Please note that LibreCat no longer supports Internet Explorer versions 8 or 9 (or earlier).
We recommend upgrading to the latest Internet Explorer, Google Chrome, or Firefox.
18 Publications
2025 | Conference Paper | LibreCat-ID: 58657 | 
Rossel, J., Mladenov, V., Wördenweber, N., & Somorovsky, J. (2025). Security Implications of Malicious G-Codes in 3D Printing. Proceedings of the 34th USENIX Security Symposium (USENIX ’25). 34th USENIX Security Symposium, Seattle, WA, USA.
LibreCat
| Files available
2025 | Conference Paper | LibreCat-ID: 58801 |
Lange, F., Niere, N., von Niessen, J., Suermann, D., Heitmann, N., & Somorovsky, J. (2025). I(ra)nconsistencies: Novel Insights into Iran’s Censorship. Proceedings on Privacy Enhancing Technologies. Free and Open Communications on the Internet, Virtual.
LibreCat
| Files available
| Download (ext.)
2024 | Conference Paper | LibreCat-ID: 54437
Heitmann, N., Siewert, H., Moog, S., & Somorovsky, J. (2024). Security Analysis of BigBlueButton and eduMEET. Applied Cryptography and Network Security. https://doi.org/10.1007/978-3-031-54776-8_8
LibreCat
| DOI
| Download (ext.)
2024 | Conference Paper | LibreCat-ID: 55137 |
Müller, P., Niere, N., Lange, F., & Somorovsky, J. (2024). Turning Attacks into Advantages: Evading HTTP Censorship with HTTP Request Smuggling. Proceedings on Privacy Enhancing Technologies. Free and Open Communications on the Internet 2024 , Bristol.
LibreCat
| Files available
| Download (ext.)
2024 | Book Chapter | LibreCat-ID: 56079
Radoy, M. M., Hebrok, S. N., & Somorovsky, J. (2024). In Search of Partitioning Oracle Attacks Against TLS Session Tickets. In Lecture Notes in Computer Science. Springer Nature Switzerland. https://doi.org/10.1007/978-3-031-70896-1_16
LibreCat
| DOI
2024 | Conference Paper | LibreCat-ID: 57816
Bäumer, F., Brinkmann, M., Erinola, N., Hebrok, S. N., Heitmann, N., Lange, F., Maehren, M., Merget, R., Niere, N., Radoy, M. M., Schmidt, C., Schwenk, J., & Somorovsky, J. (2024). TLS-Attacker: A Dynamic Framework for Analyzing TLS Implementations. Proceedings of Cybersecurity Artifacts Competition and Impact Award (ACSAC ’24). Annual Computer Security Applications Conference, Hawaii.
LibreCat
2023 | Conference Paper | LibreCat-ID: 49654
Niere, N., Hebrok, S. N., Somorovsky, J., & Merget, R. (2023). Poster: Circumventing the GFW with TLS Record Fragmentation. Proceedings of the 2023 ACM SIGSAC Conference on Computer and Communications Security. https://doi.org/10.1145/3576915.3624372
LibreCat
| DOI
2023 | Conference Paper | LibreCat-ID: 46500
Pottebaum, J., Rossel, J., Somorovsky, J., Acar, Y., Fahr, R., Arias Cabarcos, P., Bodden, E., & Gräßler, I. (2023). Re-Envisioning Industrial Control Systems Security by Considering Human Factors as a Core Element of Defense-in-Depth. 2023 IEEE European Symposium on Security and Privacy Workshops (EuroS&PW), 379–385. https://doi.org/10.1109/eurospw59978.2023.00048
LibreCat
| Files available
| DOI
| Download (ext.)
2023 | Conference Paper | LibreCat-ID: 48012 |
Rossel, J., Mladenov, V., & Somorovsky, J. (2023). Security Analysis of the 3MF Data Format. Proceedings of the 26th International Symposium on Research in Attacks, Intrusions and Defenses. 26th International Symposium on Research in Attacks, Intrusions and Defenses, Hongkong. https://doi.org/10.1145/3607199.3607216
LibreCat
| Files available
| DOI
| Download (ext.)
2023 | Conference Paper | LibreCat-ID: 43060 |
Hebrok, S. N., Nachtigall, S., Maehren, M., Erinola, N., Merget, R., Somorovsky, J., & Schwenk, J. (2023). We Really Need to Talk About Session Tickets: A Large-Scale Analysis of Cryptographic Dangers with TLS Session Tickets. 32nd USENIX Security Symposium.
LibreCat
| Download (ext.)
2022 | Conference Paper | LibreCat-ID: 32572
Mayer, P., Poddebniak, D., Fischer, K., Brinkmann, M., Somorovsky, J., Sasse, A., Schinzel, S., & Volkamer, M. (2022). “I don’ know why I check this...” - Investigating Expert Users’ Strategies to Detect Email Signature Spoofing Attacks. Eighteenth Symposium on Usable Privacy and Security (SOUPS 2022), 77–96.
LibreCat
2022 | Conference Paper | LibreCat-ID: 32573
Maehren, M., Nieting, P., Hebrok, S. N., Merget, R., Somorovsky, J., & Schwenk, J. (2022). TLS-Anvil: Adapting Combinatorial Testing for TLS Libraries. 31st USENIX Security Symposium (USENIX Security 22).
LibreCat
2022 | Conference Paper | LibreCat-ID: 54435
Siewert, H., Kretschmer, M., Niemietz, M., & Somorovsky, J. (2022). On the Security of Parsing Security-Relevant HTTP Headers in Modern Browsers. 2022 IEEE Security and Privacy Workshops (SPW). https://doi.org/10.1109/spw54247.2022.9833880
LibreCat
| DOI
2021 | Conference Paper | LibreCat-ID: 25331
Brinkmann, M., Dresen, C., Merget, R., Poddebniak, D., Müller, J., Somorovsky, J., Schwenk, J., & Schinzel, S. (2021). ALPACA: Application Layer Protocol Confusion - Analyzing and Mitigating Cracks in TLS Authentication. 30th {USENIX} Security Symposium ({USENIX} Security 21), 4293–4310.
LibreCat
2021 | Conference Paper | LibreCat-ID: 25332
Merget, R., Brinkmann, M., Aviram, N., Somorovsky, J., Mittmann, J., & Schwenk, J. (2021). Raccoon Attack: Finding and Exploiting Most-Significant-Bit-Oracles in TLS-DH(E). 30th {USENIX} Security Symposium ({USENIX} Security 21), 213–230.
LibreCat
2021 | Journal Article | LibreCat-ID: 24143
Drees, J. P., Gupta, P., Hüllermeier, E., Jager, T., Konze, A., Priesterjahn, C., Ramaswamy, A., & Somorovsky, J. (2021). Automated Detection of Side Channels in Cryptographic Protocols: DROWN the ROBOTs! 14th ACM Workshop on Artificial Intelligence and Security.
LibreCat
2020 | Conference Paper | LibreCat-ID: 25334
Fiterau-Brostean, P., Jonsson, B., Merget, R., de Ruiter, J., Sagonas, K., & Somorovsky, J. (2020). Analysis of DTLS Implementations Using Protocol State Fuzzing. 29th {USENIX} Security Symposium ({USENIX} Security 20), 2523–2540.
LibreCat
2020 | Conference Paper | LibreCat-ID: 25336
Schwenk, J., Brinkmann, M., Poddebniak, D., Müller, J., Somorovsky, J., & Schinzel, S. (2020). Mitigation of Attacks on Email End-to-End Encryption. Proceedings of the 2020 ACM SIGSAC Conference on Computer and Communications Security, 1647–1664. https://doi.org/10.1145/3372297.3417878
LibreCat
| DOI