News
19.05.2022
|
Next Seminar on 25.04.2022Dear All, https://cispa-de.zoom.us/j/96786205841?pwd=M3FOQ3dSczRabDNLb3F1czVXVUpvdz09 Meeting-ID: 967 8620 5841 Dear All, https://cispa-de.zoom.us/j/96786205841?pwd=M3FOQ3dSczRabDNLb3F1czVXVUpvdz09 Meeting-ID: 967 8620 5841 Session B: (RA 5)(14:30-15:30) https://cispa-de.zoom.us/j/99025989421?pwd=cWJIM29LYktsbStxTXlKUStZRi9MUT09 Meeting-ID: 990 2598 9421
14:00-14:30 Speaker: Norman Ziebal Abstract: Hundreds of Binary Templates already exist for various formats, but they can not be utilized by other grammar-based fuzzing tools, This work aims to combine the benefits of context-free grammars and Binary Templates for fuzzing.
14:30-15:00
Abstract:
15:00-15:30 no talk this week Session B: 14:00-14:30 No talk this week
14:30-15:00 Speaker: Paul Frerichs 15:00-15:30 Speaker: Raphael Maser Abstract:
|
04.05.2022
|
Next Seminar on 11.05.2022Dear All, https://cispa-de.zoom.us/j/96786205841?pwd=M3FOQ3dSczRabDNLb3F1czVXVUpvdz09 Meeting-ID: 967 8620 5841
Dear All, https://cispa-de.zoom.us/j/96786205841?pwd=M3FOQ3dSczRabDNLb3F1czVXVUpvdz09 Meeting-ID: 967 8620 5841
14:00-14:30 Speaker: Philipp Dewald Abstract: When the Corona-Warn App was launched on the 16th of June in 2020, the expectations and hopes were quite high. Helge Braun, then Chancellery Minister and Federal Minister for Special Tasks, stated he is "quite convinced that it is the best [corona app]" and then Chancellor Angela Merkel declared it will be "a milestone in the fight against Corona." However, it turned out that was not the case. The lack of broad participation was one of the main reasons for the app's ineffectiveness.
14:30-15:00 Speaker: Ole Heydt Abstract: With both the commercial but also political impact that RVs can potentially hold, one needs to develop security mechanisms which are The main challenges of cyber-physical-system security originate from the generally complicated nature of such, as e.g. drones or rovers
15:00-15:30 Speaker: Birk Blechschmidt Abstract: The core specifications of electronic mail as used today date back as early as the 1970s. At that time, security did not play a major role in the development of communication protocols. These shortcomings still manifest itself today in the prevalence of phishing and the reliance on opportunistic encryption. Besides STARTTLS, various mechanisms such as SPF, DKIM, DMARC, DANE and MTA-STS have been proposed. However, related work has shown that they are not supported by all providers or that misconfiguration is common. This thesis aims to provide an overview on the current state of email confidentiality and integrity measures and the effectiveness of their deployment. In particular, we are going to investigate the support of security mechanisms by popular email providers, thereby validating and extending previous work. Since MTA-STS has not yet been widely studied, we contribute an overview on the outbound support of MTA-STS. Furthermore, we try to find a lower bound of domains supporting DANE bindings for OpenPGP as well as DNSSEC-associated S/MIME certificates and measure their key strength. |
27.04.2022
|
Attention! Shifted time on 8th of JuneDear students, Dear students, |
20.04.2022
|
Next Seminar on 27.04.2022Dear All, The next seminar takes place on 27.04. at 14:30. https://cispa-de.zoom.us/j/96786205841?pwd=M3FOQ3dSczRabDNLb3F1czVXVUpvdz09 Meeting-ID: 967 8620 5841
Dear All, The next seminar takes place on 27.04. at 14:30. https://cispa-de.zoom.us/j/96786205841?pwd=M3FOQ3dSczRabDNLb3F1czVXVUpvdz09 Meeting-ID: 967 8620 5841
14:00-14:30 No talk this week.
14:30-15:00 Speaker: Nils Olze
15:00-15:30 Speaker: Erfan Balazadeh Abstract: Imagine a scenario where you want to encrypt a message, but you don't want it to be able to be decrypted by the receiving party right away. This thesis' goal is to implement a new encryption scheme, which is efficiently computable and which gets rid of the previously mentioned solutions' weaknesses, inside of a real world setting. |
08.04.2022
|
Next Seminar on 13.04.2022Dear All, Update 2022-04-09: Added Priyasha Chatterjee's talk information, which was missing due to technical difficulties. Sorry! The next seminar(s) take place on 13.04. at 14:00. Dear All, Update 2022-04-09: Added Priyasha Chatterjee's talk information, which was missing due to technical difficulties. Sorry! The next seminar(s) take place on 13.04. at 14:00. https://cispa-de.zoom.us/j/96786205841?pwd=M3FOQ3dSczRabDNLb3F1czVXVUpvdz09 Meeting-ID: 967 8620 5841
14:00-14:30 Speaker: Joshua Steffensky Abstract:
14:30-15:00 Speaker: Priyasha Chatterjee Abstract: As ubiquitous computing becomes more widespread, so does the market for voice-controlled smart devices which afford convenience like never before. Smart home systems allow smart devices to connect to a hub, such as Amazon's Alexa, or Google Nest, which are smart speakers allowing users to control them by voice. However, while users find that these systems offer great convenience, they also find that they need to settle on a trade-off between privacy and security, and convenience. There have been reports of many privacy incidents in recent years, and in 2019, 41% of all smart home users were found to have been apprehensive about privacy around their smart speakers.
15:00-15:30 Speaker: Tom Baumeister Abstract: Concurrent systems that are composed of an arbitrary number n of processes, are hard to get correct. For these systems, parameterized model checking can provide correctness guarantees that hold regardless of n. However, model checking gives the designer no information about a possible repair when detecting an incorrect behaviour. The parameterized repair problem is, for a given implementation, to find a deadlock-free refinement such that a given property is satisfied by the resulting parameterized system. We present a repair algorithm that uses a parameterized model checker to determine correctness of generated candidate repairs. By updating a constraint system, when detecting a violation, the algorithm returns a repair iff one exists. For general safety properties, this algorithm can be applied on classes of systems which can be represented as well-structured transition systems (WSTS), including disjunctive systems, pairwise rendezvous systems and broadcast protocols. However, the existing approach cannot guarantee correctness for liveness properties, like termination or the absence of undesired loops. Since verifying liveness properties for parameterized systems quickly leads to undecidability, we want to study the parameterized repair problem for disjunctive systems and general liveness properties.
|
25.03.2022
|
New SemesterDear all, |
Bachelor- and Master-Seminar
The bachelor/master seminar is a stage for all talks related to bachelor or master theses at CISPA.
The seminar is currently held bi-weekly on Wednesdays in odd-numbered calendar weeks. It takes place throughout the year, regardless of the lecture periods. You can join at any time. There are two parallel Zoom sessions from 14:00 to 15:30 with up to three talks each. The upcoming talks will be announced in the News section above.
Requirements for the course certificate
To pass the seminar, you have to
- give an introductory talk where you present your thesis proposal
Furthermore, it is expected that you attend all talks of your own research area and participate in discussion during the time of your thesis work. You get a certificate and a grade for this course from your advisor. The advisor can contact us (bamaseminar@cispa.saarland) to check whether you meet all the passing conditions and to get a template for the certificate.
Further, you are required to hold a final talk about the results as a part of your thesis. While this talk is technically not part of the seminar but of the thesis work, you can still present it in the context of the seminar.
Attending a seminar session
Simply join one of the two parallel Zoom sessions. Choose the session with the talks you are most interested in. We welcome active participation and encourage you to ask questions and give helpful comments in the discussion after each talk.
During the seminar, we will share a link to an attendance sheet. Make sure to add your name to this document. We use these documents to track who attended which sessions.
Giving a talk in the seminar
Each talking slot is 30 minutes long. Your presentation should last about 20 minutes, so we have about 10 minutes left for discussion.
If you want to give a talk, you can book a time slot in one of the sessions. Use one of the following links for booking:
Please coordinate time and date with your advisor so that no two students of the same advisor present at the same time.
If you don't need a specific time slot, you can try to book 14:30, as some students either need the 14:00 or 15:00 slot. In rare cases, we will have to move the talks in a day, so please indicate which times you would be available. The final schedule will be announced in the News section a few days before the sessions take place.
To list your talk in the announcement, you will have to hand in some information about it, namely:
- Speaker: Your name.
- Type of talk: Bachelor Intro, Bachelor Final, Master Intro, or Master Final.
- Advisor: The name of your advisor. If multiple advisors wish to attend the session, please list all of them so we can make sure that there are no collisions.
- Title: Title of your talk.
- Research Area: the number of your area. (In doubt check https://cispa.de/de/research or ask your advisor) The areas are the following:
- RA1: Trustworthy Information Processing
- RA2: Reliable Security Guarantees
- RA3: Threat Detection and Defenses
- RA4: Secure Mobile and Autonomous Systems
- RA5: Empirical and Behavioural Security
- Abstract: Abstract of your talk.
Refer to previous announcements for examples.
Please submit this information at least one week in advance (until 23:59 on the Wednesday before your talk). Upload your information as a submission to CMS (see Personal Status), preferably as a plain text file (.txt). You can find a template in the materials section.
Contact the organizers
If there are any questions left, please use the mail address bamaseminar@cispa.saarland to contact the organizers.