Skip to start of content

Brief Résumé

Kim-Kwang Raymond Choo

Research Analyst in High Tech Crime and Anti-Money Laundering

Contact details

Tel: (02) 6260 9238
Fax: (02) 6260 9201

Academic qualifications

  • Ph.D. Information Security (Queensland University of Technology)

Selected employment

Sep 2008- Visiting Fellow, Regulatory Institutions Network (RegNet) / Australian National University
May 2008- Member, International Consultant Group (Research) / United Nations Office on Drugs and Crime (UNODC)- Korean Institute of Criminology "Virtual Forum against Cybercrime" Programme
2006- Research Analyst, Australian Institute of Criminology
2006 ARC Post-Doctoral Researcher, Intelligent Systems Laboratory / University of Western Sydney
2003-2006 Tutor, Queensland University of Technology
2002 Tutor, University of South Australia
1995-2001 Police Officer, Singapore Police Force

Selected awards

2008 2008 Australia Day Achievement Medallion
2008 Wilkes Award for the best paper published in the 2007 volume of the Computer Journal, Oxford University Press
2007 2006 Queensland University of Technology Faculty of IT Executive Dean's outstanding PhD thesis commendation
2005 Best Paper Award for paper accepted and presented at the 10th Australasian Conference on Information Security and Privacy (ACISP 2005)

Current areas of specialisation/expertise

  • Authentication
  • Cryptography
  • Key establishment / exchange protocols
  • Provable security
  • High tech crime
  • Anti-money laundering

List of major projects current and past

Publications (for the last three years)

AIC publications

Journal articles

  • Choo K-K R. Politically exposed persons (PEPs): risk and mitigation. Journal of Money Laundering Control Emerald. (Forthcoming)
  • Choo K-K R. Organised crime groups in cyberspace: a typology. Trends in Organized Crime Springer New York. (Forthcoming)
  • Choo K-K R. Money Laundering and Terrorism Financing Risks of Prepaid Cards Instruments. Asian Journal of Criminology Springer Netherlands. (Forthcoming)
  • Choo K-K R. Prepaid - primed for crime (2). Money Laundering Bulletin issue 156: 17-20, Informa Law, September 2008
  • Choo K-K R. Prepaid - primed for crime. Money Laundering Bulletin issue 155: 9-13, Informa Law, July/August 2008
  • Choo K-K R and Smith RG 2008. Criminal exploitation of online systems by organised crime groups. Asian Journal of Criminology 3(1):37-59 Springer Netherlands.
  • Choo K-K R 2008. An Integrative Framework to Protocol Analysis and Repair: Bellare--Rogaway Model + Planning + Model Checker. Informatica 18(4): 547-548, IOS Press.
  • Choo K-K R 2008. Refuting the Security Claims of Mathuria and Jain (2005) Key Agreement Protocols. International Journal of Network Security 7(1): 15-24, July.
  • Choo K-K R 2007. A Proof of Revised Yahalom Protocol in the Bellare and Rogaway (1993) Model. The Computer Journal 50(5): pp. 591-601, Oxford University Press, September. [Wilkes Award for the best paper published in the 2007 volume of the Computer Journal]
  • Choo K-K R 2007. Security Analysis of Mathuria and Jain (2005) Key Agreement Protocols. International Journal of Network Security. (Forthcoming).
  • Choo K-K R 2006. On the Security Analysis of Lee, Hwang, & Lee (2004) and Song & Kim (2000) Key Exchange / Agreement Protocols. 17(4): 467-480 Informatica, IOS Press, 2006.
  • Choo K-K R 2006. Issue Report on Business Adoption of Microsoft Passport. Information Management & Computer Security, 14(3): 218 - 234, Emerald Publisher.
  • Choo K-K R & Boyd C & Hitchcock Y 2006. The Importance of Proofs of Security for Key Establishment Protocols: Formal Analysis of Formal Analysis of Jan--Chen, Yang--Shen--Shieh, Kim--Huh--Hwang--Lee, Lin--Sun--Hwang, & Yeh--Sun Protocols. Computer Communications, 29(15): 2788 - 2797 Elsevier Publisher.
  • Choo K-K R 2006. On the (In)Security of Lee, Kim, Kim, & Oh (2006) Key Agreement Protocol. International Journal of Network Security, 3(1): 85--94.
  • Choo K-K R 2006. Revisiting Lee, Kim, & Yoo (2005) Authenticated Key Agreement Protocol. International Journal of Network Security, 2(1): 64--68.
  • Choo K-K R 2006. Revisit Of McCullagh--Barreto Two-Party ID-Based Authenticated Key Agreement Protocols. International Journal of Network Security, 1(3): 154--160.

Other publications

Book reviews

  • Choo K-K R. Book Review: "Handbook of database security: Applications and Trends". Computing reviews ACM Press. (Forthcoming)
  • Choo K-K R. Book Review: "Vulnerability analysis and defense for the Internet". Computing reviews ACM Press. (Forthcoming / published online on 15 July 2008)
  • Choo K-K R. Book Review: "Privacy on the line: the politics of wiretapping and encryption, updated and expanded edition". The computer journal Oxford University Press. (Forthcoming / published online on 2 May 2008)
  • Choo K-K R. Book Review: "Introduction to modern cryptography". Computing reviews ACM Press. (Forthcoming / published online on 1 February 2008)
  • Choo K-K R. Book Review: "Essential computer security: everyone's guide to email, Internet, and wireless security". Computing reviews ACM Press. (Forthcoming / published online on 14 December 2007)
  • Choo K-K R. Book Review: "Phishing and countermeasures: understanding the increasing problem of electronic identity theft". Computing reviews ACM Press. (Forthcoming / published online on 13 Sep 2007)

Book and book chapter

  • Choo K-K R. Secure Key Establishment. Advances in Information Security Book series. Springer Science+Business Media, LLC (Forthcoming)
  • Boyd C and Choo K-K R. Formal Models for Key Establishment. In Wenbo Mao and Markus Jakobsson, editors, Cryptographic Protocols, IOS Press. (Forthcoming)

Refereed conference / workshop proceedings (for the last three years)

  • Choo K-K R and Smith RG 2007. Criminal exploitation of online systems by organised crime groups. In Narayanan Ganapathy and Mark Craig, editors, Organised Crime in Asia: Governance and Accountability colloquium, Singapore, 28-29 June.
  • Phan R C-W, Choo K-K R and Heng S-W 2007. Security of a Leakage-Resilient Protocol for Key Establishment and Mutual Authentication. In International Conference on Provable Security - ProvSec 2007, Wollongong, Australia. Vol. 4784/2007 of Lecture Notes in Computer Science (pp. 169-177), Springer-Verlag, 1-2 Nov.
  • Chow SSM and Choo K-K R 2007. Strongly-Secure Identity-based Key Agreement and Anonymous Extension. In Juan Garay, editor, 10th Information Security Conference 2007 - ISC 2007, Valparaiso, Chile, Volume 4779/2007 of Lecture Notes in Computer Science (pp. 203 - 220), Springer-Verlag, 9-12 October.
  • Lee B, Choo K-K R, Yang J and Yoo S 2007. Secret Signatures: How to Achieve Business Privacy Efficiently?. In Sehun Kim, Moti Yung and Hyung-Woo Lee, editors, 8th International Workshop on Information Security Applications - WISA 2007, Jeju Island, Korea, Lecture Notes in Computer Science, Springer-Verlag, 27-29 August.
  • Choo K-K R 2006. Refuting Security Proofs for Tripartite Key Exchange with Model Checker in Planning Problem Setting. In J Guttman (ed) , 19th IEEE Computer Security Foundations Workshop - CSFW 2006, (pp. 297 - 308), Venice, Italy, IEEE Computer Society Press, 5-7 July.
  • Boyd C & Choo K-K R & Mathuria A 2006. An Extension to Bellare and Rogaway (1993) Model: Resetting Compromised Long-Term Keys. In L Batten & R Safavi-Naini (eds) , 11th Australasian Conference on Information Security and Privacy - ACISP 2006 , Melbourne, Australia, Volume 4058/2006 of Lecture Notes in Computer Science (pp. 371 - 382), Springer-Verlag, 3-5 July.
  • Tang Q & Choo K-K R 2006. Secure Password-based Authenticated Group Key Agreement for Data-Sharing Peer-to-Peer Networks. In J Zhou, M Yung, & F Bao (eds) , 4th International Conference on Applied Cryptography and Network Security - ACNS 2006 , Singapore, Volume 3989/2006 of Lecture Notes in Computer Science (pp. 162 - 177), Springer-Verlag, 6-9 June.
  • Ring J & Choo K-K R & Foo E & Looi M 2006. A New Authentication Mechanism and Key Agreement Protocol for SIP Using Identity-based Cryptography. In A Clark, M McPherson & G Mohay (eds) , AusCERT Asia Pacific Information Technology Security Conference (AusCERT2006): Refereed R&D Stream (pp. 57 - 72), Gold Coast, Australia, University of Queensland Publication, 21 - 26 May.
  • Du R & Foo E & Boyd C & Choo K-K R 2006. Formal Analysis of Secure Contracting Protocol for E-Tendering. In R Safavi-Naini, C Steketee & W Susilo (eds) , ACSW Frontiers 2006 - Fourth Australasian Information Security Workshop (AISW-NetSec 2006), Hobart, Australia, Volume 54 - ACSW Frontiers 2004 of the ACS Conferences in Research and Practice in Information Technology (CRPIT) series (pp. 155 - 164), Australian Computer Society, 16 - 19 Jan.
  • Choo K-K R & Boyd C & Hitchcock Y 2005. Errors in Computational Complexity Proofs for Protocols. In B Roy (ed) , Advances in Cryptology - Asiacrypt 2005, Chennai, India, Volume 3788/2005 of Lecture Notes in Computer Science (pp. 624 - 643), Springer-Verlag, 4 - 8 Dec.
  • Choo K-K R & Boyd C & Hitchcock Y 2005. Examining Indistinguishability-Based Proof Models for Key Establishment Protocols. In B Roy (ed) , Advances in Cryptology - Asiacrypt 2005, Chennai, India, Volume 3788/2005 of Lecture Notes in Computer Science (pp. 585 - 604), Springer-Verlag, 4 - 8 Dec.
  • Boyd C & Choo K-K R 2005. [Invited Paper] Security of Two-Party Identity-Based Key Agreement. In E Dawson & S Vaudenay (eds) , 1st International Conference on Cryptology in Malaysia - Mycrypt 2005, Kuala Lumpur, Malaysia, Volume 3715/2005 of Lecture Notes in Computer Science (pp. 229 - 243), Springer-Verlag, 28 Sep - 01 Oct.
  • Choo K-K R & Boyd C & Hitchcock Y 2005. On Session Key Construction in Provably-Secure Key Establishment Protocols. In E Dawson & S Vaudenay (eds) , 1st International Conference on Cryptology in Malaysia - Mycrypt 2005, Kuala Lumpur, Malaysia, Volume 3715/2005 of Lecture Notes in Computer Science (pp. 116 - 131), Springer-Verlag, 28 Sep - 01 Oct.
  • Choo K-K R & Hitchcock Y 2005. [Best Student Paper Award] Security Requirements for Key Establishment Proof Models: Revisiting Bellare--Rogaway and Jeong--Katz--Lee Protocols. In C Boyd & JM Gonzalez Nieto (eds) , 10th Australasian Conference on Information Security and Privacy - ACISP 2005, Brisbane, Australia, Volume 3574/2005 of Lecture Notes in Computer Science (pp. 429 - 442) , Springer-Verlag, 04 - 06 Jul.
  • Au R & Choo K-K R & Looi M 2005. A Secure Anonymous Authorisation Architecture for E-commerce. In proceedings of IEEE International Conference on e-Technology, e-Commerce and e-Service - EEE 2005, Hong Kong, China, (pp. 106 - 111), IEEE Computer Society Press, 29 March - 1 Apr.
  • Au R & Vasanta H & Choo K-K R & Looi M 2005. A User-Centric Anonymous Authorisation Framework in E-commerce Environment. In M Janssen, HG Sol & RW Wagenaar (eds) , 6th International Conference on Electronic Commerce - ICEC 2004, Delft, The Netherlands, (pp. 138 - 147), ACM Press, 25 - 27 Oct.
  • Choo K-K R & Boyd C & Hitchcock Y & Maitland G 2004. On Session Identifiers in Provably Secure Protocols: The Bellare-Rogaway Three-Party Key Distribution Protocol Revisited. In B Carlo & S Cimato (eds) , 4th Conference on Security in Communication Networks - SCN 2004, Amalfi, Italy, Volume 3352/2005 of Lecture Notes in Computer Science (pp. 352 - 367), Springer-Verlag, 8 - 10 Sep.
  • Choo K-K R & Boyd C & Hitchcock Y & Maitland G 2004. Complementing Computational Protocol Analysis with Formal Specifications. In T Dimitrakos & F Martinelli (eds) , IFIP TC1 WG1.7 2nd International Workshop on Formal Aspects in Security and Trust - FAST 2004, Toulouse, France, Volume 173/2005 of IFIP International Federation for Information Processing Series, Springer-Verlag (pp. 129 - 144) , 26 - 27 Aug.

Seminar presentations (for the last three years)

  • Choo K-K. R. 2008. The use of technology to facilitate the transfer/flow of funds. China Anti-Money Laundering Monitoring and Analysis Center, Beijing, China, 8 April.
  • Choo K-K. R. 2008. Anti-money laundering and counter terrorism financing research. Department of Criminology, National Chung-Cheng University, Taipei, Taiwan, 19 March.
  • Choo K-K. R. 2008. The cyber crime in and from China. National Security Conference 2008, Sydney, 6-7 March.
  • Choo K-K. R. 2007. The use of technology to facilitate the transfer/flow of funds. Presentation to the "Proceeds of Crime Working Group" at Australian Federal Police Sydney Headquarters, Australia, 27 November.
  • Choo K-K. R. 2007. Criminal exploitation of online systems by organised crime groups. Organised Crime in Asia: Governance and Accountability colloquium, Singapore, 28-29 June.
  • Choo K-K. R. 2006. High Tech Crime Tools Review, Cyber Crime In Focus - Prevention & Response conference, Sydney, Australia, 11-12 December
  • McCusker R. and Choo K-K. R. 2006. Cyberthreats, Attorney-General's Department, Canberra, Australia, 13 September
  • Choo K-K. R. 2006. Key Establishment Protocols: An Overview, SIM University, Singapore, 21 July
  • Choo K-K. R. 2006. Refuting Security Proofs for Tripartite Key Exchange with Model Checker in Planning Program Setting, Institute for InfoComm Research (I2R), Singapore, 20 July
  • Choo K-K. R. 2006. Refuting Security Proofs for Tripartite Key Exchange with Model Checker in Planning Program Setting, Institut für Informatik / Universität Potsdam, Berlin, Germany, 11 July
  • Choo K-K. R. 2006. Refuting Security Proofs for Tripartite Key Exchange with Model Checker in Planning Program Setting, 19th IEEE Computer Security Foundations Workshop (CSFW), Venice, Italy, 5 - 7 July
  • Choo K-K. R. 2006. Refuting Security Proofs for Tripartite Key Exchange with Model Checker, Intelligent Systems Lab / University of Western Sydney, Sydney, Australia, 24 February
  • Choo K-K. R. 2006. Ph.D. Final Defense Seminar: Key Establishment - Proofs and Refutations, Queensland University of Technology, Brisbane, Australia, 24 January
  • Choo K-K. R. 2005. Key Establishment - Proofs and Refutations: An Overview, Singapore Management University, Singapore, 12 December
  • Choo K-K. R. 2005. Errors in Computational Complexity Proofs for Protocols, Advances in Cryptology - Asiacrypt 2005, Chennai, India, 04-08 December
  • Choo K-K. R. 2005. Proofs and Specifications for Cryptographic Protocols: An Overview, Intelligent Systems Lab / University of Western Sydney, Sydney, Australia, 25 November
  • Choo K-K. R. 2005. Cryptographic Key Establishment Protocols: An Overview, Information Security Institute / Queensland University of Technology, Brisbane, Australia, 01 November
  • Choo K-K. R. 2005. Security Requirement for Key Establishment Proof Models, 10th Australasian Conference on Information Security and Privacy - ACISP 2005, Brisbane, Australia, 04-06 July
  • Choo K-K. R. 2004. On Session Identifiers in Provably Secure Protocols: The Bellare-Rogaway Three-Party Key Distribution Protocol Revisited, Institute for InfoComm Research (I2R), Singapore, 21 September
  • Choo K-K. R. 2004. On Session Identifiers in Provably Secure Protocols: The Bellare-Rogaway Three-Party Key Distribution Protocol Revisited, 4th Conference on Security in Communication Networks - SCN 2004, Amalfi, Italy, 08-10 September
  • Choo K-K. R. 2004. Complementing Computational Protocol Analysis with Formal Specifications, Fraunhofer Institute for Secure Telecommunications, Darmstadt, Germany, 03 September
  • Choo K-K. R. 2004. Complementing Computational Protocol Analysis with Formal Specifications, Cryptographic Protocols Group / Department of Computer Science / Darmstadt University of Technology, Darmstadt, Germany, 02 September
  • Choo K-K. R. 2004. Complementing Computational Protocol Analysis with Formal Specifications, 2nd International Workshop on Formal Aspects in Security and Trust - FAST 2004, Toulouse, France, 26-27 August
  • Choo K-K. R. 2004. Provably Secure Session Key Distribution: The Three Party Case, Queensland University of Technology, Brisbane, Australia, 01 June

Committees/Memberships