@article{65535,
  abstract     = {{<jats:p>Side-channel attacks on elliptic curve cryptography (ECC) often assume a white-box attacker who has detailed knowledge of the implementation choices taken by the target implementation. Due to the complex and layered nature of ECC, there are many choices that a developer makes to obtain a functional and interoperable implementation. These include the curve model, coordinate system, addition formulas, and the scalar multiplier, or lower-level details such as the finite-field multiplication algorithm. This creates a gap between the attack requirements and a real-world attacker that often only has black-box access to the target – i.e., has no access to the source code nor knowledge of specific implementation choices made. Yet, when the gap is closed, even real-world implementations of ECC succumb to side-channel attacks, as evidenced by attacks such as TPM-Fail, Minerva, the Side Journey to Titan, or TPMScan [MSE+20; JSS+20; RLM+21; SDB+24].We study this gap by first analyzing open-source ECC libraries for insight into realworld implementation choices. We then examine the space of all ECC implementations combinatorially. Finally, we present a set of novel methods for automated reverse engineering of black-box ECC implementations and release a documented and usable open-source toolkit for side-channel analysis of ECC called pyecsca.Our methods turn attacks around: instead of attempting to recover the private key, they attempt to recover the implementation configuration given control over the private and public inputs. We evaluate them on two simulation levels and study the effect of noise on their performance. Our methods are able to 1) reverse-engineer the scalar multiplication algorithm completely and 2) infer significant information about the coordinate system and addition formulas used in a target implementation. Furthermore, they can bypass coordinate and curve randomization countermeasures.</jats:p>}},
  author       = {{Jancar, Jan and Suchanek, Vojtech and Svenda, Petr and Sedlacek, Vladimir and Chmielewski, Łukasz}},
  issn         = {{2569-2925}},
  journal      = {{IACR Transactions on Cryptographic Hardware and Embedded Systems}},
  number       = {{4}},
  pages        = {{355--381}},
  publisher    = {{Universitatsbibliothek der Ruhr-Universitat Bochum}},
  title        = {{{pyecsca: Reverse engineering black-box elliptic curve cryptography via side-channel analysis}}},
  doi          = {{10.46586/tches.v2024.i4.355-381}},
  volume       = {{2024}},
  year         = {{2024}},
}

@article{65534,
  abstract     = {{Cryptography secures our online interactions, transactions, and trust. To achieve this goal, not only do the cryptographic primitives and protocols need to be secure in theory, they also need to be securely implemented by cryptographic library developers in practice. However, implementing cryptographic algorithms securely is challenging, even for skilled professionals, which can lead to vulnerable implementations, especially to side-channel attacks. For timing attacks, a severe class of side-channel attacks, there exist a multitude of tools that are supposed to help cryptographic library developers assess whether their code is vulnerable to timing attacks. Previous work has established that despite an interest in writing constant-time code, cryptographic library developers do not routinely use these tools due to their general lack of usability. However, the precise factors affecting the usability of these tools remain unexplored. While many of the tools are developed in an academic context, we believe that it is worth exploring the factors that contribute to or hinder their effective use by cryptographic library developers [61]. To assess what contributes to and detracts from usability of tools that verify constant-timeness (CT), we conducted a two-part usability study with 24 (post) graduate student participants on 6 tools across diverse tasks that approximate real-world use cases for cryptographic library developers. We find that all studied tools are affected by similar usability issues to varying degrees, with no tool excelling in usability, and usability issues preventing their effective use. Based on our results, we recommend that effective tools for verifying CT need usable documentation, simple installation, easy to adapt examples, clear output corresponding to CT violations, and minimal noninvasive code markup. We contribute first steps to achieving these with limited academic resources, with our documentation, examples, and installation scripts(1).}},
  author       = {{Fourn , M and Braga, DD and Jancar, J and Sabt, M and Schwabe, P and Barthe, G and Fouque, PA and Acar, Y}},
  issn         = {{978-1-939133-44-1}},
  publisher    = {{Usenix Assoc}},
  title        = {{{"These results must be false": A usability evaluation of constant-time analysis tools}}},
  year         = {{2024}},
}

@inbook{65536,
  author       = {{Janovsky, Adam and Chmielewski, Łukasz and Svenda, Petr and Jancar, Jan and Matyas, Vashek}},
  booktitle    = {{IFIP Advances in Information and Communication Technology}},
  isbn         = {{9783031651748}},
  issn         = {{1868-4238}},
  publisher    = {{Springer Nature Switzerland}},
  title        = {{{Chain of Trust: Unraveling References Among Common Criteria Certified Products}}},
  doi          = {{10.1007/978-3-031-65175-5_14}},
  year         = {{2024}},
}

@article{65527,
  author       = {{Janovsky, Adam and Jancar, Jan and Svenda, Petr and Chmielewski, Łukasz and Michalik, Jiri and Matyas, Vashek}},
  issn         = {{0167-4048}},
  journal      = {{Computers &amp; Security}},
  publisher    = {{Elsevier BV}},
  title        = {{{sec-certs: Examining the security certification practice for better vulnerability mitigation}}},
  doi          = {{10.1016/j.cose.2024.103895}},
  volume       = {{143}},
  year         = {{2024}},
}

@inproceedings{62047,
  author       = {{Reckmann, Eileen and Temmen, Katrin}},
  location     = {{Hannover}},
  title        = {{{Erste Ergebnisse aus einer Interviewstudie mit Workshop-Moderierenden mobiler Schülerlaborangebote an außerschulischen Lernorten}}},
  year         = {{2024}},
}

@article{48484,
  abstract     = {{<jats:title>Abstract</jats:title><jats:p>Previous research indicates that performing passes with a head fake in basketball leads to increased response initiation times and errors as compared to performing a pass without a head fake. These so-called fake production costs only occurred when not given the time to mentally prepare the deceptive movement. In the current study, we investigated if extensive practice could reduce the cognitive costs of producing a pass with head fake. Twenty-four basketball novices participated in an experiment on five consecutive days. A visual cue prompted participants to play a pass with or without a head fake either to the left or right side. The cued action had to be executed after an interstimulus interval (ISI) of either 0 ms, 400 ms, 800 ms or 1200 ms, allowing for different movement preparation times. Results indicated higher response initiation times (ITs) and error rates (ERs) for passes with head fakes for the short preparation intervals (ISI 0 ms and 400 ms) on the first day but no difference for the longer preparation intervals (ISI 800 ms and 1200 ms). After only one day of practice, participants showed reduced fake production costs (for ISI 0 ms) and were even able to eliminate these cognitive costs when given time to mentally prepare the movement (for ISI 400 ms). Accordingly, physical practice can reduce the cognitive costs associated with head-fake generation. This finding is discussed against the background of the strengthening of stimulus response associations.</jats:p>}},
  author       = {{Böer, Nils Tobias and Weigelt, Matthias and Schütz, Christoph and Güldenpenning, Iris}},
  issn         = {{0340-0727}},
  journal      = {{Psychological Research}},
  keywords     = {{Arts and Humanities (miscellaneous), Developmental and Educational Psychology, Experimental and Cognitive Psychology, General Medicine}},
  pages        = {{523--534}},
  publisher    = {{Springer Science and Business Media LLC}},
  title        = {{{Practice reduces the costs of producing head fakes in basketball}}},
  doi          = {{10.1007/s00426-023-01885-x}},
  volume       = {{88}},
  year         = {{2024}},
}

@inproceedings{53811,
  abstract     = {{Persistent security challenges plague DevOps teams due to a deficiency in expertise regarding security tools and methods, as evidenced by frequent security incidents. Existing maturity models fail to adequately address the specific needs of DevOps teams. In response, this paper proposes "Security Belts," a novel maturity model inspired by martial arts ranking systems. This model aims to assist DevOps teams in enhancing their security capabilities by providing a structured approach, starting with fundamental activities and progressing to more advanced techniques. Drawing from the experiences of monitoring 21 teams, the paper presents lessons learned and offers actionable advice for refining maturity models tailored to software quality improvement.}},
  author       = {{Taaibi, Samira and Dziwok, Stefan and Hermerschmidt, Lars and Koch, Thorsten and Merschjohann, Sven and Vollmary, Mark}},
  booktitle    = {{AMCIS 2024 Proceedings. 13.}},
  keywords     = {{Software security, maturity model}},
  location     = {{Salt Lake City}},
  title        = {{{Security Belts: A Maturity Model for DevOps Teams to Increase the Software Security of their Product - An Experience Report}}},
  year         = {{2024}},
}

@inbook{65592,
  author       = {{Pauls, Karina and Musehold, Thomas}},
  booktitle    = {{Schnittstelle Kunstunterricht: Skulptur - Material - Prozess}},
  editor       = {{Pauls, Karina}},
  isbn         = {{9783763977253}},
  title        = {{{3D-Druck in Kunst und Lehre - Thomas Musehold und Karina Pauls im Gespräch}}},
  year         = {{2024}},
}

@inbook{65590,
  author       = {{Pauls, Karina}},
  booktitle    = {{Schnittstelle Kunstunterricht: Skulptur - Material - Prozess}},
  editor       = {{Pauls, Karina}},
  isbn         = {{9783763977253}},
  title        = {{{Skulptur und Prozesse im Material}}},
  doi          = {{10.3278/9783763977246}},
  year         = {{2024}},
}

@inbook{65591,
  author       = {{Pauls, Karina}},
  booktitle    = {{Schnittstelle Kunstunterricht: Skulptur - Material - Prozess}},
  editor       = {{Pauls, Karina}},
  isbn         = {{9783763977253}},
  title        = {{{Beispiel aus der Lehrpraxis: Keramik + X}}},
  year         = {{2024}},
}

@book{65589,
  editor       = {{Pauls, Karina}},
  isbn         = {{9783763977253}},
  title        = {{{Schnittstelle Kunstunterricht: Skulptur - Material - Prozess}}},
  doi          = {{10.3278/9783763977246}},
  year         = {{2024}},
}

@misc{57860,
  abstract     = {{BloKK-Beitrag für das ZeKK, 07.06.2024}},
  author       = {{Lebock, Sarah}},
  title        = {{{"Auf der Suche nach Frieden"}}},
  year         = {{2024}},
}

@book{56078,
  author       = {{Eickelmann, Birgit and Gerick, Julia and Hauck-Thum, Uta and Maaz, Kai}},
  pages        = {{139}},
  publisher    = {{Forum Bildung Digitalisierung e. V}},
  title        = {{{Navigator Bildung Digitalisierung. Konzeptionierung und Orientierung zum Stand der digitalen Transformation im schulischen Bildungsbereich in Deutschland}}},
  year         = {{2024}},
}

@inproceedings{54650,
  abstract     = {{<jats:p>Abstract. Reducing the weight of vehicles can significantly lower the energy or fuel consumed and thus the emissions during operation. One possibility to assess this is the use of a property adapted multi-material systems containing high strength steel, light metals like aluminium or magnesium and fibre reinforced plastics. While expanding the number of materials used new challenges arise for the production and furthermore the joining technology to manufacture the vehicle made of the multi-material systems. One approach to overcome these challenges is to use innovative and adaptable joining techniques which allows the manufacturing of joints of different material combinations. Extensive research activities on the two stage thermo-mechanical joining process with adaptable joining elements was able to demonstrate the great potentials in terms of joining dissimilar materials with good strength. The previously kinematic and path-based fabrication of auxiliary joining elements is modified in this publication to a form-based approach with a perspective of establishing an efficient process chain using easily and cheaply available rods. Based on the new approach to produce the auxiliary joining elements, it can be demonstrated that a reproducible production of the geometry is possible for the investigated steel as well as aluminium material. </jats:p>}},
  author       = {{Borgert, Thomas and Nordieker, Ansgar Bernhard and Homberg, Werner}},
  booktitle    = {{Materials Research Proceedings}},
  issn         = {{2474-395X}},
  location     = {{Toulouse}},
  publisher    = {{Materials Research Forum LLC}},
  title        = {{{Form-based manufacturing of aluminium and steel auxiliary joining elements as the basis for an efficient joining operation}}},
  doi          = {{10.21741/9781644903131-180}},
  year         = {{2024}},
}

@article{54649,
  author       = {{Borgert, Thomas and Nordieker, Ansgar Bernhard and Wiens, Eugen and Homberg, Werner}},
  issn         = {{2666-3309}},
  journal      = {{Journal of Advanced Joining Processes}},
  publisher    = {{Elsevier BV}},
  title        = {{{Investigations to improve the tool life during thermomechanical and incremental forming of steel auxiliary joining elements}}},
  doi          = {{10.1016/j.jajp.2024.100185}},
  volume       = {{9}},
  year         = {{2024}},
}

@inproceedings{61797,
  author       = {{Hollmer, Katharina and Kuczyk, Martin and Friedlein, Johannes and Mergheim, Julia and Steinmann, Paul and Zimmermann, Martina}},
  title        = {{{Charakterisierung des Verformungszustandes gleichartiger Stahl-Stahl-Clinchverbindungen durch Anwendung quantitativer Bildanalyse }}},
  year         = {{2024}},
}

@inproceedings{60645,
  abstract     = {{Die Wandlungsfähigkeit einer Prozesskette erfordert Fügeverbindungen mit gezielt einstellbaren mechanischen, elektrischen, thermischen oder chemischen Eigenschaften. Dieser Beitrag beschreibt die Untersuchungen, inwiefern beim Clinchen zweier Bleche aus der ausscheidungshärtbaren Aluminiumlegierung EN AW-6014 bereits auf Basis der Prozessüberwachung des Kraft-Weg-Verlaufs bzw. des sich daraus ergebenden Energieeintrags auf die mechanischen und elektrischen Eigenschaften der Fügeverbindung geschlossen werden kann. An einer ausgewählten Fügeaufgabe werden im Stufenversuch die gegenseitigen Abhängigkeiten der einzelnen Einflussgrößen sowie des Wärmebehandlungszustands aufgezeigt. Dabei wird zwischen den Bindemechanismen Formschluss und Kraftschluss unterschieden. Die Formschlusskomponente wird anhand der geometrischen Kenngrößen wie Bodendicke, Halsdicke und Hinterschnitt in Mikroskopieuntersuchungen an Schliffbildern und den mechanischen Eigenschaften der Fügeverbindung untersucht, die im Scherzug- und Kopfzugversuch bestimmt werden. Dazu erfolgt zudem die Charakterisierung der Versagensbilder. Zur Quantifizierung der Kraftschlusskomponente der Fügeverbindung werden das Losbrechmoment im Torsionsversuch und der elektrische Widerstand mittels Vier-Leiter-Methode ermittelt und korreliert.}},
  author       = {{Lüder, Stephan and Kalich, Jan and Oesterle, Hannes and Schmale, Hans Christian}},
  booktitle    = {{Tagung Werkstoffprüfung 2024: Werkstoffe und Bauteile auf dem Prüfstand, Prüftechnik – Kennwertermittlung – Schadensvermeidung}},
  editor       = {{Krupp, Ulrich and Steller, Ingo}},
  isbn         = {{978-3-941269-97-2}},
  keywords     = {{Clinchen, Aluminium, Stufensetzversuch, Bindemechanismus, Formschluss, Kraftschluss, Zugversuch, Torsionsversuch, Widerstandsmessung}},
  location     = {{Krefeld}},
  pages        = {{205--210}},
  title        = {{{Prozessüberwachte Eigenschaftseinstellung beim Clinchen der ausscheidungshärtbaren Aluminiumlegierung EN AW-6014}}},
  year         = {{2024}},
}

@article{57742,
  author       = {{Böhnke, Max and Bielak, Christian Roman and Beck, Robert and Bobbert, Mathias and Meschut, Gerson}},
  issn         = {{2223-7690}},
  journal      = {{Friction}},
  publisher    = {{Tsinghua University Press}},
  title        = {{{Development of a friction model for the numerical simulation of clinching processes}}},
  doi          = {{10.26599/frict.2025.9441052}},
  year         = {{2024}},
}

@article{59585,
  abstract     = {{Similar to bulk metal forming, clinch joining is characterised by large plastic deformations and a variety of different 3D stress states, including severe compression. However, inherent to plastic forming is the nucleation and growth of defects, whose detrimental effects on the material behaviour can be described by continuum damage models and eventually lead to material failure. As the damage evolution strongly depends on the stress state, a stress-state-dependent model is utilised to correctly track the accumulation. To formulate and parameterise this model, besides classical experiments, so-called modified punch tests are also integrated herein to enhance the calibration of the failure model by capturing a larger range of stress states and metal-forming-specific loading conditions. Moreover, when highly ductile materials are considered, such as the dual-phase steel HCT590X and the aluminium alloy EN AW-6014 T4 investigated here, strong necking and localisation might occur prior to fracture. This can alter the stress state and affect the actual strain at failure. This influence is captured by coupling plasticity and damage to incorporate the damage-induced softening effect. Its relative importance is shown by conducting inverse parameter identifications to determine damage and failure parameters for both mentioned ductile metals based on up to 12 different experiments.}},
  author       = {{Friedlein, Johannes and Böhnke, Max and Schlichter, Malte Christian and Bobbert, Mathias and Meschut, Gerson and Mergheim, Julia and Steinmann, Paul}},
  issn         = {{2504-4494}},
  journal      = {{Journal of Manufacturing and Materials Processing}},
  number       = {{4}},
  publisher    = {{MDPI AG}},
  title        = {{{Material Parameter Identification for a Stress-State-Dependent Ductile Damage and Failure Model Applied to Clinch Joining}}},
  doi          = {{10.3390/jmmp8040157}},
  volume       = {{8}},
  year         = {{2024}},
}

@book{58215,
  editor       = {{Bürgel, Christoph and Heiderich, Jens  and Koch, Corinna and Schlaak, Claudia and Visser, Judith}},
  title        = {{{	Zeitschrift für Romanische Sprachen und ihre Didaktik}}},
  volume       = {{Heft 18,1}},
  year         = {{2024}},
}

