other sites: photos · blog · twitter · wikimedia commons · xing
Menu:
Security Research downloads
2008
Abusing X.509 certificate features
This is a talk I've given at EuSecWest in May and again at the metarheinmain chaos days 111b in September.
- Slides (PDF) or view on slideshare.net
- Video recording of the talk at mrmcd111b (in german) or watch online
- check_weak_dh_ssh.pl.bz2, a script to check recorded SSH sessions for weak Diffie-Hellman key exchanges
- related: HTTP over X.509 whitepaper
- related: C-RaDaR interview about the Debian OpenSSL issue together with Erik Tews.
2006
Building an Open Source PKI using OpenXPKI
This is a talk that I first gave together with Michael Bell at the 23rd Chaos Communication Congress (23C3) in December 2006. An updated version was given (in german) at the mrmcd111b in September 2008.
- Slides (PDF)
- Paper (PDF)
- Video recording of the 23C3 talk or watch online
- Slides from mrmcd111b, german
Cryptographic Voting Protocols
I wrote my Diplom thesis at the cryptography and computer algebra group of the department of computer science at Technische Universität Darmstadt.
2005
Privacy issue related to JavaScript in PDF
I gave a talk on a privacy issue in Adobe's Acrobat Reader at the local CAST-Forum. This is what I consider my first original security research, so please excuse the title of the paper, I now consider it totally cheesy and cliché.
Biometrics in ICAO passports
I gave this (german) talk on the requirements of the ICAO on biometric data in passports in a seminar on biometrics at TU Darmstadt. The seminar led to me working in the biometrics group at Fraunhofer IGD as a research assistant for a while.
2003
(Visual) Secret Sharing
While studying at Technische Universiteit Eindhoven (TUE), I came in contact with the interesting field of (visual) secret sharing. I held a talk about it in a student-organized lecture series at TU Darmstadt in May 2003.
- Slides (PDF), english
- Visual secret sharing implementation as a Perl-based Gimp (1.x) plugin