Geir Olav Dyrkolbotn

Om

Geir Olav Dyrkolbotn er major i Cyberforsvaret og førsteamanuensis ved Center for Cyber and Information Security (CCIS) ved NTNU. Han leder NTNU Malware Lab og forskningsgruppe for Cyber Defence ved CCIS. Geir Olav har doktorgrad (PhD) i informasjonssikkerhet fra Høgskolen i Gjøvik og sivilingeniør grad innen computer science fra Norges Tekniske Høgskole (NTH). Han har mer enn 25 års erfaring fra Forsvaret. Han har i løpet av karrieren fokusert på drift, vedlikehold og sikkerhet i Forsvaret kommunikasjons-infrastruktur. De siste årene har fokuset vært på defensive cyber operasjoner, forsvar av datanettverk og risiko håndtering. Forskningsinteresser inkluderer: cyber defence, reverse engineering, analyse av malware, side-kanal angrep og maskin læring.

Publikasjoner

2023

Sharma, Arvind; Dyrkolbotn, Geir Olav; Øverlier, Lasse; Waltoft-Olsen, AndrÃ¨ Jung; Franke, Katrin; Katsikas, Sokratis. (2023) A State-of-the-Art Reverse Engineering Approach for Combating Hardware Security Vulnerabilities at the System and PCB Level in IoT Devices. IEEE-Physical Assurance and Inspection of Electronics (PAINE-2022),USA. IEEE Xplore digital library.
Populærvitenskapelig artikkel

2021

Alendal, Gunnar; Axelsson, Stefan; Dyrkolbotn, Geir Olav. (2021) Chip chop — smashing the mobile phone secure chip for fun and digital forensics. Forensic Science International: Digital Investigation. volum 37.
Vitenskapelig artikkel
Alendal, Gunnar; Axelsson, Stefan; Dyrkolbotn, Geir Olav. (2021) Leveraging The USB Power Delivery Implementation For Digital Forensic Acquisition. IFIP Advances in Information and Communication Technology. volum 612.
Vitenskapelig artikkel
Alendal, Gunnar; Dyrkolbotn, Geir Olav; Axelsson, Stefan. (2021) Digital Forensic Acquisition Kill Chain – Analysis and Demonstration. IFIP Advances in Information and Communication Technology. volum 612.
Vitenskapelig artikkel
Banin, Sergii; Dyrkolbotn, Geir Olav. (2021) Detection of Previously Unseen Malware using Memory Access Patterns Recorded Before the Entry Point. 2020 IEEE International Conference on Big Data.
Vitenskapelig Kapittel/Artikkel/Konferanseartikkel
Jensen, Øyvind; Shalaginov, Andrii; Dyrkolbotn, Geir Olav. (2021) Study of Blacklisted Malicious Domains from a Microsoft Windows End-user Perspective: Is It Safe Behind the Wall?. Norsk Informasjonssikkerhetskonferanse (NISK).
Vitenskapelig artikkel
Shalaginov, Andrii; Dyrkolbotn, Geir Olav; Alazab, Mamoun. (2021) Review of the Malware Categorization in the Era of Changing Cybethreats Landscape: Common Approaches, Challenges and Future Needs. Malware Analysis Using Artificial Intelligence and Deep Learning.
Vitenskapelig Kapittel/Artikkel/Konferanseartikkel

2020

Banin, Sergii; Dyrkolbotn, Geir Olav. (2020) Detection of Running Malware Before it Becomes Malicious. Lecture Notes in Computer Science (LNCS). volum 12231.
Vitenskapelig artikkel
Karresand, Nils Martin Mikael; Dyrkolbotn, Geir Olav; Axelsson, Stefan. (2020) An Empirical Study of the NTFS Cluster Allocation Behavior Over Time. Forensic Science International: Digital Investigation. volum 33.
Vitenskapelig artikkel
Waltoft-Olsen, AndrÃ¨ Jung; Øverlier, Lasse; Dyrkolbotn, Geir Olav; Sharma, Arvind. (2020) Smart Grid challenges - Device Trustworthiness. NIKT: Norsk IKT-konferanse for forskning og utdanning 2020.
Vitenskapelig Kapittel/Artikkel/Konferanseartikkel

2019

Alendal, Gunnar; Axelsson, Stefan; Dyrkolbotn, Geir Olav. (2019) Exploiting Vendor-Defined Messages in the USB Power Delivery Protocol. IFIP Advances in Information and Communication Technology. volum 569.
Vitenskapelig artikkel
Banin, Sergii; Dyrkolbotn, Geir Olav. (2019) Correlating High- and Low-Level Features: Increased Understanding of Malware Classification. Lecture Notes in Computer Science (LNCS). volum 11689.
Vitenskapelig artikkel
Karresand, Nils Martin Mikael; Axelsson, Stefan; Dyrkolbotn, Geir Olav. (2019) Disk Cluster Allocation Behavior in Windows and NTFS. Mobile Networks and Applications.
Vitenskapelig artikkel
Karresand, Nils Martin Mikael; Axelsson, Stefan; Dyrkolbotn, Geir Olav. (2019) Using NTFS cluster allocation behavior to find the location of user data. Digital Investigation. The International Journal of Digital Forensics and Incident Response. volum 29.
Vitenskapelig artikkel
Karresand, Nils Martin Mikael; Warnqvist, Asalena; Lindahl, David; Axelsson, Stefan; Dyrkolbotn, Geir Olav. (2019) Creating a map of user data in NTFS to improve file carving. IFIP Advances in Information and Communication Technology. volum 569.
Vitenskapelig artikkel

2018

Alendal, Gunnar; Dyrkolbotn, Geir Olav; Axelsson, Stefan. (2018) Forensics Acquisition — Analysis and Circumvention of Samsung Secure Boot enforced Common Criteria Mode. Digital Investigation. The International Journal of Digital Forensics and Incident Response. volum 24.
Vitenskapelig artikkel
Banin, Sergii; Dyrkolbotn, Geir Olav. (2018) Multinomial malware classification via low-level features. Digital Investigation. The International Journal of Digital Forensics and Incident Response. volum 26.
Vitenskapelig artikkel

2017

Helkala, Kirsi Marjaana; Knox, Benjamin James; Jøsok, Øyvind; Lugo, Ricardo; Sütterlin, Stefan; Dyrkolbotn, Geir Olav; Svendsen, Nils Kalstad. (2017) Supporting the Human in Cyber Defence. Lecture Notes in Computer Science (LNCS). volum 10683.
Vitenskapelig artikkel

2012

Dyrkolbotn, Geir Olav; Wold, Knut; Snekkenes, Einar. (2012) Layout Dependent Phenomena A New Side-channel Power Model. Journal of Computers. volum 7 (4).
Vitenskapelig artikkel

2011

Dyrkolbotn, Geir Olav. (2011) Reverse Engineering Microprocessor Content Using Electromagnetic Radiation. 2011. ISBN 978-82-91313-73-3. Doctoral Dissertations at Gjøvik University College (2/2011).
Doktorgradsavhandling
Dyrkolbotn, Geir Olav; Wold, Knut; Snekkenes, Einar. (2011) Security Implications of Crosstalk in Switching CMOS Gates. Lecture Notes in Computer Science (LNCS). volum 6531.
Vitenskapelig artikkel

2010

Dyrkolbotn, Geir Olav. (2010) Non-Invasive Reverse Engineering of the Relative Position of Bus Wires. Norwegian Information Security Conference = Norsk Informasjonssikkerhetskonferanse : NISK 2010 . Gjøvik University College, Gjøvik, 23-24 November 2010.
Vitenskapelig Kapittel/Artikkel/Konferanseartikkel

2009

Dyrkolbotn, Geir Olav; Snekkenes, Einar. (2009) Electromagnetic Side Channel: A Comparison of Multi-Class Feature Selection Methods. SPPRA 2009, Proceeding of Signal Processing, Pattern Recognition and Applications.
Vitenskapelig Kapittel/Artikkel/Konferanseartikkel
Dyrkolbotn, Geir Olav; Snekkenes, Einar. (2009) Modified Template Attack: Detecting Address Bus Signals of Equal Hamming Weight. Norsk informasjonssikkerhetskonferanse : NISK 2:2009 : NTNU, Trondheim 24.-25. november 2009.
Vitenskapelig Kapittel/Artikkel/Konferanseartikkel

2007

Dyrkolbotn, Geir Olav. (2007) Analysis of the Wireless Covert Channel Attack Carrier Frequency Selection. Norsk informatikkonferanse 2007.
Vitenskapelig Kapittel/Artikkel/Konferanseartikkel

2006

Dyrkolbotn, Geir Olav; Snekkenes, Einar. (2006) A wireless covert channel on smart cards. Lecture Notes in Computer Science.
Vitenskapelig Kapittel/Artikkel/Konferanseartikkel

Tidsskriftspublikasjoner

Sharma, Arvind; Dyrkolbotn, Geir Olav; Øverlier, Lasse; Waltoft-Olsen, AndrÃ¨ Jung; Franke, Katrin; Katsikas, Sokratis. (2023) A State-of-the-Art Reverse Engineering Approach for Combating Hardware Security Vulnerabilities at the System and PCB Level in IoT Devices. IEEE-Physical Assurance and Inspection of Electronics (PAINE-2022),USA. IEEE Xplore digital library.
Populærvitenskapelig artikkel
Alendal, Gunnar; Axelsson, Stefan; Dyrkolbotn, Geir Olav. (2021) Chip chop — smashing the mobile phone secure chip for fun and digital forensics. Forensic Science International: Digital Investigation. volum 37.
Vitenskapelig artikkel
Alendal, Gunnar; Axelsson, Stefan; Dyrkolbotn, Geir Olav. (2021) Leveraging The USB Power Delivery Implementation For Digital Forensic Acquisition. IFIP Advances in Information and Communication Technology. volum 612.
Vitenskapelig artikkel
Alendal, Gunnar; Dyrkolbotn, Geir Olav; Axelsson, Stefan. (2021) Digital Forensic Acquisition Kill Chain – Analysis and Demonstration. IFIP Advances in Information and Communication Technology. volum 612.
Vitenskapelig artikkel
Jensen, Øyvind; Shalaginov, Andrii; Dyrkolbotn, Geir Olav. (2021) Study of Blacklisted Malicious Domains from a Microsoft Windows End-user Perspective: Is It Safe Behind the Wall?. Norsk Informasjonssikkerhetskonferanse (NISK).
Vitenskapelig artikkel
Banin, Sergii; Dyrkolbotn, Geir Olav. (2020) Detection of Running Malware Before it Becomes Malicious. Lecture Notes in Computer Science (LNCS). volum 12231.
Vitenskapelig artikkel
Karresand, Nils Martin Mikael; Dyrkolbotn, Geir Olav; Axelsson, Stefan. (2020) An Empirical Study of the NTFS Cluster Allocation Behavior Over Time. Forensic Science International: Digital Investigation. volum 33.
Vitenskapelig artikkel
Alendal, Gunnar; Axelsson, Stefan; Dyrkolbotn, Geir Olav. (2019) Exploiting Vendor-Defined Messages in the USB Power Delivery Protocol. IFIP Advances in Information and Communication Technology. volum 569.
Vitenskapelig artikkel
Banin, Sergii; Dyrkolbotn, Geir Olav. (2019) Correlating High- and Low-Level Features: Increased Understanding of Malware Classification. Lecture Notes in Computer Science (LNCS). volum 11689.
Vitenskapelig artikkel
Karresand, Nils Martin Mikael; Axelsson, Stefan; Dyrkolbotn, Geir Olav. (2019) Disk Cluster Allocation Behavior in Windows and NTFS. Mobile Networks and Applications.
Vitenskapelig artikkel
Karresand, Nils Martin Mikael; Axelsson, Stefan; Dyrkolbotn, Geir Olav. (2019) Using NTFS cluster allocation behavior to find the location of user data. Digital Investigation. The International Journal of Digital Forensics and Incident Response. volum 29.
Vitenskapelig artikkel
Karresand, Nils Martin Mikael; Warnqvist, Asalena; Lindahl, David; Axelsson, Stefan; Dyrkolbotn, Geir Olav. (2019) Creating a map of user data in NTFS to improve file carving. IFIP Advances in Information and Communication Technology. volum 569.
Vitenskapelig artikkel
Alendal, Gunnar; Dyrkolbotn, Geir Olav; Axelsson, Stefan. (2018) Forensics Acquisition — Analysis and Circumvention of Samsung Secure Boot enforced Common Criteria Mode. Digital Investigation. The International Journal of Digital Forensics and Incident Response. volum 24.
Vitenskapelig artikkel
Banin, Sergii; Dyrkolbotn, Geir Olav. (2018) Multinomial malware classification via low-level features. Digital Investigation. The International Journal of Digital Forensics and Incident Response. volum 26.
Vitenskapelig artikkel
Helkala, Kirsi Marjaana; Knox, Benjamin James; Jøsok, Øyvind; Lugo, Ricardo; Sütterlin, Stefan; Dyrkolbotn, Geir Olav; Svendsen, Nils Kalstad. (2017) Supporting the Human in Cyber Defence. Lecture Notes in Computer Science (LNCS). volum 10683.
Vitenskapelig artikkel
Dyrkolbotn, Geir Olav; Wold, Knut; Snekkenes, Einar. (2012) Layout Dependent Phenomena A New Side-channel Power Model. Journal of Computers. volum 7 (4).
Vitenskapelig artikkel
Dyrkolbotn, Geir Olav; Wold, Knut; Snekkenes, Einar. (2011) Security Implications of Crosstalk in Switching CMOS Gates. Lecture Notes in Computer Science (LNCS). volum 6531.
Vitenskapelig artikkel

Del av bok/rapport

Banin, Sergii; Dyrkolbotn, Geir Olav. (2021) Detection of Previously Unseen Malware using Memory Access Patterns Recorded Before the Entry Point. 2020 IEEE International Conference on Big Data.
Vitenskapelig Kapittel/Artikkel/Konferanseartikkel
Shalaginov, Andrii; Dyrkolbotn, Geir Olav; Alazab, Mamoun. (2021) Review of the Malware Categorization in the Era of Changing Cybethreats Landscape: Common Approaches, Challenges and Future Needs. Malware Analysis Using Artificial Intelligence and Deep Learning.
Vitenskapelig Kapittel/Artikkel/Konferanseartikkel
Waltoft-Olsen, AndrÃ¨ Jung; Øverlier, Lasse; Dyrkolbotn, Geir Olav; Sharma, Arvind. (2020) Smart Grid challenges - Device Trustworthiness. NIKT: Norsk IKT-konferanse for forskning og utdanning 2020.
Vitenskapelig Kapittel/Artikkel/Konferanseartikkel
Dyrkolbotn, Geir Olav. (2010) Non-Invasive Reverse Engineering of the Relative Position of Bus Wires. Norwegian Information Security Conference = Norsk Informasjonssikkerhetskonferanse : NISK 2010 . Gjøvik University College, Gjøvik, 23-24 November 2010.
Vitenskapelig Kapittel/Artikkel/Konferanseartikkel
Dyrkolbotn, Geir Olav; Snekkenes, Einar. (2009) Electromagnetic Side Channel: A Comparison of Multi-Class Feature Selection Methods. SPPRA 2009, Proceeding of Signal Processing, Pattern Recognition and Applications.
Vitenskapelig Kapittel/Artikkel/Konferanseartikkel
Dyrkolbotn, Geir Olav; Snekkenes, Einar. (2009) Modified Template Attack: Detecting Address Bus Signals of Equal Hamming Weight. Norsk informasjonssikkerhetskonferanse : NISK 2:2009 : NTNU, Trondheim 24.-25. november 2009.
Vitenskapelig Kapittel/Artikkel/Konferanseartikkel
Dyrkolbotn, Geir Olav. (2007) Analysis of the Wireless Covert Channel Attack Carrier Frequency Selection. Norsk informatikkonferanse 2007.
Vitenskapelig Kapittel/Artikkel/Konferanseartikkel
Dyrkolbotn, Geir Olav; Snekkenes, Einar. (2006) A wireless covert channel on smart cards. Lecture Notes in Computer Science.
Vitenskapelig Kapittel/Artikkel/Konferanseartikkel

Rapport

Dyrkolbotn, Geir Olav. (2011) Reverse Engineering Microprocessor Content Using Electromagnetic Radiation. 2011. ISBN 978-82-91313-73-3. Doctoral Dissertations at Gjøvik University College (2/2011).
Doktorgradsavhandling

Undervisning

Emner

Formidling

2017

Faglig foredrag

Dyrkolbotn, Geir Olav. (2017) Low Level Malware Analysis for Improved Attack Detection and Triage. Cyber and Information Security Day Starmus Festival 2017, Cyber and Information Security Day . NTNU; Trondheim. 2017-06-20 - 2017-06-20.
Vitenskapelig foredrag

Helkala, Kirsi Marjaana; Knox, Benjamin James; Lugo, Ricardo Gregorio; Sütterlin, Stefan; Dyrkolbotn, Geir Olav; Svendsen, Nils Kalstad. (2017) Supporting the Human in Cyber Defence. 3rd Workshop On The Security Of Industrial Control Systems & Of Cyber-Physical Systems in Conjunction With ESORICS 2017 ; 2017-09-11.
Faglig foredrag

Novikov, Sergey; Gjære, Erlend Andreas; Dyrkolbotn, Geir Olav; Hjelsvold, Rune; McCallum, Simon. (2017) Gamification of Information Security Education. Starmus Festival 2017, Cyber and Information Security Day . NTNU; Trondheim. 2017-06-20 - 2017-06-20.

Språkvelger

Geir Olav Dyrkolbotn