66123 Saarbrücken (Germany)
Winter Term 2018/2019: Busy Beaver Teaching Award "Foundations of Cybersecurity 1", Universität des Saarlandes
Summer Term 2018: Busy Beaver Teaching Award "Web Security", Universität des Saarlandes
2015/2016: Finalist for Best Dissertation Award (CAST e.V.)
2009/2010: Best German Bachelor Thesis (CAST e.V.)
I am a tenured faculty at the CISPA Helmholtz Center for Information Security. Prior to that, I completed the tenure track at CISPA and was a research group leader and previously postdoctoral researcher at the Center for IT-Security, Privacy and Accountability at Saarland University in the group of Michael Backes. Before joining CISPA, I was a PhD student and research fellow at the Security Research Group of the University Erlangen-Nuremberg, supervised by Felix Freiling. During that time, I was fortunate enough to join Ben Livshits and Ben Zorn at Microsoft Research in Redmond for an internship.
My research interests lie within Web Security, Network Security, Reverse Engineering, and Vulnerability Notifications. In addition, I enjoy the challenges provided in Capture the Flag competitions and am always trying to get more students involved in them (especially in our local team saarsec).
Proceedings of the 26th USENIX Security Symposium (USENIX Security '17)
RAID 2016, 19th International Symposium on Research in Attacks, Intrusions and Defenses
Proceedings of the 25th USENIX Security Symposium (USENIX Security '16)
The 46th Annual IEEE/IFIP Conference on Dependable Systems and Networks
Proceedings of the 2016 ACM SIGSAC Conference on Computer and Communications Security, Vienna, Austria, October 24-28, 2016
Proceedings of the 22nd ACM Conference on Computer and Communications Security
24th USENIX Security Symposium (USENIX Security 15)
23rd USENIX Security Symposium (USENIX Security 14)
Proceedings of the 9th ACM symposium on Information, computer and communications security
Foundations of Web Security
This lecture covers the fundamental security problems that are prevalent on the Web as well as security mechanisms to mitigate them. A particular focus lies on the offensive side of Web security, whereas defense mechanisms merely need to be added to stop the attacks.
Proseminar: Recent Topics in Web Security
This course is about the discussion and presentation of recent topics in Web Security. Each student will be assigned one topic to present and two additional topics for discussion. For the presentation topic, each student will have two presentations: one during the semester and one in a full-day session in the semester break. For each topic, there will be two papers (one to be presented during the semester, the other in the break). Each student will also be assigned two topics for discussion: this implies that the student reads the paper to be presented and needs to prepare three questions to be discussed with the presenter. Furthermore, after each presentation, all students provide feedback to the presenter on what to improve in the presentation.
Foundations of Cybersecurity 1
Students learn foundational security principles, basics of cryptography, network and network security, as well as privacy-preserving mechanisms. They learn to define security goals and are familiarized with the most common attack scenarios.
Seminar: Joint Advances in Web Security
In this seminar, students will learn to present, discuss, and summarize papers in different areas of Web security. The seminar is taught as a combination of a reading group with weekly meetings and a regular seminar, where you have to write a seminar paper. Specifically, each student will get a single topic assigned to them, consisting of two papers (a lead and follow-up paper).