Navigation

Researchers at UCD

researcher

Pavel Gladyshev

College Lecturer

School of Computer Science & Informatics
E3.13
UCD Science East, Level 3
University College Dublin
Belfield, Dublin 4, Ireland
http://dfire.ucd.ie/

Tel: +353 1 716 2610
Email: pavel.gladyshev@ucd.ie

Biography

Dr. Pavel Gladyshev is a lecturer at the University College Dublin (Ireland), where he established two highly successful MSc programmes in the field of digital forensics: MSc in Forensic Computing and Cybercrime Investigation (for Law Enforcement only) and MSc in Digital Investigation and Forensic Computing (for private sector). These MSc programmes were among the first international distance-learning programmes in digital forensics. Dr. Gladyshev has been working with Law Enforcement since 1998 when he oversaw the creation of the first Irish training course in cybercrime investigation for the Irish national police service.

Dr. Gladyshev holds a PhD in the field of Digital Forensics and is the founder of the state machine theory of digital forensic analysis. Prior to joining the university as a lecturer he worked as an IT forensics analyst at the Dublin practice of Ernst & Young and he is still actively working as a consultant in criminal and civil investigations. 

Dr. Gladyshev is leading Digital Forensics Investigation Research Laboratory (DigitalFIRE, http://digitalfire.ucd.ie/) that is focusing on the development of new investigative technology and is conducting several research projects on analysis of big data in digital forensics, automation of complex forensic inferences and human-machine interaction in the context of digital forensics and cybercrime investingation.

In extra curricular capacity Dr. Gladyshev served as invited expert to INTERPOL Working Patry on IT Crime - Europe and INTERPOL steering committee on IT Crime. He is a member of the board of directors of DFRWS.org and a member of steering committee of ICST International Conference on Digital Forensics and Cyber crime (ICDF2C). Dr. Gladyshev chaired a number of international conferences in digital forensics including IDCF2C 2011, ICDF2C 2013, DFRWS EU 2015. He is  a member of editorial boards of several journals including Elsevier's Journal of Digital Invesitgation. In 2012-2014, Dr. Gladyshev served as the Chair of the Standards Committee of the Consortium of Digital Forensic Specialists (CDFS). 

Professional

 

Associations

Association: Consortium of Digital Forensic Secialists, Function/Role: Chairperson of the Standards Committee
Association: Digital Forensics Research Workshop, Function/Role: Member of the Board of Directors
Association: Association for Computing Machinery, Function/Role: Member

Patents

Patent WO Patent 2,010,081,742 : METHOD AND SYSTEM FOR ANALYSING MOST RECENTLY USED (MRU) REGISTRY KEYS
   

Conference Contributions

Pavel Gladyshev (2010) An International ICST Research Conference on Digital Forensics and Investigation of Cyber Crimes. [Conference Organising Committee Chairperson], 3rd International ICST Conference on Digital Forensics and Cyber Crime (ICDF2C 2011), Dublin , 31-OCT-10 - 31-OCT-11.
Doherty, C. and Gillen, P. and Gladyshev, P.; (2010) Wi-Fi and On-line Banking Attacks; Trading your Data on the Internet. [Other], Fraud Liaison Group Conference, Edinburgh , 03-NOV-10 - 05-FEB-11.
Shinn-Shyan Wu. Chen-Ching Liu, Ahmed F.Shosha. Pavel Gladyshev (2011) Cyber Security and Information Protection in a Smart Grid Environment. [Unrefereed Article], 18th IFAC World Congress, Milan, Italy , 28-AUG-11 - 01-SEP-11.
Pavel Gladyshev (2012) Intenrational ICST Research Conference on Digital Forensics and Cyber Crime. [Conference Organising Committee Chairperson], 5th International ICST Conference on Digital Forensics and Cyber Crime (ICDF2C 2013), Moscow, Russia , 31-OCT-12 - 31-OCT-12.
Pavel Gladyshev (2014) Top International Research Conference in the Field of Digital Forensics. [Conference Organising Committee Chairperson], 2nd Digital Forensics Research Workshop Conference - Europe (DFRWS EU 2015), Dublin, Ireland , 01-MAY-14 - 30-APR-15.

Committees

Committee : Digital Forensics Research Workshop
Committee : Standards Committee of Consortium of Digital Forensic Specialists
Committee : INTERPOL Steering Committee on IT Crime
Committee : INTERPOL Working Party on IT Crime (Europe)
Committee : Second International Conference on Forensic Applications and Techniques in Telecommunications, Information and Multimedia (eForensics 09)
Committee : The 2008 International Workshop on Forensics for Future Generation Communication environments (F2GC-08)
       

Outreach Activities

Organised an Introductory class in digital electronics to the school children from Ballyfermot attending Future Scientists workshop in UCD on March 26, 2014:
 
http://www.ucd.ie/science/news/14mar/260314_future_scientist.html

Journals Edited

Digital Investigation Journal: Editorial Board member.
International Journal Of Digital Evidence: Editorial Board member.
International Journal Of Digital Crime And Forensics: Reviewer.
 

Publications

   

Edited Books

Pavel Gladyshev, Marcus Rogers (Ed.). (2012) Digital Forensics and Cyber Crime: Third International ICST Conference, ICDF2C 2011, Dublin, Ireland, October 26-28, 2011, Revised Selected Papers. Berlin: Springer. [Details]

Peer Reviewed Journals

Lee Tobin, Ahmed Shosha, Pavel Gladyshev (2014) 'Reverse engineering a CCTV system, a case study'. Digital Investigation Journal, 11 (3):179-186. [Details]
Joshua Isaac James, Pavel Gladyshev (2013) 'A survey of digital forensic investigator decision processes and measurement of decisions based on enhanced preview'. Digital Investigation Journal, 10 (2):148-157. [Details]
McGrath, N. and Gladyshev, P. and Carthy J.; (2010) 'Cryptopometry as a Methodology for Investigating Encrypted Material'. International Journal of Digital Crime and Forensics, 2 (1):1-20. [Details]
Zhu, YD,James, J,Gladyshev, P; (2009) 'A comparative methodology for the reconstruction of digital events using windows restore points'. Digital Investigation, 6 :8-15. [DOI] [Details]
Zhu, Y. and Gladyshev P. and James J.; (2009) 'Using shellbag information to reconstruct user activities'. Digital Investigation, 6 (Supplement 1). [Details]
Gladyshev P. and Enbacka A.; (2007) 'Rigorous Development of Automated Inconsistency Checks for Digital Evidence Using the B Method'. International Journal of Digital Evidence, 6 (2). Available Online [Details]
Gladyshev P. and Patel A.; (2005) 'Formalising Event Time Bounding in Digital Investigations'. International Journal of Digital Evidence, 4 (2). Available Online [Details]
Gadyshev P.; (2005) 'Finite State Machine Analysis of a Blackmail Investigation'. International Journal of Digital Evidence, 4 (1). Available Online [Details]
Gladyshev P. and Patel A.; (2004) 'Finite state machine approach to digital event reconstruction'. Digital Investigation Journal, 1 (2):130-149. [DOI] [Details]
Gladychev P. and Patel A. and O'Mahony D.; (1998) 'Cracking RC5 with Java applets'. Concurrency: Practice and Experience, 10 (11-13):1165-1171. [DOI] [Details]

Other Journals

Joshua Isaac James, Pavel Gladyshev (2014) 'Automated inference of past action instances in digital investigations' International Journal of Information Security :1-13. [Details]
Gladyshev P.; (2009) 'Fighting Cybercrime with Science' Public Service Review: European Union (17) . [Details]

Conference Publications

Ahmed F Shosha, Lee Tobin, Pavel Gladyshev (2013) Digital Forensic Reconstruction of a Program Action Security and Privacy Workshops (SPW), Part of 2013 IEEE Security and Privacy Symposium , pp.119-122 [Details]
Daan de Graaf, Ahmed F Shosha, Pavel Gladyshev (2012) BREDOLAB: shopping in the cybercrime underworld Fourth International ICST Conference on Digital Forensics and Computer Crime [Details]
Ahmed F Shosha, Joshua I James, Pavel Gladyshev (2011) A Novel Methodology for Malware Intrusion Attack Path Reconstruction Third International ICST Conference on Digital Forensics and Cyber Crime [Details]
Ahmed F Shosha, Pavel Gladyshev, Shinn-Shyan Wu, Chen-Ching Liu (2011) Detecting cyber intrusions in SCADA networks using multi-agent collaboration Intelligent System Application to Power Systems (ISAP), 2011 16th International Conference on [Details]
Ahmed F Shosha, Joshua I James, Alan Hannaway, Chen-Ching Liu, Pavel Gladyshev (2012) Towards Automated Malware Behavioral Analysis and Profiling for Digital Forensic Investigation Purposes Fourth International ICST Conference on Digital Forensics and Cyber Crime [Details]
Zhu, YD,Gladyshev, P,James, J (2009) DIGITAL INVESTIGATION Using shellbag information to reconstruct user activities , pp.69-77 [DOI] [Details]
Nial McGrath, Pavel Gladyshev (2012) Investigating File Encrypted Material Using NTFS $ logfile Fourth International ICST Conference on Digital Forensics and Cyber Crime , pp.183-203 [Details]
James, J. and Gladyshev, P. and Zhu, Y.; (2010) Signature Based Detection of User Events for Post-Mortem Forensic Analysis Second International Conference on Digital Forensics and Cyber Crime [Details]
Zhu, Y. and James, J. and Gladyshev, P.; (2010) Consistency Study of the Windows Registry Sixth Annual IFIP WG 11.9 International Conference on Digital Forensics [Details]
Gladyshev, P. and Almansoori, A.; (2010) Reliable Acquisition of RAM dumps from Intel-based Apple Mac computers over FireWire Second International Conference on Digital Forensics and Cyber Crime [Details]
Zhu, Y. and Gladyshev P. and James J.; (2009) Using shellbag information to reconstruct user activities Digital Forensics Research Workshop 2009 [Details]
James, J. and Gladyshev, P. and Abdullah, M.T. and Zhu, Y.; (2009) Analysis of Evidence Using Formal Event Reconstruction First International Conference on Digital Forensics & Cyber Crime [Details]
McGrath, N., Gladyshev, P., Kechadi M-T., and Carthy, J.; (2009) Investigating Encrypted Material Forensics in Telecommunications, Information and Multimedia > Second International Conference, e-Forensics 2009, Adelaide, Australia , 19-JAN-09 - 21-JAN-09 [Details]
Toolan, F., Gladyshev, P. and Carthy, J.; (2009) An Architecture for a Truly Online Classroom Second Irish Conference on Engaging Pedagogies, Dublin, Ireland [Details]
Zhu, Y. and Gladyshev, P. and James, J.; (2009) Identifying Newly Updated Data Values of MRU Keys Between Registry Snapshots Fifth Annual IFIP WG 11.9 International Conference on Digital Forensics [Details]
Gillen P. and Gladyshev P.; (2006) Criminal Misuses of the Voice over Internet Protocol Technology E-Crime and Computer Evidence 2006 conference Nottingham, UK, [Details]
Patel A. and Gladychev P. and Rappold H. ; (2001) Formal Methods and their Use in the Software Development Lifecycle of a Secure Protocol World Multiconference on Systems, Cybernetics and Informatics SCI2001 Orlando, Florida, U.S.A, [Details]
Bolognesi C. and Gladychev P. and Patel A. ; (2001) Authentication Framework for Java Card for E-business World Multiconference on Systems, Cybernetics and Informatics SCI2001 Orlando, Florida, U.S.A, [Details]
Gannon S. and Gladyshev P. and Patel A.; (2001) An Extendible Search Utility for Forensic Computing World Multiconference on Systems, Cybernetics and Informatics SCI2001 Orlando, Florida, U.S.A, [Details]
Patel A. and Gladyshev P.; (2000) Trusted Microprocessor: a New Security Mechanism for Open Distributed Systems World Multiconference on Systems, Cybernetics and Informatics SCI2000 Orlando, Florida, U.S.A, [Details]
Gladychev p. and Patel A.; (1999) A World Wide Web framework for parallel computing with Java applets the World Multiconference on Systems, Cybernetics and Informatics, SCI/ISAS'99 Orlando, Florida, U.S.A, [Details]
Khoussainov R. and Bessonov M. and Gladychev P. and Patel A. ; (1999) On improving Ethernet LAN security World Multiconference on Systems, Cybernetics and Informatics, SCI/ISAS'99  [Details]
Patel A. and Gladychev P. and Katsikas S. and Gritzalis S. ; (1999) Towards a Cross-Domain Trusted Third Party Infrastructure World Multiconference on Systems, Cybernetics and Informatics, SCI/ISAS'99 Orlando, Florida, U.S.A, [Details]
Lekkas D. and Katsikas S. and Spinellis D. and Gladychev P. and Patel A. ; (1999) User Requirements of Trusted Third Parties in Europe the Joint IFIP WG 8.5 and WG 9.6 Working Conference on User Identification & Privacy Protection Stockholm, Sweden, [Details]
Patel A. and Gladychev P. and Katsikas S. and Gritzalis S. and Lekkas D. ; (1999) Support for Legal Framework and Anonymity in the KEYSTONE Public Key Infrastructure Architecture Joint IFIP WG 8.5 and WG 9.6 Working Conference on User Identification & Privacy Protection Stockholm, Sweden, [Details]
Gladyshev S. and Chugajev V. and Gladyshev P. ; (1996) Instability and Chaos in Feedback System with PWM and Natural Sampling 4th Annual Workshop on Non-linear Dynamics of Electronic Systems NDES-96 Seville, Spain, [Details]

Published Reports

Glenn S. Dardick, Barbara Endicott-Popovsky, Pavel Gladyshev, Thomas Kemmerich, and Carsten Rudolph (2014) Digital Evidence and Forensic Readiness. Schloss Dagstuhl ¿ Leibniz-Zentrum für Informatik GmbH, Dagstuhl Publishing, Saarbrücken/Wadern, Germany. [Details]
O'Connor O. and Gladyshev P.; (2007) ISSA/UCD Irish Cybercrime Survey 2006: The Impact of Cybercrime on Irish Organisations. Univerisyt College Dublin, Dublin. Available Online [Details]
Wilberg L. and Gillen P. and Froyn K. and Humair C. and Flaherty J. and Hutchings T. and Gladyshev P. and Goodman M. ; (2006) Voice Over Internet Protocol (VoIP). INTERPOL, Lyon. [Details]
       

Dissertations/Theses

Gladyshev P.; (2004) Formalising Event Reconstruction in Digital Investigations. University College Dublin: Dissertations/Theses [Details]
Gadychev P.; (1999) The Development of an Extensible Architecture for a Secure Trusted Third Party Server. University College Dublin: Dissertations/Theses [Details]
Gladychev P.; (1997) Biblioteka dlja parallel'nyh vychislenij na osnove Java Applets (in Russian). Chelyabinsk State Technical University (Chelybinsk, Russia): Dissertations/Theses [Details]
             

Invited Lectures

Gladyshev P. and Gallagher E.; (1999) Computers and Organised Crime. at the FALCONE Conference on Identifying, Tracing and Seizing the Proceeds of Criminal Activity: Invited Lectures [Details]
Gladyshev P.; (1998) Tracing Internet Attacks. Second DIBS User Group Conference, December 1998, Dublin, Ireland: Invited Lectures [Details]
                     

Technical Publication

Gladyshev P.; (2006) Adding real time into state machine analysis of digital evidence. Technical Publication Available Online [Details]
                                     

Research

Research Interests

Digital Forensics, Cybercrime Investigation, Information Systems Security

Research Projects

Sponsor : Enterprise Ireland (EI)
Title : European Commission Buildings in Brussels
Start Date / End Date : 12-JUN-09 / 13-JUN-09
Sponsor : Science Foundation Ireland (SFI)
Title : Research into real-world digital forensic practices for the development of highly automated tools to increase speed and efficiency of forensic investigations
Start Date / End Date : 01-NOV-09 / 31-DEC-10
Sponsor : Enterprise Ireland (EI)
Title : InCUs: Automated Investigation of Computer Usage
Start Date / End Date : 01-JUL-10 / 31-DEC-11
Sponsor : Science Foundation Ireland (SFI)
Title : ICST Conference on Digital Forensics and Cyber Crime 2011 (ICDF2C 2011)
Start Date / End Date : 01-AUG-11 / 31-JAN-12
Sponsor : Science Foundation Ireland (SFI)
Title : LERO ManSec Project
Start Date / End Date : 01-NOV-11 / 01-NOV-15
Sponsor : Enterprise Ireland (EI)
Title : FP7 Proposal Preparation Support for Co-ordinator
Start Date / End Date : 28-JUN-12 / 30-NOV-12
Sponsor : Coordenacao de Aperfeicoamento de Pessoal de Nivel Superior (CAPES)
Title : Application of Machine Vision Techniques in Digital Forensics (PhD Studentship)
Start Date / End Date : 01-SEP-13 / 31-AUG-14
Sponsor : Enterprise Ireland (EI)
Title : Security
Start Date / End Date : 25-SEP-13 / 24-MAR-14
Sponsor : Irish Research Council (IRC)
Title : European Workshop on Data Analytics for Information Security and Forensics (E-DAIS)
Start Date / End Date : 13-MAR-14 / 13-DEC-14
Sponsor : Enterprise Ireland (EI)
Title : DARE: high density hard disk data recovery using adaptive spinstand microscopy
Start Date / End Date : 01-DEC-09 / 30-NOV-10
Sponsor : Science Foundation Ireland (SFI)
Title : Automatic event reconstruction for computer forensics and Intrusion Analysis (AER)
Start Date / End Date : 01-SEP-07 / 31-AUG-10

Recent Postgraduates

Current Postgraduate Students

Seang Chean Chiw, Doctor of Philosophy (PhD)   -   Thesis Supervisor
Lee Tobin, Doctor of Philosophy (PhD)   -   Thesis Supervisor
Paulo de Souza, Doctor of Philosophy (PhD)   -   Thesis Supervisor

Teaching

 

Modules Coordinated

201400   COMP40780     Computer Science: Digital Investigation Project
201400   COMP40750     Computer Science: Corporate Investigations
201400   COMP40800     Computer Science: Computer Forensics Foundations
201400   COMP40760     Computer Science: Investigative Techniques
201400   COMP40790     Computer Science: Application Forensics
201400   COMP40770     Computer Science: Information Security
       

Collaborators

Internal Collaborators

Prof. Joao Silva as member of UCD, CASL

External Collaborators

Mr. Andreas Enbacka from Abi Academi, Turku, Finland

Prof. Stig F. Mjolsnes, Norwegian University for Science and Technology, Norway

Prof. Eugene Spafford, CERIAS, Purdue University, USA