Please note that LibreCat no longer supports Internet Explorer versions 8 or 9 (or earlier).

We recommend upgrading to the latest Internet Explorer, Google Chrome, or Firefox.

48 Publications


2024 | Conference Paper | LibreCat-ID: 54437
Security Analysis of BigBlueButton and eduMEET
N. Heitmann, H. Siewert, S. Moog, J. Somorovsky, in: Applied Cryptography and Network Security, Springer Nature Switzerland, Cham, 2024.
LibreCat | DOI | Download (ext.)
 

2024 | Conference Paper | LibreCat-ID: 55137 | OA
Turning Attacks into Advantages: Evading HTTP Censorship with HTTP Request Smuggling
P. Müller, N. Niere, F. Lange, J. Somorovsky, in: Proceedings on Privacy Enhancing Technologies, Bristol, 2024.
LibreCat | Files available | Download (ext.)
 

2024 | Book Chapter | LibreCat-ID: 56079
In Search of Partitioning Oracle Attacks Against TLS Session Tickets
M.M. Radoy, S.N. Hebrok, J. Somorovsky, in: Lecture Notes in Computer Science, Springer Nature Switzerland, Cham, 2024.
LibreCat | DOI
 

2023 | Conference Paper | LibreCat-ID: 49654
Poster: Circumventing the GFW with TLS Record Fragmentation
N. Niere, S.N. Hebrok, J. Somorovsky, R. Merget, in: Proceedings of the 2023 ACM SIGSAC Conference on Computer and Communications Security, ACM, 2023.
LibreCat | DOI
 

2023 | Conference Paper | LibreCat-ID: 46500
Re-Envisioning Industrial Control Systems Security by Considering Human Factors as a Core Element of Defense-in-Depth
J. Pottebaum, J. Rossel, J. Somorovsky, Y. Acar, R. Fahr, P. Arias Cabarcos, E. Bodden, I. Gräßler, in: 2023 IEEE European Symposium on Security and Privacy Workshops (EuroS&PW), IEEE, 2023, pp. 379–385.
LibreCat | Files available | DOI | Download (ext.)
 

2023 | Conference Paper | LibreCat-ID: 48012 | OA
Security Analysis of the 3MF Data Format
J. Rossel, V. Mladenov, J. Somorovsky, in: Proceedings of the 26th International Symposium on Research in Attacks, Intrusions and Defenses, ACM, 2023.
LibreCat | Files available | DOI | Download (ext.)
 

2023 | Conference Paper | LibreCat-ID: 43060 | OA
We Really Need to Talk About Session Tickets: A Large-Scale Analysis of Cryptographic Dangers with TLS Session Tickets
S.N. Hebrok, S. Nachtigall, M. Maehren, N. Erinola, R. Merget, J. Somorovsky, J. Schwenk, in: 32nd USENIX Security Symposium, 2023.
LibreCat | Download (ext.)
 

2022 | Conference Paper | LibreCat-ID: 32572
"I don' know why I check this..." - Investigating Expert Users' Strategies to Detect Email Signature Spoofing Attacks
P. Mayer, D. Poddebniak, K. Fischer, M. Brinkmann, J. Somorovsky, A. Sasse, S. Schinzel, M. Volkamer, in: Eighteenth Symposium on Usable Privacy and Security (SOUPS 2022), USENIX Association, Boston, MA, 2022, pp. 77–96.
LibreCat
 

2022 | Conference Paper | LibreCat-ID: 32573
TLS-Anvil: Adapting Combinatorial Testing for TLS Libraries
M. Maehren, P. Nieting, S.N. Hebrok, R. Merget, J. Somorovsky, J. Schwenk, in: 31st USENIX Security Symposium (USENIX Security 22), USENIX Association, Boston, MA, 2022.
LibreCat
 

2022 | Conference Paper | LibreCat-ID: 54435
On the Security of Parsing Security-Relevant HTTP Headers in Modern Browsers
H. Siewert, M. Kretschmer, M. Niemietz, J. Somorovsky, in: 2022 IEEE Security and Privacy Workshops (SPW), IEEE, 2022.
LibreCat | DOI
 

2021 | Conference Paper | LibreCat-ID: 25331
ALPACA: Application Layer Protocol Confusion - Analyzing and Mitigating Cracks in TLS Authentication
M. Brinkmann, C. Dresen, R. Merget, D. Poddebniak, J. Müller, J. Somorovsky, J. Schwenk, S. Schinzel, in: 30th {USENIX} Security Symposium ({USENIX} Security 21), {USENIX} Association, 2021, pp. 4293–4310.
LibreCat
 

2021 | Conference Paper | LibreCat-ID: 25332
Raccoon Attack: Finding and Exploiting Most-Significant-Bit-Oracles in TLS-DH(E)
R. Merget, M. Brinkmann, N. Aviram, J. Somorovsky, J. Mittmann, J. Schwenk, in: 30th {USENIX} Security Symposium ({USENIX} Security 21), {USENIX} Association, 2021, pp. 213–230.
LibreCat
 

2021 | Journal Article | LibreCat-ID: 24143
Automated Detection of Side Channels in Cryptographic Protocols: DROWN the ROBOTs!
J.P. Drees, P. Gupta, E. Hüllermeier, T. Jager, A. Konze, C. Priesterjahn, A. Ramaswamy, J. Somorovsky, 14th ACM Workshop on Artificial Intelligence and Security (2021).
LibreCat
 

2020 | Conference Paper | LibreCat-ID: 25334
Analysis of DTLS Implementations Using Protocol State Fuzzing
P. Fiterau-Brostean, B. Jonsson, R. Merget, J. de Ruiter, K. Sagonas, J. Somorovsky, in: 29th {USENIX} Security Symposium ({USENIX} Security 20), {USENIX} Association, 2020, pp. 2523–2540.
LibreCat
 

2020 | Conference Paper | LibreCat-ID: 25336
Mitigation of Attacks on Email End-to-End Encryption
J. Schwenk, M. Brinkmann, D. Poddebniak, J. Müller, J. Somorovsky, S. Schinzel, in: Proceedings of the 2020 ACM SIGSAC Conference on Computer and Communications Security, Association for Computing Machinery, New York, NY, USA, 2020, pp. 1647–1664.
LibreCat | DOI
 

2019 | Conference Paper | LibreCat-ID: 15908 | OA
"Johnny, you are fired!" -- Spoofing OpenPGP and S/MIME Signatures in Emails
J. Müller, M. Brinkmann, D. Poddebniak, H. Böck, S. Schinzel, J. Somorovsky, J. Schwenk, in: 28th {USENIX} Security Symposium ({USENIX} Security 19), {USENIX} Association, Santa Clara, CA, 2019, pp. 1011–1028.
LibreCat | Download (ext.)
 

2019 | Conference Paper | LibreCat-ID: 15909 | OA
Scalable Scanning and Automatic Classification of TLS Padding Oracle Vulnerabilities
R. Merget, J. Somorovsky, N. Aviram, C. Young, J. Fliegenschmidt, J. Schwenk, Y. Shavitt, in: 28th {USENIX} Security Symposium ({USENIX} Security 19), {USENIX} Association, Santa Clara, CA, 2019, pp. 1029–1046.
LibreCat | Download (ext.)
 

2019 | Conference Paper | LibreCat-ID: 15910
Security Analysis of XAdES Validation in the CEF Digital Signature Services (DSS)
N. Engelbertz, V. Mladenov, J. Somorovsky, D. Herring, N. Erinola, J. Schwenk, in: H. Roßnagel, S. Wagner, D. Hühnlein (Eds.), Open Identity Summit 2019, Gesellschaft für Informatik, Bonn, 2019, pp. 95–106.
LibreCat
 

2018 | Conference Paper | LibreCat-ID: 15892
Prime and Prejudice: Primality Testing Under Adversarial Conditions
M.R. Albrecht, J. Massimo, K.G. Paterson, J. Somorovsky, in: Proceedings of the 2018 ACM SIGSAC Conference on Computer and Communications Security, 2018.
LibreCat | DOI | Download (ext.)
 

2018 | Conference Paper | LibreCat-ID: 15893
Attacking Deterministic Signature Schemes Using Fault Attacks
D. Poddebniak, J. Somorovsky, S. Schinzel, M. Lochter, P. Rosler, in: 2018 IEEE European Symposium on Security and Privacy (EuroS&P), 2018.
LibreCat | DOI
 

Filters and Search Terms

(person=83504)

status=public

Search

Filter Publications

Display / Sort

Export / Embed