Menu
Semantics, Cybersecurity & Services (SCS)
Semantics, Cybersecurity & Services (SCS)
UTFacultiesEEMCSDisciplines & departmentsSCSResearchRunning ProjectsHIVA: Holistic Infrastructure‐centric Vulnerability Analysis

HIVA: Holistic Infrastructure‐centric Vulnerability Analysis

HIVA: Holistic Infrastructure‐centric Vulnerability Analysis

Funded by: NWO, VIDI Programme

Period: April, 2026 - April, 2031

Contact:

Picture of dr.ir. A. Continella (Andrea)
dr.ir. A. Continella (Andrea) Associate Professor
+31534892752
 a.continella@utwente.nl
Building: Zilverling 2023
Personal page

Description:

Software vulnerabilities pose serious threats to our digital society—economic damage, human rights violations, critical infrastructure disruptions. Yet, security testing overwhelms organizations with too many potential flaws and lacks actionable insights, leaving
vulnerabilities unresolved. In response, automated vulnerability analyses must characterize and prioritize the most severe issues. However, current methods focus on isolated programs—an insufficient approach for today’s distributed software infrastructures. Programs do not operate in a bubble, and our analysis tools should not either.

HIVA aims to fundamentally redefine how we understand, analyze, and prioritize software vulnerabilities, by introducing a novel infrastructure‐centric paradigm—we need to holistically reason about vulnerabilities in the context of entire software infrastructures, rather than within individual applications.

Close
Suggestions