66123 Saarbrücken (Germany)
Winter Term 2018/2019: Busy Beaver Teaching Award "Foundations of Cybersecurity 1", Saarland University
Summer Term 2018: Busy Beaver Teaching Award "Web Security", Saarland University
2015/2016: Finalist for Best Dissertation Award (CAST e.V.)
2009/2010: Best German Bachelor Thesis (CAST e.V.)
I am a tenure-track faculty at the CISPA Helmholtz Center for Information Security. Prior to that, I was a research group leader and previously postdoctoral researcher at the Center for IT-Security, Privacy and Accountability at Saarland University in the group of Michael Backes. Before joining CISPA, I was a PhD student and research fellow at the Security Research Group of the University Erlangen-Nuremberg, supervised by Felix Freiling. During that time, I was fortunate enough to join Ben Livshits and Ben Zorn at Microsoft Research in Redmond for an internship.
My research interests lie within Web Security, Network Security, Reverse Engineering, and Vulnerability Notifications. In addition, I enjoy the challenges provided in Capture the Flag competitions and am always trying to get more students involved in them (especially in our local team saarsec).
Annual Computer Security Applications Conference (ACSAC 2019)
ACM Conference on Computer and Communications Security (CCS 2019)
NDSS Symposium 2019
Detection of Intrusions and Malware & Vulnerability Assessment (DIMVA '18)
Proceedings of the 25th Annual Symposium on Network and Distributed System Security (NDSS '18).
Proceedings of the 2nd IEEE European Symposium on Security and Privacy (Euro S&P '17)
Proceedings of the 26th USENIX Security Symposium (USENIX Security '17)
RAID 2016, 19th International Symposium on Research in Attacks, Intrusions and Defenses
Proceedings of the 25th USENIX Security Symposium (USENIX Security '16)
Seminar: Joint Advances in Web Security
In this seminar, students will learn to present, discuss, and summarize papers in different areas of Web security. The seminar is taught as a combination of a reading group with weekly meetings and a regular seminar, where you have to write a seminar paper. Specifically, each student will get a single topic assigned to them, consisting of two papers (a lead and follow-up paper).
Foundations of Cybersecurity 1
Students learn foundational security principles, basics of cryptography, network and network security, as well as privacy-preserving mechanisms. They learn to define security goals and are familiarized with the most common attack scenarios.
Foundations of Web Security
This lecture covers the fundamental security problems that are prevalent on the Web as well as security mechanisms to mitigate them. A particular focus lies on the offensive side of Web security, whereas defense mechanisms merely need to be added to stop the attacks.
Proseminar: (p)SADWeb: (Pro)Seminar on Attacks & Defense on the Web
(P)SADWeb provides students an overview over recent papers in the broader area of Web security. As the primary purpose of a proseminar is to familiarize yourself with a topic and learn presentation skills, the seminar will feature two presentations from each student.