Postdoc on Security, Privacy and Trust in Fog Computing

fredag 02 jul 21

Send ansøgning

Frist 15. august 2021
Du kan søge om jobbet ved DTU Compute ved at udfylde den efterfølgende ansøgningsformular.

Ansøg online

The objective of this position is to engage trusted and fog computing technologies towards developing a unified security overlay mesh network for enabling the secure and trustworthy orchestration and data management of emerging IoT-based edge applications and services.

The position is funded by the RAINBOW research project as part of the European Union H2020 programme. The goal of RAINBOW is to design and develop an open and trusted fog computing platform that facilitates the management of scalable, heterogeneous and secure IoT services and cross-cloud applications. With the rise of Internet of Things and fog computing, the number of devices that run potentially vulnerable software has exploded, and vulnerabilities are increasingly being discovered in the software running on these devices. To keep up with the amount of services that must be vetted for vulnerabilities, an automated approach is required. Alternative, security architectures are required which allow the system to detect whether it is under attack, and therefore intensify the protection mechanisms. Particular focus would be given on control systems, communication and computing infrastructures, wireless communication and embedded software verification. The envisioned research activities include the design and development of cryptographically secure and scalable attestation mechanisms for enhancing the overall privacy posture of deployed fog devices as well as verifying the integrity of deployed software-based services.  

You could be our new colleague if you are a talented researcher eager to , carry out research towards the vulnerability analysis of the leveraged Trusted Platform technologies (i.e., TPMs) and the underlying TCG Software Stack (TSS) as well as the market landscapes to allow a detailed design phase to proceed.

Examples of specific research aspects to be investigated include:

  • Definition and investigation of hybrid layered attestation approaches for enabling the collective attestation of edge devices;
  • Modelling of appropriate verification mechanisms needed for protecting the remote attestation mechanisms and edge services from unauthorized access;
  • Design and implementation of efficient and scalable (aggregate) remote attestation for a multitude of potentially heterogeneous edge devices and services;
  • The modelling of a trusted mesh overlay network that can be deployed over geo-distributed resources and can manage the trusted exchange of data and services

The goal of the postdoc is to answer difficult questions concerning the integration of advanced remote attestation enablers in the context of fog computing and the design of sufficient privacy-preserving protocols based on the use of trusted computing. The research outcomes are expected to be applied in security, privacy, trust and operational assurance of IoT-enabled ecosystems.

This position will serve as a platform for you to develop your own career and profile as an independent researcher at the intersection of trusted computing and cloud computing.

Responsibilities and qualifications
As our new colleague you will be part of a diverse team of PhD students, postdocs and faculty members in the section, and must contribute with research towards the overall goals of the ASTRID project. You are expected to interact with our collaborators on the design of secure systems based on the use of trusted computing technologies. You are also expected to give limited contributions to teaching and training activities as well as supervision of students.

As a formal qualification, you must hold a PhD degree (or equivalent).

You will need to demonstrate: (i) experience and knowledge of applied cryptography and trusted computing technologies, (ii) strong background in the theory and practice of security and fault tolerance, of software and distributed systems, verification and experimental evaluation will be considered as an advantage, and (ii) solid foundation in risk assessment, vulnerability analysis and design of novel security protocols for cyber-physical systems. Good implementation skills (including native code) and practical experience are also desirable. Furthermore, good command of the English language is essential.

You have a unique opportunity of participating in the shaping of challenging and innovative research themes, as well as contributing to the ambitious research agenda of the DTU Cyber Security section supported by a number of national and international grants. You will be given excellent conditions for the development of their research skills, in terms of working conditions, mentoring and lab facilities.

We offer
DTU is a leading technical university globally recognized for the excellence of its research, education, innovation and scientific advice. We offer a rewarding and challenging job in an international environment. We strive for academic excellence in an environment characterized by collegial respect and academic freedom tempered by responsibility.

Salary and terms of employment
The appointment will be based on the collective agreement with the Danish Confederation of Professional Associations. The allowance will be agreed upon with the relevant union.

This is a full-time position (37 hours/week) with a duration until end of December 2022, and we aim for at starting date of 1 October 2021 or as soon as possible after that.

You can read more about career paths at DTU here.  

Further information
Further information concerning the project can be obtained from Christian D. Jensen (mail, in the Cyber Security Section at DTU Compute. 

You can read more about DTU compute at

If you are applying from abroad, you may find useful information on working in Denmark and at DTU at DTU – Moving to Denmark.  

Application procedure
Your complete online application must be submitted no later than 15 August 2021 (Danish time). Applications must be submitted as one PDF file containing all materials to be given consideration. To apply, please open the link "Apply online", fill out the online application form, and attach all your materials in English in one PDF file. The file must include:

  • Application (cover letter)
  • CV
  • Academic Diplomas (MSc/PhD)
  • List of publications
  • Research Statement including a brief description of how past experience and future plans fit with the advertised position (max 2 pages)

All interested candidates irrespective of age, gender, disability, race, religion or ethnic background are encouraged to apply.

The Cyber Security Section
The Cyber Security Section at DTU Compute conducts interdisciplinary research in most aspects of computer and information security, ranging from advanced cryptography and access control mechanisms, for ensuring secrecy and authentication in todays’ communications, to the design, analysis and implementation of novel protection mechanisms for enhanced security, privacy, trustworthiness, and reliability in numerous emerging IoT applications. Through methods such as applied cryptography, hardware enhanced security, modelling and security analysis of systems, and verification, we are building security into new technology, providing assurance to the user that they are interacting with a trusted platform. Our research focuses on cryptography; trusted computing; secure communications; privacy and authentication; and security verification – with applications in, e.g., automotive, future Internet and 5G, smart grid, healthcare, e Payment, etc.

DTU Compute
DTU Compute is a unique and internationally recognized academic environment spanning the science disciplines mathematics, statistics, computer science, and engineering. We conduct research, teaching and innovation of high international standard—producing new knowledge and technology-based solutions to societal challenges. We have a long-term involvement in applied and interdisciplinary research, big data and data science, artificial intelligence (AI), internet of things (IoT), smart and secure societies, smart manufacturing, and life science.

Technology for people
DTU develops technology for people. With our international elite research and study programmes, we are helping to create a better world and to solve the global challenges formulated in the UN’s 17 Sustainable Development Goals. Hans Christian Ørsted founded DTU in 1829 with a clear vision to develop and create value using science and engineering to benefit society. That vision lives on today. DTU has 12,900 students and 6,000 employees. We work in an international atmosphere and have an inclusive, evolving, and informal working environment. DTU has campuses in all parts of Denmark and in Greenland, and we collaborate with the best universities around the world.