Pedro Miguel dos Santos Alves Madeira Adão

Pedro Adão

Academic position:	Associate Professor
Joining date:	31-12-2006
Roles in IT:	Researcher
Thematic Line:	Basic Sciences and Enabling Technologies
Group:	Security and Quantum Information - Lx

Email: Send Email
Address: IT – Lisboa
Instituto Superior Técnico - Torre Norte - Piso 10
Av. Rovisco Pais, 1
1049 - 001 Lisboa
Tel: +351 21 841 84 54
Fax: +351 21 841 84 72

Alternative Personal Web Page

http://www.cienciavitae.pt/D71A-B975-17C7

https://www.orcid.org/0000-0002-4049-1954

RESEARCHER ID SCOPUS SCHOLAR

20-09-2022

Portuguese team coached by Pedro Adão at the European Cybersecurity Challenge

Seven students joined the journey of the highly competitive European Cybersecurity Challenge, in Vienna, Austria.

16-03-2022

Pedro Adão interviewed on cybersecurity and hacking

Pedro Adão interviewed by SIC Notícias on cybersecurity and hacking

Scientific Achievements

Degrees

PhD, Instituto Superior Técnico, 12-12-2006
Licenciatura, Instituto Superior Técnico, 31-07-2002

Affiliations

Instituto Superior Técnico, 01-07-2020, Associate Professor

Expertise Topics

Software Security
Specification and verification of cryptographic protocols
Mathematical Foundations of Cryptography
Composition of Cryptographic Systems

Academic Activities

6Lecture courses

Software Quality, Instituto Superior Técnico, MsC in Information Systems and Computer Engineering

Computational Models in Security, Instituto Superior Técnico, PhD Program in Information Security

Security Engineering, Instituto Superior Técnico, PhD Program in Information Security

Introduction to Algorithms and Data Structures, Instituto Superior Técnico, Bologna Degree in Information Systems and Computer Engineering - LEIC
Software Specification, Instituto Superior Técnico, Bologna Master Degree in Information Systems and Computer Engineering - MEIC

Software Security, Instituto Superior Técnico, MSc in Computer Science and Engineering

5Supervision of PhD theses

As Supervisor

Analysis of Web Vulnerabilities, PhD Student, Nuno Miguel da Silva Sabino, Expected conclusion 08-2025

As Co-supervisor

Platform-independent Summaries for Efficient Symbolic Execution, PhD Student, Frederico Duarte Ramos, Expected conclusion 09-2026
Analysis of Consensus Protocols, PhD Student, Afonso Tinoco de Faria Cecílio dos Santos, Expected conclusion 12-2025
A Comprehensive Approach to Software Security: Fuzzing and Fault Localization Integration, PhD Student, Juvenal Andrade de Carvalho, Expected conclusion 09-2025
End-to-end Approach for Automated Vulnerability Identification and Patching, PhD Student, Eduard Pinconschi, Expected conclusion 08-2025

35Supervision of MSc theses

As Supervisor

Automatic Exploit Generation: A modular approach for vulnerability validation, MSc Student, Alexandru Marian Pena, Concluded 11-2022
Automatic Patch Generation: Using Safety Properties to Extract Crash Constraints, MSc Student, Duarte Manuel Coelho dos Santos, Concluded 11-2022
Análise ao Quadro Nacional de Referência de Cibersegurança - Implementação no QNRCS em PMEs, MSc Student, João Halm Gomes da Costa, Concluded 12-2021
HeapDUO: Finding Heap Vulnerabilities in Binary Code, MSc Student, Jorge Cardoso Martins, Concluded 12-2021
Toward Tool-Independent Summaries for Symbolic Execution, MSc Student, Frederico Duarte Ramos, Concluded 11-2021
XS-Leaks protections deployment and Development of a Configurable Fetchmetadata Middleware, MSc Student, José Armando Marques da Silva, Concluded 11-2021
MockingPot: Generate and Integrate Honeypots Into Existing Web Applications, MSc Student, Pedro Alexandre Paixão Alves, Concluded 11-2021
SpecTacle - A platform agnostic analysis tool for detecting Spectre-PHT gadgets in binaries, MSc Student, Pedro Miguel Sousa Bernardo, Concluded 11-2021
Structured Behavior Analysis on Encrypted Traffic: Understanding and Detecting Network Attacks, MSc Student, João Pedro Pires Carrapiço de Almeida Meira, Concluded 01-2021
XS-Leaks Crutch: Assisted Detection & Exploitation of Cross-Site Leaks, MSc Student, Manuel Vítor Dias de Sousa, Concluded 01-2021
Análise Estática de Smart Contracts, MSc Student, Nuno Manuel Olival Veloso, Concluded 01-2021
Griffin: specification-based RASP approach against SQL injections in MySQL, MSc Student, Nuno Miguel Gião de Alcácer Bombico, Concluded 01-2021
Addressing Disinformation With Open-Ended Internet Voting Using Ring Signatures, MSc Student, Pedro Miguel Forjaz de Sampaio Narra de Figueiredo, Concluded 01-2021
Formal Analysis of Ethereum Virtual Machine Bytecode Patterns, MSc Student, Bernardo Gastão Varanda da Silva Prates, Concluded 12-2019
Model-checking Ethereum smart contracts written in Vyper, MSc Student, Francisco Moreira da Silva Rogado Domingues, Concluded 12-2019
Formal verification of Ethereum smart contracts using Isabelle/HOL, MSc Student, Maria Saraiva de Campos Mendes Ribeiro, Concluded 12-2019
Privacy Guarantees in Geolocation Services, MSc Student, Marco da Silva Teles Coelho, Concluded 11-2019
Automatic Vulnerability Detection: Using Compressed Execution Traces to Guide Symbolic Execution, MSc Student, Nuno Miguel da Silva Sabino, Concluded 11-2019
SORA - Finding Workflow Violation Attacks in REST APIs, MSc Student, Rodrigo Miguel Corredoura Janota Rato, Concluded 11-2019
Keyword Based Framework for DLNA Acceptance Testing, MSc Student, Bruno Filipe Guia de Sousa, Concluded 11-2015
Automation of Secrecy Proofs for Security of Protocols, MSc Student, Miguel Abreu Malafaia Mendes Belo, Concluded 11-2015
JMLCUTE: Automated JML-Based Unit Test Case Generation, MSc Student, Rafael Farias Baltazar, Concluded 11-2015
CloudBox: Private, Reliable and Distributed Storage, MSc Student, Rafael Vassalo Cortês, Concluded 11-2015
Security and Privacy in Identification and Micro-Payment Systems, MSc Student, Manuel Nunes Farinha Correia Rego, Concluded 11-2012
Integration and Support for Automatic Generation of Test Cases using AnyTestes Framework, MSc Student, Maria Ana Casal Cunha, Concluded 11-2012
Electronic Voting, MSc Student, João Miguel Barros Silva Mendes, Concluded 06-2011
Projecto de implementação de Testes Automatizados para a Aplicacão Web ISUPAC3 no ISUTC, MSc Student, Elton Pedro Sixpence, Concluded 12-2010

As Co-supervisor

An Efficient Memory Data Structure for Wasm Symbolic Execution, MSc Student, André Alexandre Inácio Mendes, Concluded 11-2023
Memory Models for Symbolic Execution of JavaScript Applications, MSc Student, Manuel Marques Costa, Concluded 11-2023
Specification-driven Synthesis of Summaries for Symbolic Execution, MSc Student, Rafael Henriques dos Santos Gonçalves, Concluded 11-2023
Classic Symbolic Execution of WebAssembly, MSc Student, João Pedro Lopes Borges, Concluded 06-2023
Towards Automatic Detection of Exploitable Vulnerabilities in WebAssembly Modules of Real-World Websites, MSc Student, Daniel Maximiano Matos, Concluded 11-2022
Extending the Concert Framework to Verify Solana Programs, MSc Student, João Maria Correia Ramalho Marcelino Gomes, Concluded 11-2022
A Comparative Study of Automatic Software Repair Techniques for Security Faults, MSc Student, Eduard Costel Pinconschi, Concluded 01-2021
Secure Storage with a Small, Verified TCB, MSc Student, Afonso Tinoco de Faria Cecílio dos Santos, Concluded 11-2019

Publications

3Books Chapters

P. Mateus, P. Adão, M. Ribeiro, Formal Verification of Ethereum Smart Contracts Using Isabelle/HOL, Chapter in, Logic, Language, and Security Essays Dedicated to Andre Scedrov on the Occasion of His 65th Birthday, Springer, Berlin, 2020
P. Adão, C. Fournet, Cryptographically sound implementations for communicating processes, Chapter in, Proceedings of the 33rd International Colloquium on Automata, Languages and Programming (ICALP'06), volume 4052 of Lecture Notes in Computer Science, pages 83-94, M. Bugliese, B. Preneel, V. Sassone, and I. Wegener, Springer, Lisboa, 2006
P. Adão, G. Bana, J. Herzog, A. Scedrov, Soundness of formal encryption in the presence of key-cycles, Chapter in, Proceeding of the 10th European Symposium on Research in Computer Security (ESORICS), volume 3679 of Lecture Notes in Computer Science, pages 374-396, S. De Capitani di Vimercati, P. Syverson and D. Gollmann, Springer, 2005

9Papers in Journals

F C Ramalho, S. correia, L Fu, L. Dias, P. Adão, P. Mateus, M.R. Ferreira, P.S André, Super modules-based active QR codes for smart trackability and IoT: a responsive-banknotes case study, npj Flexible Electronics, Vol. 4, No. 1, pp. 1 - 11, June, 2020 | BibTex
A. Souto, P. Mateus, P. Adão, N. Paunkovic, Reply to “Comment on ‘Bit-string oblivious transfer based on quantum state computational distinguishability’ ”, Physical Review A - Atomic, Molecular, and Optical Physics, Vol. 92, No. 4, pp. 046302 - 046312, October, 2015,
| Abstract | BibTex
A. Souto, P. Mateus, P. Adão, N. Paunkovic, Bit-string oblivious transfer based on quantum state computational distinguishability, Physical Review A - Atomic, Molecular, and Optical Physics, Vol. 91, No. 1, pp. 042306 - 042306, April, 2015,
| Abstract | BibTex
P. Adão, P. Mateus, L. Viganò, Protocol Insecurity with a Finite Number of Sessions and a Cost-Sensitive Guessing Intruder is NP-Complete., Theoretical Computer Science, Vol. 538, No. 1, pp. 2 - 15, June, 2014 | BibTex
A. M. Carvalho, P. Adão, P. Mateus, Hybrid learning of Bayesian multinets for binary classification, Pattern Recognition, Vol. 47, No. 10, pp. 3438 - 3450, April, 2014 | BibTex
A. M. Carvalho, P. Adão, P. Mateus, Efficient Approximation of the Conditional Relative Entropy with Applications to Discriminative Learning of Bayesian Network Classifiers, Entropy, Vol. 15, No. 7, pp. 2716 - 2735, July, 2013 | BibTex
P. Adão, G. Bana, J. Herzog, A. Scedrov, Soundness and completeness of formal encryption: the cases of key-cycles and partial information leakage, Journal of Computer Security, Vol. 17, No. 5, pp. 737 - 797, December, 2009 | BibTex
P. Adão, P. Mateus, A process algebra for reasoning about quantum security, Electronic Notes in Theoretical Computer Science, Vol. 170, No., pp. 3 - 21, February, 2007 | BibTex
P. Adão, P. Mateus, T. Reis, L. Viganò, Towards a quantitative analysis of security protocols, Electronic Notes in Theoretical Computer Science, Vol. 164, No. 3, pp. 3 - 25, June, 2006 | BibTex

16Papers in Conferences

P. Bernardo, L. Veronese, V. Dalla Valle, S. Calzavara, M. Squarcina, P. Adão, M. Maffei, Web Platform Threats: Automated Detection of Web Security Issues With WPT, USENIX USENIX Security Symposium USENIX Security, Philadelphia, United States, Vol., pp. -, August, 2024,
| Abstract | BibTex
M. Squarcina, P. Adão, L. Veronese, M. Maffei, Cookie Crumbles: Breaking and Fixing Web Session Integrity, USENIX USENIX Security Symposium USENIX Security, Anaheim, CA, United States, Vol., pp. -, August, 2023,
| Abstract | Full text (PDF 1016 KBs) | BibTex
F. Ramos, N. Sabino, P. Adão, D. Naumann, J. Fragoso Santos, Toward Tool-Independent Summaries for Symbolic Execution, European Conference on Object-Oriented Programming ECOOP, Seattle, Washington, United States, Vol. 263, pp. 1 - 29, July, 2023,
| Abstract | Full text (PDF 1 MB) | BibTex
F. Ramos, N. Sabino, P. Adão, D. Naumann, J. Fragoso Santos, Toward Tool-Independent Summaries for Symbolic Execution (Artifact), European Conference on Object-Oriented Programming ECOOP, Seattle, Washington, United States, Vol. 9, pp. 1 - 4, July, 2023,
| Abstract | Full text (PDF 648 KBs) | BibTex
E. Pinconschi, Q. Bui, R. Abreu, P. Adão, R. Scandariato, Maestro: a platform for benchmarking automatic program repair tools on software vulnerabilities, ACM International Symposium on Software Testing and Analysis ISSTA, Conference online, Vol., pp. 789 - 792, July, 2022,
| Abstract | BibTex
F. Marques, J. Fragoso Santos, N. Santos, P. Adão, Concolic Execution for WebAssembly, 36th European Conference on Object-Oriented Programming - ECOOP, Berlin, Germany, Vol. 222, pp. 1 - 29, June, 2022,
| Abstract | BibTex
F. Marques, J. Fragoso Santos, N. Santos, P. Adão, Concolic Execution for WebAssembly (Artifact), 36th European Conference on Object-Oriented Programming - ECOOP, Berlin, Germany, Vol. 8, pp. 1 - 3, June, 2022,
| Abstract | BibTex
E. Pinconschi, R. Abreu, P. Adão, A Comparative Study of Automatic Program Repair Techniques for Security Vulnerabilities, International Symposium on Software Reliability Engineering ISSRE, Wuhan, China, October, 2021 | BibTex
D. R. Matos, M. Pardal, P. Adão, A. Rito Silva, M. Pupo Correia, Securing Electronic Health Records in the Cloud, Workshop on Privacy by Design in Distributed Systems P2DS, Porto, Portugal, April, 2018 | BibTex
P. Adão, RF Focardi, JDG Guttman, FLL Luccio, Localizing Firewall Security Policies, IEEE Computer Security Foundations Symposium - CSF, Lisboa, Portugal, Vol. 1, pp. 194 - 209, June, 2016,
| Abstract | BibTex
P. Adão, CB Bozzato, GDR Dei Rossi, RF Focardi, FLL Luccio, Mignis: A Semantic Based Tool for Firewall Configuration, IEEE Computer Security Foundations Workshop - CSFW, Vienna, Austria, Vol., pp. 351 - 365, July, 2014 | Full text (PDF 395 KBs) | BibTex
P. Adão, RF Focardi, FLL Luccio, Type-Based Analysis of Generic Key Management APIs, IEEE Computer Security Foundations Workshop - CSFW, New Orleans, United States, Vol., pp. 97 - 111, June, 2013 | Full text (PDF 428 KBs) | BibTex
G. Bana, P. Adão, H. Sakurada, Computationally Complete Symbolic Attacker in Action, Foundations of Software Technology and Theoretical Computer Science - FSTTCS, Hyderabad, India, Vol. 18, pp. 546 - 560, December, 2012 | Full text (PDF 383 KBs) | BibTex
P. Adão, J. M. Mendes, Trusted Civitas: Client Trust in CIVITAS Electronic Voting Protocol, Inforum - Simpósio de Informática, Lisboa, Portugal, Vol. 0, pp. 0 - 0, September, 2012 | Full text (PDF 376 KBs) | BibTex
P. Adão, E. Sixpence Sixpence, C. Smith Smith, Automatização de Casos de Teste como Processo de Melhoria da Qualidade do Software: O caso da Aplicação e-Learning ISUPAC3 no ISUTC, Congresso Luso Moçambicano de Engenharia - CLME, Maputo, Mozambique, Vol. xxx, pp. xxx - xxx, September, 2011 | BibTex
P. Adão, G. Bana, A. Scedrov, Computational and information-theoretic soundness and completeness of formal encryption, IEEE Computer Security Foundations Workshop - CSFW, Aix-en-Provence, France, Vol. -, pp. 170 - 184, June, 2005 | BibTex

Projects

Closed Projects7

Acronym	Name	Funding Agency	Start date	Ending date
ComFormCrypt	ComFormCrypt - Computational Semantics of Formal Methods in Cryptography	FCT/PTDC	01-02-2011	01-07-2014
Confident	Confident - Communication Contracts for Distributed Systems Development	FCT	01-05-2016	01-05-2019
DIVINA	DIVINA: Detecting Injection Vulnerabilities In Node.js Applications	FCT/ CMU	26-03-2022	25-03-2023
DP-PMI	Doctoral Programme in the Physics and Mathematics of Information: Foundations of Future Information Technologies (DP-PMI)	FCT	01-01-2014	01-12-2021
KLog	KLog - Logics for Security	FCT/PTDC	01-08-2007	01-08-2010
QSec	Quantum Security	FCT/PTDC	01-11-2007	01-10-2009
QuanLog	Logic in Quantum Computation and Information	FCT/POCI	01-01-2005	01-12-2007

Other Scientific Achievements

1Miscellaneous

P. Adão, Curso de Aperfeiçoamento InfoSec---Segurança de Sistemas de Informação e Comunicação, Tutorial, Escola de Tecnologias Navais, 01-11-2007

14Short Courses and Seminars

P. Adão, CB Bozzato, GDR Dei Rossi, RF Focardi, FLL Luccio, A Semantic Based Tool for Firewall Configuration (Extended Abstract), France, Grenoble, 04-2014
P. Adão, CB Bozzato, GDR Dei Rossi, RF Focardi, FLL Luccio, Mignis: A Semantic Based Tool for Firewall Configuration, France, Paris, 04-2014
P. Adão, C. Caleiro, A Natural Deduction System for the Computational Complete Symbolic Adversary, United States, New Orleans, LA, 06-2013
P. Adão, P. Mateus, A. Souto, A Quantum Digital Signature Scheme, Portugal, Lisboa, 05-2013
P. Adão, G. Bana, H. Sakurada, Verification of Security Protocols. How much can we trust our proofs?, Italy, Venice, 03-2013
P. Adão, G. Bana, H. Sakurada, Computationally Sound Verification of the NSL Protocol via Computationally Complete Symbolic Attacker, United States, Cambridge, 06-2012
P. Adão, G. Bana, Logical Proofs of Authentication Protocols and Type-Flaw Attacks, United Kingdom, Edinburgh, 07-2010
P. Adão, High-Level Programming for E-Cash with Transferable Identification, France, Paris, 05-2009
P. Adão, High-Level Programming for Offline E-Cash, France, Paris, 05-2009
P. Adão, C. Fournet, Guts, Zappa Nardelli, High-Level Programming for E-Cash, Japan, Izu-Atagawa, 04-2009
P. Adão, C. Fournet, Guts, Zappa Nardelli, High-Level Programming for E-Cash, United States, Pittsburgh, 06-2008
P. Adão, C. Fournet, Language Design for Computationally Sound Communications Abstractions, Italy, Venice, 07-2006
P. Adão, P. Mateus, T. Reis, L. Viganò, Towards a Quantitative Analysis of Security Protocols, Austria, Vienna, 04-2006
P. Adão, P. Mateus, A Process Algebra for Reasoning About Quantum Security, United States, Chicago, 06-2005

Other Contributions

24Conference Committees

Workshop on Education, Training and Awareness in Cybersecurity ETACS, Technical Programme Committee, 2022
Inforum - Simpósio de Informática, Technical Programme Committee, 2022
Workshop on Education, Training and Awareness in Cybersecurity ETACS, Technical Programme Committee, 2021
Annual Privacy Forum APF, Technical Programme Committee, 2021
Inforum - Simpósio de Informática, Technical Programme Committee, 2018
Inforum - Simpósio de Informática, Technical Programme Committee, 2017
IEEE Computer Security Foundations Symposium - CSF, Conference Chairman, 2017
Inforum - Simpósio de Informática, Technical Programme Committee, 2016
IEEE Computer Security Foundations Workshop - CSFW, Conference Chairman, 2016
Conf. on Principles of Security and Trust - POST, Scientific Committee, 2015
Inforum - Simpósio de Informática, Scientific Committee, 2015
Inforum - Simpósio de Informática, Scientific Committee, 2014
International Conf. on the Quality of Information and Communications Technology (QUATIC), Technical Programme Committee, 2014
Joint Workshop on Foundations of Computer Security and on Formal and Computational Cryptography - FCS-FCC, Technical Programme Committee, 2014
Conf. on Electronics, Telecommunications and Computers - CETC, Scientific Committee, 2013
Inforum - Simpósio de Informática, Sessions Chairman, 2013
Inforum - Simpósio de Informática, Sessions Chairman, 2012
Conf. on Electronics, Telecommunications and Computers - CETC, Scientific Committee, 2011
Inforum - Simpósio de Informática, Scientific Committee, 2011
Inforum - Simpósio de Informática, Technical Programme Committee, 2010
International Workshop on Quantum Cryptography and Security - LQCIL, Organizing Committee, 2009
Conf. Nacional sobre Segurança Informática nas Organizações - SINO, Technical Programme Committee, 2007
International Workshop on Issues in the Theory of Security - WITS, Technical Programme Committee, 2007
International Workshop on Quantum Cryptography and Security - LQCIL, Organizing Committee, 2007

5Refereeing Journals

Journal of Automated Reasoning
2009, 1 review(s); 2005, 1 review(s);
Information and Computation
2007, 1 review(s);
Computers and Security
2007, 1 review(s);
ACM Transactions on Computational Logic
2007, 1 review(s);
Theoretical Computer Science
2013, 1 review(s);

10Refereeing Conferences

Conf. on Advanced Information Systems Engineering - CAISE
2003, 1 review(s);
European Symp. on Research in Computer Security - ESORICS
2009, 1 review(s); 2006, 1 review(s);
European Symp. on Programming - ESOP
2006, 1 review(s);
Workshop on Quantitative Aspects of Programming Languages - QAPL
2009, 1 review(s); 2006, 1 review(s);
2007, 1 review(s);
ACM Conf. on Computer and Communications Security - CCS
2008, 1 review(s);
International Conf. on Rewriting Techniques and Applications - RTA
2009, 1 review(s);
Computability in Europe - CIE
2010, 1 review(s);
IEEE Computer Security Foundations Workshop - CSFW
2014, 1 review(s); 2013, 1 review(s);
Conf. on Principles of Security and Trust - POST
2013, 1 review(s);

Related UN SDG

Activities from this researcher fall under the following United Nations Strategic Development Goals (SDGs):

IT Member Profile

Pedro Adão

20-09-2022

Portuguese team coached by Pedro Adão at the European Cybersecurity Challenge

16-03-2022

Pedro Adão interviewed on cybersecurity and hacking

Scientific Achievements

As Supervisor

As Co-supervisor

As Supervisor

As Co-supervisor

Closed Projects7