Research & Publications

Secure Application Development
Selected presentations&publications:

 § Social Enterprise Software: Risks & Countermeasures, OWASP Ireland Limerick Day, 31 October 2013. Presentation (PDF)
 § Practical Defense with ModSecurity WAF, OWASP Romania Conference, 25 October 2013.
 § Breaking and Fixing Liferay XSS Defenses, Liferay DevCon Berlin, 10 October 2013.
 § OWASP Projects and Resources You Can Use Today - An Overview, DefCamp Romania, November 2012. Presentation (PPT)
§ Building Secure Applications: SQLi Training Session, OWASP Ireland Limerick Day, November 2012. Presentation (PDF)
§ Open Security Assessment of Enterprise Solutions - Case Study on Enterprise E-mail (in)Security Solutions. OWASP Security Baseline, OWASP AppSec Europe, June 2011. Presentation (PDF)
Testing the Enterprise E-mail Security - from Software to Cloud-based Services, OWASP AppSec Ireland, September 2010, URL:
M. Ventuneac, 2009. Testing the Enterprise Security: Anti-Spam and Anti-Virus Solutions, Testing Experience Magazine, June 2009, pp. 74-76
M. Ventuneac, 2009. Benchmarking the SDLC - An Information Security View, Project Olympics (finalist paper), Perot Systems, January 2009

PhD - Automated Verification of Security Protocols using Logic-Based Techniques
January 2008, Data Communication Security Laboratory, University of Limerick, Ireland
Selected publications:
§ M. Ventuneac, R. Dojen and T. Coffey, 2006. Automated Verification of Wireless Security Protocols using Layered Proving Trees, WSEAS Transactions on Communications, Vol. 5, No. 2, February 2006, pp. 252-258
§ M. Ventuneac, R. Dojen and T. Coffey, 2005. An Empirical Analysis of Automated Verification of Wireless Security Protocols, 4th WSEAS International Conference on Information, Security, Communications and Computers (ISCOCO 2005), Puerto De La Cruz, Tenerife, Canary Islands, Spain, December 16-18, 2005, pp. 502-743
§ M. Ventuneac, T. Coffey and T. Newe, 2004. Reasoning on Properties of Non-Repudiation Security Protocols, WSEAS Transactions on Information Science and Applications, Issue 5, Volume 1, November 2004, pp. 1262-1267, ISSN 1790-0832
§ T. Coffey, M. Ventuneac, T. Newe and I. Salomie, 2004. On investigating the security and fairness of a fair exchange protocol using logic-based verification, Proceedings of IEEE International Conference on Intelligent Engineering Systems (INES2004), Cluj-Napoca, Romania, pp 325-330, U.T.Press 2004, ISBN 973-662-120-0
MEng - A Security Framework for Web-based Collaborative Environments
June 2003, Data Communication Security Laboratory, University of Limerick, Ireland
Selected publications:
§ M. Ventuneac, T. Coffey and I. Salomie, 2003. A policy-based Security Framework for Web-enabled Applications, ACM International Conference Proceeding Series, International Symposium on Information and Communication Technologies, Dublin, Trinity College, July 2003
§ M. Ventuneac, T. Coffey, M. Dragomiroiu and I. Salomie, 2003. A Policy-based Security Framework for Virtual Learning Environments. In: Proceedings of 14th International Conference on Control Systems and Computer Science (CSCS14), Bucharest, Romania, July 2003