Dr Ingolf Becker

I am an Associate Professor in Security and Crime Science in the Department of Security and Crime Science at University College London. I am part of UCL's Academic Centre of Excellence in Cyber-Security Research (ACE-CSR) and a Principal Investigator at the Research Institute in Socio-Technical Security (RISCS). I currently lead UCL's part of the 3-year ESPRC project Protecting public-facing professionals and their dependents online (3PO).

My research focuses on human-centred security and privacy. I fundamentally believe that security and privacy are never the primary task but should instead be seen as an enabler for productivity and society more generally. I work with people and organisations to build and study systems and policies that are both secure and productive.

News

Recent Publications

A complete list of my publications can be found here or on my Google Scholar Profile.

• D. Blackwell, I. Becker and D. Clark, Hyperfuzzing: black-box security hypertesting with a grey-box fuzzer, in Empirical Software Engineering, 30:22, 2025. Publisher Link
• G. Buckley, T. Caulfield and I. Becker, How might the GDPR evolve? A question of politics, pace and punishment, in Computer Law and Security Review, Volume 54, September 2024. Publisher Link | SSRN | UCL Discovery
• G. Buckley, T. Caulfield and I. Becker, GDPR and the indefinable effectiveness of privacy regulators: Can performance assessment be improved?, in Journal of Cybersecurity, Volume 10, Issue 1, 2024. Publisher Link | UCL Discovery
• S. Zheng and I. Becker, Phishing to improve detection, in The 2023 European Symposium on Usable Security, EuroUSEC 2023. Publisher Link | UCL Discovery
• N. Sombatruang, T. Caulfield, I. Becker, A. Fujita, T. Kasama, K. Nakao and D. Inoue, Internet Service Providers' and Individuals' Attitudes, Barriers, and Incentives to Secure IoT, in 32nd USENIX Security Symposium, USENIX Security 2023. Preprint | UCL Discovery | Publisher link (with video and slides)
• S. Zheng and I. Becker, Checking, nudging or scoring? Evaluating e-mail user security tools, in Nineteenth Symposium on Usable Privacy and Security, SOUPS 2023. Publisher Link (with video and slides) | UCL Discovery
• M. Ordekian, I. Becker and M. Vasek, Shaping Cryptocurrency Gatekeepers with a Regulatory 'Trial and Error', in 4th Workshop on Coordination of Decentralized Finance, CoDecFin 2023. SSRN Preprint | UCL Discovery | Blogpost
• C. Weir, I. Becker and L. Blair, Incorporating software security: Using developer workshops to engage product managers, in Empirical Software Engineering, 2023. Publisher Version | Lancaster Research Directory | UCL Discovery
• G. Buckley, T. Caulfield and I. Becker, “It may be a pain in the backside but...” Insights into the resilience of business after GDPR, in New Security Paradigms Workshop, NSPW 2022. Publisher Link | UCL Discovery
• S. Zheng and I. Becker, Presenting Suspicious Details in User-Facing E-mail Headers Does Not Improve Phishing Detection, in Eighteenth Symposium on Usable Privacy and Security, SOUPS 2022. Publisher Link (with video and slides) | UCL Discovery
• P. Demetriou, I Becker, S. Hailes, Who Watches the Watchers: A Multi-Task Benchmark for Anomaly Detection, in 8th International Conference on Information Systems Security and Privacy, ICISSP 2022. Publisher Link | UCL Discovery | Aftershock Project Website
• I. Becker, R. Posner, T. Islam, P. Ekblom, H. Borrion, M. McGuire and S. Li, Privacy in Transport? Exploring Perceptions of Location Privacy Through User Segmentation, in Proceedings of the 54th Hawaii International Conference on System Sciences, HICCS 2021. Publisher Link | UCL Discovery | Best Paper Award Winner.
• C. Weir, I. Becker and L. Blair, A Passion for Security: Intervening to Help Software Developers, in Proceedings of the 43rd International Conference on Software Engineering, ICSE 2021. Publisher Version (not OA) | UCL Discovery
• J. Morris, I. Becker and S. Parkin, An Analysis of Perceptions and Support for Windows 10 Home Edition Update Features, in Journal of Cybersecurity, Volume 6, Issue 1, 2020. Publisher Version | UCL Discovery
  This is a substantially extended and updated version of the 2019 USEC paper.
• C. Weir, I. Becker, J. Noble, L. Blair, M. A. Sasse, and A Rashid, Interventions for Long Term Software Security: Creating a lightweight program of assurance techniques for developers, in Software: Practice and Experience, Volume 50, Issue 3, 2020. Publisher Version (not OA) | UCL Discovery
• T. Tasmina, I. Becker, R. Posner, P. Ekblom, M. McGuire, H. Borrion, and S. Li, A Socio-Technical and Co-Evolutionary Framework for Reducing Human-Related Risks in Cyber Security and Cybercrime Ecosystems, Proc. DependSys, 2019. Publisher Version (not OA) | UCL Discovery

Recent Projects

Protecting public-facing professionals and their dependents online (3PO)

The 3PO is an EPSRC funded project associated with the National Research Centre on Privacy, Harm Reduction and Adversarial Influence Online. We focus on protecting public-facing police personnel and their dependents online by co-designing vulnerability assessments, harm reporting apps, and various risk assessment tools, alongside training and supporting materials.

Kris Christman is the senior research fellow on the project at UCL.

Secure Development

Dr Charles Weir and I have been working on a project to improve software security through a bottom-up approach. We focus on helping developers understand, appropriately evaluate and promote security inside their organisations. After successfully working with almost a dozen organisations and publishing our results in conferences and journals, we successfully commercialised our project through CyberASAP in 2021. We still hold regular training events, and our workshop and materials are open source and can be used free of charge. We continue working with companies, both for research to improve the package and for consultancy to help deliver the training. We have good links with organisations specialising in training and professional development, and certification bodies to improve secure software development in the UK and abroad.

Attitudes, Barriers, and Incentives to Secure IoT

Dr Tristan Caulfield and I have been working in collaboration with colleagues from Japan's National Institute of Information and Communications Technology (NICT) on cross-cultural studies on internet service providers' and individuals' attitudes, barriers, and incentives to secure the internet of things. The first part of this work has been published, and will be presented at USENIX Security '23.

Research Supervision

I mainly supervise PhD students through UCL's CDT in Cybersecurity, the Dawes Centre for Future Crime, and UCL SECReT. If you want to study with me, please email me before submitting an application to UCL with a research proposal and a CV attached.

• Phil Demetriou, co-supervised with Prof Steve Hailes on anomaly detection
• Daniel Blackwell, co-supervised with Dr David Clark on information leakage detection
• Gerard Buckley, co-supervised with Dr Tristan Caulfield on privacy regulation
• Chizzy Meka, co-supervised with Dr Jens Krinke on predicting vulnerable software components
• Neil Amhis, co-supervised with Prof Spencer Chainey on technology innovation in organised crime groups
• Carlos Rombaldo Junior, co-supervised with Prof Shane Johnson on SME cybersecurity
• Nadine Michaelides, co-supervised with Prof Angela Sasse on psychological contract and cybersecurity behaviours
• Marilyne Ordekian, co-supervised with Dr Marie Vasek on cryptocurrency regulation
• Siobhan McCrea, co-supervised with Prof Shane Johnson on SME cybersecurity
• Liberty Kent, co-supervised with Dr Nilufer Tuptuk on human-centred cyber defence
• Yingbo Fu, co-supervised with Prof Earl Barr on Usable code annotations for better software security

Finished Students

• Sarah Zheng, co-supervised with Prof Tali Sharot: Online scam detection using human psychology: Towards usable cybersecurity

Teaching

• I am the Program Director for the MRes Security Science.
• I teach SECU0043 Cybercrime and SECU0049 Cybercrime: Two introductory modules on socio-technical aspects of cybercrime ('18–present).
• I supervise 10–15 BSc and MSc dissertations each year.
• I run a weekly reading group on human-centred security and privacy topics.

Professional Activities

Program Committees

• EuroUSEC '19, '20, '21, '22, '23, '24
• STAST '20, '21, '22, '23, '24
• USEC '19, '20
• SPOSE '19
• NSPW '22, '23 (also Publication Chair in both '22 and '23), '24 (also co-general Chair)

External Reviewing

• CHI '20 (x1), '21 (x2), '22 (x3), '23 (x3) ,'24 (x5)
• PAUC '21
• EPSRC '21
• JCS '20, '23 (x2), '24
• JISA '20
• International Journal of Social Research Methodology '19
• Crime Science '22, '24
• OUP '22
• DTRAP '22 (x2), '23
• CSCW '24 (x2)
• IEEE S&P '24 (x3)
• Policy & Internet '24
• International Journal of Information Security '24

Academic Service

• Departmental ethics committee member '18–present and co-chair '20–present
• REPHRAIN academic ethics board member '20–present
• Member of UCL's Security Working Group

Contact

Email

i.becker at ucl.ac.uk

Post

Dr Ingolf Becker
Security and Crime Science
University College London
Gower Street
London
WC1E 6BT
United Kingdom