In today’s edge computing and cloud data centres, attack surfaces have significantly increased. Hacking has become industrialized, and most security control implementations are not coherent or consistent. The foundation of any edge computing or data centre security strategy should be securing the platform on which data and workloads will be executed and accessed. The physical platform represents the first layer for any layered security approach and provides the initial protections to help ensure that higher-layer security controls can be trusted.

I am conducting novel research on Embedded Platform Security architectures to realise a layered defence-in-depth security model. This requires different hardware/software defences to establish and maintain fundamental principles of data security (confidentiality, integrity, and availability) while data-at-rest, data-in-motion and data-in-use. Part of my research directions is focused on runtime platform security. Where anomalous system behaviours are not only detected at runtime but also pro-actively mitigated by deploying proactive countermeasures.