66123 Saarbrücken (Germany)
I am a tenure-track faculty at CISPA Helmholtz Center for Information Security. Before that I was a visiting assistant professor at Stanford University and research group leader at CISPA as part of the CISPA-Stanford Center for Cybersecurity. I got my PhD at Eurecom in Sophia-Antipolis (France) under the supervision of Davide Balzarotti. Until August 2013, I was a researcher associate in the Security and Trust group at the SAP research labs.
39th IEEE Symposium on Security and Privacy (SP '18)
2018 IEEE European Symposium on Security and Privacy, EuroS&P 2018, London, United Kingdom, April 24-26, 2018
Extended Version of EuroS&P 2018 Paper
Proc. of the 26rd International Conference on World Wide Web (WWW 2017)
Proceedings of the 24th ACM Conference on Computer and Communication Security (CCS'17)
Proceedings of the 25th USENIX Security Symposium (USENIX Security '16)
Research in Attacks, Intrusions, and Defenses - 18th International Symposium, RAID 2016
Proceedings of the 2016 ACM SIGSAC Conference on Computer and Communications Security, Vienna, Austria, October 24-28, 2016
Proceedings of the 24th USENIX Security Symposium (USENIX '15)
9th USENIX Workshop on Offensive Technologies (WOOT 15)
Block Course: Secure Web Development
In this lecture you will learn: the architecture of modern web applications, basics on secure software engineering, the art of secure software assessment and code review techniques, how to build securely an HTTP message processing pipeline (web authentication, authorization, session, logic, data, and more), advanced threats, vulnerabilities, secure coding, and design patterns.
Proseminar: Influential papers in Web Security
This proseminar is meant to provide students an overview over influential papers in the area of Web security. As a proseminar’s primary purpose is to learn presentation skills, the seminar will feature two presentations from each student.
Seminar: Joint Advances in Web Security
In this seminar, students will learn to present, discuss, and summarize papers in different areas of Web security.