Biography

I am a Tenure-Track Assistant Professor in the Computer Science Department, University of British Columbia. I am part of the Systopia Lab where we work on System research in a broad sense. If you are considering a PhD or an MSc, please, check this. I am a member of the Microsoft Cloud Computing Research Centre where we explore research topics at the intersection of Computer Science and Law. Before joining the University of British Columbia, I worked at the University of Bristol and held fellowships at Harvard University and the University of Cambridge. I obtained my PhD under the supervision of Prof. Jean Bacon in 2016 at the University of Cambridge.

My primary research focus is the development of more transparent computer systems; my research includes topics such as whole-system provenance, computational experiments reproducibility, intrusion detection, privacy and compliance.

Interests
  • Digital Provenance
  • Operating Systems
  • Distributed Systems
  • Data Protection and Privacy
  • Internet of Things
  • Intrusion Detection
Education

  • PhD in Computer Science, 2016

    University of Cambridge

  • MPhil in Advanced Computer Science, 2012

    University of Cambridge

  • Diplôme d'Ingénieur (apprenticeship), 2011

    Institut Supérieur d'Electronique de Paris

  • Diplôme Universitaire de Technologie (apprenticeship), 2008

    Conservatoire National des Arts et Métiers

Working with me

PhD and MS students

I am looking to work with students from all background (first generation students, and students from underrepresented and marginalized groups are encouraged to apply) and at all level (undergraduate students, master’s students, and PhD students). Please, visit the prospective applicant page on UBC website and on the CS website. You can also find information about financial matters on the CS website. Don’t hesitate to get in touch with me via e-mail but, please, do read the following suggestions before doing so.

A few facts

  • Do check the application deadline on UBC’s website.
  • The department starts processing applications in January for the next academic year.
  • Students are admitted by the department, not by individual faculty members.
  • Even if you are well fitted for my group, I cannot guarantee admission.

Before contacting me

  • Have a look at my publications.
  • Identify matching interests.
  • Understand that I will not supervise students outside of my area of expertise.
  • Find a set of papers which aligns with your interests.
  • Read the abstracts.
  • Read at least one paper in full.

What to send when contacting me?

  • CV/resume
  • Transcripts
  • Why do you want to work with me? (one paragraph)
  • Why do you want to work on this topic? (one paragraph)
  • Which paper(s) did you read and why did you find it interesting? (one paragraph)
  • Previous research experience (if any)
  • Summary of your undergraduate/master thesis (if any)

Statement of Intent

  • Check the guidelines on the department website
  • The relationship between a student and their advisor is an extremely important one and it will hopefully last for years
  • The commonality of interest should be clear from your statement
  • Listing half a dozen potential advisors from very different areas is most probably detrimental to your application
  • On the other hand, co-supervision is common and can be very positive
  • Therefore, link clearly potential advisors to your experience and your aspirations
  • Everything else being equal, an applicant that understands and shows why they should be working with a specific advisor are more likely to be successful
  • This is my personal opinion and may not be universally true

Students

Past students

  • Bogdan Stelea (MEng, Bristol), 2021.
  • Josh Turner (MEng, Bristol), 2021, Amiosec.
  • Chetankumar Mistry (MEng, Bristol), 2020, ARM.
  • Xiaoxiao Wu (MSc, Bristol), 2020, Deloitte.
  • Yangyang Teng (MSc, Bristol), 2019, Innovez.
  • Ziying Shao (BSc, Bristol), 2019, Beijing Institute of Big Data Research.

Experience

 
 
 
 
 
University of British Columbia
Assistant Professor
University of British Columbia
Jul 2021 – Present Canada
Member of the Department of Computer Science and member of the Systopia Lab.
 
 
 
 
 
University of Bristol
Lecturer
University of Bristol
Aug 2018 – Jun 2021 United Kingdom
Member of the Department of Computer Science.
 
 
 
 
 
University of Cambridge
Research Associate
University of Cambridge
Dec 2017 – Aug 2018 United Kingdom
Member of the Digital Technology Group and Fellow at St Edmund’s College.
 
 
 
 
 
Harvard University
Postdoctoral Fellow
Harvard University
Jul 2016 – Dec 2017 United States of America
Fellow of the Center for Research on Computation and Society and member of the System Research at Harvard Group.
 
 
 
 
 
University of Cambridge
Research Assistant
University of Cambridge
Jan 2013 – Jul 2016 United Kingdom
Member of the Opera Research Group and the Networks and Operating Systems group.
 
 
 
 
 
Apprentice Software Engineer
Gemalto
Sep 2008 – Aug 2011 France
R&D Team member.
 
 
 
 
 
Apprentice Electronic Engineer
SRETT
Sep 2006 – Sep 2008 France
R&D Team member.

Selected Publications

SIGL: Securing Software Installations Through Deep Graph Learning
Many users implicitly assume that software can only be exploited after it is installed. However, recent supply-chain attacks demonstrate that application integrity must be ensured during installation …
X Han, X Yu, T Pasquier, D Li, J Rhee, J Mickens, M Seltzer, C Haifeng
PDF Cite
SIGL: Securing Software Installations Through Deep Graph Learning
To Tune or Not to Tune? In Search of Optimal Configurations for Data Analytics
This experimental study presents a number of issues that pose a challenge for practical configuration tuning and its deployment in data analytics frameworks. These issues include: 1) the assumption of …
A Fekry, L Carata, T Pasquier, A Rice, A Hopper
PDF Cite Project
To Tune or Not to Tune? In Search of Optimal Configurations for Data Analytics
UNICORN: Runtime Provenance-Based Detector for Advanced Persistent Threats
Advanced Persistent Threats (APTs) are difficult to detect due to their low-and-slow attack patterns and frequent use of zero-day exploits. We present UNICORN, an anomaly-based APT detector that …
X Han, T Pasquier, A Bates, J Mickens, M Seltzer
PDF Cite Project
UNICORN: Runtime Provenance-Based Detector for Advanced Persistent Threats
Runtime Analysis of Whole-System Provenance
Identifying the root cause and impact of a system intrusion remains a foundational challenge in computer security. Digital provenance provides a detailed history of the flow of information within a …
T Pasquier, X Han, T Moyer, A Bates, O Hermant, D Eyers, J Bacon, M Seltzer
PDF Cite Code Project DOI
Runtime Analysis of Whole-System Provenance
Practical Whole-System Provenance Capture
Data provenance describes how data came to be in its present form. It includes data sources and the transformations that have been applied to them. Data provenance has many uses, from forensics and …
T Pasquier, X Han, M Goldstein, T Moyer, D Eyers, M Seltzer, J Bacon
PDF Cite Code Project DOI
Practical Whole-System Provenance Capture

Recent Publications

X Han, X Yu, T Pasquier, D Li, J Rhee, J Mickens, M Seltzer, C Haifeng (2021). SIGL: Securing Software Installations Through Deep Graph Learning. USENIX Sec'21.

PDF Cite

A Fekry, L Carata, T Pasquier, A Rice (2020). Accelerating the Configuration Tuning of Big Data Analytics with Similarity-aware Multitask Bayesian Optimization. IEEE BigData'20.

PDF Cite Project Slides

A Fekry, L Carata, T Pasquier, A Rice, A Hopper (2020). To Tune or Not to Tune? In Search of Optimal Configurations for Data Analytics. KDD'20.

PDF Cite Project

X Han, J Mickens, A Gehani, M Seltzer, T Pasquier (2020). Xanthus: Push-button Orchestration of Host Provenance Data Collection. ACM P-RECS'20.

PDF Cite Project

X Han, T Pasquier, A Bates, J Mickens, M Seltzer (2020). UNICORN: Runtime Provenance-Based Detector for Advanced Persistent Threats. NDSS'20.

PDF Cite Project

M K Lau, T Pasquier, M Seltzer (2020). Rclean: A Tool for Writing Cleaner, More Transparent Code. In The Journal of Open Source Software.

PDF Cite Code Project DOI

D O'Keeffe, A Vranaki, T Pasquier, D Eyers (2020). Facilitating plausible deniability for cloud providers regarding tenants' activities using trusted execution. IEEE IC2E'20.

PDF Cite Project

C Mistry, B Stelea, V Kumar, T Pasquier (2020). Demonstrating the Practicality of Unikernels to Build a Serverless Platform at the Edge. In IEEE CloudCom'20.

PDF Cite Code DOI

S C Chan, J Cheney, P Bhatotia, A Gehani, H Irshad, T Pasquier, L Carata, M Seltzer (2019). ProvMark: A Provenance Expressiveness Benchmarking System. ACM/IFIP Middleware'19.

PDF Cite Project

T Pasquier, D Eyers, M Seltzer (2019). From Here to Provtopia. Springer Poly'19.

PDF Cite Project

See all publications

Recent & Upcoming Talks

Efficient Large-Scale Data Provenance Tracking and Analyzing: Intrusion Detection
Provenance is the representation of a system execution as a directed acyclic graph. Those graphs, representing the execution of an entire system from initialization to shut down, can be comprised of …
Jan 28, 2021 12:00 PM Two Sigma (Virtually)
Slides
Efficient Large-Scale Data Provenance Tracking and Analyzing: Intrusion Detection
Building a provenance-based intrusion detection system
Provenance is the representation of a system execution as a directed acyclic graph. Those graphs, representing the execution of an entire system from initialization to shut down, can be comprised of …
Dec 8, 2020 7:00 AM Academy of Mathematics and Systems Science, Chinese Academy of Sciences
Slides
Building a provenance-based intrusion detection system
Building a provenance-based intrusion detection system
Provenance is the representation of a system execution as a directed acyclic graph. Those graphs, representing the execution of an entire system from initialization to shut down, can be comprised of …
Nov 26, 2020 11:00 AM Toshiba (virtually)
Slides
Building a provenance-based intrusion detection system
Provenance-based intrusion detection
Provenance is the representation of a system execution as a directed acyclic graph. Those graphs, representing the execution of an entire system from initialization to shut down, can be comprised of …
Nov 12, 2020 10:00 AM virtually
Slides
To Tune or not To Tune
Thomas Pasquier is currently an Assistant Professor at the University of Bristol (UK). Thomas has been working on how to make systems more transparent and how to use the insights gained. During today …
Nov 5, 2020 8:15 PM Microsoft (virtually)
Slides
To Tune or not To Tune
See all events

Projects

SYNERGIA
Secure by design end to end platform for large scale resource constrained IoT applications.
SYNERGIA
Tuneful
Tuneful is an extension for Spark which optimizes workload configurations starting from a zero-knowledge setting. The more workloads a cluster executes, the better it becomes at executing them. In order to achieve this, we leverage Multi Task Gaussian Process, Similarity Analysis and Significance Analysis.
Tuneful
CamFlow
A practical implementation of Whole-System Provenance Capture for Linux.
CamFlow
End to End Provenance
Capture and analyze provenance to improve data science.
End to End Provenance
Microsoft Cloud Computing Research Centre
The Microsoft Cloud Computing Research Centre (MCCRC) is a virtual research centre in which technology lawyers and computer scientists collaborate to conduct cutting-edge research on challenges in cloud computing at the intersection of technology and regulation.
Microsoft Cloud Computing Research Centre
CloudSafetyNet
End-to-end application security in the cloud explores the use of Information Flow Control to achieve greater security in cloud computing.
CloudSafetyNet

Teaching & Service

I am currently/will be teaching:

At the University of Bristol, I have taught:

Contact