels in the IIoT network.

ICS/CPS Security

The ICS/CPS has been widely adopted in various critical infrastructures, hence they have also been a strategic target of cybercrime. I extensively involved in the security of ICS/CPS to address a wide-range of security, memory-safety and resilience issues.

Publications

Quickly discover relevant content by filtering publications.

Howard Halim, Eyasu Getahun Chekole, Daniel Reijsbergen, Jianying Zhou (2025). BlowPrint: Blow-Based Multi-Factor Biometrics for Smartphone User Authentication. Accepted at The 30th European Symposium on Research in Computer Security (ESORICS’25), Springer.

Preprint

Eyasu Getahun Chekole, Howard Halim, Jianying Zhou (2025). MFAz: Historical Access Based Multi-Factor Authorization. Preprint.

PDF Preprint

Ang Kok Wee, Eyasu Getahun Chekole, Jianying Zhou (2025). Unveiling the Covert Vulnerabilities in Multi-Factor Authentication Protocols: A Systematic Review and Security Analysis. In ACM Computing Surveys journal, ACM.

DOI [IF = 28.0]

Enoch Solomon, Eden Solomon Awulachew, Abraham Woubie, Eyasu Getahun Chekole (2025). Leveraging Artificial Intelligence Approaches for Smart Farming. In Proceedings of the 8th International Conference on Information and Computer Technologies (ICICT’25), IEEE.

DOI

Eyasu Getahun Chekole, Jianying Zhou (2024). MFAA: Historical Hash Based Multi-Factor Authentication and Authorization in IIoT. In Proceedings of the 10th Annual Industrial Control System Security Workshop (ICSS’24), co-located with ACSAC’24, IEEE.

DOI

Huaqun Guo, Ian McLoughlin, Umayal Lakshmanan, Xiaoxiao Miao, Eyasu Getahun Chekole, Weizhi Meng, Peng Cheng Wang, Jiqiang Lu, Nicholas Heng Loong Wong (editors) (2024). Proceedings of the 10th IRC Conference on Science, Engineering and Technology. In Proceedings of IRC-SET 2024, Springer.

DOI Book on Amazon

Ang Kok Wee, Eyasu Getahun Chekole, Jianying Zhou (2024). Excavating Vulnerabilities Lurking in Multi-Factor Authentication Protocols: A Systematic Security Analysis. In CoRR abs, arXiv.

PDF DOI Preprint

Wei Herng Ang, Huaqun Guo, Eyasu Getahun Chekole (2023). VulnGen: Vulnerable Virtual Machine Generator. In Proceedings of the 17th IEEE International Conference on Service Operations and Logistics, and Informatics (SOLI’23), IEEE.

DOI

Eyasu Getahun Chekole, Rajaram Thulasiraman, Jianying Zhou (2023). EARIC: Exploiting ADC Registers in IoT and Control Systems. In Proceedings of the ACNS’23 Workshop on Artificial Intelligence and Industrial IoT Security (AIoTS’23), Springer.

PDF DOI

Jiqiang Lu, Huaqun Guo, Ian McLoughlin, Eyasu Getahun Chekole, Umayal Lakshmanan, Weizhi Meng, Peng Cheng Wang, Nicholas Heng Loong Wong (editors) (2023). IRC-SET 2023: Proceedings of the 9th IRC Conference on Science, Engineering and Technology. In Proceedings of IRC-SET 2023, Springer.

DOI Book on Amazon

Ann Yi Wong, Eyasu Getahun Chekole, Martin Ochoa, Jianying Zhou (2023). On the Security of Containers: Threat Modeling, Attack Analysis, and Mitigation Strategies. In Computers & Security journal, Elsevier.

PDF DOI

Huaqun Guo, Ian McLoughlin, Eyasu Getahun Chekole, Umayal Lakshmanan, Weizhi Meng, Peng Cheng Wang, Jiqiang Lu (editors) (2022). IRC-SET 2022: Proceedings of the 8th IRC Conference on Science, Engineering and Technology. In Proceedings of IRC-SET 2022, Springer.

DOI Book on Amazon

Huaqun Guo, Ping Huang, Meng Wei, Eyasu Getahun Chekole (2021). Enhance Enterprise Security through Implementing ISO/IEC27001 Standard. In Proceedings of the 15th IEEE International Conference on Service Operations and Logistics, and Informatics (SOLI’21), IEEE.

DOI

Eyasu Getahun Chekole, Huaqun Guo (2021). DARUD: Detecting and Arresting Rogue USB Devices in the V2X Ecosystem. In Proceedings of the 15th IEEE International Conference on Service Operations and Logistics, and Informatics (SOLI’21), IEEE.

PDF DOI

Ann Yi Wong, Eyasu Getahun Chekole, Martin Ochoa, Jianying Zhou (2021). Threat Modeling and Security Analysis of Containers: A Survey. In CoRR abs, arXiv.

PDF Preprint

Huaqun Guo, Hongliang Ren, Victor Wang, Eyasu Getahun Chekole, Umayal Lakshmanan (editors) (2021). IRC-SET 2021: Proceedings of the 7th IRC Conference on Science, Engineering and Technology. In Proceedings of IRC-SET 2021, Springer.

DOI Book on Amazon

Eyasu Getahun Chekole, Martin Ochoa, Sudipta Chattopadhyay (2021). SCOPE: Secure Compiling of PLCs in Cyber-Physical Systems. In International Journal of Critical Infrastructure Protection (IJCIP), Elsevier.

PDF DOI

Eyasu Getahun Chekole, Sudipta Chattopadhyay, Martin Ochoa, Huaqun Guo, Unnikrishnan Cheramangalath (2020). CIMA: Compiler-Enforced Resilience Against Memory Safety Attacks in Cyber-Physical Systems. In Computers & Security journal, Elsevier.

PDF DOI CVE-2018-20818

Eyasu Getahun Chekole, Huaqun Guo (2019). ICS-SEA: Formally Modeling the Conflicting Design Constraints in ICS. In Proceedings of the Fifth Annual Industrial Control Systems Security (ICSS’19) Workshop, co-located with ACSAC, ACM.

PDF Slides DOI

Eyasu Getahun Chekole, Unnikrishnan Cheramangalath, Sudipta Chattopadhyay, Martin Ochoa, Huaqun Guo (2018). Taming the War in Memory: A Resilient Mitigation Strategy Against Memory Safety Attacks in CPS. In CoRR abs, arXiv.

PDF DOI

Eyasu Getahun Chekole, Sudipta Chattopadhyay, Martin Ochoa, Huaqun Guo (2018). Enforcing Full-Stack Memory Safety in Cyber-Physical Systems. In Proceedings of the 10th International Symposium on Engineering Secure Software and Systems (ESSoS’18), Springer.

PDF DOI

Eyasu Getahun Chekole, John Henry Castellanos, Martin Ochoa, David K. Y. Yau (2017). Enforcing Memory Safety in Cyber-Physical Systems. In Proceedings of the ESORICS workshop on Security of Industrial Control Systems and Cyber-Physical Systems (CyberICPS’17), Springer.

PDF DOI

Alessandro Armando, Roberto Carbone, Eyasu Getahun Chekole, Silvio Ranise (2014). Attribute Based Access Control for APIs in Spring Security. In Proceedings of the 19th ACM Symposium on Access Control Models and Technologies (SACMAT’14), ACM.

DOI

Alessandro Armando, Roberto Carbone, Eyasu Getahun Chekole, Claudio Petrazzuolo, Andrea Ranalli, Silvio Ranise (2014). Selective Release of Smart Metering Data in Multi-domain Smart Grids. In Proceedings of the Smart Grid Security Workshop (SmartGridSec’14), co-located with ESSoS’14, Springer.

DOI

Professional Services

Journal Guest Editor:

Electronics (Special Issue on “New Technologies for Cybersecurity", Submission Deadline: 15 Aug 2025): 2024 – 2025

Journal Articles Reviewer:

IEEE Transactions on Information Forensics and Security (TIFS), IEEE: 2023, 2024, 2025
Computers & Security, Elsevier: 2024, 2025
IEEE Internet of Things Journal, IEEE: 2025
Journal of Information Security and Applications, Elsevier: 2025
IEEE Transactions on Computers, IEEE: 2024, 2025
Journal of Industrial Information Integration, Elsevier: 2025
Cybersecurity Journal, Springer: 2020
International Journal of Distributed Sensor Networks (IJDSN), Wiley/SAGE: 2020

PC Co-Chair:

ACM CPSS’25 (Submission Deadlines: 10 20 Jan 2025 (1st Round) & 15 25 Mar 2025 (2nd Round))
IRC-SET’24
IEEE SOLI’23 (Submission Deadline: 30 Sep 2023 (Extended))
IRC-SET’23
IRC-SET’22
IEEE SOLI’21
IRC-SET’21

Publication Chair:

IEEE SOLI’25 (Submission Deadlines: 1 Jun 2025)

Web Chair:

ACM WPES’25, co-located with ACM CCS’25 (Submission Deadline: ~~7 Jul~~ 16 Jul 2025)
ACM ASIACCS’24 (Submission Deadlines: 21 Aug 2023 (1st Round) & 7 Dec 2023 (2nd Round))
ACM CPSS’24 (Submission Deadlines: 15 Jan 2024 (1st Round) & 18 Feb 2024 (2nd Round))

PC Member:

ACM WPES’25, co-located with ACM CCS’25 (Submission Deadline: ~~7 Jul~~ 16 Jul 2025)
IWSEC’25 (Submission Deadline: 3 Apr 2025 (1st Round) & 17 Jul 2025 (2nd Round))
IWSEC’24 (Submission Deadline: 28 Apr 2024)
IEEE CPSCom’24 (Submission Deadline: 1 May 2024)
ACM CPSS’24 (Submission Deadlines: 15 Jan 2024 (1st Round) & 18 Feb 2024 (2nd Round))
IEEE SOLI’23
IRC-SET’23
IRC-SET’22
IEEE MASS’21 (for the Security & Privacy track)
IEEE SOLI’21
IRC-SET’21
IRC-SET’20
IRC-SET’19 (Finance Chair)
SecCPS’19 (co-located with IEEE HASE’19)

Conference External Reviewer:

ISC’25
ESORICS’25
ACM CODASPY’25
ACISP’25
ICSS’24
ACM CODASPY’24
ACNS’24
ISC’23
ACNS’23
ISC’21
ESORICS’20
SecureComm’19
ACM CODASPY’18
IEEE CPS-Sec’17 (co-located with IEEE CNS’17)

Awards & Achievements

Received Best Service Award from IEEE SOLI 2023 Conference, December 2023, Singapore.
Our CRUISE project won the Singapore Public Sector Transformation Awards 2020, in the “Dare To Do” category, October 2020, Singapore.
Received Exceptional Graduate Research Project award from MSD at the Fostering Industrial Research Success Together 2017 (FIRST’17) annual research showcase hosted by SUTD, July 2017, Singapore.
Received Exceptional Graduate Research Project award from TUV SUD at the Fostering Industrial Research Success Together 2017 (FIRST’17) annual research showcase hosted by SUTD, July 2017, Singapore.
By representing SUTD, we won the 2^nd place award (1^st runners-up) at the Singapore Grand Challenge 2016 competition, organized by MSD, April 2016, Singapore.
Recipient of the A*STAR SINGA Ph.D. Scholarship award, January 2015 - January 2019, Singapore.
Recipient of the University of Trento M.Sc. Scholarship award, September 2010 - December 2012, Italy.

Teaching

Computer Systems Engineering, Singapore University of Technology and Design, 2017

Description: As part of my PhD study requirement, I served as a Teaching Assistant (TA) for the Computer Systems Engineering (CSE) undergraduate course at Singapore University of Technology and Design, with course instructors Prof. David Yau and Dr. Jit Biswas.
Key topics:
- Basic principles in the design of large-scale computing systems
- Process management and multithreaded programming
- Process scheduling, synchronization, deadlock
- End-to-end network performance (e.g., loss, throughput, and delay)
- Network security: applied cryptography, key certification, CIA triad, types of network attacks
- Client-server network programming, HTTP and the World Wide Web

Supervision

MSc Students

Current:

Chen Yuanlong, SUTD (Expected time of completion: Sep 2025)
Chua Jun Xiong Glen, SUTD (Expected time of completion: Sep 2025)
Krishnan Parthipan, SUTD (Expected time of completion: Sep 2025)
Theeran Thriunathan Kunanathan, SUTD (Expected time of completion: Sep 2025)
Xiao Yuxiang, SUTD (Expected time of completion: Sep 2025)

Graduated:

Howard Halim, SUTD (Time of completion: Sep 2024)
Tan Jia Han, SUTD (Time of completion: Sep 2024)
Lukshana Subahani, SUTD (Time of completion: Sep 2024)
Rajanikila Rajamarthandan, SUTD (Time of completion: Sep 2024)
Ang Kok Wee, SUTD (Time of completion: Sep 2023)
Sim Wei Zhou, SUTD (Time of completion: Sep 2022)
Rajaram Thulasiraman, SUTD (Time of completion: Sep 2022)

Undergraduate Interns

Kunal Kumar, SUTD (Period: Feb 2025 –)
Shubham Sharma, SUTD (Period: Feb 2025 –)

PhD Students

I have collaborated with the following PhD students at SUTD:

Xuelian Cao, Visiting student from Southwest University, China (Sep 2024 – Feb 2025)
Fuyi Wang, Visiting student from Deakin University, Australia (Aug 2024 – Mar 2025)
Jin Ma, Intern from Clemson University, USA (May 2024 – Aug 2024)
Ann Yi Wong, Part-time student at SUTD, Singapore (July 2021 – Dec 2022)

Eyasu G. Chekole

Researcher in Cybersecurity

Singapore University of Technology and Design (SUTD)

Short Bio

Interests

Education

News & Updates

News:

Projects

Decentralized Digital Identities

Biometrics

Multi-Factor Security

IIoT Security

ICS/CPS Security

Blockchain for Cybersecurity

V2X Security

Applied Cryptography

Memory Safety

Secure Smart Energy Systems

Publications

Professional Services

Awards & Achievements

Teaching

Supervision

Blog Posts

Contact