Bill Buchanan

bill buchanan

Prof Bill Buchanan

Professor

Biography

Bill Buchanan is a Professor in the School of Computing at Edinburgh Napier University, and a Fellow of the BCS and the IET.

He currently leads the Centre for Distributed Computing, Networks, and Security and The Cyber Academy (http://thecyberacademy.org).

His main research focus is around information sharing, such as using Trust and Governance Policies, threat analysis, cryptography, and triage within digital forensics. This has led to several World-wide patents, and in three highly successful spin-out companies: Zonefox (zonefox.com); Symphonic Software (www.symphonicsoft.com/); and Cyan Forensics (cyanforensics.com).

Bill regularly appears on TV and radio related to computer security, and has given evidence to the Justice Committee at the Scottish Parliament, along with being part of the BBC Scottish Independence Team of Experts (speciality: Cyber Security). This includes appearances on Newsnight Scotland, Good Morning Scotland, Panorama, and Radio 5 Newsdrive.

Bill was named as one of the Top 100 people for Technology in Scotland for 2012, 2013, 2014, 2015 and 2016. In Feb 2016, he was also included in the FutureScot "Top 50 Scottish Tech People Who Are Changing The World". Recently his work on Secret Shares received “Innovation of the Year” at the Scottish Knowledge Exchange Awards, for a research project which involves splitting data into secret shares, and can then be distributed across a public Cloud-based infrastructure. He was included in the JISC Top 50 Higher Education Social Media Influencers in 2015.

His current work focuses on the secret share methods [1][2], and especially in how documents can be stored securely in public cloud based systems. The current cryptography work around secret shares has won several awards, and is the basis for new funded work. This is further enhanced with work around sticky policies and identity based encryption [3], and which aims to integrate access rights on document within public cloud systems. This includes the storage of high risk documents, such as health care records and financial information. Along with this he has new research work which integrates machine learning into insider threat detection, and within side channel analysis on embedded systems [4].

Bill’s work around information sharing models for trust and governance, which was funded through two EPSRC grants, is now showing significant impact with the integration of over 7,000 health and social care entities within London, and which will be able to share information in a secure and trusted way [5][6].

Research funding
Direct research income of £2,766,893 at PI over last five years, including:
• Crypto Shares: Innovate UK (£135,030), SMART funding (£28,701), SMART+ funding (£68,640), PhD Funding (£40,000).
• Fragment Finder: SBRI (£37,718), Scottish Enterprise Proof of Concept funding (£228,757)
• Fraud Analysis: FSA PhD Studentship (£30,000), Scottish Enterprise Proof of Concept funding (£291,336).
• Next Generation Threat Detection: Innovate UK (£115,098).
• Bare-metal Forensics: Data Labs (£49,469).
• Dynamic Forensics Evaluation and Training (DFET): EU (£315,785).
• Scalable and Open Framework for Human/Digital Trust between Informal/Formal Personal Health Care Infrastructures, EPSRC funding, £238,611 (2011-2013).

Esteem indicators
• Creator of three successful spin-out companies: Zonefox, Symphonic Software and Cyan Forensics.
• Four US/World patents in Cyber Security.
• Invited keynote speaker at many conferences, including IEEE e-Health 2016 (on information sharing in health care).
• Part of editorial team for a range of international conferences.
• Editor-in-Chief, Journal of Cyber Security Technology.
• Editor of Cyber Security Series for River Publishers.
• Winner, Innovation of the Year, Knowledge Exchange Awards, 2016.
• Top 50 people in HE in social media. This social media activity mainly relates to Cyber Security.
• Fellow of IET and BCS.
• Winner, Scottish Cyber Evangelist of the Year, 2016.
• Top 50 Scottish Tech People Who Are Changing The World, FutureScot, 2016.
• PhD Examiner for a wide range of universities, including Royal Holloway, Cranfield University and University of Plymouth, along with being a PhD examiner for a number of European universities.
• External Examiner for a number of universities, including recent ones with Royal Holloway and Dublin City University.

Bill has one of the most extensive academic sites in the World (http://asecuritysite.com), and is involved in many areas of novel research and teaching in cryptography and cyber security. He has published over 27 academic books, and over 250 academic research papers, along with several awards for excellence in research, innovation and teaching.

He has led many innovations in teaching related to Cyber Security, including with the DFET Cloud Training project and leads the Scottish EU Centre of Excellence for Law Enforcement Training within the 2Center Network, along with being part of the setup of SIPR (Scottish Institute for Police Research). He currently leads on a range of training projects with Police Scotland and a range of industry partners.

Relevant recent publications
[1] E. Ukwandu, W. J. Buchanan, L. Fan, G. Russell, and O. Lo, “RESCUE: Resilient secret sharing cloud-based architecture,” in Proceedings - 14th IEEE International Conference on Trust, Security and Privacy in Computing and Communications, TrustCom 2015, 2015, vol. 1, pp. 872–879.
[2] W. Buchanan, D. Lanc, E. Ukwandu‎, L. Fan, and G. and, “The Future Internet: A World of Secret Shares,” Futur. Internet, vol. 7, no. 4, pp. 445–464, 2015.
[3] G. Spyra, W. J. Buchanan, and E. Ekonomou, “Sticky policy enabled authenticated OOXML,” in 2016 SAI Computing Conference (SAI), 2016, pp. 1118–1122.
[4] O. Lo, W. J. Buchanan, and D. Carson, “Power analysis attacks on the AES-128 S-box using differential power analysis (DPA) and correlation power analysis (CPA),” J. Cyber Secur. Technol., pp. 1–20, Sep. 2016.
[5] L. Fan, W. Buchanan, C. Thümmler, O. Lo, A. Khedim, O. Uthmani, A. Lawson, and D. Bell, “DACAR platform for eHealth services cloud,” in Proceedings - 2011 IEEE 4th International Conference on Cloud Computing, CLOUD 2011, 2011, pp. 219–226.
[6] L. Fan, W. J. Buchanan, O. Lo, C. Thuemmler, A. Lawson, O. Uthmani, E. Ekonomou, and A. S. Khedim, “SPoC: Protecting Patient Privacy for e-Health Services in the Cloud,” Int. Conf. eHealth, Telemedicine, Soc. Med. eTELEMED, no. 4, pp. 98–104, 2012.

News

Events

Esteem

Editorial Activity

  • Security and Network Forensics book hot off the press
  • Professor Appointed Editor-in-Chief of High-impact Cyber Security Journal for World-leading research
  • Professor Appointed Editor-in-Chief for New - High Impact - Journal of Cyber Security Technology

 

Media Activity

  • Security Team Discover New Distributed Denial of Service Amplification Attack
  • Sally Smith appointed Dean of School for the School of Computing at Edinburgh Napier
  • Sally Smith and Bill Buchanan make it into the Top 100 Tech Influencers in Scotland
  • The Herald reports that an Edinburgh Napier Expert warns of ‘growing threat’ from cyber crime
  • The Ghost of John Napier: Edinburgh Napier team focuses on University Cipher Challenges
  • Edinburgh Napier Spin-out ZoneFox signs deal with major Security Firm
  • The Cyber Academy Hosts Two New PhD Studentships in Cloud Security
  • The Cyber Academy recruit their first two fully funded PhD studentships ... and more to follow
  • We're looking for the smartest around to build world-leading infrastructures
  • YouTube lecture channel to support GCHQ-certified MSc hits 2,000+ subscribers.
  • ZoneFox Presents at Apache Cassandra Meetup on Big Data Integration
  • UK scientists track disease spread with smartphones (Electronics Weekly)
  • University Research Team Outlines TweetDeck Hack
  • University Research Team Analyse Heartbleed Part 2
  • Christmas Lecture for Schools starts in Glasgow
  • Collaboration Reaches a Higher Level for Educational Platforms
  • Collaboration with Sitekit around Federated Identity, Trust and Governance
  • Centre of Excellence in Digital Forensics award for Edinburgh Napier
  • Edinburgh Napier designed e-Health Platform goes live, with coverage in The Guardian, BMJ, ZDNet and The Financial Times
  • Edinburgh Napier University computing students participate in Cyber Security UK's University Challenge
  • 4 days ... 60 presentations ... 4 cities ... over 3,000 kids .. and great fun!
  • 3,000th registration for the Bright Red Publishing Digital Zone
  • Academic Team Identify Key Risks in Mobile Device Security at KPMG Seminar
  • Smartphones track the spread of flu
  • Support for young Scottish software company
  • BBC Click Item on Cybercrime on Mobile Phones
  • Bright Red Digital Zone Keeps Expanding
  • Bright Red Publishing Digital Zone passes 5,000 registration target, with Biology out in-front
  • Big Data Collaboration Aims to Improve Health and Social Care
  • Boffins to build safer patient systems
  • Proof-of-Concept project reaches the final of the Converge Challenge
  • Research Team Contribute To BBC Panorama Programme on Cyber Security
  • Research Team Presents to Sold-out Audience in Glasgow
  • Research Team Analyse New Apple Mac Privileged Access Exploit
  • Research Team Confirm Major Flaw within Internet of Things' Security
  • Research team outline a traffic light hack that could bring down a city
  • Research Team outlines the Strange Mystery of Truecrypt - the Mary Celeste of IT
  • Research Team Outline SQL Injection Attack Which Gathered 1.2 Billion Usernames/Passwords
  • Research group innovates in health and social care integration
  • Research Team Propose that Digitising Health Records Could Cut Child Abuse
  • Reseachers Investigate Skeleton Key Attacks on User Passwords
  • Professor outlines DarkHotel and Advanced Persistent Threat
  • Professor Outlines that the Sony Hack could be one of the Largest Data Breaches Ever
  • Professor outlines Malware install for ATM compromise
  • Professor outlines that Shellshock is not as much of a risk than Heartbleed
  • Professor outlines vulnerabilities on Apple Mac with iWorm and Shell Shock
  • Professor outlines case to BBC for Security in Cyber Space around the Scottish Independence debate
  • Professor Outlines Bitcoin Risks to The Scotsman
  • Professor Outlines Ransomware Attack on BBC
  • Professor outlines the need for Corroboration in Digital Evidence
  • Professor outlines the details of Ashley Madison breach and on the rise of the moralist hacker
  • Professor Outlines Issues in Banning Encryption in the UK on BBC Newsnight
  • Professor outlines Yahoo's fine for PRISM breach
  • Professor Named in FutureScot Top 50 Tech People Who Are Changing The World
  • Professor warns against media hype on security threats on GameOver Zeus
  • Professor to Outline Opportunities in Education at Kickstart Summer School
  • Professor's Web site hits a million accesses mark
  • Professor's On-line Lectures Pass One Million Minutes Mark on YouTube
  • Professor's Analysis of Scottish Independence Vote for Pre-vote trends
  • Professor outlines IBM's track back to its roots
  • Professor Outlines The Areas of Change in Cyber Security
  • Professor outlines Tor attack methods
  • Professor outlines the Boleto fraud and that you don't need a fast car to rob a bank anymore
  • Professor outlines some of the dangers in using digital data as evidence
  • Professor Analyses Trends in Scottish Independence Vote using Bookmarker Odds
  • Prof Bill Buchanan appears on Newsnight Scotland
  • Scottish Enterprise Profile IIDI Security Professor
  • IIDI selects miiCard as identity provider for safi.re-based information sharing governance
  • IIDI research contributes to miiCard white paper on trusted data governance
  • IIDI Lead in Search for Cybercrime Specialists of the Future
  • IIDI Professor says that Scotland could lead world in cyber crime fight
  • IIDI Professor gives evidence on new Bill
  • Interface Profiles An Exemplar for University/SME Collobration
  • Innovation Collaboration Leads to Major Cryptography Work with Payfont
  • Innovative Software puts a price on Cybercrime
  • Institute Trains Advanced Digital Investigation Skills of Police Scotland
  • Head of School and IIDI Professor make Top 100 ICT List
  • Hutchinson Networks Showcase Collaboration Work Around Innovation and Dissemination
  • FarrPoint appoints award-winning graduate for research colloboration
  • Napier researchers track infection spread with a smartphone
  • New Innovation Collaboration aims to Secure Remote Working using Patent Pending Technology (IMP)
  • Mobile application uses predictive analytics to identify patients at risk and reduce hospital admissions
  • Payfont secures £100k Scottish Enterprise funding with University Cyber Collaboration
  • Payfont secures world leading innovation support from Scottish Enterprise in collaboration with Crypto specialists at Edinburgh Napier
  • Over 3,000 pupils from 50 schools sign up for Christmas Cyber Lecture
  • Let the Cracking Begin... Sunderland, Portsmouth, Royal Holloway, Plymouth, Bristol and us!
  • John Howie Awarded a Visiting Professorship
  • Location, Location, Location
  • Cyber Christmas Lecture for Schools (first event sold-out)
  • Cyber crime expert warns for cyber threat

 

Fellowships and Awards

  • Three PhD Computing Graduations at Summer Ceromany
  • Edinburgh Napier Team Wins University Cipher Cracking Award
  • Edinburgh Napier MSc student wins Scottish Cipher Excellence 2011 Award
  • University Cyber Security Spin-out (Zonefox) Raises Another £650,000 in Investment
  • University aims to attract the finest Cyber minds to its GCHQ certified MSc
  • University Spin-out Finalist in European Spin-out Award
  • Cloud4Health wins 2nd prize for Best IT Project at Digital Innovation Awards
  • Cloud4Health is a finalist at the Scottish Digital Technology Awards 2012
  • Charley Celice wins Edinburgh Napier Student of the Year
  • Collaboration with Bright Red Publishing shortlisted for Innovation of the Year award
  • Code cracking students best in Britain
  • Digital Forensics Research Wins Principal’s Research Excellence Award for Information Society
  • Edinburgh Napier University shortlisted in Prospects Postgraduate Awards 2014
  • Edinburgh Napier University has gained GCHQ certification for MSc in Advanced Security and Digital Forensics
  • Spin-out Company are Finalists in the Global Cyber Challenge event
  • Steve Cordiner awarded an Honorary Doctorate
  • Bright Red Publishing Collaboration receives Highly Commended Award for Interface's Innovation of the Year
  • Bright Red Publishing and Edinburgh Napier University finalists for Innovation of the Year
  • Research team finalists in BCS/Computing Technology Excellence Award
  • Research group win "Highly Commended" Innovation Award for e-Health Platform
  • Research team launches Scottish Cyber/Cipher Student of the Year Award
  • Professor Makes It Onto Top 50 List of UK Higher Education Social Media Influencers
  • Professor Makes It Onto The Tech 100 in Scotland
  • Prof John Howie awarded an Honorary Doctorate
  • School of Computing becomes Academic Partner for Institute of Information Security Professionals (IISP)
  • Cryptography Research Work Wins Innovation of the Year at Principal’s Research Excellence Awards
  • Cryptography Research Work Awarded Innovation of the Year
  • IIDI spin-out Inquisitive Systems Ltd wins place in Academic Enterprise Awards Final
  • IIDI Professor launches Scottish Cipher Excellence Award 2011
  • IIDI Research team up for IET Innovation Award
  • IIDI Professor is a finalist for an award for outstanding leadership in ICT
  • Guardian Toolkit project through to the final round of the Convergence Challenge
  • ENU Student wins in World-wide Capture The Flag competition
  • Ex-Napier Research Graduate wins 2010 Edinburgh Napier Alumnus of the Year
  • Frank Greig wins award for Most Innovative Practice at Edinburgh Napier University
  • PhD Student (Owen Lo) awarded Lumison Prize (£1,000) at the Young Software Engineer of the Year Award 2010
  • Owen Lo (our new PhD student) is a finalist for the Young Software Engineer of the Year.
  • Jamie Graves is up for Young Innovator of the Year at the John Logiebaird Awards.
  • Mat Miehling wins best final year PhD presention at Faculity Conference
  • Major New Research Project in Triage for the Detection of Digital Contraband
  • Cyber Security Teaching Team is a Finalist for Best Teaching Teaching in Postgraduate Awards

 

Conference Activity

  • We Want To Build A Better World ... And You're Part of It!
  • Workshop on Next Generation Patient-Centric Systems
  • University organises a major security event for industry
  • University to Host Major Cloud Conference (Scot-Cloud)
  • Cloud Security Congress Event to cover Cybercrime in the Cloud
  • 2i Testing and Farrpoint to co-host Cyber Risk Symposium
  • SICSA SCONE Event hosted by the CDCS group
  • Symposium in Security and Cybercrime
  • Symposium on Security and Cybercrime is a major success
  • Symposium on Security and Cybercrime
  • Crypto Conference Goes Quantum around High Performance Computing
  • International Conference of Big Data in Cyber Security 10 May 2016, Craiglockhart
  • New Year Cyber Security Symposium aims to showcase opportunties in the Cyber Age
  • New Year Cyber Symposium Announced
  • Leading Harvard Researcher to Present at the Future of e-Health Event

 

Spin-outs and Licences

  • University Spin-out (ZoneFox) raises over £1 million for Cybersecurity Software
  • IIDI team files patent on improved information sharing using Binary Decision Diagrams (BDDs)
  • Inquisitive Systems spin-out receives an over subscription of investors.
  • New spin-out aims to make a major impact in Trust and Governance

 

Research Degree External Examining

  • Bill Buchanan completes PhD External Examiner duties at the University of the West of Scotland
  • Bill to serve as a PhD examiner at the University of Essex
  • Bill Buchanan to serve as an external examiner at Royal Holloway, University of London
  • Professor to examine PhD on the Authentication of Mobile Computing Devices in a Heterogeneous Environment
  • Professor set for PhD Examination at Dublin City University in Network Intrusion Detection and Prevention
  • Prof William Buchanan starts external examiner duties at Dublin City University
  • Prof William Buchanan completes PhD Viva at the University of Essex
  • Prof Bill Buchanan completes PhD Viva on Intrusion Detection Systems at the University of Plymouth
  • External Examiner PhD at the University of Plymouth
  • New External Examiner post at Dublin City University
  • PhD Examination, Royal Holloway, University of London
  • PhD Examination, University of Bedfordshire
  • PhD Examination, Crainfield University

 

Invited Speaker

  • Bill Buchanan gives keynote at health care event for the Cloud-based e-Health Platform
  • Reseach Group to present the Innovative e-Health Platform at a health care event
  • Professor Bill Buchanan to give invited talk at ARAB Health 2012
  • Professor Bill Buchanan invited to present at the Data Handling in Health and Social Care conference
  • Professor Bill Buchanan to give a keynote talk at CFET 2011
  • Professor to Present Session Keynote at CAS Scotland Annual Conference 2015 on Bright Red Digital Zone
  • Professor to give end note talk at Cyber event
  • Professor to give opening keynote at Cyber Security Conference on the future of The Cyber Academy
  • Professor to give keynote on the Complete Anatomy of Heartbleed, TrueCrypt and Large-scale Vulnerabilities at Security Conference
  • Professor to deliver Cyber Skills Keynote at Computing, ICT and Digital Media Conference
  • Professor Bill Buchanan to give invited end-note presentation on Cloud in the Public Sector at major London event
  • Professor Bill Buchanan presents keynote speech at international seminar in the Netherlands
  • Professor Bill Buchanan to give BCS Talk on Patient Centric Care using Secure Cloud infrastractures
  • IIDI Professor to present invited talk at Cloud Computing 2012
  • IIDI Professor presents on the future of technology at the Royal Society of Edinburgh

 

Advisory panels and expert committees/witness

  • Professor Presents Evidence to Investigatory Powers Bill Select Committee