Erinevus lehekülje "Thesis" redaktsioonide vahel

Allikas: Kursused
Mine navigeerimisribale Mine otsikasti
 
(ei näidata 11 kasutaja 459 vahepealset redaktsiooni)
1. rida: 1. rida:
 
=Thesis info for Cyber Security students=
 
=Thesis info for Cyber Security students=
== Submission for 2016 January ==
 
Ms Elena Vaarmets (ICT-429, thesis@cs.ttu.ee) will collect the thesis materials on 05 January:
 
* two paper copies of the thesis
 
* a lisence ([http://ttu.ee/public/e/en/studying/studying_information/Loputood_lihtlitsents-EN.pdf pdf]); signed on paper
 
* a pdf version of the thesis
 
* the metadata (see below) and abstract of the thesis in electronic form
 
* More info [http://www.ttu.ee/faculty-of-information-technology/faculty-of-information-technology-1/it-studies/graduation-3/ here].
 
  
Metadata:
+
* To defend in TalTech your main supervisor must be from TalTech. The co-supervisors can be from the University of Tartu or external.
* Title (in Estonian, EST):
+
* To defend in Tartu University your main supervisor must be from UT. The co-supervisor can be from TalTech or external.
* Title (in English, ENG):
 
* Author:
 
* Supervisor(s):
 
* Defence date: 18.01.2016
 
* Language of the thesis: ENG
 
* University (EST): Tallinna Tehnikaülikool
 
* University (ENG): Tallinn University of Technology
 
* Faculty (EST): Infotehnoloogia teaduskond
 
* Faculty (ENG): Faculty of Information Technology
 
* Institute (EST): Arvutiteaduse instituut
 
* Institute (ENG): Department of Computer Science
 
* Chair (EST): Küberkriminalistika ja küberjulgeoleku keskus
 
* Chair (ENG): Centre for Digital Forensics and Cyber Security
 
* Keywords (EST):
 
* Keywords (ENG):
 
  
== Deadlines for 2016 spring ==
+
A co-supervisor is not a neccessity.
* TBD. Check the time-line section below for general guidance.
 
* After the thesis defense, please visit the Dean's Office for more information about final formalities
 
* [http://lab.cs.ttu.ee/theses Upload your thesis if you would like to have it public]
 
  
== Topic and advisor ==
+
== Important Deadlines for January 2025 Defence ==
Every student must have an advisor when writing the thesis. The advisor's role is to provide guidance on topic selection and research methods, as well as to give feedback on your work. It is not the advisor's duty to correct spelling mistakes or formatting errors - they will point such things out, but the responsibility remains with the student. Before a thesis will be accepted for defence, the advisor has to agree that it is of sufficient quality.
+
* Submission of the problem statement and research design document: 18 August 2024
 +
* Declaring your thesis topic in your study plan in ois: 9 September 2024
 +
* Submission of the thesis to the reviewer: 8th December 2024
 +
* OIS declaration: 16 December 2024
 +
* Submission of the final version of the thesis: 2 January 2025
 +
* Defences: TBA (possibly 13/14 January 2025)
  
Almost any professor and lecturer you have met in your curriculum can act as an advisor of your thesis. Some of them have some open problems suitable for doing research and writing a thesis, but many may not have a topic to offer right away. It is usually more helpful to have an initial idea of a topic of your thesis and ask someone with interests in the related field to advise you. You can have an advisor not related to the university, but he can act only as a co-advisor and you need to agree to somebody related to the curricula or the [http://www.ttu.ee/faculty-of-information-technology/faculty-of-information-technology-1/about-faculty-2/departments/department-of-computer-science-2/ leading institute] of the curriculum to be an official co-advisor. All (co-)advisors must have at least a Master's degree.
+
Moodle: https://moodle.taltech.ee/course/view.php?id=33513#section-1
  
When refining a topic idea, make sure it has a clear connection with cyber security.
 
  
== Potential supervisors ==
 
  
* [https://maennel.net Olaf Maennel] - big data forensics, serious games, aviation related cyber security projects, human-factors / cyber-security related psychological problems, network security / network monitoring, insider threads, active & passive measurements, IPv6 & IPv4 and address sharing technologies.
+
Defending in Tartu?
* Rain Ottis - national cyber security, serious games in cyber security, cyber security exercises
 
* Risto Vaarandi - log collection and analysis, event correlation, network monitoring, security monitoring. Application for supervision requires passing the Cyber Defense Monitoring Solutions course with grade 4 or 5.
 
* Toomas Lepik - forensics, malware, anti-malware
 
* Hayretdin Bahsi - Cyber security of industrial control systems, security monitoring, cyber situational awareness, cyber threat intelligence, information sharing, organizational security issues (e.g. security in supply chain management, security operation centres), national cyber security governance (e.g national cyber security policies, national cyber security capabilities)
 
* Tiia Sõmer
 
* Truls Ringkjob - various
 
* Jüri Kivimaa - IT security economics, security cost optimization
 
* Bernhards Blumbergs - network security, exploit development, advanced threats, security evasion, IPv6
 
* Aleksandr Lenin: quantitative security risk analysis, security modelling (attack process graphs), security modelling patterns (e.g. attack patterns), analysis of strategic interactions of malicious decision makers, security games (game theory), security decision making and optimization, fuzzy metrics for security, fuzzy decision making and control, fuzzy security analysis, algorithms for security analysis (development, optimization, benchmarking), enhancing ISKE by integrating other analysis tools into the ISKE tool, social aspects of security (modeling and analysing social engineering attacks).
 
* Mauno Pihelgas - system monitoring, network monitoring, IDS/IPS systems, insider threat detection
 
  
== Proposed topics ==
+
'''Must not''' submit to TalTech Moodle.
  
The topics below are offered by potential (co-)supervisors. The list is updated as new offers emerge.
+
'''Must''' still declare your thesis topic and supervisor in TalTech SIS, into your study plan.
  
==== From the TUT IT office ====
+
Contact Merilin Piirmann (merilin.piirmann@ut.ee)
Infrastructure
 
* Migrating TUT Campus LAN to IPv6; Edgars Zigurs
 
* Implementing a freeware SIEM solution in TUT; Edgars Zigurs
 
* Campus WiFi quality and signal strength modeling (3D); Edgars Zigurs
 
  
Development
+
== Important Deadlines for May/June 2025 Defence ==
* electronic door signs, room calendars, etc.; Thomas Lepik
 
* VoIP solutions - softphone, integration with existing information systems; Thomas Lepik
 
* integrating last generation BMS (Building Management System); Thomas Lepik
 
* the student view of OIS (usability, security, re-design); Enn Rebane
 
  
 +
* Submission of problem statement and research design document: 15 December 2024
 +
* Declaring your thesis topic in your study plan in ois: 10 February 2025
 +
* Submission of the thesis to the reviewer: 20 April 2025
 +
* OIS declaration: 12 May 2025
 +
* Submission of the final version of the thesis: 18 May 2025
 +
* Defences: TBA (possibly 28 - 30 May OR 2 - 4 June 2025)
  
==== From Olaf Maennel, Tallinn University of Technology, olaf.maennel@ttu.ee ====
+
Moodle: https://moodle.taltech.ee/course/view.php?id=33512#section-3
  
* '''Please contact me for topics.''' Below only brief overview over some example topics: 
 
* big data & big data forensics.
 
* serious games/auto-configured cyber security exercises:
 
** [http://conferences.sigcomm.org/sigcomm/2015/pdf/papers/p113.pdf i-tee] by Margus Ernits 
 
* aviation related cyber security projects:
 
** [https://en.wikipedia.org/wiki/Future_Air_Navigation_System FANS] security and secure protocols.
 
** Drones who deliver the mail every morning and fly between houses in the university.
 
* psychological & cognitive cyber security questions
 
* network security, network monitoring: 
 
** we try to break the university it-infrastructure (with approval from the IT-department). 
 
* insider threads, intrusion detection.
 
* measurements (active & passive):
 
** what type of traffic do we have on TOR?
 
** can we phish spear phishers?
 
* IPv6 & IPv4 and address sharing technologies.
 
  
==== From Arnis Paršovs, University of Tartu, arnis@ut.ee ====
 
* Topic: On-the-fly encryption for car DVR
 
Task: Implement on-the-fly encryption functionality for Prestigio car DVR (by patching publicly available firmware - possibly by hooking write calls).
 
Use of hybrid encryption is recommended, however, implementation of scrambling (e.g., XORing with a fixed key) might already be considered success.
 
Describe the threat model, how it was done and how to use it.
 
  
* Topic: Parallel tallying for Estonian i-voting
+
Defending in Tartu?
Task: Describe security risks that could be reduced if election observers would be allowed to perform vote verification and counting using their computers. Propose changes to the i-voting procedures and develop parallel tallying reference implementation and test data set. Analyse new risks introduced and propose counter measures.
 
  
* Topic: Perfect Secrecy for TLS
+
'''Must not''' submit to TalTech Moodle.
Task: Create an Internet Draft proposing a TLS cipher suite or extension that would ensure perfect secrecy using one-time pad. Develop a proof-of-concept patch for OpenSSL/mod_ssl and Firefox. Analyze the security and usability, describe the use cases.
 
  
* Topic: TLS Session Resumption and ID card Authentication
+
'''Must''' still declare your thesis topic and supervisor in TalTech SIS, into your study plan.
Task: Study how TLS session resumption is implemented in browsers. Measure and compare the performance improvement TLS session resumption provides. Measure the performance impact if the TLS client certificate authentication is performed using a smart card.
 
  
==== From Hayretdin Bahsi, Tallinn University of Technology, hayretdin.bahsi@ttu.ee ====
+
Contact Merilin Piirmann (merilin.piirmann@ut.ee)
  
I classified my interested topics as technical, organizational and strategic ones. I listed some interesting
+
== Thesis Defence Overview ==
topics I have in my mind. If you already have specific topics, we can discuss them and decide to work
 
together. 
 
  
Technical Issues
+
Defending an MSc thesis is a critical component of the Cybersecurity curriculum, demonstrating your ability to conduct in-depth research in a specialized area. This page provides a general overview of the thesis process, but it’s important to discuss specific details and requirements with your supervisor. The following outline assumes you’re on a four-semester study plan and aim to defend your thesis in May. For those planning a January defense, the phases can be adjusted accordingly.
  
* Security of Industrial Control Systems (ICSs)
 
  
Development of an ICS security testbed, ICS honeypots, attacks targeting ICS, intrusion detection systems in ICS, event correlation systems in ICS, forensics issues in ICSs.
+
=== Thesis Timeline Overview ===
  
* Situational Awareness and Cyber Threat Intelligence
+
'''First Year: Topic Selection'''
 +
* Start exploring possible research topics and potential supervisors during your first year. By the end of the second semester, it’s recommended to have a solid idea of your topic and to have had initial discussions with your supervisor.
  
Analysis and comparison of cyber threat information sharing protocols, privacy preserved sharing of cyber threat intelligence, generation of threat profiles out of cyber exercises, situational awareness outputs for tactical and strategic layers of organizations,requirement analysis of nationwide cyber awareness system         
+
'''December: Problem Statement and Research Design'''
     
+
* In early December, submit a document outlining your problem statement and research design (detailed below). This submission also serves as your registration for the defense in the following semester.
Organizational Issues
 
  
* Framework for providing security in supply chain management
+
'''Research Phase and Thesis Writing'''
* Security framework for information sharing with third party entities
+
* Begin conducting your research as soon as possible. If you plan to defend in May, aim to complete your thesis by early April. This allows time for your supervisor to review your work and provide feedback. For those defending in January, this deadline is early December.
* Analysis of security operation center models
 
  
Strategic Issues
+
* After receiving feedback, discuss with your supervisor whether your work is ready for submission. If additional time is needed, you may consider postponing until the January defense.
  
* High-level information flows and reporting mechanisms among the major entities of national cyber security governance
+
'''Final Review and Feedback'''
* Maturity models for the analysis of national cyber security capability
 
  
==== TREsPASS project ====
+
* Once your thesis is submitted, a reviewer will assess it and provide feedback, typically about a week before the final submission deadline. You can continue to refine your thesis until the deadline and incorporate reviewer feedback into the final document and your defense presentation. Addressing reviewer comments, such as fixing typos or clarifying sections, will strengthen your submission.
* Research project: [http://www.trespass-project.eu/ Technology-supported Risk Estimation by Predictive Assessment of Socio-technical Security]
 
The project is also suitable for PhD research, following the completion of the Master's studies.
 
Contacts: Dr Peeter Laud, Dr Jan Willemson, Aleksandr Lenin.
 
  
==== From Aleksandr Lenin, Cybernetica AS. ====
+
'''Final Submission and Defense Day'''
 +
* At the final submission deadline, you must submit your completed thesis. On the day of your defense, you’ll deliver a 15-minute presentation of your work, followed by a Q&A session with the reviewer, committee members, supervisor, and audience. Preparing this presentation in advance will help you confidently convey your research.
  
Contact e-mails:
 
  
aleksandr.lenin@ttu.ee
+
Further details are provided below.
  
aleksandr.lenin@cyber.ee
+
Good luck!
  
 +
=== Registration and Submission of Problem Statement and Research Design Document ===
 +
To defend their thesis, each student must submit a problem statement and research design document of up to 10 pages. This document should clearly include:
  
'''''[[Aleksandr_Lenin_MSc_Thesis_topics|A list of topics to offer]].'''''
+
* The student's name;
 +
* The thesis title;
 +
* The supervisor's name (and co-supervisor, if applicable).
 +
 
 +
NB: In addition to the problem statement, '''a student must declare their defense in their study plan''' for the semester they wish to defend in.
 +
 
 +
 
 +
'''Submission Timeline and Deadlines'''
 +
Students must submit their intent to defend approximately six months before the planned defense date, adhering to the specific deadlines listed above. Generally, for a May defense, this document should be submitted by  December, while for a January defense, it should be submitted by mid-July or August.
 +
 
 +
 
 +
'''Submission Instructions'''
 +
Students are required to submit their documents through the TalTech Moodle link found in the "important deadlines" section for the relevant defense period. Make sure to self-enroll in this Moodle link. Expect feedback on your document via the email associated with your Taltech Moodle account within 3-4 weeks.
 +
 
 +
 
 +
'''Document Structure and Content Requirements'''
 +
 
 +
Your problem statement and research design document should contain the following sections:
 +
 
 +
* Thesis Topic: Title of the thesis.
 +
* Author Information: The name of the student.
 +
* Supervisor Information: The name of the supervisor (and co-supervisor, if applicable).
 +
* Motivation: Explain the importance of the problem being addressed and why it deserves a research study.
 +
* Research Problem, Hypothesis, or Question: Clearly define your research problem, hypothesis, or question.
 +
* Scope and Goal: Outline the study's goals, expected outcomes, scope, limitations, and key assumptions.
 +
* Literature Review: Analyze similar studies, discussing the research gap and linking it to the research problem.
 +
* Novelty: Justify the originality of your study by explaining its main contributions and how it differs from existing research.
 +
* Research Methods: Describe the research methods, data collection, and analysis techniques, including how you plan to validate the research outcomes.
 +
* References: List all resources cited in the document.
 +
 
 +
 
 +
'''Evaluation Criteria'''
 +
 
 +
Your submission will be evaluated on the following criteria:
 +
 
 +
* Problem Definition: Is the problem statement clear and well-defined?
 +
* Significance: Is the importance of the problem effectively conveyed?
 +
* Literature Knowledge: Does the author demonstrate an understanding of the existing literature and limitations of current solutions?
 +
* Methodology: Has the author considered appropriate methods?
 +
* Validation: Has the author thought about how to validate the proposed solution?
 +
* Novelty: Does the study contribute a novel perspective or solution to the existing body of literature?
 +
 
 +
 
 +
 
 +
Following these guidelines will ensure your document meets the standards required for submission and evaluation.
 +
 
 +
You can find detailed information about research methods [https://courses.cs.ttu.ee/pages/Research_Method here.]
 +
 
 +
 
 +
 
 +
=== Submission to Reviewer ===
 +
 
 +
 
 +
Each thesis will be assigned a reviewer, sometimes also called an opponent. The reviewer must hold at least a Master's degree and have relevant expertise in the thesis topic. To avoid conflicts of interest, the reviewer should not belong to the same research group as the student. Although students and supervisors may suggest potential reviewers, the thesis defense committee makes the final selection.
 +
 
 +
 
 +
The reviewer will provide a written assessment, typically around two pages, covering:
 +
:-A brief summary of the thesis.
 +
:-An evaluation of its strengths and weaknesses.
 +
:-A recommended grade (on a scale from 0 to 5, where 0 is failing and 5 is excellent). This grade considers the clarity of the problem and solution, the problem's complexity, the appropriateness and execution of the solution, and the quality of formatting and language.
 +
:-At least three questions for the student to answer during the defense.
 +
:-The recommended grade remains confidential; only the defense committee is informed of it, and it is not disclosed to the student.
 +
 
 +
 
 +
'''1st Submission vs Final Submission'''
 +
 
 +
The reviewer will receive a copy of the thesis two to three weeks before the university’s final submission deadline. This allows time for the reviewer to suggest minor edits, such as correcting typos or small factual errors, which the student can and should address within about a week. The student will receive the review one week before the final submission deadline, allowing them to make adjustments. Additionally, if the student feels more work is needed, they may choose to postpone submission to improve the thesis for a future defense period.
 +
 
 +
 
 +
 
 +
=== SIS Declaration and Application===
 +
 
 +
Before proceeding to the thesis defense, students must declare their thesis topic in the SIS (Study Information System) and receive approval from their supervisor. It's crucial to meet the declaration deadline, as failing to do so will prevent you from attending the defense.
 +
 
 +
 
 +
NB: If your defense is scheduled at Tartu University, ensure that you complete the SIS declaration in their system by the specified deadline.
 +
 
 +
NB2: The thesis declaration should be made at the start of the semester.
 +
The application deadline for the defense is in May or December, depending on the intended defense period.
 +
 
 +
 
 +
SIS declaration and application deadlines can be found in the TalTech Academic Calendar!
 +
 
 +
 
 +
 
 +
=== Submission of Final Copy===
 +
 
 +
Each student is required to submit the PDF version of their thesis, along with the relevant thesis metadata and license information, through the Moodle course page link provided in the "Important Deadlines" section for the respective defense period. Please ensure you complete Steps 1, 2, and 3 of the thesis submission process outlined on this page.
 +
 
 +
If you are defending your thesis at Tartu University, please follow their specific procedures and deadlines for submitting the final copy.
 +
 
 +
 
 +
NB: Remember to prepare a '''15-minute presentation for your defense'''. It’s important not to leave this task until the night before the defense!
 +
 
 +
 
 +
 
 +
=== The Defence Procedure ===
 +
On the day of the defense, students will present their theses according to the announced schedule, which will be made public a few days after the final submissions have been locked in Moodle. Typically, the results will be announced at the end of the day.
 +
 
 +
 
 +
The defense procedure for each student includes the following steps:
 +
 
 +
#The committee chair will announce the student's name, the thesis topic, and the names of the supervisor(s) and reviewer.
 +
#The student will present their thesis in a 15-minute presentation.
 +
#Following the presentation, the student will respond to questions from the reviewer, who will then recommend a grade. This recommendation may differ from any preliminary suggestions based on the success of the defense.
 +
#The student will answer questions posed by the committee members.
 +
#The student will address questions from the audience.
 +
#The supervisor will provide their opinion on the thesis and recommend a grade.
 +
 
 +
 
 +
NB: The recommended grades from both the reviewer and the supervisor are not binding on the committee, which makes the final decision.
 +
These proposed grades will remain confidential.
 +
 
 +
 
 +
After the thesis defense, you are welcome to visit the Dean's Office for any additional information regarding final formalities.
 +
 
 +
 
 +
 
 +
=== Applying for a Closed Defense ===
 +
 
 +
'''Inform the Program Manager's Assistant Emily Ridal (emily.ridal@taltech.ee) at the earliest possible time.'''
 +
 
 +
This can not be left to the last minute!
 +
 
 +
== Formal Requirements and Recommendations ==
 +
 
 +
Until further notice, please use the formatting guide from the School of Information Technologies (link to the guide is given [https://www.taltech.ee/en/thesis-and-graduation-it#p43359 here]).
 +
 
 +
 
 +
The thesis code for IVCM is ITC70LT.
 +
 
 +
 
 +
Here are some important guidelines to consider when preparing your master's thesis:
 +
 
 +
'''Required Components:''' Your thesis must include a title page, an author declaration, an abstract (in both English and Estonian), a table of contents, and a list of references.
 +
 
 +
'''Length:''' The main body of the thesis should be between 50 and 80 pages, not including any appendices.
 +
 
 +
'''Formatting:''' Use Times New Roman (or a similar font) in size 12, with 1.5 line spacing for the main text.
 +
 
 +
'''Headings:''' Ensure that headings are numbered and that you use no more than three levels of headings throughout the document.
 +
 
 +
'''Page Numbers:''' Don’t forget to include page numbers on each page of your thesis.
 +
 
 +
 
 +
Following these guidelines will help ensure that your thesis meets the required standards and is well-organized.
 +
 
 +
== Topic and Supervisor ==
 +
 
 +
Every student must have a supervisor while writing their thesis. The supervisor's role is to guide you in selecting a topic, developing research methods, and providing feedback on your work. However, it is important to note that the supervisor is not responsible for correcting spelling mistakes or formatting errors; they may point these out, but the responsibility for these details ultimately lies with you. Before your thesis can be accepted for defense, your supervisor must agree that it meets the required quality standards.
 +
 
 +
You can choose any professor or lecturer from your curriculum as a potential supervisor. Some may have open research problems suitable for a thesis, while others might not have a specific topic readily available. It is often beneficial to come prepared with an initial idea for your thesis topic and seek advice from someone whose interests align with your proposed research area.
 +
 
 +
You may also have a co-supervisor who is not affiliated with the university, but they can only serve in this capacity alongside a supervisor who is associated with your curriculum or the leading institute of the program. All (co-)supervisors must hold at least a Master's degree.
 +
 
 +
As you refine your topic, ensure it has a clear connection to cybersecurity.
 +
 
 +
 
 +
NB:
 +
Theses supervised by faculty from the University of Tartu (UT) must be defended at UT.
 +
 
 +
General rule of thumb:
 +
 
 +
'''Defending at TalTech''' - main supervisor '''must be''' from TalTech; co-supervisor can be from UT or external.
 +
 
 +
'''Defending at UT''' - main supervisor '''must be''' from UT; co-supervisor can be from TalTech or external.
 +
 
 +
 
 +
 
 +
If you plan to '''defend your thesis at UT, you should follow the University of Tartu procedures and deadlines for thesis declaration.'''
 +
 
 +
For more information, you can refer to the thesis guidelines and regulations available at UT Thesis Deadlines and Guidelines. If you have any questions, please contact Merilin Piirmann, the Academic Affairs Specialist at the UT Institute of Computer Science, at merilin.piirmann@ut.ee.
 +
 
 +
== Potential Supervisors & Proposed Topics ==
 +
 +
'''The topics below are offered by potential (co-)supervisors (in alphabetical order). The list is updated as new offers emerge.'''
 +
 
 +
==== From Marko Arik, Industry PhD student, Talgen Cybersecurity Ltd. maarik@ttu.ee ==== 
 +
 
 +
* Offensice Cyber Operations (OCO) planning and execution
 +
* Cyber Operations tools (visualization, planning, automation)
 +
* Motorcycle Drag Racing
 +
 
 +
==== From Sille Arikas, Clarified Security ==== 
 +
 
 +
* Incident Response
 +
* Offensive Security
 +
* Cyber Exercises
 +
* Cybercrime
 +
* Cybersecurity Management
 +
 
 +
Accepting up to 3 more students for 2024/2025
 +
 
 +
NB: Before approaching, make sure you comply with the checklist below:
 +
* you have previous experience in the areas linked to your topic (relevant courses at the university / work experience)
 +
* you have selected one initial thesis topic suggestion, finished your initial research, approach with a 2-pager and can tl;dr ''why is this important to you and how is this novel?''
 +
* you can meet the agreed deadlines set by your supervisor and accept that there won't be any spoon-feeding
 +
 
 +
==== From Hayretdin Bahsi, Tallinn University of Technology, hayretdin.bahsi@taltech.ee ====
 +
 
 +
I am interested in various topics which can be categorized as technical and organizational. If you already have specific topics in your mind, we can discuss them and decide to work together. 
 +
 
 +
Technical Topics
 +
 
 +
* Application of machine learning and data mining methods to the following cyber security problems: Malware detection, botnet identification, code security review, intrusion detection in cyber-physical systems, IoT network or robotic systems   
 +
* Cyber security of IoT, cyber-physical systems: Development of a security testbed, threat modelling, honeypots, intrusion detection systems
 +
* Digital Forensics: Forensics issues in cyber-physical systems, IoT networks or robotics systems, mobile forensics, blockchain forensics
 +
 
 +
Organizational Topics
 +
 
 +
* Security operation center (SOC) models
 +
* Case studies for the improvement of SOC processes such as threat monitoring, incident handling, vulnerability management or situational awareness
  
 
==== From Aivo Kalu, Cybernetica AS ====
 
==== From Aivo Kalu, Cybernetica AS ====
* Pilveteenuste ohuanalüüs ja võrdlus ISKE-ga
 
  
==== From Tanel Alumäe, Institute of Cybernetics ====
+
No topics available for 2024/2025 academic year.
* Eestikeelse telefonikõne automaatne transkribeerimine
 
Task: Töö sisuks on kõnetuvastussüsteemi loomine, mis suudaks võimalikult hästi transkribeerida eestikeelset inimestevahelist spontaanset telefonikõnet. Süsteem implementeeritakse kasutades olemasolevat kõnetuvastusmootorit. Kõnemudelite treenimiseks kasutatakse suurt hulka käsitsi transkribeeritud telefonikõnesid. Töö suurimaks väljakutseks on treeningkorpuses olevate kõnetranskriptsioonide joondamine helisignaalidega, et võimaldada telefonikõne-spetsiifiliste mudelite treenimist.
 
  
* Võtmesõnade otsimine eestikeelsest telefonikõnest
+
==== From Shaymaa Khalil, PhD STudent, TalTech ====
Task: Töö käigus luuakse süsteem, mis suudab kiiresti leida inimestevahelisest eestikeelsest sponaansest telefonikõnest kohti, kus suure tõenäosusega esineb sõna mingist võtmesõnade hulgast. Süsteem implementeeritakse kasutades olemasolevat kõnetuvastusmootorit. Kõnemudelite treenimiseks kasutatakse suurt hulka käsitsi transkribeeritud telefonikõnesid. Töö suurimaks väljakutseks on treeningkorpuses olevate kõnetranskriptsioonide joondamine helisignaalidega, et võimaldada telefonikõne-spetsiifiliste mudelite treenimist. Töö teiseks väljakutseks on erinevate võtmesõnaotsingu meetodite testimine.
 
  
 +
Interested in (but not limited to) topics related to:
 +
* Industrial Control Systems: threat modeling, security, testbeds for education, penetration testing and digital forensics
 +
* Digital forensics related topics, especially topics related to IoT,  Windows OS and Digital Forensics tools benchmarking
  
==== From Estonian Police ====
+
==== From Toomas Lepik, Tallinn University of Technology ====
* Vaatlustarkvarade EnCase ja Autopsy võrdlus (selgituseks, et Autopsy on EnCase analoog, kuid tasuta. Vajalik oleks täpne analüüs, et mida Autopsy võimaldab ja mida mitte võrreldes EnCase ja/või FTKga).
+
 
 +
toomas.lepik@taltech.ee
 +
 
 +
General areas:
 +
 
 +
* Network Forensic (related data analysis)
 +
* Reverse engineering (including malware analysis)
 +
* SCADA security
 +
* Incident Handling.
 +
* Log Analysis
 +
 
 +
Specific ideas:
 +
 
 +
* Implications of DOH on security and availability + next step from https://www.netmeister.org/blog/doh-dot-dnssec.html
 +
* Domain name availability and how DNS registrant and registrar policy changes affect cybercrime
 +
* Heuristics on ip leasing operations
 +
* Defending organization that does not have internal network
 +
* Do applications do what they promise
 +
* Identifying specific applications based network fingerprints
 +
* Evaluation log collecting methods for Microsoft networks considering log poisoning attacks
 +
* Log collecting frameworks for organisations without internal networks
 +
* Information attributes and their  influence on the organisational security beyond CIA
 +
* Frame works for cybersecurity devices / software evaluation
 +
* Evaluation specific software /hardware using ATT&CK Framwork
 +
* ATT&CK -Descriptions and false positives
 +
* Anatomy of cyber fractions during the Russian-Ukrainian war
 +
* Forensic Leaked materials of cyber criminal groups.
 +
* ...
 +
 
 +
==== From Birgy Lorenz, Tallinn University of Technology ====
 +
birgy.lorenz@ttu.ee
 +
 
 +
No topics as of 2024/2025
 +
 
 +
==== From Seyed Mohammad Hadi Mirsadeghi, PhD Student, Tallinn University of Technology ====
 +
 
 +
* Adversarial training of deep neural networks
 +
* Generative artificial intelligence
 +
* Deep programmability
 +
* Computer vision
 +
* HPC
 +
 
 +
 
 +
Requirements for supervision - student must be enagaged in research and driven!
 +
 
 +
==== From Sten Mäses, Tallinn University of Technology ====
 +
 
 +
* Creating educational hands-on virtual labs in rangeforce.com platform
 +
 
 +
==== From Andrew Roberts, PhD Student, Tallinn University of Technology ====
 +
Topics:
 +
1. Evaluation of Methods for Threat and Risk Assessment of Autonomous Self-Driving Vehicles
 +
2. Design and Development of a cyber range for Autonomous self-driving vehicles
 +
Contribution:
 +
 
 +
Topic 1: The outcome of this work will form part of TUT contribution to standards and methods research within the International Alliance for Mobility Testing and Standardisation (IAMTS).
 +
 
 +
Topic 2: The developed cyber range will be integrated into the EU ECHO-Federated Cyber Range.
 +
 
 +
==== From Aleksi Kajander, Tallinn University of Technology ====
 +
 
 +
* legal aspects of cyber security
 +
* international law
 +
* Cyber Conflicts and the Law of War/IHL
 +
* EU-Law
 +
* Cybercrime
 +
* Interaction of Law and Technology
 +
 
 +
==== From Rain Ottis, Tallinn University of Technology ====
 +
 
 +
* national cyber security
 +
* serious games in cyber security/cyber security exercises
 +
 
 +
==== From Mauno Pihelgas NATO CCDCOE ====
 +
* system and network monitoring
 +
* observability and situation awareness
 +
* IDS/IPS systems
 +
* automating cyber defences
 +
 
 +
No spots available for 2024/2025
 +
 
 +
==== From Jaan Priisalu, Tallinn University of Technology ====
 +
 
 +
* TBD
 +
 
 +
==== From Muaan Ur Rehman, PhD Student, Tallinn University of Technology ====
 +
 
 +
Research interests:
 +
* Machine learning in anomaly/intrusion detection
 +
* Malware analasys
 +
* System engineering/software engineering
 +
 
 +
==== From Nikita Snetkov, Industry PhD Student, Cybernetica / Tallinn University of Technology ====
 +
 
 +
* Protocols security in ProVerif
 +
* Protocols security in CryptoVerif
 +
* Systematic analysis of quantum-safe cryptography migration strategies in Europe
 +
* Improving multiplicative-to-additive (MtA) functionality for threshold ECDSA protocols
 +
* Blind Smart-ID signature protocol
 +
 
 +
Topics are not limited by ones above. If a student has a topic in mind, Nikita's research interests are  e-voting, digital identity, cryptographic security proofs and post-quantum cryptography.
 +
 
 +
==== From Matthew Sorell, Tallinn University of Technology / Adelaide University Australia ====
 +
 
 +
Matthew James Sorell <matthew.sorell@taltech.ee>
 +
 
 +
Topics in digital forensic science may be available.
 +
Students should come with an idea that can be turned into a proposal.
 +
 
 +
==== From Eneken Tikk, Tallinn University of Technology ====
 +
* Technical and organizational implementation of the GDPR
 +
* Monetization of personal data
 +
* Economics of cybersecurity (the cost of implementation relative to the anticipated and evidenced gains)
 +
* Cyber insurance
 +
* Non-military strategies for national and international cybersecurity
 +
* Legal aspects of cybersecurity
 +
 
 +
==== From Risto Vaarandi, Tallinn University of Technology ====
 +
 
 +
 
 +
* event log collection, event log analysis, event correlation
 +
* network monitoring and intrusion detection
 +
* data mining and machine learning methods for security monitoring and cyber security
 +
* application of large language models (LLM's) for cyber security
 +
* Security Operations Center (SOC) related topics
 +
* any area that is connected to security monitoring and the technical side of cyber security
 +
* various security engineering topics (e.g., system hardening firewalling)
 +
 
 +
Before applying, make sure that you:
 +
 
 +
* have previous knowledge in the thesis topic area - have passed relevant courses or work closely connected to the thesis topic area:
 +
* have selected at least one initial thesis topic suggestion with background research about its validity.
 +
 
 +
==== From Jelizaveta Vakarjuk, Industry PhD Student, Cybernetica / Tallinn University of Technology ====
 +
 
 +
Jelizaveta's general research interest includes different privacy-preserving technologies and multiparty computations that are used for digital identity management systems. Additionally, post-quantum cryptography (with a main focus on digital signatures) and migration to post-quantum cryptography.
 +
 
 +
* Lattice-based cryptography
 +
* Privacy Preserving Protocols
 +
* Threshold Cryptography
 +
* I-Voting
 +
 
 +
She does not have any specific topics to offer for the 2024/2025 academic year, but if something from her research interest sound appealing, please feel free to contact her (jelizaveta.vakarjuk@cyber.ee).
 +
 
 +
==== From Adrian Venables, Tallinn University of Technology ====
 +
 
 +
* Cyber security aspects of Information Warfare
 +
* Strategic Communications doctrine development
 +
* Information Operations doctrine development
 +
* Cognitive Warfare in the Digital Information Environment
 +
 
 +
Note: a background in International Relations, Political Science or Strategic Studies is required
 +
 
 +
==== From Gabor Visky, PhD Student, NATO  CCDCOE / TalTech ====
 +
 
 +
Gabor Visky <gabor.visky@ccdcoe.org>
 +
 
 +
* Network traffic analysis in the maritime cyber-lab
 +
 
 +
==== From Kaido Kikkas, Tallinn University of Technology, IT College. kaido.kikkas@taltech.ee ==== 
 +
 
 +
* Cyber security risks in telepresence robotics and their mitigation (practical experimenting is possible at IT College; see [https://cm.taltech.ee]
 +
* Cyber security lessons from the COVID-19 pandemic (incl. surveys in Estonia)
 +
* Evolution of Cyberwar (Estonia 2007, Georgia 2007, Ukraine 2014/2022
 +
* Total defence in cyberspace (might try to suggest a strategy for Estonia)
 +
* Specific traits of cyber capabilities in totalitarian societies
 +
 
 +
 
 +
Some more possible keywords to spark Thesis topic ideas:
 +
(e-)learning/training, FLOSS/Linux, smart devices, IoT, social engineering, usability/accessibility vs security/privacy
 +
 
 +
Also might study cyber counterparts to (legal) self-defence and citizen's arrest
 +
 
 +
==== From Ricardo Gregorio Lugo, Tallinn University of Technology, Estonian Maritime Academy ==== 
 +
 
 +
Any topic from Human Aspects and cyberpsychology are actual.  
 +
 
 +
Topics can include:
 +
* Human performance in cybersecurity
 +
* Individual and Team Processes in Cybersecurity defense/exercises
 +
* Human computer interaction in cybersecurity
 +
* Human-AI trust and decision-making
 +
* Communication and Decision-making in recognized cyber threat situations
 +
* Human Perception and Information Visualizations in cybersecurity
 +
* Cognitive factors in risk perception and decision-making
 +
* Mental Health in Cybersecurity
 +
 
 +
==== From the TalTech IT office ====
 +
 
 +
* Security implications in Migrating Taltech Campus LAN to IPv6; Toomas Lepik
 +
* Improving SOC and Information security processes; Toomas Lepik
 +
* Auditing  Taltech EITS compliance based on public information; Toomas Lepik
 +
* Improving Log analysis pipelines; Toomas Lepik
  
* Erinevate suhtlustarkvarade (WhatsApp, Viber, FB Messenger, Skype jt) jäljed mobiiltelefonides ja nende analüüsimine (selgituseks, et üldjuhul loovad suhtlustarkvarad mingi andmebaasi vestlustega ka telefoni, kas see on krüpteeritud või mitte? Osad vestlused XRY tuvastab, aga millistel juhtudel? Millised võimalused oleks neid faile nö käsitsi uurida?).
+
==== From the TalTech Space Centre ====
  
* Tõendiahela kirjeldamine elektrooniliste tõendite fikseerimisel (chain of custody)/Elektroonilise sisu erikohtlemine asitõendi vaatlusel/Digitaaltõendite vaatluse kord – erinevate riikid analüüs ja võrdlus.
+
NB: Please contact Adrian Venables, if interested in any of these topics.
  
* P2P võrkudes lastest ebasündsate piltide levitajate tuvastamine/P2P võrkudes illegaalse internetisisu levitajate tuvastamine.
+
*Methods and tools for capturing, identifying, analyzing, and reverse engineering satellite protocols
  
* Koolituskava väljatöötamine uurijale/menetlejale, kes puutub kokku digitaalsete tõenditega- erinevate riikide praktika võrdlus.
+
*Study of security features and use of cryptography in nanosatellite communication protocols
  
* Ask Rain Ottis for a POC on these topics.
+
*Reusable low-footprint cryptographic primitives for microcontrollers with limited resources
  
== Formal Requirements and recommendations ==
+
*Testing framework for nanosatellite communication protocol implementation correctness and robustness
Until further notice, please use the formatting guide ([http://ati.ttu.ee/FILES/ATI_autorikomplekt_Authors_toolkit_v.2.5.1.zip .zip]) from the Computer Engineering Department. Please note that you will have to change the title page to read "Department of Computer Science", adding "TUT Centre for Digital Forensics and Cyber Security" on the following line.
 
  
The thesis code for IVCM is ITC70LT.
+
*Adaptation of existing protocol or designing a new protocol for the next Taltech nanosatellite
  
General information. Some general advice that is good to follow for a master thesis:
+
*Implementation of a fully reusable and secure protocol stack as part of the platform for future nanosatellites
* a title page, an author declaration, an annotation in English and Estonian, a list of contents, and references are required in the thesis
 
* around 50 pages + appendixes if needed
 
* Times New Roman (or similar), font size 12, 1.5 spacing used for the ordinary text
 
* headings are numbered and no more than 3 levels used
 
* 2 bound hard copies are submitted, you will get one back afterwards. You also have to submit the license agreement granting TUT the right to store and publish the thesis.
 
* A soft copy of the thesis (in pdf format) and the thesis meta data sheet are sent to thesis@cs.ttu.ee.
 
  
'''The [https://courses.cs.ttu.ee/pages/ITX8040 Cyber Defence Seminar] (ITX8040) is designed to provide advice on the thesis requirements and writing process to Cyber Security Master's students.
+
*Implementation of the new Taltech nanosatellite protocol for ground station
  
== Thesis defence ==
+
*Security review of TTU100/TTU101 software to identify errors and risks that should be avoided in software for the next satellites
The thesis defence is typically held in early June. Alternate thesis defence dates can and have been offered (for example, January).
 
  
The procedure for thesis defence is set by TUT regulations.
+
*Suitability, performance, properties, and security of LoRa technologies when used for nanosatellites
  
==== Declarations ====
+
==== From the University of Tartu ====
In order to catch potential problems early, students are required to indicate their intent to defend (plus topic and advisor info) by the deadline set for each semester. This will be done over e-mail. Selected students will then be assigned a date for an informal pre-defence that is designed to provide them feedback.
+
NB! Theses supervised by supervisors from the University of Tartu (UT) have to be defended in UT.
 +
Exceptions are possible, but need do be approved by the program manager.
 +
If you will defend your thesis in UT, then you should do your thesis declaration according to the procedures and deadlines of UT.
 +
Thesis related guidelines and regulations are available at: https://cs.ut.ee/en/content/thesis-deadlines-and-guidelines
 +
In case of any questions contact UT Institute of Computer Science Academic Affairs Specialist Paula Luks (paula.luks@ut.ee).
  
Before a student can proceed to the thesis defence, they have to declare the thesis topic in OIS and get approval from their advisor. The deadline for handing in the final version of the thesis (hardcopy and softcopy) is typically at least one week before the defence deadline.
 
  
==== Reviewer ====
+
Cybersecurity-related research in the University of Tartu is conducted by the following persons:
Each thesis will be assigned a reviewer. The reviewer must have at least a Master's degree and relevant knowledge or experience in the field of the thesis topic, and they must not have a conflict of interest (such as being members in the same research group). Students and advisors may recommend reviewer candidates, but the final assignment will be done by the thesis defence committee.
 
  
A reviewer will provide written feedback (typically about two pages) on the thesis. The review should cover the following points:
+
- Arnis Paršovs, University of Tartu, <arnis.parsovs@ut.ee>
* short description of the thesis
 
* strengths and weaknesses of the thesis
 
* recommended grade (0-5, where 0 is a failing thesis and 5 is an excellent thesis) based on the clarity of the problem and the solution, complexity of the problem, suitability of the chosen solution, proper execution of the solution, and the proper formatting and language use in the thesis.
 
* at least three questions that can be asked during the defence.
 
  
Based on the student's performance at the defence the reviewer may change the recommended grade.
+
- Danielle Morgan, University of Tartu, <danielle.morgan@ut.ee>
  
The reviewer will receive a copy of the thesis about a month before the final/hard university deadline for submitting the thesis.  The reason for this is that typically reviewers point typos and small factual mistakes that can be fixed in short time (about a week).  The student will receive the review 1-2 weeks before the final university deadline and therefore is able to address some of the comments before submitting the final version. The student can also still decide not to submit the thesis this round, but rather work on improving the quality and then submit an improve version 6 month later.
+
- Alo Peets, University of Tartu, <alo.peets@ut.ee>
  
==== The defence procedure ====
+
- Dominique Unruh, University of Tartu, <dominique.unruh@ut.ee>
On the day of defence, students will be heard according to the announced schedule. Generally, the results will be announced at the end of the day.
 
  
The defence procedure for each student consists of the following steps:
+
- Vitaly Skachek, University of Tartu, <vitaly.skachek@ut.ee>
* the committee Chairman announces the name of the student, the topic of the thesis, and the names of the advisor(s) and reviewer.
 
* the student presents his or her thesis in 15 minutes.
 
* the student answers the reviewer's questions and the reviewer recommends a grade. This recommendation may differ from the preliminary recommendation, based on how successful the defence was.
 
* the student answers questions from the committee.
 
* the student answers questions from the audience.
 
* the advisor gives his or her opinion of the thesis and recommends a grade.
 
  
NB! The recommended grades by the reviewer and the advisor are not binding to the committee, who makes the final decision.
+
- Mubashar Iqbal, University of Tartu, <mubashar.iqbal@ut.ee>
  
== Time-line considerations ==
+
- Abasi-Amefon Obot Affia, University of Tartu, <amefon.affia@ut.ee>
  
The following is just a rough guideline, but should give a view on how far in the process the students should be roughly by what time.  
+
- Mari Seeba, University of Tartu, <mari.seeba@ut.ee>
  
==== June defence====
+
- Sabah Suhail, University of Tartu,
  
* September, October, November: conduct your '''literature review''' and work on formulating a clear research hypothesis.
+
- Raimundas Matulevicius, University of Tartu, <raimundas.matulevicius@ut.ee>
* No later than early December:  Have your research hypothesis/problem statement well formulated and written-up.
 
* December, January, February:  Complete the '''research work''' of the thesis. 
 
* March:  Declare your thesis (see declarations above ) and just focus on writing-up and polishing.  Every student is different, but past experience shows over 1+ month is needed to finish the writing process.  Informal '''pre-defences''' will also be held in March/April time.  
 
* Early to Mid-April:  send a copy to your supervisor.  Agree the dates with your supervisor, but expect that it might take a week for your supervisor to comment on your work.  Plan also for time to address the comments from your supervisor.
 
* Early May: submit to thesis to reviewer. 
 
* Mid-May receive review and have about 1-2 weeks time to address comments.
 
* End-May/early June:  submission of final thesis.  This is a university deadline, and is the ultimate hard deadline to submit your thesis.  
 
* Early June defence 
 
  
NB!  Do not forget that you need to prepare a 15 min presentation for your defence.  This should really not be left to the evening before the defence!
 
  
 +
Some topics are provided at <https://infosec.cs.ut.ee/Main/ThesisTopics>.
 +
For other topics, students can contact directly the supervisors and course lecturers.
  
==== January defence (no summer vacation, if you plan a vacation adjust the dates accordingly)====
 
  
* April, May, June: conduct your '''literature review''' and work on formulating a clear research hypothesis.  
+
A full list of thesis topics offered by the [https://acs.cs.ut.ee/ Applied Cyber Security Group (UT)]
* No later than early July:  Have your research hypothesis/problem statement well formulated and written-up.  
+
is available in the [https://comserv.cs.ut.ee/ati_thesis_offers/index.php?year=all&keywords=acs thesis topics database].  
* July, August, September:  Complete the '''research work''' of the thesis.
+
Students can also get access to various [https://acs.cs.ut.ee/hardware/ hardware] that can be used for research experiments.
* October:  Declare your thesis (see declarations above) and just focus on writing-up and polishing. Every student is different, but past experience shows over 1+ month is needed to finish the writing process.  Informal '''pre-defences''' will also be held in October/November time.  
 
* Early to Mid-November:  send a copy to your supervisor. Agree the dates with your supervisor, but expect that it might take a week for your supervisor to comment on your work.   Plan also for time to address the comments from your supervisor.  
 
* Early December: submit to thesis to reviewer.
 
* Mid-December receive review and enjoy christmas/new year time to address comments.  
 
* Early January:  submission of final thesis. This is a university deadline, and is the ultimate hard deadline to submit your thesis.  
 
* January defence
 
  
NB!  Do not forget that you need to prepare a 15 min presentation for your defence.  This should really not be left to the evening before the defence!
+
==== From Estonian Police ====
 +
TBD
  
 
== Useful links ==
 
== Useful links ==
 
[https://drive.google.com/file/d/0B7yq33Gize8ydEh5X0NxeWtZc3c/edit ITX8040 Thesis advice slides]
 
[https://drive.google.com/file/d/0B7yq33Gize8ydEh5X0NxeWtZc3c/edit ITX8040 Thesis advice slides]
  
[http://www.cs.ut.ee/en/node/3301/mid/1046 Some advice and requirements for writing a thesis in UT]
+
[https://www.taltech.ee/en/thesis-and-graduation-it#p43359 Format requirements of a thesis and MS-Word Template (TalTech)]
  
[http://www.ttu.ee/infotehnoloogia-teaduskond/arvutiteaduse-instituut/at-tudengile/lopetamine-2/ Some advice and requirements for writing a thesis in TUT (in Estonian)]
+
[https://gitlab.cs.ttu.ee/templates/phd-thesis LATEX template for master thesis (TalTech) (accessible by UNI-ID)]
  
 
[http://www.lib.ttu.ee/dbs/abaasid.asp Databases, books, research papers accessible from the TTU network]
 
[http://www.lib.ttu.ee/dbs/abaasid.asp Databases, books, research papers accessible from the TTU network]
 +
 +
[https://courses.cs.ttu.ee/pages/Research_Method An Overview of Research Methods]
 +
 +
[https://courses.cs.ttu.ee/pages/Defended_thesis_cyber Previously Defended Theses]

Viimane redaktsioon: 6. november 2024, kell 09:02

Thesis info for Cyber Security students

  • To defend in TalTech your main supervisor must be from TalTech. The co-supervisors can be from the University of Tartu or external.
  • To defend in Tartu University your main supervisor must be from UT. The co-supervisor can be from TalTech or external.

A co-supervisor is not a neccessity.

Important Deadlines for January 2025 Defence

  • Submission of the problem statement and research design document: 18 August 2024
  • Declaring your thesis topic in your study plan in ois: 9 September 2024
  • Submission of the thesis to the reviewer: 8th December 2024
  • OIS declaration: 16 December 2024
  • Submission of the final version of the thesis: 2 January 2025
  • Defences: TBA (possibly 13/14 January 2025)

Moodle: https://moodle.taltech.ee/course/view.php?id=33513#section-1


Defending in Tartu?

Must not submit to TalTech Moodle.

Must still declare your thesis topic and supervisor in TalTech SIS, into your study plan.

Contact Merilin Piirmann (merilin.piirmann@ut.ee)

Important Deadlines for May/June 2025 Defence

  • Submission of problem statement and research design document: 15 December 2024
  • Declaring your thesis topic in your study plan in ois: 10 February 2025
  • Submission of the thesis to the reviewer: 20 April 2025
  • OIS declaration: 12 May 2025
  • Submission of the final version of the thesis: 18 May 2025
  • Defences: TBA (possibly 28 - 30 May OR 2 - 4 June 2025)

Moodle: https://moodle.taltech.ee/course/view.php?id=33512#section-3


Defending in Tartu?

Must not submit to TalTech Moodle.

Must still declare your thesis topic and supervisor in TalTech SIS, into your study plan.

Contact Merilin Piirmann (merilin.piirmann@ut.ee)

Thesis Defence Overview

Defending an MSc thesis is a critical component of the Cybersecurity curriculum, demonstrating your ability to conduct in-depth research in a specialized area. This page provides a general overview of the thesis process, but it’s important to discuss specific details and requirements with your supervisor. The following outline assumes you’re on a four-semester study plan and aim to defend your thesis in May. For those planning a January defense, the phases can be adjusted accordingly.


Thesis Timeline Overview

First Year: Topic Selection

  • Start exploring possible research topics and potential supervisors during your first year. By the end of the second semester, it’s recommended to have a solid idea of your topic and to have had initial discussions with your supervisor.

December: Problem Statement and Research Design

  • In early December, submit a document outlining your problem statement and research design (detailed below). This submission also serves as your registration for the defense in the following semester.

Research Phase and Thesis Writing

  • Begin conducting your research as soon as possible. If you plan to defend in May, aim to complete your thesis by early April. This allows time for your supervisor to review your work and provide feedback. For those defending in January, this deadline is early December.
  • After receiving feedback, discuss with your supervisor whether your work is ready for submission. If additional time is needed, you may consider postponing until the January defense.

Final Review and Feedback

  • Once your thesis is submitted, a reviewer will assess it and provide feedback, typically about a week before the final submission deadline. You can continue to refine your thesis until the deadline and incorporate reviewer feedback into the final document and your defense presentation. Addressing reviewer comments, such as fixing typos or clarifying sections, will strengthen your submission.

Final Submission and Defense Day

  • At the final submission deadline, you must submit your completed thesis. On the day of your defense, you’ll deliver a 15-minute presentation of your work, followed by a Q&A session with the reviewer, committee members, supervisor, and audience. Preparing this presentation in advance will help you confidently convey your research.


Further details are provided below.

Good luck!

Registration and Submission of Problem Statement and Research Design Document

To defend their thesis, each student must submit a problem statement and research design document of up to 10 pages. This document should clearly include:

  • The student's name;
  • The thesis title;
  • The supervisor's name (and co-supervisor, if applicable).

NB: In addition to the problem statement, a student must declare their defense in their study plan for the semester they wish to defend in.


Submission Timeline and Deadlines Students must submit their intent to defend approximately six months before the planned defense date, adhering to the specific deadlines listed above. Generally, for a May defense, this document should be submitted by December, while for a January defense, it should be submitted by mid-July or August.


Submission Instructions Students are required to submit their documents through the TalTech Moodle link found in the "important deadlines" section for the relevant defense period. Make sure to self-enroll in this Moodle link. Expect feedback on your document via the email associated with your Taltech Moodle account within 3-4 weeks.


Document Structure and Content Requirements

Your problem statement and research design document should contain the following sections:

  • Thesis Topic: Title of the thesis.
  • Author Information: The name of the student.
  • Supervisor Information: The name of the supervisor (and co-supervisor, if applicable).
  • Motivation: Explain the importance of the problem being addressed and why it deserves a research study.
  • Research Problem, Hypothesis, or Question: Clearly define your research problem, hypothesis, or question.
  • Scope and Goal: Outline the study's goals, expected outcomes, scope, limitations, and key assumptions.
  • Literature Review: Analyze similar studies, discussing the research gap and linking it to the research problem.
  • Novelty: Justify the originality of your study by explaining its main contributions and how it differs from existing research.
  • Research Methods: Describe the research methods, data collection, and analysis techniques, including how you plan to validate the research outcomes.
  • References: List all resources cited in the document.


Evaluation Criteria

Your submission will be evaluated on the following criteria:

  • Problem Definition: Is the problem statement clear and well-defined?
  • Significance: Is the importance of the problem effectively conveyed?
  • Literature Knowledge: Does the author demonstrate an understanding of the existing literature and limitations of current solutions?
  • Methodology: Has the author considered appropriate methods?
  • Validation: Has the author thought about how to validate the proposed solution?
  • Novelty: Does the study contribute a novel perspective or solution to the existing body of literature?


Following these guidelines will ensure your document meets the standards required for submission and evaluation.

You can find detailed information about research methods here.


Submission to Reviewer

Each thesis will be assigned a reviewer, sometimes also called an opponent. The reviewer must hold at least a Master's degree and have relevant expertise in the thesis topic. To avoid conflicts of interest, the reviewer should not belong to the same research group as the student. Although students and supervisors may suggest potential reviewers, the thesis defense committee makes the final selection.


The reviewer will provide a written assessment, typically around two pages, covering:

-A brief summary of the thesis.
-An evaluation of its strengths and weaknesses.
-A recommended grade (on a scale from 0 to 5, where 0 is failing and 5 is excellent). This grade considers the clarity of the problem and solution, the problem's complexity, the appropriateness and execution of the solution, and the quality of formatting and language.
-At least three questions for the student to answer during the defense.
-The recommended grade remains confidential; only the defense committee is informed of it, and it is not disclosed to the student.


1st Submission vs Final Submission

The reviewer will receive a copy of the thesis two to three weeks before the university’s final submission deadline. This allows time for the reviewer to suggest minor edits, such as correcting typos or small factual errors, which the student can and should address within about a week. The student will receive the review one week before the final submission deadline, allowing them to make adjustments. Additionally, if the student feels more work is needed, they may choose to postpone submission to improve the thesis for a future defense period.


SIS Declaration and Application

Before proceeding to the thesis defense, students must declare their thesis topic in the SIS (Study Information System) and receive approval from their supervisor. It's crucial to meet the declaration deadline, as failing to do so will prevent you from attending the defense.


NB: If your defense is scheduled at Tartu University, ensure that you complete the SIS declaration in their system by the specified deadline.

NB2: The thesis declaration should be made at the start of the semester. The application deadline for the defense is in May or December, depending on the intended defense period.


SIS declaration and application deadlines can be found in the TalTech Academic Calendar!


Submission of Final Copy

Each student is required to submit the PDF version of their thesis, along with the relevant thesis metadata and license information, through the Moodle course page link provided in the "Important Deadlines" section for the respective defense period. Please ensure you complete Steps 1, 2, and 3 of the thesis submission process outlined on this page.

If you are defending your thesis at Tartu University, please follow their specific procedures and deadlines for submitting the final copy.


NB: Remember to prepare a 15-minute presentation for your defense. It’s important not to leave this task until the night before the defense!


The Defence Procedure

On the day of the defense, students will present their theses according to the announced schedule, which will be made public a few days after the final submissions have been locked in Moodle. Typically, the results will be announced at the end of the day.


The defense procedure for each student includes the following steps:

  1. The committee chair will announce the student's name, the thesis topic, and the names of the supervisor(s) and reviewer.
  2. The student will present their thesis in a 15-minute presentation.
  3. Following the presentation, the student will respond to questions from the reviewer, who will then recommend a grade. This recommendation may differ from any preliminary suggestions based on the success of the defense.
  4. The student will answer questions posed by the committee members.
  5. The student will address questions from the audience.
  6. The supervisor will provide their opinion on the thesis and recommend a grade.


NB: The recommended grades from both the reviewer and the supervisor are not binding on the committee, which makes the final decision. These proposed grades will remain confidential.


After the thesis defense, you are welcome to visit the Dean's Office for any additional information regarding final formalities.


Applying for a Closed Defense

Inform the Program Manager's Assistant Emily Ridal (emily.ridal@taltech.ee) at the earliest possible time.

This can not be left to the last minute!

Formal Requirements and Recommendations

Until further notice, please use the formatting guide from the School of Information Technologies (link to the guide is given here).


The thesis code for IVCM is ITC70LT.


Here are some important guidelines to consider when preparing your master's thesis:

Required Components: Your thesis must include a title page, an author declaration, an abstract (in both English and Estonian), a table of contents, and a list of references.

Length: The main body of the thesis should be between 50 and 80 pages, not including any appendices.

Formatting: Use Times New Roman (or a similar font) in size 12, with 1.5 line spacing for the main text.

Headings: Ensure that headings are numbered and that you use no more than three levels of headings throughout the document.

Page Numbers: Don’t forget to include page numbers on each page of your thesis.


Following these guidelines will help ensure that your thesis meets the required standards and is well-organized.

Topic and Supervisor

Every student must have a supervisor while writing their thesis. The supervisor's role is to guide you in selecting a topic, developing research methods, and providing feedback on your work. However, it is important to note that the supervisor is not responsible for correcting spelling mistakes or formatting errors; they may point these out, but the responsibility for these details ultimately lies with you. Before your thesis can be accepted for defense, your supervisor must agree that it meets the required quality standards.

You can choose any professor or lecturer from your curriculum as a potential supervisor. Some may have open research problems suitable for a thesis, while others might not have a specific topic readily available. It is often beneficial to come prepared with an initial idea for your thesis topic and seek advice from someone whose interests align with your proposed research area.

You may also have a co-supervisor who is not affiliated with the university, but they can only serve in this capacity alongside a supervisor who is associated with your curriculum or the leading institute of the program. All (co-)supervisors must hold at least a Master's degree.

As you refine your topic, ensure it has a clear connection to cybersecurity.


NB: Theses supervised by faculty from the University of Tartu (UT) must be defended at UT.

General rule of thumb:

Defending at TalTech - main supervisor must be from TalTech; co-supervisor can be from UT or external.

Defending at UT - main supervisor must be from UT; co-supervisor can be from TalTech or external.


If you plan to defend your thesis at UT, you should follow the University of Tartu procedures and deadlines for thesis declaration.

For more information, you can refer to the thesis guidelines and regulations available at UT Thesis Deadlines and Guidelines. If you have any questions, please contact Merilin Piirmann, the Academic Affairs Specialist at the UT Institute of Computer Science, at merilin.piirmann@ut.ee.

Potential Supervisors & Proposed Topics

The topics below are offered by potential (co-)supervisors (in alphabetical order). The list is updated as new offers emerge.

From Marko Arik, Industry PhD student, Talgen Cybersecurity Ltd. maarik@ttu.ee

  • Offensice Cyber Operations (OCO) planning and execution
  • Cyber Operations tools (visualization, planning, automation)
  • Motorcycle Drag Racing

From Sille Arikas, Clarified Security

  • Incident Response
  • Offensive Security
  • Cyber Exercises
  • Cybercrime
  • Cybersecurity Management

Accepting up to 3 more students for 2024/2025

NB: Before approaching, make sure you comply with the checklist below:

  • you have previous experience in the areas linked to your topic (relevant courses at the university / work experience)
  • you have selected one initial thesis topic suggestion, finished your initial research, approach with a 2-pager and can tl;dr why is this important to you and how is this novel?
  • you can meet the agreed deadlines set by your supervisor and accept that there won't be any spoon-feeding

From Hayretdin Bahsi, Tallinn University of Technology, hayretdin.bahsi@taltech.ee

I am interested in various topics which can be categorized as technical and organizational. If you already have specific topics in your mind, we can discuss them and decide to work together.

Technical Topics

  • Application of machine learning and data mining methods to the following cyber security problems: Malware detection, botnet identification, code security review, intrusion detection in cyber-physical systems, IoT network or robotic systems
  • Cyber security of IoT, cyber-physical systems: Development of a security testbed, threat modelling, honeypots, intrusion detection systems
  • Digital Forensics: Forensics issues in cyber-physical systems, IoT networks or robotics systems, mobile forensics, blockchain forensics

Organizational Topics

  • Security operation center (SOC) models
  • Case studies for the improvement of SOC processes such as threat monitoring, incident handling, vulnerability management or situational awareness

From Aivo Kalu, Cybernetica AS

No topics available for 2024/2025 academic year.

From Shaymaa Khalil, PhD STudent, TalTech

Interested in (but not limited to) topics related to:

  • Industrial Control Systems: threat modeling, security, testbeds for education, penetration testing and digital forensics
  • Digital forensics related topics, especially topics related to IoT, Windows OS and Digital Forensics tools benchmarking

From Toomas Lepik, Tallinn University of Technology

toomas.lepik@taltech.ee

General areas:

  • Network Forensic (related data analysis)
  • Reverse engineering (including malware analysis)
  • SCADA security
  • Incident Handling.
  • Log Analysis

Specific ideas:

  • Implications of DOH on security and availability + next step from https://www.netmeister.org/blog/doh-dot-dnssec.html
  • Domain name availability and how DNS registrant and registrar policy changes affect cybercrime
  • Heuristics on ip leasing operations
  • Defending organization that does not have internal network
  • Do applications do what they promise
  • Identifying specific applications based network fingerprints
  • Evaluation log collecting methods for Microsoft networks considering log poisoning attacks
  • Log collecting frameworks for organisations without internal networks
  • Information attributes and their influence on the organisational security beyond CIA
  • Frame works for cybersecurity devices / software evaluation
  • Evaluation specific software /hardware using ATT&CK Framwork
  • ATT&CK -Descriptions and false positives
  • Anatomy of cyber fractions during the Russian-Ukrainian war
  • Forensic Leaked materials of cyber criminal groups.
  • ...

From Birgy Lorenz, Tallinn University of Technology

birgy.lorenz@ttu.ee

No topics as of 2024/2025

From Seyed Mohammad Hadi Mirsadeghi, PhD Student, Tallinn University of Technology

  • Adversarial training of deep neural networks
  • Generative artificial intelligence
  • Deep programmability
  • Computer vision
  • HPC


Requirements for supervision - student must be enagaged in research and driven!

From Sten Mäses, Tallinn University of Technology

  • Creating educational hands-on virtual labs in rangeforce.com platform

From Andrew Roberts, PhD Student, Tallinn University of Technology

Topics: 1. Evaluation of Methods for Threat and Risk Assessment of Autonomous Self-Driving Vehicles 2. Design and Development of a cyber range for Autonomous self-driving vehicles Contribution:

Topic 1: The outcome of this work will form part of TUT contribution to standards and methods research within the International Alliance for Mobility Testing and Standardisation (IAMTS).

Topic 2: The developed cyber range will be integrated into the EU ECHO-Federated Cyber Range.

From Aleksi Kajander, Tallinn University of Technology

  • legal aspects of cyber security
  • international law
  • Cyber Conflicts and the Law of War/IHL
  • EU-Law
  • Cybercrime
  • Interaction of Law and Technology

From Rain Ottis, Tallinn University of Technology

  • national cyber security
  • serious games in cyber security/cyber security exercises

From Mauno Pihelgas NATO CCDCOE

  • system and network monitoring
  • observability and situation awareness
  • IDS/IPS systems
  • automating cyber defences
No spots available for 2024/2025

From Jaan Priisalu, Tallinn University of Technology

  • TBD

From Muaan Ur Rehman, PhD Student, Tallinn University of Technology

Research interests:

  • Machine learning in anomaly/intrusion detection
  • Malware analasys
  • System engineering/software engineering

From Nikita Snetkov, Industry PhD Student, Cybernetica / Tallinn University of Technology

  • Protocols security in ProVerif
  • Protocols security in CryptoVerif
  • Systematic analysis of quantum-safe cryptography migration strategies in Europe
  • Improving multiplicative-to-additive (MtA) functionality for threshold ECDSA protocols
  • Blind Smart-ID signature protocol

Topics are not limited by ones above. If a student has a topic in mind, Nikita's research interests are e-voting, digital identity, cryptographic security proofs and post-quantum cryptography.

From Matthew Sorell, Tallinn University of Technology / Adelaide University Australia

Matthew James Sorell <matthew.sorell@taltech.ee>

Topics in digital forensic science may be available. Students should come with an idea that can be turned into a proposal.

From Eneken Tikk, Tallinn University of Technology

  • Technical and organizational implementation of the GDPR
  • Monetization of personal data
  • Economics of cybersecurity (the cost of implementation relative to the anticipated and evidenced gains)
  • Cyber insurance
  • Non-military strategies for national and international cybersecurity
  • Legal aspects of cybersecurity

From Risto Vaarandi, Tallinn University of Technology

  • event log collection, event log analysis, event correlation
  • network monitoring and intrusion detection
  • data mining and machine learning methods for security monitoring and cyber security
  • application of large language models (LLM's) for cyber security
  • Security Operations Center (SOC) related topics
  • any area that is connected to security monitoring and the technical side of cyber security
  • various security engineering topics (e.g., system hardening firewalling)

Before applying, make sure that you:

  • have previous knowledge in the thesis topic area - have passed relevant courses or work closely connected to the thesis topic area:
  • have selected at least one initial thesis topic suggestion with background research about its validity.

From Jelizaveta Vakarjuk, Industry PhD Student, Cybernetica / Tallinn University of Technology

Jelizaveta's general research interest includes different privacy-preserving technologies and multiparty computations that are used for digital identity management systems. Additionally, post-quantum cryptography (with a main focus on digital signatures) and migration to post-quantum cryptography.

  • Lattice-based cryptography
  • Privacy Preserving Protocols
  • Threshold Cryptography
  • I-Voting

She does not have any specific topics to offer for the 2024/2025 academic year, but if something from her research interest sound appealing, please feel free to contact her (jelizaveta.vakarjuk@cyber.ee).

From Adrian Venables, Tallinn University of Technology

  • Cyber security aspects of Information Warfare
  • Strategic Communications doctrine development
  • Information Operations doctrine development
  • Cognitive Warfare in the Digital Information Environment

Note: a background in International Relations, Political Science or Strategic Studies is required

From Gabor Visky, PhD Student, NATO CCDCOE / TalTech

Gabor Visky <gabor.visky@ccdcoe.org>

  • Network traffic analysis in the maritime cyber-lab

From Kaido Kikkas, Tallinn University of Technology, IT College. kaido.kikkas@taltech.ee

  • Cyber security risks in telepresence robotics and their mitigation (practical experimenting is possible at IT College; see [1]
  • Cyber security lessons from the COVID-19 pandemic (incl. surveys in Estonia)
  • Evolution of Cyberwar (Estonia 2007, Georgia 2007, Ukraine 2014/2022
  • Total defence in cyberspace (might try to suggest a strategy for Estonia)
  • Specific traits of cyber capabilities in totalitarian societies


Some more possible keywords to spark Thesis topic ideas: (e-)learning/training, FLOSS/Linux, smart devices, IoT, social engineering, usability/accessibility vs security/privacy

Also might study cyber counterparts to (legal) self-defence and citizen's arrest

From Ricardo Gregorio Lugo, Tallinn University of Technology, Estonian Maritime Academy

Any topic from Human Aspects and cyberpsychology are actual.

Topics can include:

  • Human performance in cybersecurity
  • Individual and Team Processes in Cybersecurity defense/exercises
  • Human computer interaction in cybersecurity
  • Human-AI trust and decision-making
  • Communication and Decision-making in recognized cyber threat situations
  • Human Perception and Information Visualizations in cybersecurity
  • Cognitive factors in risk perception and decision-making
  • Mental Health in Cybersecurity

From the TalTech IT office

  • Security implications in Migrating Taltech Campus LAN to IPv6; Toomas Lepik
  • Improving SOC and Information security processes; Toomas Lepik
  • Auditing Taltech EITS compliance based on public information; Toomas Lepik
  • Improving Log analysis pipelines; Toomas Lepik

From the TalTech Space Centre

NB: Please contact Adrian Venables, if interested in any of these topics.

  • Methods and tools for capturing, identifying, analyzing, and reverse engineering satellite protocols
  • Study of security features and use of cryptography in nanosatellite communication protocols
  • Reusable low-footprint cryptographic primitives for microcontrollers with limited resources
  • Testing framework for nanosatellite communication protocol implementation correctness and robustness
  • Adaptation of existing protocol or designing a new protocol for the next Taltech nanosatellite
  • Implementation of a fully reusable and secure protocol stack as part of the platform for future nanosatellites
  • Implementation of the new Taltech nanosatellite protocol for ground station
  • Security review of TTU100/TTU101 software to identify errors and risks that should be avoided in software for the next satellites
  • Suitability, performance, properties, and security of LoRa technologies when used for nanosatellites

From the University of Tartu

NB! Theses supervised by supervisors from the University of Tartu (UT) have to be defended in UT. Exceptions are possible, but need do be approved by the program manager. If you will defend your thesis in UT, then you should do your thesis declaration according to the procedures and deadlines of UT. Thesis related guidelines and regulations are available at: https://cs.ut.ee/en/content/thesis-deadlines-and-guidelines In case of any questions contact UT Institute of Computer Science Academic Affairs Specialist Paula Luks (paula.luks@ut.ee).


Cybersecurity-related research in the University of Tartu is conducted by the following persons:

- Arnis Paršovs, University of Tartu, <arnis.parsovs@ut.ee>

- Danielle Morgan, University of Tartu, <danielle.morgan@ut.ee>

- Alo Peets, University of Tartu, <alo.peets@ut.ee>

- Dominique Unruh, University of Tartu, <dominique.unruh@ut.ee>

- Vitaly Skachek, University of Tartu, <vitaly.skachek@ut.ee>

- Mubashar Iqbal, University of Tartu, <mubashar.iqbal@ut.ee>

- Abasi-Amefon Obot Affia, University of Tartu, <amefon.affia@ut.ee>

- Mari Seeba, University of Tartu, <mari.seeba@ut.ee>

- Sabah Suhail, University of Tartu,

- Raimundas Matulevicius, University of Tartu, <raimundas.matulevicius@ut.ee>


Some topics are provided at <https://infosec.cs.ut.ee/Main/ThesisTopics>. For other topics, students can contact directly the supervisors and course lecturers.


A full list of thesis topics offered by the Applied Cyber Security Group (UT) is available in the thesis topics database. Students can also get access to various hardware that can be used for research experiments.

From Estonian Police

TBD

Useful links

ITX8040 Thesis advice slides

Format requirements of a thesis and MS-Word Template (TalTech)

LATEX template for master thesis (TalTech) (accessible by UNI-ID)

Databases, books, research papers accessible from the TTU network

An Overview of Research Methods

Previously Defended Theses