PhD candidate Saman Shafigh is a full-time software engineer at Canva and completing his PhD at UNSW's Computer Science and Engineering. We catch-up with Saman to learn more about his research in the area of Artificial Intelligence Security.
Profile
I chose UNSW because of its world-class educational reputation as well as great recognition internationally by industry.
I am researching and developing a quality model for out-of-scope reports in bug-bounty platforms such as Hackerone. As part of this project I am building Deep Learning Document Modelling APIs to classify reports based on their vulnerability type and determine whether a report is in the scope program’s policy.
Despite the increasing popularity of bug-bounty platforms from both industry and academia, there is little empirical evidence that exists to identify invalid reports. Invalid report identification is viewed as one of the main concerns for organisations that use or are thinking of using bug bounty platforms, as well as security researchers.
I hope to advance our fundamental understanding of invalid and noisy reports which can be helpful to develop techniques to triage invalid reports.
I hope I can have a good impact on industry based on my current research as well as continuing to work with UNSW on new challenging problems.