Please note that LibreCat no longer supports Internet Explorer versions 8 or 9 (or earlier).
We recommend upgrading to the latest Internet Explorer, Google Chrome, or Firefox.
44 Publications
2017 | Conference Paper | LibreCat-ID: 15895
Muller, J., Mladenov, V., Somorovsky, J., & Schwenk, J. (2017). SoK: Exploiting Network Printers. In 2017 IEEE Symposium on Security and Privacy (SP). https://doi.org/10.1109/sp.2017.47
LibreCat
| DOI
| Download (ext.)
2017 | Conference Paper | LibreCat-ID: 15912 | 
Grothe, M., Niemann, T., Somorovsky, J., & Schwenk, J. (2017). Breaking and Fixing Gridcoin. In 11th {USENIX} Workshop on Offensive Technologies ({WOOT} 17). Vancouver, BC: {USENIX} Association.
LibreCat
| Download (ext.)
2016 | Conference Paper | LibreCat-ID: 15896
Somorovsky, J. (2016). Systematic Fuzzing and Testing of TLS Libraries. In Proceedings of the 2016 ACM SIGSAC Conference on Computer and Communications Security - CCS’16. https://doi.org/10.1145/2976749.2978411
LibreCat
| DOI
| Download (ext.)
2016 | Conference Paper | LibreCat-ID: 15907 |
Aviram, N., Schinzel, S., Somorovsky, J., Heninger, N., Dankel, M., Steube, J., … Shavitt, Y. (2016). DROWN: Breaking TLS Using SSLv2. In 25th {USENIX} Security Symposium ({USENIX} Security 16) (pp. 689–706). Austin, TX: {USENIX} Association.
LibreCat
| Download (ext.)
2016 | Conference Paper | LibreCat-ID: 15913 |
Böck, H., Zauner, A., Devlin, S., Somorovsky, J., & Jovanovic, P. (2016). Nonce-Disrespecting Adversaries: Practical Forgery Attacks on GCM in TLS. In 10th {USENIX} Workshop on Offensive Technologies ({WOOT} 16). Austin, TX: {USENIX} Association.
LibreCat
| Download (ext.)
2015 | Book Chapter | LibreCat-ID: 15897
Altmeier, C., Mainka, C., Somorovsky, J., & Schwenk, J. (2015). AdIDoS – Adaptive and Intelligent Fully-Automatic Detection of Denial-of-Service Weaknesses in Web Services. In Data Privacy Management, and Security Assurance - 10th International Workshop, {DPM} 2015, and 4th International Workshop, {QASA} 2015. Cham. https://doi.org/10.1007/978-3-319-29883-2_5
LibreCat
| DOI
2015 | Book Chapter | LibreCat-ID: 15899
Jager, T., Schwenk, J., & Somorovsky, J. (2015). Practical Invalid Curve Attacks on TLS-ECDH. In Computer Security -- ESORICS 2015. Cham. https://doi.org/10.1007/978-3-319-24174-6_21
LibreCat
| DOI
| Download (ext.)
2015 | Conference Paper | LibreCat-ID: 15898
Jager, T., Schwenk, J., & Somorovsky, J. (2015). On the Security of TLS 1.3 and QUIC Against Weaknesses in PKCS#1 v1.5 Encryption. In Proceedings of the 22nd ACM SIGSAC Conference on Computer and Communications Security - CCS ’15. https://doi.org/10.1145/2810103.2813657
LibreCat
| DOI
| Download (ext.)
2015 | Conference Paper | LibreCat-ID: 15900
Niemietz, M., Somorovsky, J., Mainka, C., & Schwenk, J. (2015). Not so Smart: On Smart TV Apps. In International Workshop on Secure Internet of Things (SIoT). https://doi.org/10.1109/siot.2015.13
LibreCat
| DOI
2015 | Conference Paper | LibreCat-ID: 15911 |
Kupser, D., Mainka, C., Schwenk, J., & Somorovsky, J. (2015). How to Break XML Encryption -- Automatically. In 9th {USENIX} Workshop on Offensive Technologies ({WOOT} 15). Washington, D.C.: {USENIX} Association.
LibreCat
| Download (ext.)
2014 | Conference Paper | LibreCat-ID: 15904 |
Meyer, C., Somorovsky, J., Weiss, E., Schwenk, J., Schinzel, S., & Tews, E. (2014). Revisiting SSL/TLS Implementations: New Bleichenbacher Side Channels and Attacks. In 23rd {USENIX} Security Symposium ({USENIX} Security 14) (pp. 733–748). San Diego, CA: {USENIX} Association.
LibreCat
| Download (ext.)
2013 | Conference Paper | LibreCat-ID: 15902
Falkenberg, A., Mainka, C., Somorovsky, J., & Schwenk, J. (2013). A New Approach towards DoS Penetration Testing on Web Services. In 2013 IEEE 20th International Conference on Web Services. https://doi.org/10.1109/icws.2013.72
LibreCat
| DOI
2013 | Conference Paper | LibreCat-ID: 15918 |
Jager, T., Paterson, K. G., & Somorovsky, J. (2013). One Bad Apple: Backwards Compatibility Attacks on State-of-the-Art Cryptography. In 20th Annual Network and Distributed System Security Symposium, NDSS 2013, San Diego, California, USA, February 24-27, 2013.
LibreCat
| Download (ext.)
2013 | Dissertation | LibreCat-ID: 15901
Somorovsky, J. (2013). On the insecurity of XML Security. https://doi.org/10.1515/itit-2014-1045
LibreCat
| DOI
2013 | Journal Article | LibreCat-ID: 15903
Mainka, C., Mladenov, V., Somorovsky, J., & Schwenk, J. (2013). Penetration test tool for XML-based web services. CEUR Workshop Proceedings, 965, 31–35.
LibreCat
2012 | Book Chapter | LibreCat-ID: 15891
Jager, T., Schinzel, S., & Somorovsky, J. (2012). Bleichenbacher’s Attack Strikes again: Breaking PKCS#1 v1.5 in XML Encryption. In Computer Security – ESORICS 2012. Berlin, Heidelberg. https://doi.org/10.1007/978-3-642-33167-1_43
LibreCat
| DOI
2012 | Conference Paper | LibreCat-ID: 15888 |
Somorovsky, J., Mayer, A., Schwenk, J., Kampmann, M., & Jensen, M. (2012). On Breaking SAML: Be Whoever You Want to Be. In Presented as part of the 21st {USENIX} Security Symposium ({USENIX} Security 12) (pp. 397–412). Bellevue, WA: {USENIX}.
LibreCat
| Download (ext.)
2012 | Conference Paper | LibreCat-ID: 15890
Somorovsky, J., & Schwenk, J. (2012). Technical Analysis of Countermeasures against Attack on XML Encryption -- or -- Just Another Motivation for Authenticated Encryption. In 2012 IEEE Eighth World Congress on Services. https://doi.org/10.1109/services.2012.6
LibreCat
| DOI
2012 | Conference Paper | LibreCat-ID: 15917
Somorovsky, J., Meyer, C., Tran, T., Sbeiti, M., Schwenk, J., & Wietfeld, C. (2012). Sec2: Secure Mobile Solution for Distributed Public Cloud Storages.
LibreCat
2011 | Conference Paper | LibreCat-ID: 15885
Somorovsky, J., Heiderich, M., Jensen, M., Schwenk, J., Gruschka, N., & Lo Iacono, L. (2011). All your clouds are belong to us: security analysis of cloud management interfaces. In Proceedings of the 3rd ACM workshop on Cloud computing security workshop - CCSW ’11. https://doi.org/10.1145/2046660.2046664
LibreCat
| DOI
| Download (ext.)