short bio

Olaf M. Maennel

The Internet has revolutionized the way in which we communicate, do business, or learn. Knowledge is now easier to access than ever, and what fascinates my research is the technology that enables this worldwide paradigm change.

Since July 2014 I am a full Professor for Cyber-Security at the Centre of Digital Forensics and Cyber Security at Tallinn University of Technology in Estonia. I got tenure in 2017. Before that i was with Loughborough University in UK and with the University of Adelaide in Australia. I have been general co-chair of ACM SIGCOMM 2015, ACM IMC 2017, and Global Internet Symposium GI'17. I serve as EU expert evaluator and vice-chair for Horizon H2020 calls.

My interests are in security, focusing on:

     Olaf Maennel

pgp key

  • network security & network forensics
  • aviation and maritime system and communication security
  • cyber defence exercises & awareness trainings (including red-teaming, learning, capability profiling & assessment).
  • network measurements (active & passive)
  • WAN-routing & security (IPv6, BGP/BGPsec,...)

I obtained my Ph.D. (Dr. rer. nat.) in computer science from the Technical University of Munich, Germany, in the group of Prof Anja Feldmann, PhD in 2005 and my Diploma (MSc) from the Saarland University, Saarbrücken, Germany in 2002.

Cyber Security Research

The term Cybersecurity has become a buzzword in the recent years. It's overloaded and doesn't mean much anymore. Many people, including me, try to avoid the word as much as possible. In a university context, however, it's a student magnet. We see a very high demand in 'cybersecurity education', but it should be clearly understood that 'cybersecurity' is not a scientific discipline in itself. Instead it combines insights from many other disciplines: for example, from computer science it takes secure software design, or how to build intrusion detection systems, methods for vulnerability testing, and so on; cryptography is rooted in mathematics; psychology helps to understand human factors; aspects of forensic science are used by law enforcement agencies; social sciences, business and economic understanding is essential; operational and strategic risk management models & audits help with reducing the threats in day-to-day operations; and of course legal and political disciplines are required.

For me the term 'cybersecurity' is simply an expression meaning interdisciplinary. In fact interdisciplinarity and effective communication are the only way we can fight today's problems in 'cyberspace'. It is the combination of knowledge and insights from several great areas of science that is required to secure 'cyberspace'. This is exiting, interesting, but also very challenging.

In our research at Tallinn University of Technology we focus on three main research areas: (1) serious games; (2) critical infrastructure protection; and (3) skill profiling and attributions.

(1) Technical Cyber Defense Exercises are a valuable teaching and learning tool. They are in great demand at any size from the very small up to the leading edge ones, such as Locked Shields organized by the NATO Cooperative Cyber Defence Centre of Excellence. Our group is participating in this exercise and we try to keep it the most innovative and cutting-edge exercise in the world. Personally, I have been a member of "green" (technical organization) and "red-team" (offensive attacking team) for over five years now.

One of the big challenges is scaling such exercises, as the preparations are often done manual or at best semi-automatic. Such an approach is labor intensive, tedious and very error-prone. My research interests in the area of serious games includes the following areas: a) improving scalability and mitigation human-error using automation; b) behavioral analysis during cyber crisis management; and c) measuring and improving learning in such technical exercises.

Overall, the dialog with industry is very important to my research, as it ensures research will not lose it's foundations. High-quality research should build on solid theoretical foundations, but must also deliver real-world impact. During my PhD I have worked with Anja Feldmann and Rüdiger Volk from Deutsche Telekom on a network-wide configuration management system, which is in production use in DT's network since 2004. The system specifies eBGP routing policies on an abstract graph-level, but then compiles it all the way down to the vendor-dependent code and auto-configures their routers.

At the University of Adelaide in South Australia I did my post-doc in the School of Mathematical Science working with Matthew Roughan. I am still continuing collaborations with my friends "down under". At the moment we are extending our configuration management system to be beneficial to the network security area as well, for example to configure and auto-deploy Cyber Defense Exercises.

(2) The 2nd research area is Critical Infrastructure Protection (CIP). This area combines several areas of cyber security. Obtaining situational awareness is a pressing challenge, as well as the best risk management approach. However, my personal interest looks at CIP from an aviation perspective.

(3) As mentioned above, cybersecurity is a very different domain from any classical degree program, and for this reason it is very hard to select good students purely based on their past performance; and b) the university faces a scale problem. As Tallinn University of Technology runs a tuition-free program, we receive a huge number of applications from international students. However, determining who is a good cyber security student just by looking at grades on a transcript does not work in this area. In fact, what defines a "good cybersecurity student"? The area is so broad, and elite hackers might even be school-dropouts. In the admission process we are conducting Skype-Interviews with most qualified students. The interview process tests on many competencies beyond pure technical and intellectual abilities, but is not sufficient to truly determine who is a good student and who is not. For this reason we are starting now to conduct research in the area of competency profiling. This is a first step to solve our problem, but also hugely valuable for companies, who want to determine the skill profile of its employees or who want to select the best candidate in an interview process. Thinking this research further, we might end-up in a forensic area where attribution can be made based on past skill profiles.

It is this balance between theory and "hands-on" that enables innovation and changes technology.


With respect to my teaching, cyber security is a very interesting area as well. If we consider the interdisciplinary scope of cybersecurity, we must also realize that this provides great challenges for teaching. Traditional teaching does not work anymore. We need to rethink our methods/values and implement innovative teaching into our programs. I have also recently been involved in the restructuring of Loughborough's postgraduate Internet Computing and Network Security (ICNS) program and contribute to the constant development of Tallinn University of Technology's Cyber Security MSc.

For more information about my view on teaching cyber security in higher-education, please see my teaching statement.

Since April 2012 I am a Fellow of the UK Higher Education Academy (HEA) having completed the HEA accredited "New Lecturers' Course", which is a comprehensive course for new academic faculty in UK.

Loughborough University:

  • Undergraduate courses
  • COF181 Introduction to Programming II
    (2012/13 Sem 2)
  • COC190 Advanced Networking
    (2012/13 Sem 2, 2013/14 Sem 2)

  • MSc-level courses
  • COP455 Network Systems
    (2009/10 Sem 1, 2010/11 Sem 2, 2011/12 Sem 2, 2012/13 Sem 1, 2013/14 Sem 1)
  • COP502 Networks Lab
    (2009/10 Sem 2, 2010/11 Sem 2, 2011/12 Sem 2)
  • COP502 Building Secure Networks
    (2012/13 Sem 1, 2013/14 Sem 1)
  • COP532 Internet Architectures
    (2010/11 Sem 1, 2011/12 Sem 1)
  • COP532 Internet Protocols
    (2012/13 Sem 1, 2013/14 Sem 1)

Tallinn University of Technology:

Current PhD Students

  • Mauno Pihelgas (since July 2014 - on paternity leave)
  • Kaur Kullman (since July 2015 - expected to graduate in 2020)
  • Erwin Orye (since September 2018, industrial PhD working at the NATO CCDCOE)
  • Dan Heering (since September 2018)
  • Andrew Roberts (since Nov 2020)

Graduated/completed PhD students:

I have supervised over 60 MSc theses, and done numerous final year projects reviews, PhD progress reviews and been on the committee of 17 PhD defenses.

Professional Activities


Reviewer/Program Committee Member:
  • Asian Internet Engineering Conference (aintec2019), 2019 (external reviewer)
  • ACM CCS, 2016 (external reviewer)
  • IEEE Infocom, 2014 (external reviewer)
  • IEEE Infocom, 2012 (external reviewer)
  • Passive and Active Measurement Conference (PAM), 2010 (external reviewer)
  • Assessor for the Lillian Elizabeth Bowmaker Bursary, 2010-2013
  • Passive and Active Measurement Conference (PAM), 2008 (external)
  • Australasian Telecommunication Networks and Applications Conference, 2007
  • Interdomain Routing Workshop (IDRWS), 2004

Organizational Committee Member:
  • WODNAFO 10, Adelaide, Australia 2010
  • Passive and Active Measurement Conference (PAM), 2006
  • Interdomain Routing Workshop (IDRWS), 2004


I am married to Kaie Maennel and we have two sons, Oliver Matthias, and Martin Alexander (password for pictures on request). I hold a commercial pilots license (EASA CPL & Australian PPL; FAA PPL), with IR privileges (EASA SEP-SPA IR & CASA PIFR; FAA IR).

Olaf Maennel | skype: olaf_maennel | e-mail: om@maennel.net | 07 Jan 2019