Dr Virginia N. L. Franqueira

Position: Senior lecturer in Computer Security and Digital Forensics

College: College of Engineering and Technology

Department: Computing and Mathematics

Subject area: Computing

Research Centre: Distributed and Intelligent Systems Centre for Research and Technology Transfer

Show All

About

Short bio:

  • 2012-2014: Lecturer at the University of Central Lancashire, UK
  • 2011-2012: Information Security Consultant, UK
  • 2009-2011: Postdoctoral Researcher at the University of Twente, The Netherlands
  • 2010-2010: Visiting Researcher at the Open University, UK
  • 2006-2006: Visiting Researcher at Brunel University, UK

Teaching responsibilities

Academic year 2015-2016

Programme leader: BSc in Computer Forensic Investigation

Programme leader: MSc in Digital Forensics and Computer Security 

Module leader:

  • Advanced Concepts and Research in Digital Forensics (level 7)
  • Cybercrime Analysis and Investigation (level 7)
  • Digital Forensics (level 7)
  • Digital Forensic Investigation (level 5)
  • Network Forensics (level 5)
  • Advanced Digital Forensic Investigation (level 6)

Academic year 2014-2015

Programme leader: Msc in Advanced Computer Networks

Module leader:

  • Enterprise Security Management (level 7)
  • Cybercrime Analysis and Investigation (level 7)

Also involved with the following modules:

  • Securing Networks (level 7)
  • Industrial Research Practice (level 7)
  • Digital Forensic Investigation (level 5)
  • Advanced Concepts and Research in Digital Forensics (level 7)
  • Networks and Security (level 5)

Research interests

  • Information Security Risk Management / Risk Assessment
  • Digital Forensics
  • Cyber Security
  • Security Metrics
  • Identity and Access Management (IAM)
  • Attack Modelling & Simulation

Membership of professional bodies

Qualifications

Undergraduate qualification

  • B.Sc. in Computer Science, Federal University of Minas Gerais (UFMG), Brazil. 

Postgraduate qualification

  • M.Sc. in Computer Science, Federal University of Espirito Santo (UFES), Brazil. Thesis: Single Vehicle Routing in Port Container Terminals.
  • Postgraduate Cetificate in Higher Education, University of Derby, UK.

Research qualification

  • Ph.D. in Computer Science, University of Twente, The Netherlands. Thesis: Finding Multi-step Attacks in Computer Networks using Heuristic Search and Mobile Ambients.

Recent publications

Journal articles:

  1. Al Mutawa, N., Bryce, J., Franqueira, V.N.L., Marrington, A. (2016). Forensic Investigation of Cyberstalking Cases using Behavioural Evidence Analysis. Digital Investigation, 16(Supplment), pp. S96–S103. Elsevier Press. (Presented at DFRWS EU 2016)
  2. Al Awadhi, I., Read. J.C., Marrington, A., Franqueira, V.N.L. (2015). Factors Influencing Digital Forensic Investigations: Empirical Evaluation of 12 Years of Dubai Police Cases. Journal of Digital Forensics, Security and Law (JDFSL), 10(4), pp. 7-16. ADFSL Press. (Presented at SADFE 2015)
  3. Yu, Y., Franqueira, V. N. L., Tun, T. T., Wieringa, R. J. and Nuseibeh, B. (2015).  Automated Analysis of Security Requirements through Risk-based Argumentation. Journal of Systems and Software, 106(0), pp. 102-116, ISSN 0164-1212. Elsevier Press.
  4. Rossebø, J. E. Y, Houmb, S. H., Georg, G., Franqueira, V. N. L. and Serpanos, D.  (2014). Introduction to Special Issue on Risk and Trust in Embedded Critical Systems.  ACM Transactions on Embedded Computer Systems. 13(5s). ACM Press.
  5. Lopes, R. H. C., Franqueira, V. N. L. and Hobson, P. R. (2014) Efficient Computation of Hashes. Journal of Physics: Conference Series, 513 (3).  IOP Science Press.
  6. Franqueira, V.N.L., van Cleeff, A., van Eck, P. and Wieringa, R.J. (2013). Engineering Security Agreements Against External Insider Threat. Information Resources Management Journal, 26 (4). pp. 66-91.  IGI Global Press.
  7. Franqueira, V.N.L. and Wieringa, R. J. (2012). Role-Based Access Control in Retrospect. IEEE Computer, 45 (6). pp. 81-88. ISSN 0018-9162. IEEE Press.
  8. Houmb, S.H., Franqueira, V.N.L and Engum, E. A. (2010). Quantifying security risk level from CVSS estimates of frequency and impact. Journal of Systems and Software, 83 (9). pp. 1622-1634. ISSN 0164-1212.  Elsevier Press.

Book chapters:

  1. Franqueira, V. N. L. and Tunnicliffe, P. (2015). To Flip or Not To Flip: A Critical Interpretive Synthesis of Flipped Teaching. In: Smart Education and Smart e-Learning. Springer Press, pp. 57-67. ISBN 978-3-319-19874-3.
  2. Franqueira, V.N.L., van Cleeff, A., van Eck, P. and Wieringa, R. (2012). Securing the Extended Enterprise: A Method for Analyzing External Insider Threat. In: Strategic and Practical Approaches for Information Security Governance: Technologies and Applied Solutions. IGI Global, Hershey, USA, pp. 195-222. ISBN 978-1-466-60197-0.

International conference/workshop papers:

  1. Gray, J., Franqueira, V.N.L. and Yu, Y. (2016). Forensically-Sound Analysis of Security Risks od using Local Password Managers. To appear in: Proceedings of the 24th IEEE International Requirements Engineering Conference (RE'16). IEEE Press.
  2. Al Mutawa, N., Bryce, J., Franqueira, V.N.L. and Marrington, A. (2015). Behavioural Evidence Analysis Applied to Digital Forensics: An Empirical Analysis of Child Pornography Cases using P2P Networks. In: Proceedings of the 10th International Conference on Availability, Reliability and Security (ARES 2015). ISBN 978-1-4673-6590-1. pp. 293-302. IEEE Press.
  3. Katilu, V.M., Franqueira, V.N.L. and Angelopoulou, O. (2015). Challenges of Data Provenance for Cloud Forensic Investigations. In: Proceedings of the 10th International Conference on Availability, Reliability and Security (ARES 2015), pp. 312-317. ISBN 978-1-4673-6590-1. IEEE Press.
  4. Lopes, R. H. C., Franqueira, V.N.L. and Hobson, P. (2013). Efficient Computation of Hash Functions (Extended Abstract & Poster Presentation). In: 20th International Conference on Computing In High Energy and Nuclear Physics (CHEP 2013).
  5. Franqueira, V.N.L., Tun, T.T., Yu, Y., Wieringa, R. and Nuseibeh, B. (2011). Risk and Argument: A Risk-based Argumentation Method for Practical Security. In: Proceedings of the 19th IEEE International Requirements Engineering Conference (RE 2011)pp. 239-248. ISBN 978-1-4577-0923-4. IEEE Press.
  6. Franqueira, V.N.L., Racheva, Z., Tun, T.T. and Daneva, M. (2011). Towards Agile Security Risk Management in RE and Beyond. In: First International Workshop on Empirical Requirements Engineering (EmpiRE) (co-located with RE 2011), pp. 33-36. ISBN 978-1-4577-1075-9. IEEE Press.
  7. Yu, Y., Tun, T.T., Tedeschi, A. , Franqueira, V.N.L. and Nuseibeh, B. (2011). OpenArgue: Supporting Argumentation to Evolve Secure Software Systems. In: Proceedings of the 19th IEEE International Requirements Engineering Conference (RE 2011), pp.351-352. ISBN 978-1-4577-0924-1. IEEE Press.
  8. Franqueira, V.N.L. and Condori-Fernandez, N. (2011). RBAC in Practice. In: Proceedings of the REFSQ 2011 Workshops REEW, EPICAL and RePriCo, the REFSQ 2011 Empirical Track (Empirical Live Experiment and Empirical Research Fair), and the REFSQ 2011 Doctoral Symposium, ICB-Research Report, No. 44, 2011, pp. 152-153. ICB Press. ISSN 1860-2770.
  9. Franqueira, V.N.L., Houmb, S.H. and Daneva, M. (2010). Using Real Option Thinking to Improve Decision Making in Security Investment. In: On the Move to Meaningful Internet Systems (OTM 2010). Lecture Notes in Computer Science, 6426. Springer Verlag, London, pp. 619-638.
  10. Franqueira, V.N.L., van Cleeff, A. , van Eck, P. and Wieringa, R. (2010). External Insider Threat: a Real Security Challenge in Enterprise Value Webs. In: Fifth International Conference on Availability, Reliability and Security (ARES 2010), pp. 446-453. ISBN 978-0-7695-3965-2. IEEE Press. 
  11. Franqueira, V.N.L., Lopes, R. H. C. and van Eck, P. (2009). Multi-step Attack Modelling and Simulation (MsAMS) Framework based on Mobile Ambients. In: Proceeding of the 24th Annual ACM Symposium on Applied Computing (SAC 2009), pp. 66-73. ISBN 978-1-60558-166-8. ACM Press.
  12. Franqueira, V.N.L., van Eck, P. and Wieringa, R. (2009). A Mobile Ambients-based Approach for Network Attack Modelling and Simulation. In: Proceedings of the Fourth International Conference on Availability, Reliability and Security (ARES 2009), pp. 546-553, ISBN 978-0-7695-3564-7. IEEE Press.
  13. Houmb, S.H. and Franqueira, V.N.L. (2009). Estimating ToE Risk Level using CVSS. In: Proceedings of the Fourth International Conference on Availability, Reliability and Security (ARES 2009), pp. 718-725. ISBN 978-0-7695-3564-7. IEEE Press.
  14. Houmb, S.H., Franqueira, V.N.L. and Engum, E. A. (2008). Estimating Impact and Frequency of Risks to Safety and Mission Critical Systems Using CVSS. In: Supplemental Proceedings of the 18th IEEE International Symposium on Software Reliability Engineering (ISSRE). 
  15. Franqueira, V.N.L. and Lopes, R. H.C. (2007). Vulnerability Assessment by Learning Attack Specifications in Graphs. In: Proceedings of the Third International Symposium on Information Assurance and Security (IAS 2007), pp. 161-164. ISBN 978-0-7695-2876-2. IEEE Press.
  16. Franqueira, V.N.L. and van Eck, P. (2007). Defense against Insider Threat: a Framework for Gathering Goal-based Requirements. In: Proceedings of the 12th International Workshop on Exploring Modeling Methods in Systems Analysis and Design (EMMSAD 2007) (co-located with CAISE'07, pp. 193-202, Tapir Academic Press. ISBN 978-82-519-2245-6.
  17. Franqueira, V.N.L. and van Eck, P. (2006). Towards alignment of architectural domains in security policy specifications. In: Proceedings of the 8th International Symposium on System and Information Security. Fundacao Casimiro Montenegro Filho - CTA/ITA Press. ISBN 85-87978-13-6.
  18. Franqueira, V.N.L. (2006). Evolution of security policies. In: Doctoral Symposium Proceedings of the 14th IEEE International Requirements Engineering Conference (RE'06). IEEE Press.

Additional interests and activities

Training:

  • Cellebrite Certified Logical Operator (CCLO) and Cellebrie Certified Physical Analyst (CCPA)
  • Guidance Software: CFI and CFII, Advanced Internet Examinations (EnCase)
  • Cisco: CCNA1 and CCNA2 instructor
  • ISOQAR: Auditor/Lead Auditor of Information Security Management Systems (ISO 27001:2005)
  • Solon Bolon: Expert Witness Report Writing & Courtroom Skills

Academic services:

Experience in industry

  • 2011-2012: Consultant in Information Security, UK
  • 2000-2004: System Test Leader at Xerox, Brazil

Find out how to update your staff profile