Please note that LibreCat no longer supports Internet Explorer versions 8 or 9 (or earlier).
We recommend upgrading to the latest Internet Explorer, Google Chrome, or Firefox.
44 Publications
2023 | Conference Paper | LibreCat-ID: 43060 | 
Hebrok, Sven Niclas, Simon Nachtigall, Marcel Maehren, Nurullah Erinola, Robert Merget, Juraj Somorovsky, and Jörg Schwenk. “We Really Need to Talk About Session Tickets: A Large-Scale Analysis of Cryptographic Dangers with TLS Session Tickets.” In 32nd USENIX Security Symposium, 2023.
LibreCat
| Download (ext.)
2023 | Conference Paper | LibreCat-ID: 48012
Rossel, Jost, Vladislav Mladenov, and Juraj Somorovsky. “Security Analysis of the 3MF Data Format.” In Proceedings of the 26th International Symposium on Research in Attacks, Intrusions and Defenses. ACM, 2023. https://doi.org/10.1145/3607199.3607216.
LibreCat
| Files available
| DOI
| Download (ext.)
2023 | Conference Paper | LibreCat-ID: 46500
Pottebaum, Jens, Jost Rossel, Juraj Somorovsky, Yasemin Acar, René Fahr, Patricia Arias Cabarcos, Eric Bodden, and Iris Gräßler. “Re-Envisioning Industrial Control Systems Security by Considering Human Factors as a Core Element of Defense-in-Depth.” In 2023 IEEE European Symposium on Security and Privacy Workshops (EuroS&PW), 379–85. IEEE, 2023. https://doi.org/10.1109/eurospw59978.2023.00048.
LibreCat
| DOI
| Download (ext.)
2023 | Conference Paper | LibreCat-ID: 49654
Niere, Niklas, Sven Niclas Hebrok, Juraj Somorovsky, and Robert Merget. “Poster: Circumventing the GFW with TLS Record Fragmentation.” In Proceedings of the 2023 ACM SIGSAC Conference on Computer and Communications Security. ACM, 2023. https://doi.org/10.1145/3576915.3624372.
LibreCat
| DOI
2022 | Conference Paper | LibreCat-ID: 32572
Mayer, Peter, Damian Poddebniak, Konstantin Fischer, Marcus Brinkmann, Juraj Somorovsky, Angela Sasse, Sebastian Schinzel, and Melanie Volkamer. “‘I Don’ Know Why I Check This...’ - Investigating Expert Users’ Strategies to Detect Email Signature Spoofing Attacks.” In Eighteenth Symposium on Usable Privacy and Security (SOUPS 2022), 77–96. Boston, MA: USENIX Association, 2022.
LibreCat
2022 | Conference Paper | LibreCat-ID: 32573
Maehren, Marcel, Philipp Nieting, Sven Niclas Hebrok, Robert Merget, Juraj Somorovsky, and Jörg Schwenk. “TLS-Anvil: Adapting Combinatorial Testing for TLS Libraries.” In 31st USENIX Security Symposium (USENIX Security 22). Boston, MA: USENIX Association, 2022.
LibreCat
2021 | Conference Paper | LibreCat-ID: 25331
Brinkmann, Marcus, Christian Dresen, Robert Merget, Damian Poddebniak, Jens Müller, Juraj Somorovsky, Jörg Schwenk, and Sebastian Schinzel. “ALPACA: Application Layer Protocol Confusion - Analyzing and Mitigating Cracks in TLS Authentication.” In 30th {USENIX} Security Symposium ({USENIX} Security 21), 4293–4310. {USENIX} Association, 2021.
LibreCat
2021 | Conference Paper | LibreCat-ID: 25332
Merget, Robert, Marcus Brinkmann, Nimrod Aviram, Juraj Somorovsky, Johannes Mittmann, and Jörg Schwenk. “Raccoon Attack: Finding and Exploiting Most-Significant-Bit-Oracles in TLS-DH(E).” In 30th {USENIX} Security Symposium ({USENIX} Security 21), 213–30. {USENIX} Association, 2021.
LibreCat
2021 | Journal Article | LibreCat-ID: 24143
Drees, Jan Peter, Pritha Gupta, Eyke Hüllermeier, Tibor Jager, Alexander Konze, Claudia Priesterjahn, Arunselvan Ramaswamy, and Juraj Somorovsky. “Automated Detection of Side Channels in Cryptographic Protocols: DROWN the ROBOTs!” 14th ACM Workshop on Artificial Intelligence and Security, 2021.
LibreCat
2020 | Conference Paper | LibreCat-ID: 25334
Fiterau-Brostean, Paul, Bengt Jonsson, Robert Merget, Joeri de Ruiter, Konstantinos Sagonas, and Juraj Somorovsky. “Analysis of DTLS Implementations Using Protocol State Fuzzing.” In 29th {USENIX} Security Symposium ({USENIX} Security 20), 2523–40. {USENIX} Association, 2020.
LibreCat
2020 | Conference Paper | LibreCat-ID: 25336
Schwenk, Jörg, Marcus Brinkmann, Damian Poddebniak, Jens Müller, Juraj Somorovsky, and Sebastian Schinzel. “Mitigation of Attacks on Email End-to-End Encryption.” In Proceedings of the 2020 ACM SIGSAC Conference on Computer and Communications Security, 1647–1664. CCS ’20. New York, NY, USA: Association for Computing Machinery, 2020. https://doi.org/10.1145/3372297.3417878.
LibreCat
| DOI
2019 | Conference Paper | LibreCat-ID: 15908 |
Müller, Jens, Marcus Brinkmann, Damian Poddebniak, Hanno Böck, Sebastian Schinzel, Juraj Somorovsky, and Jörg Schwenk. “‘Johnny, You Are Fired!’ -- Spoofing OpenPGP and S/MIME Signatures in Emails.” In 28th {USENIX} Security Symposium ({USENIX} Security 19), 1011–28. Santa Clara, CA: {USENIX} Association, 2019.
LibreCat
| Download (ext.)
2019 | Conference Paper | LibreCat-ID: 15909 |
Merget, Robert, Juraj Somorovsky, Nimrod Aviram, Craig Young, Janis Fliegenschmidt, Jörg Schwenk, and Yuval Shavitt. “Scalable Scanning and Automatic Classification of TLS Padding Oracle Vulnerabilities.” In 28th {USENIX} Security Symposium ({USENIX} Security 19), 1029–46. Santa Clara, CA: {USENIX} Association, 2019.
LibreCat
| Download (ext.)
2019 | Conference Paper | LibreCat-ID: 15910
Engelbertz, Nils, Vladislav Mladenov, Juraj Somorovsky, David Herring, Nurullah Erinola, and Jörg Schwenk. “Security Analysis of XAdES Validation in the CEF Digital Signature Services (DSS).” In Open Identity Summit 2019, edited by Heiko Roßnagel, Sven Wagner, and Detlef Hühnlein, 95–106. Gesellschaft für Informatik, Bonn, 2019.
LibreCat
2018 | Conference Paper | LibreCat-ID: 15892
Albrecht, Martin R., Jake Massimo, Kenneth G. Paterson, and Juraj Somorovsky. “Prime and Prejudice: Primality Testing Under Adversarial Conditions.” In Proceedings of the 2018 ACM SIGSAC Conference on Computer and Communications Security, 2018. https://doi.org/10.1145/3243734.3243787.
LibreCat
| DOI
| Download (ext.)
2018 | Conference Paper | LibreCat-ID: 15893
Poddebniak, Damian, Juraj Somorovsky, Sebastian Schinzel, Manfred Lochter, and Paul Rosler. “Attacking Deterministic Signature Schemes Using Fault Attacks.” In 2018 IEEE European Symposium on Security and Privacy (EuroS&P), 2018. https://doi.org/10.1109/eurosp.2018.00031.
LibreCat
| DOI
2018 | Conference Paper | LibreCat-ID: 15894
Detering, Dennis, Juraj Somorovsky, Christian Mainka, Vladislav Mladenov, and Jörg Schwenk. “On The (In-)Security Of JavaScript Object Signing And Encryption.” In Proceedings of the 1st Reversing and Offensive-Oriented Trends Symposium on - ROOTS, 2018. https://doi.org/10.1145/3150376.3150379.
LibreCat
| DOI
2018 | Conference Paper | LibreCat-ID: 15905 |
Poddebniak, Damian, Christian Dresen, Jens Müller, Fabian Ising, Sebastian Schinzel, Simon Friedberger, Juraj Somorovsky, and Jörg Schwenk. “Efail: Breaking S/MIME and OpenPGP Email Encryption Using Exfiltration Channels.” In 27th {USENIX} Security Symposium ({USENIX} Security 18), 549–66. Baltimore, MD: {USENIX} Association, 2018.
LibreCat
| Download (ext.)
2018 | Conference Paper | LibreCat-ID: 15906 |
Böck, Hanno, Juraj Somorovsky, and Craig Young. “Return Of Bleichenbacher\textquoterights Oracle Threat (ROBOT).” In 27th {USENIX} Security Symposium ({USENIX} Security 18), 817–49. Baltimore, MD: {USENIX} Association, 2018.
LibreCat
| Download (ext.)
2018 | Conference Paper | LibreCat-ID: 15914 |
Engelbertz, Nils, Nurullah Erinola, David Herring, Juraj Somorovsky, Vladislav Mladenov, and Jörg Schwenk. “Security Analysis of EIDAS -- The Cross-Country Authentication Scheme in Europe.” In 12th {USENIX} Workshop on Offensive Technologies ({WOOT} 18). Baltimore, MD: {USENIX} Association, 2018.
LibreCat
| Download (ext.)