PublikationKonferenzJahrTandem
Security Analysis of BigBlueButton
and eduMEET
ACNS’24MoViSec
SoK: SSO-Monitor — The Current State and Future Research Directions in Single Sign-On Security Measurements2024 IEEE 9th European Symposium on Security and Privacy (EuroS&P)2024SES
We Really Need to Talk About Session Tickets: A Large-Scale Analysis of Cryptographic Dangers with TLS Session TicketsUSENIX Security’232023SEAN
Content-Type: multipart/oracle – Tapping into Format Oracles in Email End-to-End EncryptionUSENIX Security’232023SEAN
Every Signature is Broken: On the Insecurity of Microsoft Office’s OOXML SignaturesUSENIX Security’232023
Behind the Screens: The Security & Privacy Advice Landscape of Children in Grades 5 & 6WiPSCE’232023SCOUT
WebWriter: A System to Author and Remix Explorables–Requirements & First PrototypeGesellschaft für Informatik e.V.2023SCOUT
Assessing the Security and Privacy of Baby Monitor AppsJournal of Cybersecurity and Privacy2023MedMax
Improving trace synthesis by utilizing computer vision for user action emulationForensic Science International: Digital Investigation2023MedMax
Security Analysis of the 3MF Data FormatRAID’232023
Poster: Circumventing the GFW with TLS Record Fragmentation2023 ACM SIGSAC Conference on Computer and Communications Security2023SEAN
Finding All Cross-Site Needles in the DOM Stack: A Comprehensive Methodology for the Automatic XS-Leak Detection in Web Browsers2023 ACM SIGSAC Conference on Computer and Communications Security2023MoViSec
Accurate Real-Time Labeling of Application Traffic2022 IEEE 47th Conference on Local Computer Networks (LCN)2022SCOUT
DISTINCT: Identity Theft using In-Browser Communications in Dual-Window Single Sign-On2022 ACM SIGSAC Conference on Computer and Communications Security2022SES