City Research Online

Elkhawas, A., Gashi, I. ORCID: 0000-0002-8017-3184 & Chen, T. M. (2025). Privacy-Preserving Federated Learning for Phishing Detection. IEEE Technology and Society Magazine, 44(2), pp. 77-84. doi: 10.1109/mts.2025.3558971

Brozik, A., Gashi, I. ORCID: 0000-0002-8017-3184 & Salako, K. ORCID: 0000-0003-0394-7833 (2024). Explaining Black-Box Malware Detectors: A Machine Learning Approach for Behaviour Analysis. Paper presented at the European Dependable Computing Conference, 8-11 Apr 2025, Lisbon, Portgual.

Asad, H., Adhikari, S. & Gashi, I. ORCID: 0000-0002-8017-3184 (2023). A Perspective-Retrospective Analysis of Diversity in Signature-Based Open-Source Network Intrusion Detection Systems. International Journal of Information Security, 23(2), pp. 1331-1346. doi: 10.1007/s10207-023-00794-9

Asad, H. & Gashi, I. ORCID: 0000-0002-8017-3184 (2022). Dynamical Analysis of Diversity in Rule-Based Open Source Network Intrusion Detection Systems. Empirical Software Engineering, 27(1), article number 4. doi: 10.1007/s10664-021-10046-w

Marques, P., Rhode, M. & Gashi, I. ORCID: 0000-0002-8017-3184 (2021). Waste not: using diverse neural networks from hyperparameter search for improved malware detection. Computers & Security, 108, article number 102339. doi: 10.1016/j.cose.2021.102339

Movahedi, Y., Cukier, M. & Gashi, I. ORCID: 0000-0002-8017-3184 (2020). Predicting the Discovery Pattern of Publically Known Exploited Vulnerabilities. IEEE Transactions on Dependable and Secure Computing, 19(2), doi: 10.1109/tdsc.2020.3014872

Alves, F., Andongabo, A, Gashi, I. ORCID: 0000-0002-8017-3184 , Ferreira, P. M. & Bessani, A.view all authors (2020). Follow the blue bird: A study on threat data published on Twitter. Paper presented at the 25th European Symposium on Research in Computer Security (ESORICS) 2020, 14-18 Sep 2020, Guildford, UK.

Mohavedi, Y., Cukier, M. & Gashi, I. ORCID: 0000-0002-8017-3184 (2019). Vulnerability Prediction Capability: A Comparison between Vulnerability Discovery Models and Neural Network Models. Computers and Security, 87, article number 101596. doi: 10.1016/j.cose.2019.101596

Movahedi, Y., Cukier, M., Andongabo, A. & Gashi, I. ORCID: 0000-0002-8017-3184view all authors (2019). Cluster-based Vulnerability Assessment of Operating Systems and Web Browsers. Computing, 101(2), pp. 139-160. doi: 10.1007/s00607-018-0663-0

Marques, P., Dabbabi, Z., Mironescu, M-M. , Thonnard, O., Bessani, A., Buontempo, F. & Gashi, I. ORCID: 0000-0002-8017-3184view all authors (2018). Detecting Malicious Web Scraping Activity: a Study with Diverse Detectors. Paper presented at the The 23rd IEEE Pacific Rim International Symposium on Dependable Computing (PRDC 2018), 4-7 Dec 2018, Taipei, Taiwan.

Gashi, I. ORCID: 0000-0002-8017-3184 & Ul Asad, H. (2018). Diversity in Open Source Intrusion Detection Systems. In: Computer Safety, Reliability, and Security. SAFECOMP 2018. SAFECOMP 2018, 18-21 Sep 2018, Västerås, Sweden.

Algaith, A., Nunes, P., Fonseca, J. , Gashi, I. ORCID: 0000-0002-8017-3184 & Viera, M.view all authors (2018). Finding SQL Injection and Cross Site Scripting Vulnerabilities with Diverse Static Analysis Tools. In: 2018 14th European Dependable Computing Conference (EDCC). 14th European Dependable Computing Conference, 10-14 Sep 2018, Iasi, Romania. doi: 10.1109/EDCC.2018.00020

Marques, P., Dabbabi, Z., Mironesc, M-M , Thonnard, O., Bessan, A., Buontempo, F. & Gashi, I. ORCID: 0000-0002-8017-3184view all authors (2018). Using Diverse Detectors for Detecting Malicious Web Scraping Activity. 2018 48th Annual IEEE/IFIP International Conference on Dependable Systems and Networks Workshops (DSN-W), pp. 67-68. doi: 10.1109/DSN-W.2018.00033

Algaith, A., Elia, I. A., Gashi, I. & Vieira, M. R.view all authors (2017). Diversity with Intrusion Detection Systems: An Empirical Study. In: 2017 IEEE 16th International Symposium on Network Computing and Applications (NCA). The 16th IEEE International Symposium on Network Computing and Applications, 30 Oct - 01 Nov 2017, Boston, USA. doi: 10.1109/NCA.2017.8171327

Movahedi, Y., Cukier, M., Andongabo, A. & Gashi, I.view all authors (2017). Cluster-based Vulnerability Assessment Applied to Operating Systems. In: 2017 13th European Dependable Computing Conference (EDCC). 13th European Dependable Computing Conference, 4-8 Sep 2017, Geneva, Switzerland.

Shahegh, P., Dietz, T., Cukier, M. , Algaith, A., Brozik, A. & Gashi, I.view all authors (2017). AntiVirus and Malware Analysis Tool. In: 2017 IEEE 16th International Symposium on Network Computing and Applications (NCA). 16th IEEE International Symposium on Network Computing and Applications, 30 Oct - 1 Nov 2017, Boston, USA.

Andongabo, A. & Gashi, I. (2017). vepRisk - A Web Based Analysis Tool for Public Security Data. 2017 13th European Dependable Computing Conference (EDCC), pp. 135-138. doi: 10.1109/EDCC.2017.30

Gashi, I., Povyakalo, A. A. & Strigini, L. (2016). Diversity, Safety and Security in Embedded Systems: modelling adversary effort and supply chain risks. In: 2016 12th European Dependable Computing Conference (EDCC). Proceedings of the 12th European Dependable Computing Conference, 5th - 9th September 2016, Gothenburg, Sweden. doi: 10.1109/EDCC.2016.27

Algaith, A., Gashi, I., Sobesto, B. , Cukier, M., Haxhijaha, S. & Bajrami, G.view all authors (2016). Comparing Detection Capabilities of AntiVirus Products: An Empirical Study with Different Versions of Products from the Same Vendors. In: 2016 46th Annual IEEE/IFIP International Conference on Dependable Systems and Networks Workshop. (pp. 48-53). IEEE. doi: 10.1109/DSN-W.2016.45

Gashi, I., Sobesto, B., Mason, S. , Stankovic, V. ORCID: 0000-0002-8740-6526 & Cukier, M.view all authors (2014). A Study of the Relationship Between Antivirus Regressions and Label Changes. 2013 IEEE 24th International Symposium on Software Reliability Engineering (ISSRE), pp. 441-450. doi: 10.1109/ISSRE.2013.6698897

Gashi, I., Povyakalo, A. A., Strigini, L. , Matschnig, M, Hinterstoisser, T & Fischer, Bview all authors (2014). Diversity for Safety and Security in Embedded Systems. Paper presented at the IEEE International Conference on Dependable Systems and Networks, 23-06-2014 - 26-06-2014, Atlanta, GA, USA.

Gashi, I., Mason, S., Lugini, L. , Marasco, E. & Cukic, B.view all authors (2014). Interoperability between Fingerprint Biometric Systems: An Empirical Study. Paper presented at the IEEE International Conference on Dependable Systems and Networks, 23rd - 26th June 2014, Atlanta, GA, USA.

Turkay, C., Mason, S., Gashi, I. & Cukic, B.view all authors (2014). Supporting Decision-making for Biometric System Deployment through Visual Analysis. Paper presented at the Reliability and Security Data Analysis (RSDA) Workshop, International Symposium on Software Reliability Engineering, 03-11-2014-06-11-2014, Naples, Italy.

Garcia, M., Bessani, A. N., Gashi, I. , Neves, N. & Obelheiro, R. R.view all authors (2013). Analysis of operating system diversity for intrusion tolerance. Software: Practice and Experience, 44(6), pp. 735-770. doi: 10.1002/spe.2180

Cukier, M., Gashi, I., Sobesto, B. & Stankovic, V. ORCID: 0000-0002-8740-6526view all authors (2013). Does Malware Detection Improve With Diverse AntiVirus Products? An Empirical Study. Paper presented at the 32nd International Conference on Computer Safety, Reliability and Security (SAFECOMP), 24- - 27 September 2013, Toulouse, France.

Lugini, L., Marasco, E., Cukic, B. & Gashi, I.view all authors (2013). Interoperability in Fingerprint Recognition: A Large-Scale Empirical Study. In: Proceedings of the RSDA Workshop, the 43rd Annual IEEE/IFIP International Conference on Dependable Systems and Networks (DSN 2013). 43rd Annual IEEE/IFIP International Conference on Dependable Systems and Networks (DSN 2013), 24 - 27 June 2013, Budapest, Hungary.

Bishop, P. G., Bloomfield, R. E., Gashi, I. & Stankovic, V.view all authors (2012). Diverse protection systems for improving security: a study with AntiVirus engines. London, UK: City University London.

Gashi, I., Stankovic, V. ORCID: 0000-0002-8740-6526, Cukier, M. & Sobesto, B.view all authors (2012). Diversity with AntiVirus products: Additional empirical studies. Paper presented at the 42nd IEEE International Conference on Dependable Systems and Networks (DSN) 2012, 25 - 28 June 2012, Boston, USA.

Gashi, I., Bloomfield, R., Bloomfield, R. E. & Stroud, R.view all authors (2012). How secure is ERTMS?. Paper presented at the Workshop on Dependable and Secure Computing for Large-scale Complex Critical Infrastructures (DESEC4LCCI), 25 September 2012, Herrenkrug, Germany.

Stroud, R. & Gashi, I. (2012). Methodology for a security audit of ERTMS. Paper presented at the 42nd IEEE International Conference on Dependable Systems and Networks (DSN) 2012, 25 - 28 June 2012, Boston, USA.

Stankovic, V. ORCID: 0000-0002-8740-6526, Bloomfield, R. E., Bishop, P. G. & Gashi, I.view all authors (2011). Diversity for Security: a Study with Off-The-Shelf AntiVirus Engines. Paper presented at the 21st International Symposium on Software Reliability Engineering (ISSRE 2011), Hiroshima, Japan.

Garcia, M., Bessani, A. N., Gashi, I. , Neves, N. & Obelheiro, R. R.view all authors (2011). OS diversity for intrusion tolerance: Myth or reality? In: Proceedings of the International Conference on Dependable Systems and Networks. 41st International Conference on Dependable Systems & Networks (DSN), 27 - 30 Jun 2011, Hong Kong.

Stankovic, V. ORCID: 0000-0002-8740-6526, Bessani, A. N., Daidone, A. , Gashi, I., Obelheiro, R. R. & Sousa, P.view all authors (2009). Enhancing Fault / Intrusion Tolerance through Design and Configuration Diversity. In: Proc. of the 3rd Workshop on Recent Advances on Intrusion-Tolerant Systems (WRAITS 2009). 3rd Workshop on Recent Advances on Intrusion-Tolerant Systems (WRAITS 2009), Jun 2009, Estoril, Lisbon, Portugal.

Gashi, I., Stankovic, V. ORCID: 0000-0002-8740-6526, Leita, C. & Thonnard, O.view all authors (2009). An Experimental Study of Diversity with Off-The-Shelf AntiVirus Engines. In: 2009 8TH IEEE INTERNATIONAL SYMPOSIUM ON NETWORK COMPUTING AND APPLICATIONS. Eighth IEEE International Symposium on Network Computing and Applications, 9 - 11 July 2009, Cambridge, MA, USA.

Gashi, I., Popov, P. T. & Stankovic, V. ORCID: 0000-0002-8740-6526 (2009). Uncertainty explicit assessment of off-the-shelf software: A Bayesian approach. Information and Software Technology, 51(2), pp. 497-511. doi: 10.1016/j.infsof.2008.06.003

Bloomfield, R. E., Gashi, I., Povyakalo, A. A. & Stankovic, V. ORCID: 0000-0002-8740-6526view all authors (2008). Comparison of Empirical Data from Two Honeynets and a Distributed Honeypot Network. In: ISSRE. 19th International Symposium on Software Reliability Engineering, 2008, 10 - 14 Nov 2008, Seattle, USA. doi: 10.1109/ISSRE.2008.62

Gashi, I. & Bloomfield, R. E. (2008). Evaluating the resilience and security of boundaryless, evolving socio-technical Systems of Systems. Centre for Software Reliability, City University London.

Bessani, A. N., Reiser, H. P., Sousa, P. , Gashi, I., Stankovic, V. ORCID: 0000-0002-8740-6526, Distler, T., Kapitza, R., Daidone, A. & Obelheiro, R. R.view all authors (2008). FOREVER: Fault/intrusiOn REmoVal through Evolution & Recovery. In: Douglis, F (Ed.), Middleware (Companion). ACM/IFIP/USENIX Middleware '08 Conference doi: 10.1145/1462735.1462763

Gashi, I., Popov, P. T. & Strigini, L. (2007). Fault tolerance via diversity for off-the-shelf products: A study with SQL database servers. IEEE Transactions on Dependable and Secure Computing, 4(4), pp. 280-294. doi: 10.1109/tdsc.2007.70208

Bishop, P. G., Gashi, I., Littlewood, B. & Wright, D.view all authors (2007). Reliability modeling of a 1-out-of-2 system: Research with diverse Off-the-shelf SQL database servers. In: OConner, L (Ed.), ISSRE 2007: 18TH IEEE INTERNATIONAL SYMPOSIUM ON SOFTWARE RELIABILITY ENGINEERING, PROCEEDINGS. The 18th IEEE International Symposium on Software Reliability (ISSRE '07), 5 - 9 Nov 2007, Trollhättan, Sweden.

Gashi, I. (2007). Software dependability with off-the-shelf components. (Unpublished Doctoral thesis, City, University of London)

Gashi, I. & Popov, P. T. (2007). Uncertainty explicit assessment of off-the-shelf software: Selection of an optimal diverse pair. In: ICCBSS 2007: SIXTH INTERNATIONAL IEEE CONFERENCE ON COMMERCIAL-OFF-THE-SHELF (COTS)-BASED SOFTWARE SYSTEMS, PROCEEDINGS. Sixth International IEEE Conference on Commercial-off-the-Shelf (COTS)-Based Software Systems, 26 Feb - 2 Mar 2007, Banff, Canada.

Gashi, I. & Popov, P. T. (2006). Rephrasing rules for off-the-shelf SQL database servers. In: Ceballos, S (Ed.), EDCC 2006: Sixth European Dependable Computing Conference, Proceedings. Sixth European Dependable Computing Conference, 2006 (EDCC '06), 18 - 20 Oct 2006, Coimbra, Portugal.

Gashi, I., Popov, P. T. & Strigini, L. (2004). Fault diversity among off-the-shelf SQL database servers. In: 2004 INTERNATIONAL CONFERENCE ON DEPENDABLE SYSTEMS AND NETWORKS, PROCEEDINGS. International Conference on Dependable Systems and Networks, 28 Jun - 1 Jul 2004

Gashi, I., Popov, P. T., Stankovic, V. ORCID: 0000-0002-8740-6526 & Strigini, L.view all authors (2004). On designing dependable services with diverse off-the-shelf SQL servers. Lecture Notes in Computer Science, 3069, pp. 191-214. doi: 10.1007/978-3-540-25939-8_9