Please note that LibreCat no longer supports Internet Explorer versions 8 or 9 (or earlier).

We recommend upgrading to the latest Internet Explorer, Google Chrome, or Firefox.

53 Publications


2024 | Conference Paper | LibreCat-ID: 55137 | OA
Müller, P., Niere, N., Lange, F., & Somorovsky, J. (2024). Turning Attacks into Advantages: Evading HTTP Censorship with HTTP Request Smuggling. Proceedings on Privacy Enhancing Technologies. Free and Open Communications on the Internet 2024 , Bristol.
LibreCat | Files available | Download (ext.)
 

2024 | Book Chapter | LibreCat-ID: 56079
Radoy, M. M., Hebrok, S. N., & Somorovsky, J. (2024). In Search of Partitioning Oracle Attacks Against TLS Session Tickets. In Lecture Notes in Computer Science. Springer Nature Switzerland. https://doi.org/10.1007/978-3-031-70896-1_16
LibreCat | DOI
 

2024 | Conference Paper | LibreCat-ID: 57816
Bäumer, F., Brinkmann, M., Erinola, N., Hebrok, S. N., Heitmann, N., Lange, F., Maehren, M., Merget, R., Niere, N., Radoy, M. M., Schmidt, C., Schwenk, J., & Somorovsky, J. (2024). TLS-Attacker: A Dynamic Framework for Analyzing TLS Implementations. Proceedings of Cybersecurity Artifacts Competition and Impact Award (ACSAC ’24). Annual Computer Security Applications Conference, Hawaii.
LibreCat
 

2023 | Conference Paper | LibreCat-ID: 49654
Niere, N., Hebrok, S. N., Somorovsky, J., & Merget, R. (2023). Poster: Circumventing the GFW with TLS Record Fragmentation. Proceedings of the 2023 ACM SIGSAC Conference on Computer and Communications Security. https://doi.org/10.1145/3576915.3624372
LibreCat | DOI
 

2023 | Conference Paper | LibreCat-ID: 46500
Pottebaum, J., Rossel, J., Somorovsky, J., Acar, Y., Fahr, R., Arias Cabarcos, P., Bodden, E., & Gräßler, I. (2023). Re-Envisioning Industrial Control Systems Security by Considering Human Factors as a Core Element of Defense-in-Depth. 2023 IEEE European Symposium on Security and Privacy Workshops (EuroS&PW), 379–385. https://doi.org/10.1109/eurospw59978.2023.00048
LibreCat | Files available | DOI | Download (ext.)
 

2023 | Conference Paper | LibreCat-ID: 48012 | OA
Rossel, J., Mladenov, V., & Somorovsky, J. (2023). Security Analysis of the 3MF Data Format. Proceedings of the 26th International Symposium on Research in Attacks, Intrusions and Defenses. 26th International Symposium on Research in Attacks, Intrusions and Defenses, Hongkong. https://doi.org/10.1145/3607199.3607216
LibreCat | Files available | DOI | Download (ext.)
 

2023 | Conference Paper | LibreCat-ID: 43060 | OA
Hebrok, S. N., Nachtigall, S., Maehren, M., Erinola, N., Merget, R., Somorovsky, J., & Schwenk, J. (2023). We Really Need to Talk About Session Tickets: A Large-Scale Analysis of Cryptographic Dangers with TLS Session Tickets. 32nd USENIX Security Symposium.
LibreCat | Download (ext.)
 

2022 | Conference Paper | LibreCat-ID: 32572
Mayer, P., Poddebniak, D., Fischer, K., Brinkmann, M., Somorovsky, J., Sasse, A., Schinzel, S., & Volkamer, M. (2022). “I don’ know why I check this...” - Investigating Expert Users’ Strategies to Detect Email Signature Spoofing Attacks. Eighteenth Symposium on Usable Privacy and Security (SOUPS 2022), 77–96.
LibreCat
 

2022 | Conference Paper | LibreCat-ID: 32573
Maehren, M., Nieting, P., Hebrok, S. N., Merget, R., Somorovsky, J., & Schwenk, J. (2022). TLS-Anvil: Adapting Combinatorial Testing for TLS Libraries. 31st USENIX Security Symposium (USENIX Security 22).
LibreCat
 

2022 | Conference Paper | LibreCat-ID: 54435
Siewert, H., Kretschmer, M., Niemietz, M., & Somorovsky, J. (2022). On the Security of Parsing Security-Relevant HTTP Headers in Modern Browsers. 2022 IEEE Security and Privacy Workshops (SPW). https://doi.org/10.1109/spw54247.2022.9833880
LibreCat | DOI
 

2021 | Conference Paper | LibreCat-ID: 25331
Brinkmann, M., Dresen, C., Merget, R., Poddebniak, D., Müller, J., Somorovsky, J., Schwenk, J., & Schinzel, S. (2021). ALPACA: Application Layer Protocol Confusion - Analyzing and Mitigating Cracks in TLS Authentication. 30th {USENIX} Security Symposium ({USENIX} Security 21), 4293–4310.
LibreCat
 

2021 | Conference Paper | LibreCat-ID: 25332
Merget, R., Brinkmann, M., Aviram, N., Somorovsky, J., Mittmann, J., & Schwenk, J. (2021). Raccoon Attack: Finding and Exploiting Most-Significant-Bit-Oracles in TLS-DH(E). 30th {USENIX} Security Symposium ({USENIX} Security 21), 213–230.
LibreCat
 

2021 | Journal Article | LibreCat-ID: 24143
Drees, J. P., Gupta, P., Hüllermeier, E., Jager, T., Konze, A., Priesterjahn, C., Ramaswamy, A., & Somorovsky, J. (2021). Automated Detection of Side Channels in Cryptographic Protocols: DROWN the ROBOTs! 14th ACM Workshop on Artificial Intelligence and Security.
LibreCat
 

2020 | Conference Paper | LibreCat-ID: 25334
Fiterau-Brostean, P., Jonsson, B., Merget, R., de Ruiter, J., Sagonas, K., & Somorovsky, J. (2020). Analysis of DTLS Implementations Using Protocol State Fuzzing. 29th {USENIX} Security Symposium ({USENIX} Security 20), 2523–2540.
LibreCat
 

2020 | Conference Paper | LibreCat-ID: 25336
Schwenk, J., Brinkmann, M., Poddebniak, D., Müller, J., Somorovsky, J., & Schinzel, S. (2020). Mitigation of Attacks on Email End-to-End Encryption. Proceedings of the 2020 ACM SIGSAC Conference on Computer and Communications Security, 1647–1664. https://doi.org/10.1145/3372297.3417878
LibreCat | DOI
 

2019 | Conference Paper | LibreCat-ID: 15908 | OA
Müller, J., Brinkmann, M., Poddebniak, D., Böck, H., Schinzel, S., Somorovsky, J., & Schwenk, J. (2019). “Johnny, you are fired!” -- Spoofing OpenPGP and S/MIME Signatures in Emails. In 28th {USENIX} Security Symposium ({USENIX} Security 19) (pp. 1011–1028). Santa Clara, CA: {USENIX} Association.
LibreCat | Download (ext.)
 

2019 | Conference Paper | LibreCat-ID: 15909 | OA
Merget, R., Somorovsky, J., Aviram, N., Young, C., Fliegenschmidt, J., Schwenk, J., & Shavitt, Y. (2019). Scalable Scanning and Automatic Classification of TLS Padding Oracle Vulnerabilities. In 28th {USENIX} Security Symposium ({USENIX} Security 19) (pp. 1029–1046). Santa Clara, CA: {USENIX} Association.
LibreCat | Download (ext.)
 

2019 | Conference Paper | LibreCat-ID: 15910
Engelbertz, N., Mladenov, V., Somorovsky, J., Herring, D., Erinola, N., & Schwenk, J. (2019). Security Analysis of XAdES Validation in the CEF Digital Signature Services (DSS). In H. Roßnagel, S. Wagner, & D. Hühnlein (Eds.), Open Identity Summit 2019 (pp. 95–106). Gesellschaft für Informatik, Bonn.
LibreCat
 

2018 | Conference Paper | LibreCat-ID: 15892
Albrecht, M. R., Massimo, J., Paterson, K. G., & Somorovsky, J. (2018). Prime and Prejudice: Primality Testing Under Adversarial Conditions. In Proceedings of the 2018 ACM SIGSAC Conference on Computer and Communications Security. https://doi.org/10.1145/3243734.3243787
LibreCat | DOI | Download (ext.)
 

2018 | Conference Paper | LibreCat-ID: 15893
Poddebniak, D., Somorovsky, J., Schinzel, S., Lochter, M., & Rosler, P. (2018). Attacking Deterministic Signature Schemes Using Fault Attacks. In 2018 IEEE European Symposium on Security and Privacy (EuroS&P). https://doi.org/10.1109/eurosp.2018.00031
LibreCat | DOI
 

Filters and Search Terms

(person=83504)

Search

Filter Publications

Display / Sort

Citation Style: APA

Export / Embed