UCS

Current Topics in Usable Security Research

Wed, 22 Apr 2026 00:00:00 +0000

Studierende, die die Veranstaltung belegen möchten, müssen am ersten Termin teilnehmen.

Students who wish to take the course must attend the first session.

Topic

In this seminar, students will learn how to conduct and evaluate a systematic literature analysis in the field of Usable Security and Privacy.
They will investigate how different age groups are supported in dealing with cyber security and privacy in everyday life. Tools and frameworks for literature analysis, such as PRISMA, will be introduced. Furthermore, students will learn to critically reflect on their findings and derive implications for research.
After completing this seminar, students will be able to conduct systematic literature analyses. Based on this, they will be able to situate their findings within related and current research, identify gaps and challenges, and propose research implications and opportunities for improvement.

Formalia

The language of the seminar is English.
Further formalities will be announced in the first session (15.04.2026).
Assessment components:
- Graded scientific paper (10–20 pages)
- Graded presentation (45–60 minutes)
- The final grade consists of 70% for the written paper and 30% for the presentation.

Initial Literature and Links

Garfinkel, Simson, and Heather Richter Lipford. “Usable security: History, themes, and challenges.” Synthesis Lectures on Information Security, Privacy, and Trust 5.2 (2014).
Symposium On Usable Privacy and Security (ab 2015)
Conference Scraper - UCS

Teacher

Sara Hahn

EICC 2026 at Darmstadt University of Applied Sciences

Tue, 21 Apr 2026 00:00:00 +0000

From 17 to 18 June, we will be hosting EICC 2026 at Darmstadt University of Applied Sciences. The final program is now available. Details

Prototype Development and Benchmarking for Secure Key Forwarding in QKDN

Thu, 18 Dec 2025 11:00:00 +0000

Motivation

Leistungsstarke Quantencomputer könnten aktuell verwendete asymmetrische Verfahren wie Diffie Hellman und RSA brechen. Daher wurde in den vergangenen Jahren intensiv bezüglich quantensicherer Verfahren geforscht. Quantum Key Distribution (QKD) nutzt die Physik der Quanten, um einen informationstheoretisch sicheren Schlüsselaustausch zu gewährleisten. Die Reichweite des Verfahrens ist jedoch begrenzt und es sind nur einfache Punkt-zu-Punkt Verbindungen oder Sterntopologien möglich, weshalb QKD Netzwerke (QKDN) entwickelt wurden, welche den Schlüssel hop-by-hop weiterleiten. Um weiterhin die Sicherheit des Schlüssels zu garantieren, muss die Weiterleitung jedoch streng vertraulich und authentifiziert erfolgen.

English: Powerful quantum computers could break currently used asymmetric schemes such as Diffie Hellman and RSA. For this reason, quantum-secure methods have been intensively researched in recent years. Quantum Key Distribution (QKD) uses the physics of quanta to ensure information theoretically secure key exchange. However, the distance covered by the scheme is limited, and only simple point-to-point connections or star topologies are possible. For this reason, QKD networks (QKDN) have been developed, which forward the key hop by hop. However, in order to maintain the security of the key, the forwarding must be very secure.

Ziel

In vergangenen Projekten wurde eine Benchmarking Anwendung entwickelt, welche in der Lage ist, ein QKDN mit verschiedenen Knoten zu emulieren und ein Benchmarking durchzuführen, um die Schlüsseletablierung in einem QKD unterschiedlichen Konfigurationen zu evaluieren. Diese ist auch als Webanwendung verfügbar. Nun soll die Anwendung um diverse Konfigurationsmöglichkeiten erweitert und ein Benchmarking durchgeführt werden.

English: In previous projects, a benchmarking application was developed that is capable of emulating a QKDN with different nodes and performing benchmarking to evaluate key establishment in a QKD in different configurations. The application is also available as a web application. Now, the application is to be expanded to include various configuration options and benchmarking is to be performed.

Aufgaben

Vertrautmachen mit dem Forschungsfeld QKDN (Es geht um das grobe Verständnis. Du musst kein Experte auf dem Gebiet werden! ;-))
Vertrautmachen mit der bestehenden QKDN Emulationsanwendung
Implementierung neuer Konfigurationsoptionen für das Key Forwarding innerhalb der QKDN Emulationsanwendung wie bspw.:
- Authentifizierungsmechanismus der Knoten
- Hybridisierungsvariante der Schlüssel
- Mehrwegerouting
Benchmarking des Key Forwardings und Gegenüberstellung der Varianten

English:

Familiarize yourself with the QKDN research field (It’s about a rough understanding. You don’t have to become an expert in the field! ;-))
Familiarize yourself with the existing QKDN emulation application
Implementation of new configuration options for key forwarding within the QKDN emulation application, such as:
- Authentication mechanism of the nodes
- Hybridization variant of the keys
- Multi-path routing
Benchmarking of key forwarding and comparison of the variants

Voraussetzungen

Du bist Masterstudent an der HDa
Du besitzt Grundkenntnisse in IT-Sicherheit sowie Computernetze & Protokolle
Du hast Erfahrung im Programmieren
Du kannst eigenständig arbeiten

English:

You are a Master’s student at the HDa
You have basic knowledge of IT security and computer networks & protocols
You have experience in programming
You work independently

Organisation (bei HiWi Jobs)

Wahlweise 40 - 80 Std/Monat
Flexible Arbeitszeiten und flexibler Arbeitsort
Regelmäßige Treffen, um Ergebnisse und weiteres Vorgehen zu besprechen (2-3 Wochen Rhythmus)
Vertragsdauer flexibel

English:

Optional 40-80 hours/month
Flexible work schedule and location
Regular meetings to discuss results and next steps (every 2-3 weeks)
Flexible contract length, beyond 2024 possible

Referenzen und Literatur (Auswahl)

Beginn

Ab April 2026

Bei Interesse melden Sie sich bitte bei Johanna Henrich.

Systematization of Knowledge (SoK): Architecture and Communication Patterns in QKD Networks

Thu, 18 Dec 2025 11:00:00 +0000

Motivation

Damit ein Wissenschaftler gute Arbeit leistet, muss er sich gut in seinem Forschungsfeld auskennen und immer auf dem Laufenden bleiben. Da unser Forschungsfeld der quantensicheren Kommunikation und im speziellen Quantum Key Distribution Networks (QKDN) jedoch sehr interdisziplinär aufgestellt ist und die Weiterentwicklung sehr schnell voran schreitet, ist es nur schwer möglich, stets den Überblick zu behalten. Damit das besser gelingt, nutzen wir das Tool Zotero für die digitale Literaturverwaltung. Auch wenn das vieles erleichtert, müssen die Arbeiten strukturiert eingepflegt und thematisch geordnet werden, um sich im Literaturdschungel zurecht zu finden.

English: For a scientist to do good work, they need to be well-versed in their field of research and always stay up to date. However, since our research field of quantum secure communication and in particular Quantum Key Distribution Networks (QKDN) combines many different specialist areas and advancements are taking place very quickly, it is difficult to keep up with everything all the time. To make this easier, we use the Zotero tool for digital literature management. Even though this makes many things easier, it’s important to enter the work in a structured manner and organize it thematically so you can find your way through the literature jungle.

Ziel

Wir benötigen eine strukturierte, thematisch geordnete Auflistung der verfügbaren Literatur des Forschungsfeldes QKDN. Publikationen müssen entsprechend ihrem Inhalt in Ordnern geclustert und zusätzlich sinnvoll getaggt werden, um für spätere wissenschaftliche Arbeiten schnell auf eine Literturbasis zurückgreifen zu können.

English: We need a structured, thematically organized list of available literature in the field of QKDN research. Publications need to be grouped into folders according to their content and tagged in a meaningful way in order to be able to quickly access a literature base for later scientific work.

Aufgaben

Vertraut machen mit dem Forschungsfeld QKDN (Es geht um das grobe Verständnis. Du musst kein Experte auf dem Gebiet werden! ;-))
Einarbeiten in Zotero und unsere bestehende Literatursammlung
Neue Ordnerstruktur anlegen und die in Zotero gesammelten Arbeiten zuordnen
Noch nicht in Zotero eingepflegte Arbeiten einpflegen und ebenfalls zurordnen
Kontinuierliche Literaturrecherche, damit unsere Sammlung auf dem neuesten Stand bleibt
Optional: Konzept für eine sinnvolle Verwendung von Tags in Zotero

English:

Familiarize yourself with the QKDN research field (It’s about a rough understanding. You don’t have to become an expert in the field! ;-))
Become familiar with Zotero and our existing literature collection
Create a new folder structure and assign works collected in Zotero
Enter and assign works not yet entered in Zotero
Perform ongoing literature research to keep our collection up-to-date
Optional: Conceptualize a meaningful use of tags in Zotero

Voraussetzungen

Du bist Bachelor- oder Masterstudent an der HDa
Du besitzt Grundkenntnisse in IT-Sicherheit sowie Computernetze & Protokolle
Du bist gut im Strukturieren und Sortieren
Du hast Spaß an Literaturrecherche und konzeptioneller Arbeit
Du kannst eigenständig arbeiten

English:

You are a bachelor or master student at the HDa
You have basic knowledge of IT security and computer networks & protocols
You are good at structuring and organizing
You enjoy literature research and conceptual work
You work independently

Organisation

Wahlweise 40 - 80 Std/Monat
Flexible Arbeitszeiten und flexibler Arbeitsort
Regelmäßige Treffen, um Ergebnisse und weiteres Vorgehen zu besprechen (2-3 Wochen Rhythmus)
Vertragsdauer flexibel

English:

Optional 40-80 hours/month
Flexible work schedule and location
Regular meetings to discuss results and next steps (every 2-3 weeks)
Flexible contract length

Referenzen und Literatur (Auswahl)

Beginn

Ab April 2026

Bei Interesse melden Sie sich bitte bei Johanna Henrich.

Systematization of Knowledge (SoK): Secure Key Forwarding in QKDN

Thu, 18 Dec 2025 11:00:00 +0000

Motivation

Ziel

In der Arbeit soll eine Übersicht dazu liefern, welche unterschiedlichen Ansätze zum Key Forwarding in QKDN in der wissenschaftlichen Literatur beschrieben werden und wie diese einzuordnen sind.

English: This paper aims to provide an overview of the different approaches to key forwarding in QKDN described in the scientific literature and how these can be classified.

Aufgaben

Vertrautmachen mit dem Forschungsfeld QKDN (Es geht um das grobe Verständnis. Du musst kein Experte auf dem Gebiet werden! ;-))
Literaturrecherche zu QKDN Key Forwarding
Systematisierte Einordnung/Klassifizierung der gefundenen Literatur

English:

Familiarize yourself with the QKDN research field (It’s about a rough understanding. You don’t have to become an expert in the field! ;-))
Literature research on QKDN key forwarding
Systematic classification of the literature found

Voraussetzungen

Du bist Masterstudent an der HDa
Du besitzt Grundkenntnisse in IT-Sicherheit sowie Computernetze & Protokolle
Du hast Erfahrung im Programmieren
Du kannst eigenständig arbeiten

English:

You are a Master’s student at the HDa
You have basic knowledge of IT security and computer networks & protocols
You have experience in programming
You work independently

Referenzen und Literatur (Auswahl)

Beginn

Ab April 2026

Bei Interesse melden Sie sich bitte bei Johanna Henrich.

Integration von PQC in bewährte Netzwerkkommunikationsprotokolle

Thu, 18 Dec 2025 00:00:00 +0000

Motivation

Sobald ein leistungsstarker Quantencomputer verfügbar ist, können aktuell verwendete asymmetrische Verfahren wie Diffie Hellman und RSA gebrochen werden. Der Mathematiker Peter Shor entwickelte bereits 1994 einen entsprechenden Algorithmus. Asymmetrische Kryptografie wird in unzähligen digitalen Systemen für einen vertraulichen Schlüsselaustausch und eine Authentifizierung genutzt. Daher wurde in den vergangenen Jahren intensiv bezüglich quantensicherer Verfahren geforscht. Alternative Verfahren der Post-Quanten-Kryptographie (PQC) weisen jedoch sehr individuelle Charakteristiken auf, sodass in der Regel kein Eins-zu-Eins-Austausch möglich ist.

Ziel

Ziel der Arbeit ist die Ausarbeitung von Möglichkeiten zur Integration von PQC Algorithmen in ein oder mehrere Kommunikationsprotokolle, welche aktuell auf klassische kryptographische Primitive zurückgreifen. Denkbar wären Protokolle wie IPSec und IKEv2 oder DTLS. Sofern bereits mehrere Implementierungen und Evaluationen dieser beschrieben wurden, sollten diese aufgeführt und verglichen werden. Es können auch Änderungen an in der Literatur beschriebenen Konzepten vorgeschlagen oder gänzich neue Versionen designt werden. Verfügbare Implementierungen sollen abschließend mit Hilfe des von UCS entwickelten Frameworks evaluiert werden.

Aufgaben

Literaturrecherche zu Optionen bezüglich Integration in bekannte Protokolle wie IPSec und IKEv2 oder DTLS
Einschätzung zur Anwendbarkeit der Optionen und Ausarbeitung signifikanter Unterschiede zwischen Implementierungen
Vorschläge zur Optimierung der Optionen oder Ausarbeitung von Alternativen
Integration von Implementierungen in das Framework aus der Masterarbeit von Henrich zur Evalueirung der neuen Protkollversionen

Voraussetzungen

Kenntnisse in IT-Sicherheit, insbesondere asymmetrische Kryptographie
Kenntnisse in Computernetze & Protokolle
Grundkenntnisse in Linux
Spaß an Literaturrecherche und konzeptioneller Arbeit

Referenzen und Literatur (Auswahl)

Beginn

Ab April 2026

Bei Interesse melden Sie sich bitte bei Johanna Henrich.

Integration von QKD in TLS

Thu, 18 Dec 2025 00:00:00 +0000

Motivation

Sobald ein leistungsstarker Quantencomputer verfügbar ist, können aktuell verwendete asymmetrische Verfahren wie Diffie Hellman und RSA gebrochen werden. Der Mathematiker Peter Shor entwickelte bereits 1994 einen entsprechenden Algorithmus. Asymmetrische Kryptografie wird in unzähligen digitalen Systemen für einen vertraulichen Schlüsselaustausch und eine Authentifizierung genutzt. Daher wurde in den vergangenen Jahren intensiv bezüglich quantensicherer Verfahren geforscht. Quantum Key Distribution (QKD) nutzt die Physik der Quanten, um einen informationstheoretisch sicheren Schlüsselaustausch zu gewährleisten. Zukünftig sollen Endnutzer über eine einfache HTTP-basierte Schnittstelle an ein QKD-Netzwerk (QKDN) angebunden werden, welches symmetrische Schlüssel für entfernte Kommunikationspartner bereitstellt. Die Schlüssel werden über eine einfache ID eindeutig zugeordnet.

Ziel

Ziel der Arbeit ist die Ausarbeitung von Möglichkeiten zur Integration von QKD in das vielfach verwendete Protokoll TLS 1.3. Dafür muss die Anwendungsschnittstelle eines QKDNs analysiert und mit den unterschiedlichen Erweiterungsmöglichkeiten von TLS abgeglichen werden. Die erarbeiteten Optionen sollen beschrieben und gegenübergestellt werden. Bereits verfügbare Prototypen könnten zudem getestet oder Konzepte selbst prototypisch implementiert werden. Auch eine anschließende Performanz Evaluation wäre denkbar.

Aufgaben

Literatur- und Internetrecherche zu Optionen bezüglich der Integration von QKD in TLS
Ausarbeitung von Integrationsmöglichkeiten für QKD in TLS - sowohl aus der Literatur als auch eigene Ideen
Einschätzung zur Anwendbarkeit der Optionen und Ausarbeitung signifikanter Unterschiede zwischen diesen
Optional: Vorschläge zur Optimierung der Optionen oder Ausarbeitung einer alternativen Vorgehensweise
Optional: Inbetriebnahme verfügbarer Prototypen oder Implementierung eines eigenen Prototypen
Optional: Integration von Implementierungen in das Framework aus der Masterarbeit von Henrich und Evaluierung der Performanz

Voraussetzungen

Kenntnisse in IT-Sicherheit
Kenntnisse in Computernetze & Protokolle, insbesondere TLS
Grundkenntnisse in Linux
Grundkenntnisse und Interesse im Bereich Quantenphysik oder Elektrotechnik wünschenswert, aber nicht zwingend erforderlich
Spaß an Literaturrecherche und konzeptioneller Arbeit

Referenzen und Literatur (Auswahl)

Beginn

Ab April 2026

Bei Interesse melden Sie sich bitte bei Johanna Henrich.

ATHENE Usable Security and Privacy Lab

Thu, 25 Sep 2025 00:00:00 +0000

Participation welcome: Launch of the ‘ATHENE Usable Security and Privacy Lab’ at h_da

At the beginning of October, the ‘ATHENE Usable Security and Privacy Lab’ (USP Lab) began its work at h_da. The lab is run by the User-Centered Security working group and supported by the National Research Center for Applied Cybersecurity ATHENE. Researchers and students at h_da can use the lab for projects and studies on the usability of security and privacy related technologies. The focus lies on questions of how security and privacy technologies can be designed to support users in making informed decisions and effectively protect their personal data. This includes, for example, the comprehensible presentation of privacy policies or transparent cookie banners that openly explain which data are processed and in what form when using an application. Research into user behaviour is also of great interest, for example regarding trust in AI tools and the information users may reveal.

The USP Lab has comprehensive technical resources and offers methodological support to investigate such issues, for example through usability tests on PCs or mobile devices, user interviews, surveys, eye tracking and more. The laboratory is located in building D19, room 02.12, and can also be used for teaching purposes. Researchers who are not members of ATHENE can request to use the USP Lab at any time. The laboratory website also provides detailed explanations and instructions. If required, the team will be happy to assist you with individual methodological consultation. In addition, the website provides all the necessary information on booking the laboratory and the available equipment. If you have any questions, please contact us (usp-lab@h-da.de).

A Lot of Data and Added Complexity. How Does PQC Affect the Performance of My TLS Connection?

Mon, 15 Sep 2025 05:01:40 +0000

Abstract

In a previous study, Henrich et al. (ISC ‘23) demonstrate how TLS handshake performance is affected not only by different Post Quantum Cryptography (PQC) Key Encapsulation Mechanisms KEMs and security levels, but also by varying physical network conditions. In particular, they show that prior to selecting a PQC scheme replacement for TLS, it is important to conduct an analysis of the anticipated network conditions for applications that require a high level of responsiveness. In this paper, we build upon the afore mentioned work and complement the previous experiments to include digital signature PQC schemes and hybrid variants, as well as various compositions of certificate chains. Moreover, an analysis is conducted on the effects of deploying real physical servers and varying the underlying network stack configuration. Our results show that incorporating PQC signature schemes does not negatively impact the overall transmission time as substantially as poor network conditions. However, operating at high security levels frequently results in delays using PQC schemes. These findings are consistent across hybrid schemes as well. We conclude that migrating TLS to PQ-only or hybrid usage can generally be undertaken with a high degree of confidence. However, considering suboptimal network conditions or the use of higher security levels, a cautious transition is recommended. In such cases, the configuration of certificate chains or increasing the TCP Congestion Window might prove beneficial.

Simulation-based Software Leakage Evaluation for the RISC-V Platform

Mon, 15 Sep 2025 05:01:40 +0000

Abstract

Side-channel attacks are critical as they, despite the mathematical security of the algorithm, break the security assumption that private data stays hidden from the adversary. Developing secure hardware can be expensive, as multiple iterations of prototyping may be required to achieve a satisfactory level of security against side-channel attacks. Currently, the fairly new and open-source CPU-platform RISC-V is gaining traction by entering the IoT- and consumer market and also gains interest in security oriented projects such as OpenTitan. In case of security-critical applications, especially when the hardware is exposed to third party, the implementations of cryptographic algorithms must be secure against side-channel attacks. For the RISC-V platform currently only a small number of tools exist to assess the probing security. Further, we could identify a lack of simulation-based tooling to do so, with the ability to analyze larger implementations as e.g., full ciphers. To address this demand, we use PROLEAD_SW as a starting point and extend it to support the RISC-V platform. By analyzing micro-architectural leakage effects on the RISC-V platform we show that the CPU-independent leakage model used by PROLEAD_SW for the ARM architecture is suitable for the RISC-V platform. To verify the correctness of the new tooling, test-vectors are executed with the new tooling. In a final step, the performance of the new tooling is compared to the performance of the original version of PROLEAD_SW by analyzing two masked AES C implementations with both tools.

Contact

Sat, 06 Sep 2025 00:00:00 +0000

People

Sat, 06 Sep 2025 00:00:00 +0000

Two papers accepted at ISC 2025

Wed, 03 Sep 2025 00:00:00 +0000

Two papers from our working group have been accepted at ISC 2025.

Our first paper “Simulation-based Software Leakage Evaluation for the RISC-V Platform” by Nicolai Schmitt, Jannik Zeitschner (Ruhr Universität Bochum) and Andreas Heinemann extends a tool (PROLEAD_SW) for the RISC-V platform in order to detect leakage.

Our second paper “A Lot of Data and Added Complexity. How Does PQC Affect the Performance of My TLS Connection?” by Johanna Henrich, Nicolai Schmitt, Nouri Alnahawi and Andreas Heinemann investigates the TLS handshake performance when using PQC schemes.

PIONEER project presents current investigations and publications

Mon, 25 Aug 2025 00:00:00 +0000

The ATHENE research project PIONEER was featured at the 29th International Conference Information Visualisation held on August 07, 2025 in Darmstadt. The conference brought together leading experts from academia and research institutions to discuss the latest developments in information visualisation, machine learning, and data science.

During the event, Sara Hahn presented the latest research investigations and publications on PIONEER’s innovative Digital Privacy Companion. In her talk, Sara Hahn provided a comprehensive overview of the project’s theoretical foundations and research methodology, while also showcasing current investigations, findings, and recent publications.

The PIONEER project is part of ATHENE’s mission to advance cybersecurity and privacy research with practical solutions that can be transferred into real-world applications.

Sara Hahn presenting the poster on Day 2 of the IV2025 Conference. Image © IV2025

DemoQuanDT: a carrier-grade QKD network

Mon, 04 Aug 2025 05:01:40 +0000

Abstract

Quantum key distribution networks (QKDNs) enable secure communication even in the age of powerful quantum computers. In the hands of a network operator, which can offer its service to many users, the economic viability of a QKDN increases significantly. The highly challenging operator–user relationship in a large-scale network setting demands additional requirements to ensure carrier-grade operation. Addressing this challenge, this work presents a carrier-grade QKDN architecture, which combines the functional QKDN architecture with the operational perspective of a network operator, ultimately enhancing the economic viability of QKDNs. The focus is on the network and key management aspects of a QKDN while assuming state-of-the-art commercial QKD modules. The presented architecture was rolled out within an in-field demonstrator, connecting the cities of Berlin and Bonn over a link distance of 923 km across Germany. We could show that the proposed network architecture is feasible, integrable, and scalable, making it suitable for deployment in real-world networks. Overall, the presented carrier-grade QKDN architecture promises to serve as a blueprint for network operators providing QKD-based services to their customers.

Studentische Hilfskraft (m/w/d) für wissenschaftliche Unterstützung gesucht

Sun, 22 Jun 2025 00:00:00 +0000

Motivation und Ziel

Das ATHENE LEAK Projekt hat das Ziel der Entwicklung neuartiger, hardwarenaher und ressourcen-freundlicher Seitenkanal-Leakagemodelle für die RISC-V CPU-Plattform. RISC-V ist eine verhältnismäßig neue CPU Plattform, welche zunehmend Verbeitung in IoT- und sicherheitsrelevanten Bereichen findet, wodurch der Bedarf an sicheren Implementierungen auf RISC-V-Basis steigt.

Deine Aufgaben

Unterstützung bei der Literaturrecherche und -aufbereitung zu Leakage-Assessment-Tooling und Leakage-Gegenmaßnahmen.
Praktische Messung von Seitenkanälen an Hardware
Entwicklung und Implementierung von Leakage-Modellen z.B. in Form von Leakage-Assessment Tooling.
Hardwarenahe Programmierung z.B. auf RISC-V Entwicklungsboards.

Voraussetzungen

Eingeschriebene:r Student:in (Idealerweise Informatik oder Elektrotechnik)
Interesse an Seitenkanal-Analyse, Probing-Security und wissenschaflichem Arbeiten
Strukturierte, zuverlässige und eigenständige Arbeitsweise

Wir bieten dir

Einblicke in spannende und aktuelle Forschungsthemen im Bereich der Hardwaresicherheit und Seitenkanalanalyse
Die Möglichkeit an aktuellen wissenschaftlichen Publikationen mit zu wirken
Flexible Arbeitszeiten

Organisation

Standort: Hochschule Darmstadt – Fachbereich Informatik – UCS Research Group
Arbeitszeit: zwischen 8 und 20 Stunden pro Woche (flexibel einteilbar; Stundenanzahl anpassbar)
Start: zum nächstmöglichen Zeitpunkt
Stundensatz: üblicher Stundensatz für SHKs
Projekt: LEAK: Leakage Models for Masking: Bridging the Gap Between Theory and Practice (https://ucs.h-da.io/project/leak/)

Interesse?

Dann sende uns deine Bewerbung (Leistungsübersicht und Lebenslauf) an nicolai.schmitt@h-da.de. Wir freuen uns auf dich!

Wir begrüßen Fabian im Team

Tue, 01 Apr 2025 00:00:00 +0000

Wir freuen uns, dass Fabian Seidl zum 01.04. unsere Gruppe verstärkt. Fabian hat einen Master in Computer Science und wird im Projekt SATURN gemeinsam mit Johanna Fragestellungen rund um PQC und QKDN untersuchen.

Willkommen, Fabian.

Portierung eines Software Probing-Security Analyse Tools auf GPU Plattformen

Thu, 20 Mar 2025 00:00:00 +0000

Motivation

Seitenkanalangriffe gewinnen zunehmend an Bedeutung, wenn wie z.B. im Falle einer Smartcard, die Hardware in die Hände des Angreifers gelangen kann. In so einen Fall muss die Hardware-Software Kombination gegen Angriffe auf die Implementierung geschützt sein.

Um die Sicherheit von Hardware-Software Kombinationen gegen Seitenkanalangriffe zu evaluieren, können heutzutage Software-Tools verwendet werden, welche z.B. auf Basis eines Leakage-Modells sowie einer Ausführung der Software in einem Emulator arbeiten. Ein Derartiges Tool wird von uns derzeit für die verhältnismäßig neue CPU-Architektur RISC-V entwickelt.

Ein Leakage Assessment der Hardware-Software-Kombination eines Sicherheitsproduktes noch vor dem ersten Prototyp verringert die Entwicklungskosten und die Zeit pis zum Rollout des Produktes. Dennoch kann ein simulations-basiertes Leakage-Assessment im Sinne von Rechenzeit und Speicher ressourcen-aufwendig. Da in der heutigen Zeit z.B. im Hinblick auf KI-Anwendungen oftmals in leistungsfähige GPU-Cluster investiert wird, wird eine Unterstützung von GPU-basierten Plattformen zunehmend wichtiger.

Ziel

Ziel dieser Arbeit ist, unser in Entwicklung befindliches Leakage-Assessment Tool so zu erweitern oder zu portieren, dass es auf die Rechenleistung von GPU-Clustern zurückgreifen kann. Eine Umsetzung könnte beipsielsweise mit Hilfe von OpenCL oder CUDA erfolgen.

Aufgaben

Ziel dieser Arbeit ist die Entwicklung eines Konzeptes zur Trennung der Implementierung zwische GPU und Host-Seite, so dass diese effizient arbeitet und mit der Anzahl der GPUs skaliert. In einem weiteren Schritt soll das Konzept implementiert werden. Des weiteren sollen Konzepte erarbeitet werden, wie sich die GPU- sowie die klassische Implementierung nebeneinander warten und weiterentwickeln lassen.

Voraussetzungen

Gute C und C++ Kenntnisse
Vorkenntnisse in CUDA, OpenCL
Vorkenntnisse im Umgang mit Git, GNU-Make sowie Linux
Spaß an Softwareentwicklung

Referenzen und Literatur (Auswahl)

Haben wir Ihr Interesse geweckt? Kontakt: Nicolai Schmitt.

Nationale Konferenz IT-Sicherheitsforschung 2025

Sun, 16 Mar 2025 00:00:00 +0000

UCS will present the results of the DemoQuanDT research project in a poster session at the “National Conference IT Security Research 2025 - IT Security and Democracy” in Berlin, which is being hosted by the German Federal Ministry of Education and Research (BMBF).

The presentation will be based on a poster entitled “Confidential and authenticated key forwarding in QKD networks,” which has been accepted for the poster pitch on March 18, 2025. The central inquiry concerns the extent to which security and performance can be assured for key forwarding in extensive, interconnected QKD networks. The technology is poised to facilitate secure transmission of messages, that is, confidentiality and authentication. In contradistinction to the asymmetric cryptographic approaches currently employed, the security of the QKD system is expected to withstand the threat posed by quantum computers.

The poster was authored by Johanna Henrich. Her research focuses on key establishment in QKD networks and the potential for integrating QKD and PQC to ensure quantum-safe and high-performance communication. The research is conducted in close collaboration with the danet research group led by Prof. Dr Martin Stiemerling.

Image ©: National Conference IT Security Research 2025

Parametrisierung simulations-basierter Software Probing-Security Analyse für spezifische CPU-Implementierungen

Fri, 31 Jan 2025 00:00:00 +0000

Motivation

Da die verwendeten Leakagemodelle generisch arbeiten, treffen die Aussagen der Tools nicht zwangsläufig genau auf eine Hardware-Implementierung einer CPU zu, wodurch ggf. die falschen oder mehr Schutzmaßnahmen auf der Software-Seite ergriffen werden könnten als notwendig und somit die Performance der Implementierung beeinträchtigt werden könnte.

Ziel

Ziel dieser Arbeit ist, anhand verschieder Implementierungen von RISC-V CPUs festzustellen, welche Unterschiede im Leakage-Verhalten zwischen verschiedenen Implementierungen von CPUs der RISC-V Plattform beobachtet bzw. gemessen werden können. Auf Basis von PROLEAD_SW wird von uns ein Tool für die RISC-V Plattform entwickelt, mit dessen Hilfe die Probing-Security von Software, welche auf RISC-V CPUs ausgeführt wird, evaluiert werden kann. Auf Basis dieser Datenlage soll identifiziert werden, wie weit das dem Tool zugrundeliegende Leakage-Modell verändert werden muss oder parametrisierbar gemacht werden muss, um genauere Aussagen für spezifische RISC-V implementierungen zu treffen.

Aufgaben

Gegebenenfalls Entwicklung neuer Testcases in Assembler und C
Gegebenenfalls Durchführen von Messungen an echter Hardware
Auswerten von Messdaten
Entwicklung eines Konzeptes für ein parametrisierbares Leakage-Modell
Implementierung des parametrisierbaren Leakage-Modells

Voraussetzungen

Gute C, C++ und Assembler Kenntnisse
Python Kenntnisse
Vorkenntnisse im Umgang mit Git, GNU-Make sowie Linux
Spaß an Softwareentwicklung

Referenzen und Literatur (Auswahl)

Haben wir Ihr Interesse geweckt? Kontakt: Nicolai Schmitt.

SATURN

Wed, 01 Jan 2025 00:00:00 +0000

The SATURN project addresses critical security challenges in Quantum Key Distribution Networks (QKDN). With the development of quantum computers, the threat to classical cryptography is growing, making quantum-safe alternatives essential. Particularly critical are ‘harvest now, decrypt later’ attacks, where encrypted data is stored today to be decrypted later by quantum computers. While QKD enables secure key exchange from an information-theoretic point of view, its practical implementation in networks poses major challenges. Current QKD modules over optical fibre are limited to distances of about 150 km. For longer distances, intermediate nodes must be used, which raises new security issues.

The SATURN project will develop secure and efficient protocols for key forwarding in QKDNs. A hybrid approach will be pursued, combining QKD with post-quantum cryptography (PQC). Existing protocols will be formally analysed, new security models will be developed, and practical implementation guidelines will be produced. The results should provide an informed decision-making framework for the use of QKDNs, taking into account both security and practical aspects such as performance, scalability and crypto-agility.

Contact

Johanna Henrich

PIONEER project presents current results

Thu, 21 Nov 2024 00:00:00 +0000

UCS recently participated in the ATHENE-Conference on Cognitive Security, held on November 19, 2024, at the historic Jügelhaus in Frankfurt am Main. The event gathered experts from academia, media, and politics to address the pressing challenges posed by cognitive attacks in the digital age. In addition to interesting talks and an insightful panel discussion, several projects were presented in the demo sessions.

Sara Hahn had the opportunity to present the ATHENE project PIONEER’s mobile prototype during the demo sessions with her project colleagues from the TU Darmstadt. The conference guests could explore the prototype’s features, such as lessons and quizzes about privacy, or compare applications regarding their privacy friendliness.

Within our project PIONEER, we strive to empower users in their digital sovereignty by providing them with the necessary knowledge and motivating them to acquire and apply competencies in their everyday digital lives.

The PIONEER Team. Image © Catharina Frank

Conference Impressions. Image © Catharina Frank

IETF Meeting 121 in Dublin

Thu, 24 Oct 2024 00:00:00 +0000

UCS took part in the 121st meeting of the Internet Engineering Task Force (IETF) in Dublin from 2.-8. November 2024. The IETF develops standards and best practices for the Internet and thus has a significant influence on its design.

Among other things, Johanna Henrich led a project group together with the danet research group of Prof. Dr. Martin Stiemerling. The project was part of the Hackathon, which took place from 2.-3. November. The aim was to find out how the interfaces in Quantum Key Distribution Networks (QKDN) can be designed and how quantum-resistant protection of their communication can be achieved. Read more in our final presentation.

In addition, Johanna Henrich participated in various IETF and IRTF working group sessions throughout the week to answer questions such as how post-quantum cryptography (PQC) and QKD, individually and in hybrid form, can be integrated into the existing Internet infrastructure.

Image ©: Johanna Henrich

Rump Session at ECOC 2024

Thu, 24 Oct 2024 00:00:00 +0000

On 24 September 2024, Johanna Henrich accepted an invitation to take part in a rump session at the European Conference on Optical Communication (ECOC) 2024. The session dealt with the pros and cons of post-quantum cryptography and quantum key distribution, and the extent to which they can be used in combination to reliably protect us from future attacks by quantum computers.

ECOC is Europe’s leading conference on optical communications with representatives from science and research. It consists of a broad exhibition and a parallel conference and took place this year from 22 to 26 September in Frankfurt am Main.

Image ©: ECOC 2024 IMPRESSIONS

How to Respect Bystanders' Privacy in Smart Homes - A Co-Creation Study

Wed, 16 Oct 2024 05:01:40 +0000

Abstract

As technology advances, homes become more digitalized and evolve into smart homes. Bystanders, e.g. guests in smart homes, are often unaware of the smart home devices and the associated privacy risks that make them especially vulnerable. However, so far there is limited research on how the guests can be made aware of smart home devices in the household and how their resulting privacy preferences can be addressed while respecting the smart home owners’ preferences as well. To close this gap, we conducted three co-creation workshops with ten participants (N=10) developing various design solutions. Through a thematic analysis of our data, we identified design solutions for smart home devices and beyond, like higher-level applications for regulating privacy and inherent responsibility. We recommend a multi-modal approach focusing not only on the design of the devices but also on the higher-level management of privacy in smart homes.

Wir begrüßen Sara im Team

Wed, 16 Oct 2024 00:00:00 +0000

Wir freuen uns, dass Sara Hahn zum 1.10. unsere Gruppe verstärkt. Sara hat einen Master in Psychologie und wird sich im Projekt PIONEER mit psychologischen Bedürfnisse der Nutzer im Kontext von Privatsphäre und Vertrauen im Internet befassen.

Willkommen, Sara.

Unser Beitrag auf dem Usable Security and Privacy Workshop (MuC 2024)

Wed, 28 Aug 2024 00:00:00 +0000

Unser Beitrag “Pass auf! - Child-Oriented Cyber Safety & Security Educational Content” von Karen Bopp, Andreas Heinemann und Karen Renaud wird am 3. September auf dem 10. Usable Security und Privacy Workshop am KIT in Karlsruhe im Rahmen der Konferenz “Mensch und Computer 2024” vorgestellt.

Diese Arbeit basiert auf den Ergebnissen der Masterarbeit von Karen Bopp.

Pass auf! - Child-Oriented Cyber Safety & Security Educational Content

Mon, 26 Aug 2024 05:01:40 +0000

Abstract

A significant number of online users are underage. Hence, their caregivers and the children themselves should know how to keep themselves safe and secure online. Our aim is to understand which cyber risks children and parents identify through independent research, whether these cyber risks are in line with the state of research and official recommendations and whether risk informed learning materials for children, parents and teachers would be beneficial. We identified a list of cyber risks that affect children online. We examined German advisory websites and research publications to determine coverage of these. We then developed a website to provide comprehensive coverage specifically for German children, which we evaluated with a sample of children, their parents and teachers. German advisory websites, official bodies and researchers do not agree on what is considered a cyber risk for children. Researchers mention many risks that are not mentioned by advisory websites. Targeted risk-informed learning content should improve the situation. This research is a first step towards providing German children, their parents, and teachers with coherent, up-to-date and easily understandable advice about online safety and security risks and the mitigations that can be used to prevent them. More cooperation between stakeholders is urgently needed ensure children are protected.

IT-Sicherheit aus Nutzerinnen- und Nutzersicht

Thu, 01 Aug 2024 00:00:00 +0000

2 Jobs for Student Assistants

Tue, 30 Jul 2024 04:12:53 +0000

Wir bieten zwei Stellen für studentische Hilfskräfte. Obwohl beide Tätigkeiten einen Bezug zu IT-Sicherheit und unserem Forschungsfeld Quantum Key Distribution Networks haben, unterscheiden sich die Aufgaben stark. Wenn Du Dinge gut Ordnen und Strukturieren kannst und ein kleines Organisationstalent bist, kannst du gerne versuchen, für Ordnung in unseren Literaturdschungel zu sorgen. Wenn du eher Typ Programmierer und Tüftler bist, darfst Du dich an unseren Prototypen wagen.

Unten findest Du die Links zu unseren Angeboten. Melde Dich bei Interesse gerne per Mail bei Johanna Henrich.

Wir freuen uns auf Dich.

English:

We offer two positions for student assistants. Although both jobs are related to IT security and our research area Quantum Key Distribution Networks, the tasks are quite different. If you are good at organizing and structuring things and have a talent for keeping things tidy, you are welcome to try to keep our literature jungle in order. If you are more of a programmer and tinkerer, you can try your hand at our prototype.

Below you will find the links to our offers. If you are interested, please send an email to Johanna Henrich.

We are looking forward to hearing from you.

PIONEER

Mon, 01 Jul 2024 00:00:00 +0000

The ATHENE PIONEER (A PrIvacy companion for mOtivatioN and knowlEdge transfER) project is an interdisciplinary project that addresses one of the key challenges in this century for users: remaining control over their private data.

PIONEER aims to empower users in their digital sovereignty by providing them with the necessary knowledge and motivating them to acquire and apply competencies in their everyday digital lives.

This will be realized through the user-centered development of a digital privacy companion in the form of a mobile app in which users can (1) acquire the necessary knowledge about digital contexts enabling them to make self-determined and informed decisions about how to handle their data.

Furthermore, (2) through the application of psychological theories in the design, the digital privacy companion supports users in showing and maintaining privacy-aware behavior in the long-term.

Lastly, (3) different user groups (e.g., elderly people, adolescents) are taken into account to derive and consider specifics, such as different psychological needs that drive human behavior or different knowledge levels, resulting in different user requirements.

Additionally, PIONEER employs a participatory co-creation process, integrating insights from both privacy experts and lay users.

Contact

Sara Hahn

PMMP-PQC Migration Management Process

Sun, 16 Jun 2024 05:02:36 +0000

Abstract

Organizations have to plan on migrating to quantum-resilient cryptographic measures, also known as PQC. However, this is a difficult task, and to the best of our knowledge, there is no generalized approach to manage such a complex migration for cryptography used in IT systems that explicitly integrates into organizations’ steering mechanisms and control systems. We present PMMP, a risk-based process for managing the migration of organizations from classic cryptography to PQC and establishing crypto-agility. Having completed the initial design phase, as well as a theoretical evaluation, we now intend to promote PMMP. Practitioners are encouraged to join the effort in order to enable a comprehensive practical evaluation and further development.

Ways for confidential and authenticated hop-by-hop key establishment in QKDN

Tue, 16 Apr 2024 04:47:14 +0000

Abstract

Asymmetric cryptography, specifically key exchange and digital signatures, enables secure digital communication. However, sufficiently powerful Quantum Computers, which could be available within a few years , would be able to break classical primitives like Elliptic-Curve Diffie–Hellman (ECDH) and RSA in polynomial time. Moreover, the „harvest-then-decrypt“-attack poses the danger that stored encrypted data can be decrypted later. Thus, alternative approaches are urgently needed. Besides Post Quantum Cryptography (PQC), which is based on mathematical problems, Quantum Key Distribution (QKD) uses quantum effects, to establish keys in an information-theoretically secure way. Nevertheless, there are no reliable QKD modules that bridge distances of more than 150 km. Therefore, a QKD Network (QKDN) uses a concatenation of QKD links. End users are connected to each other via a series of QKD nodes performing a hop-by-hop key forwarding. All nodes involved have access to the final shared secret. If a node cannot be trusted the security of the system is no longer guaranteed. Physical protection or key hybridization can mitigate this risk, where hybridization refers to the combination of QKD and PQC. By using both schemes appropriately, the security objectives are met as long as at least one of the schemes used has not been compromised. Nonetheless, there is a lack of concrete concepts and analyzes to enable a secure and efficient key forwarding process. In the following, ’secure’ implies the security objectives of confidentiality and authenticity. ’Efficient’ refers to the time taken to complete the process, the amount of data transferred and the amount of computing required. The analyses available often only consider specific sub-processes, e.g., forwarding between two directly adjacent nodes. The integration into the entire system and its resulting effects are disregarded. A systematic comparison of different options is missing. When implementing a QKDN, it is unclear which variant is suitable for one’s own intentions. This PhD project aims to address the problem by defining the key establishment process, analyzing security requirements, designing and implementing corresponding schemes, and evaluating these approaches.

On Criteria and Tooling for Cryptographic Inventories

Tue, 09 Apr 2024 05:01:40 +0000

Abstract

When cryptography becomes insecure, a migration to new schemes is required. Often the migration process is very complicated, but the time available is very limited. Only if the used cryptographic algorithms, protocols and configurations are known can a system be efficiently and fully adapted to changed security situations. This creates the need for a crypto-inventory that gathers this knowledge. Consequently, the question arises what criteria a crypto-inventory must fulfill to support this adaptation. It also highlights the need for tools to assist compilation. We therefore conducted a literature survey and extracted key requirements. Missing content was supplemented by expanding existing requirements or adding new ones. Furthermore, appropriate metrics were assigned to assess the fulfillment of the requirements for a certain crypto-inventory implementation. Regarding the tooling, we identified five major areas of interest — installed software, connected hardware, communication, stored data and source code scanning — and provide prototypes for semi-automatic creation of crypto-inventories for three of them. This provides organizations with a starting point to understand their cryptographic landscape as a prerequisite for crypto-agility and crypto-migration. However, theoretical design and prototypes have not yet been evaluated. This will be done as a follow-up to this work. All types of organizations are invited to participate.

Toward Next Generation Quantum-Safe eIDs and eMRTDs: A Survey

Sat, 16 Mar 2024 05:00:48 +0000

Abstract

Security mechanisms of Electronic Personal Documents (eCards) depend on (asymmetric) cryptography that is and always has been subject to the threat of compromise, be it from conventional attacks or quantum computers. With Post-Quantum Cryptography (PQC), we now have alternative building blocks at hand that can be leveraged to protect against both kind of attacks. Thus, PQC should be incorporated into eCard ecosystems, yet it is not clear how this is done best. In the work at hand, we review the state of currently used crypto-systems for eCard security, as well as their possible quantum-secure replacements. Further, we identify and categorize respective challenges that need to be addressed, present and assess existing approaches for their solution, and formulate research questions for open issues. By providing an overview of the situation, we help unraveling the issue and pave the way toward quantum-safe electronic Identity Documents and electronic Machine-Readable Travel Documents.

2 neue Themen für Abschlussarbeiten online (DE)

Tue, 23 Jan 2024 04:12:53 +0000

In Kooperation mit der DB Systel bieten wir die folgenden zwei Abschlussarbeiten an

Einbettung von automatisiertem Threat Modelling ins Risikomanagement

Tue, 23 Jan 2024 00:00:00 +0000

Motivation

Im Unternehmenskontext des Teams Application Security Specialists der DB Systel soll im Rahmen des dort implementierten Software Development Lifecycle (SDLC) sowie des zugehörigen Information Security Management System (ISMS) ein Thread Modelling weitgehend automatisiert und eingebettet werden.

Hierbei soll die Lösung sowohl das agile Vorgehen im SDLC berücksichtigen sowie einen Mehrwert und eine Arbeitserleichterung für die verschiedenen Stakeholder (Development-Team, Product Owner, Security Architect, CISO) bieten.

Ziel

Das Ziel der Arbeit ist die Erarbeitung eines Vorgehensmodells zur Aufbereitung von technischen Risiken aus einem Thread Modelling Prozess für das Risikomanagement gemäß eines Information Security Management System (ISMS). Hierbei soll aus technischer Sicht eine Export- und Report-Schnittstelle aus Basis von IriusRisk als Web Service implementiert werden.

Aufgaben

Recherche:
- Wie kann kontinuierliches Threat Modeling in einem agilen Entwicklungsprozess realisiert werden?
- Wie kann Risiko Management gemäß ISMS realisiert werden?
Erarbeitung eines Vorgehensmodells zur Aggregation von technischen Risiken aus dem Thread Modeling für ein Risiko Management gemäß ISMS
Basis von IriusRisk: Design, Implementierung und Test einer Export- und Report-Schnittstelle
Evaluation des Tool-gestützten Vorgehensmodells hinsichtlich Usability, Effizienz, Effektivität und Wirkungsgrad

Voraussetzungen

Grundkenntnisse in IT-Sicherheit und sicherer Software-Entwicklung
Programmierkenntnisse
Docker-Kenntnisse sind von Vorteil
Spaß an Literaturarbeit und theoretischen Konzepten

Literatur (Einstieg)

Izar Tarandach and Matthew J. Coles: “Threat Modeling: A Practical Guide for Development Teams”. O’Reilly Media, Inc. (November 2020), ISBN: 9781492056553
Continuous Threat Modeling Handbook, via GitHub
Scott, F. “Introduction to the Open Threat Model standard”, 2022, IrusRisk Blog
Open Threat Modeling Format (OTM), via GitHub

Start

nach Absprache

Diese Arbeit wird in Kooperation mit dem Team Application Security Specialists der DB Systel in Frankfurt/M durchgeführt.

Weitere Informationen und Kontakt

Andreas Heinemann

Nutzerzentrierte Qualitätssteigerung im Berichtswesen von Penetrationtests

Tue, 23 Jan 2024 00:00:00 +0000

Motivation

Im Unternehmenskontext des Teams Application Security Specialists der DB Systel muss für jeden Penetrationtest ein Abschlussbericht erstellt werden. Hierzu wird eine Vorlage eines Reporting-Tools verwendet. Der Nutzen und die Qualität eines Berichts bleiben jedoch hinter den Erwartungen zurück. So fehlen klare Vorgaben und Guidelines an das Design und die Struktur. Darüber hinaus ist unklar, welche Nutzergruppen einen Bericht in welcher Form verwenden und ob die Ergebnisse eines Pentests hierbei optimal kommuniziert werden und die gewünschten Handlungen nach sich ziehen.

Ziel

Das Ziel der Arbeit ist den unternehmensweiten Wirkungsgrad von Abschlussberichten von Penetrationstests zu erhöhen.

Hierzu könnte die Verbesserung der Verständlichkeit, die Vereinheitlichung von Vorgaben und die Reduzierung des eigentlichen Schreibaufwands durch technische Unterstützung gehören.

Aufgaben

Literaturrecherche zu Berichtswesen im Pentesting
Recherche von Test- und Bewertungsmethoden zur Verständlichkeit von Berichten
Einarbeitung in Usability/UX von technischen Dokumentationssystemen
Recherche von alternativen Aufbereitungsformen von Berichten. Schlagworte: information dashboards, visual analytics, etc.

Voraussetzungen

Grundlegende Kenntnisse im Pentesting
Kenntnisse des OWASP Projects
Kenntnisse des Common Vulnerability Scoring System (CVSS)
Kenntisse der Common Vulnerabilities and Exposures (CVE) Systematik
Erfahrungen im Schreiben von technischen Berichten

Literatur (Einstieg)

M. N. Zakaria et al., “A Review of Standardization for Penetration Testing Reports and Documents,” 2019 6th International Conference on Research and Innovation in Information Systems (ICRIIS)
Professional and Technical Writing/Design/Usability, WIKIBOOKS
Parker, Kesi, “Usability in Technical Documentation” 2018, Medium

Start

nach Absprache

Diese Arbeit wird in Kooperation mit dem Team Application Security Specialists der DB Systel in Frankfurt/M durchgeführt.

Weitere Informationen und Kontakt

Andreas Heinemann

Privacy Policy

Mon, 01 Jan 2024 00:00:00 +0100

Effective Date: January 1, 2024 Last Updated: March 22, 2026

1. Controller

The controller responsible for data processing on this website is:

Prof. Dr. Andreas Heinemann c/o Fachbereich Informatik Hochschule Darmstadt – University of Applied Sciences Schöfferstr. 3 D-64295 Darmstadt Germany

Email: andreas DOT heinemann AT h-da DOT de Phone: +49 6151 553 68 482

For data protection inquiries at Hochschule Darmstadt, you may also contact the institutional Data Protection Officer:

Data Protection Officer of Hochschule Darmstadt Hochschule Darmstadt Schöfferstr. 3 D-64295 Darmstadt Email: datenschutz AT h-da DOT de

2. Overview of Data Processing

We take the protection of your personal data seriously. This privacy policy explains what data we collect when you visit our website, how we use it, and what rights you have under the General Data Protection Regulation (GDPR) and the German Federal Data Protection Act (BDSG).

3. Hosting and Server Log Files

This website is hosted on infrastructure provided by Hochschule Darmstadt. When you access this website, your browser automatically transmits certain technical data, which is stored in server log files:

IP address (anonymized where possible)
Date and time of access
Requested URL / page
HTTP status code
Amount of data transferred
Referring URL (the page from which you arrived)
Browser type and version
Operating system

Legal basis: Art. 6(1)(f) GDPR — legitimate interest in ensuring the secure and efficient operation of the website.

Retention period: Server log files are automatically deleted after 30 days, unless retention is required for security incident investigation.

4. Cookies

4.1 What Are Cookies?

Cookies are small text files stored on your device by your web browser. They help websites function properly and can improve user experience.

4.2 Cookies Used on This Website

This website uses only technically necessary cookies:

Cookie	Purpose	Duration	Type
`cookie_consent`	Stores your cookie consent preference	365 days	Necessary

We do not use tracking cookies, advertising cookies, or third-party analytics cookies.

Legal basis: Art. 6(1)(f) GDPR — legitimate interest in providing a functional website. For the consent cookie: Art. 6(1)(a) GDPR.

4.3 Managing Cookies

You can configure your browser to block or delete cookies at any time. Please note that disabling cookies may affect website functionality. Instructions for common browsers:

5. Contact Forms and Email

If you contact us via email or a contact form, the data you provide (name, email address, message content) will be processed solely for the purpose of handling your inquiry.

Legal basis: Art. 6(1)(b) GDPR (pre-contractual measures) or Art. 6(1)(f) GDPR (legitimate interest in responding to inquiries).

Retention period: Data is deleted once the inquiry has been fully resolved, unless legal retention obligations apply.

6. Third-Party Services and External Content

6.1 Google Fonts (Local)

This website uses Google Fonts that are hosted locally on our server. No connection to Google servers is made, and no data is transmitted to Google.

6.2 External Links

Our website contains links to external websites. We have no control over their content or data protection practices. Please refer to the privacy policies of the respective external sites.

7. OAuth and Single Sign-On (SSO)

If you access services operated by our research group that use OAuth or Single Sign-On authentication, the following data may be processed:

Username / email address provided by the identity provider
Authentication tokens (temporary)
Session identifiers

Legal basis: Art. 6(1)(b) GDPR — necessary for providing the requested service.

Retention period: Session data is deleted upon logout or session expiration. Authentication logs may be retained for up to 90 days for security purposes.

For the specific privacy policy of each service, please refer to the documentation of the respective application.

8. Data Security

We implement appropriate technical and organizational measures to protect your personal data against unauthorized access, loss, destruction, or alteration, in accordance with Art. 32 GDPR. These measures include:

TLS/SSL encryption for data in transit
Regular security updates and patch management
Access controls and authentication mechanisms
Regular security assessments

Under the General Data Protection Regulation, you have the following rights:

Right	Article	Description
Right of Access	Art. 15 GDPR	You may request information about your personal data we process.
Right to Rectification	Art. 16 GDPR	You may request correction of inaccurate personal data.
Right to Erasure	Art. 17 GDPR	You may request deletion of your personal data, subject to legal retention obligations.
Right to Restriction	Art. 18 GDPR	You may request restriction of processing under certain conditions.
Right to Data Portability	Art. 20 GDPR	You may request your data in a structured, machine-readable format.
Right to Object	Art. 21 GDPR	You may object to processing based on legitimate interests at any time.
Right to Withdraw Consent	Art. 7(3) GDPR	You may withdraw any given consent at any time with future effect.

To exercise your rights, please contact us using the details provided in Section 1.

10. Right to Lodge a Complaint

You have the right to lodge a complaint with a supervisory authority if you believe that the processing of your personal data violates the GDPR.

The competent supervisory authority for Hochschule Darmstadt is:

Der Hessische Beauftragte für Datenschutz und Informationsfreiheit Postfach 3163 65021 Wiesbaden Germany

Phone: +49 611 1408-0 Email: poststelle AT datenschutz DOT hessen DOT de Website: https://datenschutz.hessen.de

11. Changes to This Privacy Policy

We reserve the right to update this privacy policy to reflect changes in our data processing practices or legal requirements. The current version is always available on this page. We encourage you to review this policy periodically.

This privacy policy was last updated on March 22, 2026.

Paper accepted at ISC 2023

Wed, 11 Oct 2023 00:00:00 +0000

Our paper “Performance Impact of PQC KEMs on TLS 1.3 under Varying Network Characteristics” by Johanna Henrich, Andreas Heinemann, Alexander Wiesmaier and Nicolai Schmidt will be presented at the 26th Information Security Conference (ISC) (ISC - 2023) on November 15/16/17th 2023, Groningen, Netherlands.

This work is based on the results of Johanna Henrichs’s Master’s thesis.

9. Usable Security and Privacy Workshop

Tue, 29 Aug 2023 00:00:00 +0000

On Sept. 03, 2023, the 9th Usable Security and Privacy Workshop will take place as part of the Mensch und Computer 23 in Rapperswil (SG). Andreas Heinemann is one of the co-organisers of this workshop.

Workshop on crypto-agility and migration

Tue, 01 Aug 2023 00:00:00 +0000

We will host a workshop on crypto-agility and migration on September 19, 2023. Details

UCS@1st Research Day / FBI

Wed, 12 Jul 2023 00:00:00 +0000

An article about the research day can be found here

Performance Impact of PQC KEMs on TLS 1.3 Under Varying Network Characteristics

Fri, 16 Jun 2023 05:00:35 +0000

Abstract

Widely used asymmetric primitives such as RSA or Elliptic Curve Diffie Hellman (ECDH), which enable authentication and key exchange, could be broken by Quantum Computers (QCs) in the coming years. Quantum-safe alternatives are urgently needed. However, a thorough investigation of these schemes is crucial to achieve sufficient levels of security, performance, and integrability in different application contexts. The integration into Transport Layer Security (TLS) plays an important role, as this security protocol is used in about 90% of today’s Internet connections and relies heavily on asymmetric cryptography. In this work, we evaluate different Post Quantum Cryptography (PQC) key establishment schemes in TLS 1.3 by extending the framework of Paquin et al.. We analyze the TLS handshake performance under variation of network parameters such as packet loss. This allows us to investigate the suitability of PQC KEMs in specific application contexts. We observe that Kyber and other structured lattice-based algorithms achieve very good overall performance and partially beat classical schemes. Other approaches such as FrodoKEM, HQC and BIKE show individual disadvantages. For these algorithms, there is a clear performance decrease when increasing the security level or using a hybrid implementation, e.g., a combination with ECDH. This is especially true for FrodoKEM, which, however, meets high security requirements in general. It becomes clear that performance is strongly influenced by the underlying network processes, which must be taken into account when selecting PQC algorithms.

Best Poster Award at EICC 2023

Thu, 15 Jun 2023 00:00:00 +0000

Our poster contribution to the EICC2023 titled “Crytpo-agile Design and Testbed for QKD-Networks” by Johanna Henrich, Andreas Heinemann, Martin Stiemerling & Fabian Seidl was honored with the best poster award.

Group photo

Johanna

👏👏

Crypto-Agile Design and Testbed for QKD-Networks

Thu, 15 Jun 2023 00:00:00 +0000

EICC ‘23 Poster

Cybersecurity Kids - Crossing the street online: An evaluation of learnability of age-appropriate educational content on cybersecurity & -safety

Mon, 17 Apr 2023 00:00:00 +0000

Abstract

The Internet is full of false claims about supposedly effective preventive- and countermeasures to cybersafety and cybersecurity risks, and the majority of computer users are not well-informed on this topic. The average user utilizes the Internet to educate themselves and, among other things, to answer questions that their children ask. But when it comes to cybersecurity threats, there are plenty of risk measure recommendations on the Internet, which can be confusing. Of the few sites that provide practical measures, there are only a few that comply with current German standards. So, how are German adults (parents and teachers) supposed to qualitatively educate themselves, apply this knowledge and also pass it on to their children? Additionally, how are children, who may be just learning to research, supposed to get reliable cybersafety and cybersecurity knowledge?

This work creates a unified platform in which online risks and coherent recommendations on measures are presented in an age-appropriate manner. In doing so, the abilities of the children’s respective development level must be taken into account in order to create content that can be understood by all user groups (children, guardians, and teachers).

To this end, the informational and educational content will be embedded in a developed website, where the content will be communicated audiovisually to children and to adults in textual form. Practical examples, in the form of pictures, in order to facilitate constructivist learning, are given. Finally, the extent to which the content was able to influence the knowledge of adults and children in the field of cybersecurity risks is measured, by conducting a within-groups study consisting of two online surveys.

This study expands upon the work done by Renaud and Prior and uses the results obtained on risks and their age relevancies for children. Recommendations from numerous German ministries and government agencies were consulted to verify the accuracy and relevance of the proposed measures from the researched websites.

Towards a maturity model for crypto-agility assessment

Sat, 01 Apr 2023 00:00:00 +0000

Article in Steinbeis Transfer Magazine

Tue, 24 Jan 2023 00:00:00 +0000

Title

Good Usability Delivers Tighter Security

Abstract

The modern world of work would be almost inconceivable without the support of IT systems. Connected systems and IT solutions also continue to make inroads into our private lives. Consider, for example, intelligent heating controls (smart home systems), which have gained in importance in the current energy crisis. This trend is being accelerated by more and more people coming into direct contact with IT solutions. Among other areas, Professor Dr. Andreas Heinemann (Darmstadt University of Applied Sciences/InCUPS, his Steinbeis Transfer Center for Internet Communication, Usability, Privacy, and Security) specializes in IT security and usability. This involves investigating how to mitigate cyber risk.

LEAK

Sun, 01 Jan 2023 00:00:00 +0000

The ATHENE Leak project addresses side-channel-analysis-attacks (SCA) by developing a so-called natural leakage model, that is closer to the hardware than standard leakage models and thereby more precise and effective.

As full electrical simulations of complex hardware are usually to resource-intensive, common leakage models abstract the hardware on the register-transfer-level (RTL) and are thereby much more resource-friendly during simulations.

A natural leakage model combines the resource-friendliness with measured behavior of the hardware. Based on this model, the project aims to further adapt and develop performance-optimized countermeasures against SCA on PQC-Algorithms implemented on the RISC-V platform.

The intended project results (a natural leakage models and optimizations) can be used to support hardware engineers during the development, hardening and testing of hardware-based security solutions. Thereby the number of prototypes before final rollout of new hardware will be reduced, speeding up the development process and saving costs in the development and hardening process.

Contact

Nicolai Schmitt

Paper accepted at FPS - 2022

Wed, 23 Nov 2022 00:00:00 +0000

Our paper “Towards a maturity model for crypto-agility assessment” by Julian Hohm, Andreas Heinemann and Alexander Wiesmaier will be presented at the 15th International Symposium on Foundations & Practice of Security (FPS - 2022) on December 12/13/14th 2022, Ottawa, Canada.

This work is based on the results of Julian Hohm’s Master’s thesis. Check out more details on CAMM.

2. Platz beim CAST-Förderpreis IT-Sicherheit 2022 (DE)

Tue, 11 Oct 2022 00:00:00 +0000

Am 10. Oktober fand die Finalrundes des CAST-Förderpreises IT-Sicherheit 2022 im Rahmen des Cybersicherheitsgipfel Hessen in Wiesbaden statt. Johanna Henrich belegte mit Ihrer Arbeit “Performanz Evaluation von PQC in TLS 1.3 unter variierenden Netzwerkcharakteristiken” den 2. Platz in der Kategorie “Beste Masterarbeiten”. Herzlichen Glückwunsch.

Zur Meldung des CAST e.V.

Studentische Hilfskraft im Bereich PQC-Migration gesucht (DE)

Sun, 25 Sep 2022 04:12:53 +0000

Weitere Details.

UCS ist mit Projekt ELITE auf der Hannover Messe (DE)

Thu, 26 May 2022 06:20:43 +0000

Hier geht es zum Blockbeitrag bei der Transferstelle IT-Sicherheit im Mittelstand.

Privatsphären-/ und Benutzbarkeits-fördernde Softwareentwicklungsprozesse für kleine und mittelständische Unternehmen

Wed, 25 May 2022 09:29:56 +0000

Abstract

Small and medium-sized enterprises (SMEs) are dependent on the investigation of methods and development processes for software development in order to develop satisfactory applications for their end users. For this methods to integrate security, privacy, and usability are a central component. As the work of Bender et al., through a survey of publications, shows, there are currently no software development processes that are both suitable for SMEs and integrate the three criteria - security, privacy, and usability. This master thesis aims at counteracting this by proposing a privacy- and usability-enhancing software development process for SMEs.

For this purpose, starting from the work of Bender et al., the approaches from the literature are considered in order to identify suitable processes and methods for the integration of the three criteria in the software development process.

For the determination of the actually used methods, processes and possible requirements for a software development process from the point of view of SMEs, software developers from these SMEs are surveyd in the form of interviews. The findings from the literature research as well as the interviews with the developers of the SMEs are then compiled.

The interviews show that SMEs have special requirements for a software development process only in exceptional cases, but they do have a large diversity of projects. These disallow the meaningful formulation of a generally applicable software development process with concrete methods and techniques, since the choice of the suitable methods is to be made in dependence on the projects and their concrete context.

So that the SMEs are able to integrate suitable methods in their software development process, 14 principles are formulated in the result of this master thesis. These principles can be used by the companies as a guideline for the integration of security, privacy and usability. In doing so, the principles are drawn from the methods and recommendations in the literature and the methods used by SMEs. The principles are placed in the combined process model, which results from the description of the software development pro- cesses by the interviewed participants.

David Konczewski verteidigt erfolgreich seine Masterarbeit (DE)

Wed, 25 May 2022 03:49:13 +0000

Im Rahmen des Abschlusskolloquiums hat Herr David Konczewski erfolgreich die Ergebnisse seiner Masterarbeit mit dem Titel “Privatsphären-/ und Benutzbarkeits-fördernde Softwareentwicklungsprozesse für kleine und mittelständische Unternehmen” vorgestellt und verteidigt. Herzlichen Glückwunsch.

Zusammenfassung / Abstract

Kleine und mittelständische Unternehmen (KMU) sind auf die Untersuchungen von Methoden und Entwicklungsprozessen für die Softwareentwicklung angewiesen, um mit ihren verfügbaren Ressourcen für ihre Endbenutzer zufriedenstellende Anwendungen zu entwickeln. Dafür sind Methoden zur Integration von Sicherheit, Privatsphäre und Benutzbarkeit zentraler Bestandteil. Wie die Arbeit von Bender et al. durch eine Untersuchung der Publikationen zeigt, liegen aktuell keine Softwareentwicklungsprozesse vor, die sowohl für KMU geeignet sind als auch die Integration der drei Kriterien - Sicherheit, Privatsphäre sowie Benutzbarkeit - fördern. Diese Masterarbeit möchte diesem Umstand durch den Vorschlag eines privatsphären- und benutzbarkeitsfördernden Softwareentwicklungsprozess für KMU entgegenwirken.

Zu diesem Zweck werden ausgehend von der Arbeit von Bender et al. die Ansätze aus der Literatur betrachtet, um so geeignete Prozesse und Methoden für die Integration der drei Kriterien in einen Softwareentwicklungsprozess zu identifizieren. Zur Ermittlung der tatsächlich eingesetzten Methoden, Prozesse sowie möglicher Anforderungen an einen Softwareent- wicklungsprozess aus Sicht von KMU werden Softwareentwickler aus eben diesen in Form von Interviews befragt. Die Erkenntnisse aus der Literaturrecherche sowie der Interviews mit den Entwicklern der KMU werden im Anschluss zusammengeführt.

Die Interviews zeigen, dass KMU zwar nur in Ausnahmefällen besondere Anforderungen an einen Softwareentwicklungsprozess stellen, jedoch einer großen Diversitiät von Projekten begegnen. Diese lassen die sinnvolle Formulierung eines allgemeingültigen Softwareentwicklungsprozesses mit konkreten Methoden und Techniken nicht zu, da die Wahl der geeigneten Methoden in starker Abhängigkeit von den Projekten und deren konkreten Kontext zu treffen ist.

Damit die KMU in der Lage sind, geeignete Methoden in ihren Softwareentwicklungsprozess zu integrieren, werden im Ergebnis dieser Masterarbeit 14 Grundsätze formuliert. Diese Grundsätze können von den Unternehmen als Leitlinie für die Integration von Sicherheit, Privatsphäre und Benutzbarkeit genutzt werden. Dabei werden die Grundsätze aus den Methoden und Empfehlungen der Literatur sowie den von den KMU eingesetzten Methoden extrapoliert. Die Grundsätze werden in das kombinierte Prozessmodell eingeordnet, welches sich aus der Beschreibung der Softwareentwicklungsprozesse durch die Interview-Teilnehmer ergibt.

cryptolib: comparing and selecting cryptography libraries

Fri, 06 May 2022 00:00:00 +0000

Abstract

Selecting a library out of numerous candidates can be a laborious and resource-intensive task. We present the cryptolib index, a tool for decision-makers to choose the best fitting cryptography library for a given context. To define our index, 15 library attributes were synthesized from findings based on a literature review and interviews with decision-makers. These attributes were afterwards validated and weighted via an online survey. In order to create the index value for a given library, the individual attributes are assessed using given evaluation criteria associated with the respective attribute. As a proof of concept and to give a practical usage example, the derivation of the cryptolib values for the libraries BouncyCastle and Tink are shown in detail. Overall, by tailoring the weighting of the cryptolib attributes to their current use case, decision-makers are enabled to systematically select a cryptography library fitting best to their software project at hand in a guided, repeatable and reliable way.

Paper accepted at EICC 2022

Thu, 05 May 2022 00:00:00 +0000

Our paper “cryptolib: comparing and selecting cryptography libraries” by Jan Wohlwender, Rolf Huesmann, Andreas Heinemann and Alexander Wiesmaier will be presented at the European Interdisciplinary Cybersecurity Conference 2022 (EICC 2022) on June 15/16.

This work is based on the results of Jan Wohlwender’s Master’s thesis. Jan completed his Master’s programme at the Department of Computer Science with a focus on IT security.

8. Usable Security und Privacy Workshop (DE)

Sat, 30 Apr 2022 00:00:00 +0000

Am 04. Sept. 2022 findet der 8. Usable Security und Privacy Workshop im Rahmen der Mensch und Computer 22 in Darmstadt statt. Andreas Heinemann ist einer der Co-Organisatoren dieses Workshops.

First Workshop of the EUT+ European Telecommunications and Networks Institute

Wed, 16 Mar 2022 00:00:00 +0000

On 15.03.2022 UCS took part in the first Workshop of the EUT+ European Telecommunications and Networks Institute. The aim of this workshop was to offer an opportunity to all EUT+ partners to present their research activities related to Technologies and Services for Telecommunications.

We contributed our research activities on PQC and network issues, especially the results of Johanna’s master thesis.

Performanz Evaluation von PQC in TLS 1.3 unter variierenden Netzwerkcharakteristiken

Wed, 23 Feb 2022 00:00:00 +0000

Abstract

The used cryptographic primitives rely on the computational difficulty of certain mathematical problems. In the last years there has been much research on quantum computers which could be able to efficiently solve these problems in future years. Especially asymmetric primitives, used for authentication and key exchange could be broken. The affected algorithms are actually used within many internet protocols and applications and quantum-safe alternatives are urgently needed. NIST started a process to find and standardize quantum-safe digital signature schemes and key establishment schemes, but the candidates and alternatives come along with specific characteristics and differ from classical proceedings. So, besides analyzing the security of these new algorithms, it is also necessary to evaluate their performance and integrability into existing infrastructures and applications. Especially the integration into TLS protocol, used within about 90 percent of today’s internet connections, plays an important role. The current version 1.3 uses the threatened asymmetric primitives for both, digital signatures and key establishment.

In this work, NIST candidates and alternatives for quantum-safe key establishment were evaluated while using them within TLS 1.3. The focus was on analyzing the performance trend while changing certain network parameters like rate or packetloss and examining the suitability of the PQC algorithms under different network scenarios and in the entire application context. To achieve this, the framework of Paquin, Stebila, and Tamvada was extended to emulate various network conditions while frequently establishing a TLS 1.3 connection and measuring handshake duration.

Among our key results, we observe that on the one hand the evaluated candidates Kyber, Saber and NTRU as well as the alternative NTRU Prime achieve very good overall performance and partially beat the classical ECDH. Choosing a higher security level or hybrid versions does not have a significant impact to the handshake times. On the other hand the alternatives FrodoKEM, HQC, SIKE and BIKE show individual disadvantages and the performance is linked to the used security level and variant. This applies in particular to FrodoKEM. SIKE seems to be a worthwhile alternative in specific circumstances, like rates less than 2 Mbps, due to its small key and ciphertext sizes. In general, network conditions should be taken into account while choosing the algorithm and parameter set. Furthermore, it becomes clear that the handshake performance dependents on numerous factors, like TCP mechanisms and MTU, which could compensate the disadvantages of PQC or make them obsolete.

Towards a maturity model for crypto-agility assessment

Mon, 14 Feb 2022 00:00:00 +0000

CAMM presentation at it-sa 365 on March 15, 2022

Fri, 11 Feb 2022 00:00:00 +0000

Title

Towards a maturity model for crypto-agility assessment

Abstract

The Crypto-Agility Maturity Model (CAMM for short), a maturity model for determining the crypto-agility of a particular software or IT landscape, is presented. CAMM consists of five levels, and for each level a set of requirements have been formulated based on existing crypto-agility literature that apply at that level. With the help of CAMM, organizations should be able to better prepare for potential threats that need to be addressed in a timely manner as vulnerabilities in cryptographic processes become known. The requirement for crypto-agility is motivated by the potential threat posed by powerful quantum computers.

Date and Format

15.03.2022, 13:45h
Online. Details at it-sa 365

On the State of Crypto Agility

Tue, 01 Feb 2022 00:00:00 +0000

Abstract

Cryptographic primitives and protocols require constant modifications and adaptations in order to maintain the security of IT-systems. Many researchers argue that applying the notion of crypto-agility provides more feasible and practical updating of cryptographic systems, especially in the light of the expected transition to PQC. However, there is no unified definition for this notion, nor a common understanding of the requirements that can enable it. Moreover, it is not entirely clear what measures need to be taken in order to apply crypto-agility in practice, and which aspects and challenges exist towards this endeavor. We compare the various definitions of crypto-agility including its requirements and varying facets, and investigate the state of readiness of crypto-agility by surveying works dealing with general challenges and recommendations in this regard. We present the survey and discuss discovered challenges and solutions and utilize our findings to evaluate the state of readiness for crypto-agility.

DemoQuanDT

Sat, 01 Jan 2022 00:00:00 +0000

DemoQuanDT is an application-oriented research project to demonstrate and investigate quantum communication networks by establishing an entire QKD route within the German telecommunication network. Connecting Berlin and Bonn over a link distance of 923 km, the project includes all necessary components, systems, and processes for carrier-grade quantum key distribution.

The project addresses the growing threat that quantum computers pose to asymmetric cryptography used in everyday internet protocols. It investigates how to profitably combine Post-Quantum Cryptography (PQC) with Quantum Key Distribution (QKD) and how to integrate both into existing communication protocols such as TLS. The overall objective is to develop reliable and usable protection against quantum computers, especially for critical infrastructures.

Partners

Funded by the German Federal Ministry of Education and Research (BMBF).

It is not as simple as that: Playing out password security trainings in order to nudge password changes

Thu, 11 Nov 2021 00:00:00 +0000

Abstract

The COVID-19 pandemic forced a number of companies to place their staff into home office. In terms of security awareness measures, this means that content or training can only be played out remotely. Within this work, we report about a security awareness campaign focusing on password security that was carried out at a German mid-size company (2000 employees). We compare the effect of remotely played out training content on user behavior, i.e, on getting employees to change their password. The first content was directly embedded into an e-mail, the second was compiled on an intranet web page, and the third content was embedded into a video. Password changes were observed solely within the IT backend on the basis of events and timestamps generated by the company’s Active Directory service. For the campaign four representative samples (140 employees per sample) among the staff were selected and assigned to the different training contents. A fourth group served as a control group. During a period of 6 weeks, the content was played out two times. Unexpectedly, the measured password change rate observed was very low. Further, compared to the control group’s behavior, none of the different content formats played out led to significant more password changes. Clearly, the campaign failed according to its aim. Based on our observations, we provide several possible explanations for which there is some evidence from the literature.

Reifegradmodell für die Krypto-Agilität

Tue, 26 Oct 2021 00:00:00 +0000

Abstract

Quantum computers threaten to fundamentally endanger the security of cryptography used today. In addition to the development of algorithms that are resistant to attacks by quantum computers, crypto-agility is an important field of research in order to be able to exchange algorithms in time and thus be safer from the impending danger. Since there is no general guideline describing how crypto-agility should be implemented for IT systems, this thesis conducts a literature study and aggregates the requirements from existing research to develop a maturity model. The resulting model fulfills the properties identified as necessary to facilitate a crypto-agile system design. The evaluation and improvement of the crypto-agile properties are successfully tested on the example of a real system. Positive feedback from potential users of the model is collected in an initial expert survey. By gaining popularity and through extensive usage, this model supports further research into crypto-agility and ensures the future security of today’s infrastructure by enabling the simple exchange of existing cryptography with PQC methods.

On the State of Post-Quantum Cryptography Migration

Wed, 01 Sep 2021 00:00:00 +0000

Abstract

Safeguarding current and future IT security from quantum computers implies more than the mere development of Post-Quantum Cryptography (PQC) algorithms. Much work in this respect is currently being conducted, making it hard to keep track of the many individual challenges and respective solutions so far identified. In consequence, it is difficult to judge, whether all (known) challenges have been sufficiently addressed, and whether suitable solutions have been provided. We present results of a literature survey and discuss discovered challenges and solutions categorized into different areas and utilize our findings to evaluate the state of readiness for a full scale PQC migration. We use our findings as starting point to initiate an open community project in the form of a website to keep track of the ongoing efforts and the state of the art in PQC research. Thereby, we offer a single entry-point for the community into the subject reflecting the current state in a timely manner.

Zur Integration von Post-Quantum Verfahren in bestehende Softwarepodukte

Mon, 01 Mar 2021 00:00:00 +0000

Zusammenfassung

Aktuell werden PQC-Algorithmen standardisiert, um der aufziehenden Gefahr für konventionelle asymmetrische Algorithmen durch Quantencomputer zu begegnen. Diese neuen Algorithmen müssen dann in bestehende Protokolle, Applikationen und Infrastrukturen eingebunden werden. Dabei ist mit Integrationsproblemen zu rechnen, die einerseits durch Inkompatibilitäten mit existierenden Standards und Implementierungen begründet sind, andererseits aber auch durch fehlendes Wissen der Softwareentwickler über die Handhabung von PQC-Algorithmen zustande kommen. Um Inkompatibilitäten beispielhaft aufzuzeigen, integrieren wir zwei unterschiedliche PQC-Algorithmen in zwei verschiedene bestehende Softwareprodukte (InboxPager E-Mail Client und TLS Implementierung der Bouncy Castle Bibliothek). Hierbei setzen wir auf die hoch-abstrahierende Krypto-Bibliothek eUCRITE, die Entwicklern das Detailwissen über die korrekte Verwendung klassischer und PQC-Algorithmen abnimmt und damit bereits einige potentielle Implementierungsfehler vermeidet. Die dabei zutage getretenen Probleme bestätigen teilweise bereits bekannte Inkompatibilitäten, beinhalten aber auch neue, bisher nicht angesprochene Schwierigkeiten.

Bewertung der Relevanz von Krypto-APIs auf Basis eines Scoring-Ansatzes

Mon, 22 Feb 2021 00:00:00 +0000

The main results of the work will be presented at the European Interdisciplinary Cybersecurity Conference - EICC 2022.

For detais see our upcoming paper: cryptolib: comparing and selecting cryptography libraries

Abstract

Technological advancement and ongoing digitalization are creating more and more security-critical requirements for software developers. At the same time there is a big and ever-growing amount of cryptographic APIs. Identifying why certain APIs are used more frequently than others is not an easy task. Furthermore, it is difficult to recognize the reasons behind the utilization of an certain API in software development. Which APIs are relevant and important for developers? Which attributes are involved? There are a couple of scientific contributions that analyze APIs or introduce attributes under different points of view at the time of writing. The new attributes, that have been introduced within this thesis, are following the known literature. This thesis evaluates related work for useful attributes and conducts interviews to generate new attributes for the creation of a new Scoring. The Scoring is based on 15 new attributes condensed from 78 attributes from related work and 50 attributes from interviews. The new Scoring is set up with related descriptions and information for valuating APIs. The chosen at- tributes have been evaluated, with regard to their suitability, by conducting a survey. Additionally, the scoring was used on two APIs as an example to show the rating in action. This thesis established suitable attributes for the rating of cryptographic APIs, that have been analyzed and tested. From those, a scoring was developed, that can be used as a decision support for developers. By using the scoring, existing APIs may be indexed and added to a ranking. Thus, from now on, relevant APIs may be identified and compared.

IT-Sicherheit aus Nutzerinnen- und Nutzersicht

Fri, 01 Jan 2021 00:00:00 +0000

Software Development Processes for ADs, SMCs and OSCs supporting Usability, Security, and Privacy Goals - an Overview

Fri, 01 Jan 2021 00:00:00 +0000

Abstract

Software applications should be secure, usable and privacy-friendly. However, recurring headlines about data leaks in applications show that it is not so easy to develop software that meets these three challenges. Studies show that it is better to think about these challenges during a software development process. Many ideas and approaches exist in the research community that define these challenges as goals within a software development process. In addition, major companies have published their own software development processes and methods addressing these goals in part. But major companies have very different work conditions compared to a work setting faced by an App-Developer (AD), a Small and Medium Company (SMC) and the Open Source Community (OSC) respectively. This leads us to the question: Are work settings of ADs, SMCs, or the OSCs considered sufficiently by research in order to make software development processes with special focus on security, usability and privacy goals work? Therefore we performed a literature review in order to investigate the current state of research. Using an appropriate query, publications relevant for our question were identified and categorised by two independent reviewers.

Our work shows that there are some publications proposing software processes supporting usability goals and taking work settings into account. We were not able to identify any contribution that proposes a software development process which addresses privacy, usability and security goals together and differentiates the work setting of ADs or as found in SMCs and in OSCs respectively.

PQC Integration

Wed, 01 Jan 2020 00:00:00 +0000

Asymmetric cryptography, which is widely used everyday for authentication and key exchange in communication protocols, is threatened by the ongoing development of Quantum-Computers. Quantum Computers have the potential to defeat the security of classical algorithms like RSA or ECDH and break the underlying mathematical problems within the next view years. To further ensure security, the National Institute of Standards and Technology (NIST) started a process in 2016 to find novel, quantum-resistant algorithms (PQC) for execution on classical computers, equivalent to the classical ones. These novel algorithms have to be accessable to software-developers as well as beeing tested and integrated into existing software.

The PQC-Integration-Project develops concepts for easy and safe integration of quantum-safe cryptography with a focus on crypto-agility. Further research aspects are performance in real-world applications, usability – including safe and easy to use API’s, as well as concepts to migrate large infrastructures.

Zur Benutzbarkeit und Verwendung von API-Dokumentationen

Wed, 01 Jan 2020 00:00:00 +0000

Zusammenfassung

Eine gute Dokumentation ist essenziell für eine gute Benutzbarkeit von (Sicherheits-)APIs, d.h. insbesondere für die korrekte Verwendung der APIs. Anforderungen an eine gute Dokumentation von APIs wurden in mehreren Arbeiten beschrieben, jedoch gibt es bislang keine technische Umsetzung (im folgenden Dokumentationssystem genannt), welche diese Anforderungen umsetzt. Die Anforderungen lassen sich unterteilen in Anforderungen an das Dokumentationssystem und Anforderungen an den Dokumentationsinhalt. Aus 13 identifizierten Anforderungen an ein Dokumentationssystem selbst wurden im Rahmen dieser Arbeit 9 in einen Prototypen umgesetzt und in einer Nutzerstudie mit 22 Probanden unter Verwendung einer kryptografischen API evaluiert. Es hat sich gezeigt, dass die Umsetzung der Anforderung Schnelle Nutzung der API ermöglichen zum einen wesentlich von der Qualität der eingepflegten Inhalte abhängt, zum anderen aber auch 5 weitere der betrachteten Anforderungen bzw. deren Umsetzungen subsumiert. Die zwei weiteren umgesetzten Anforderungen (Klassische Referenz und Rückfragen und Kommentarfunktion) wurden von den Probanden kaum oder nicht eingesetzt. Deren Nützlichkeit und Relevanz sollte in einer Langzeitstudie untersucht werden.

API Usability of Stateful Signature Schemes

Tue, 01 Jan 2019 00:00:00 +0000

Abstract

The rise of quantum computers poses a threat to asymmetric cryptographic schemes. With their continuing development, schemes such as DSA or ECDSA are likely to be broken in a few years’ time. We therefore must begin to consider the use of different algorithms that would be able to withstand powerful quantum computers. Among the considered algorithms are hash-based signature schemes, some of which, including XMSS, are stateful. In comparison to stateless algorithms, these stateful schemes pose additional implementation challenges for developers, regarding error-free usage and integration into IT systems. As the correct use of cryptographic algorithms is the foundation of a secure IT system, mastering these challenges is essential.

Datenschutz muss benutzbar sein

Tue, 01 Jan 2019 00:00:00 +0000

Zusammenfassung

Mit der EU-Datenschutzgrundverordnung sind die Rechte der betroffenen Person ausgeweitet und gestärkt worden. Diese Rechte bilden ein zentrales Prinzip des Datenschutzrechts, indem sie die Selbstkontrolle bei der Verarbeitung personenbezogener Daten ermöglichen. Es ist jedoch zu befürchten, dass Betroffene ihre Rechte in der Praxis nicht wahrnehmen, sofern dies nicht in einfacher Weise geschehen kann. In diesem Beitrag wird vorgeschlagen, die Erkenntnisse aus dem Forschungsgebiet Usable Security and Privacy anzuwenden, um zu benutzerfreundlichen Lösungen für den Datenschutz zu kommen. Dazu wird aufgezeigt, wie in diesem Gebiet diskutierte Konzepte helfen können, den mit den Betroffenenrechten verbundenen Herausforderungen zu begegnen.

Eigenschaften optimierter API-Dokumentationen im Entwicklungsprozess sicherer Software

Tue, 01 Jan 2019 00:00:00 +0000

Zusammenfassung

Hersteller herausgegebenen offiziellen Dokumentationen von Sicherheits-APIs zu lesen. Hingegen bevorzugen sie informelle Dokumentationen, wie sie zum Beispiel auf Q&A Plattformen wie Stack Overflow zu finden sind. Allerdings enthalten Codebeispiele solcher Quellen des Internets oft falschen bzw. aus Sicht der IT-Sicherheit unsicheren Code, welcher oft unreflektiert übernommen wird und letztendlich zu unsicheren Applikationen führt. Diese Arbeit untersucht, welche Eigenschaften eine Dokumentation aus Sicht der Entwickler haben sollte, um sie bei der Erstellung von sicherem Code zu unterstützen. Dazu wurden insgesamt 26 Programmierer in sieben Fokusgruppen über die Vor- und Nachteile beispielhafter, gängiger Dokumentationsarten von APIs befragt. Abschließend wurden die Teilnehmer gebeten, Eigenschaften einer aus ihrer Sicht optimierten API-Dokumentation zu beschreiben. Herausgestellt hat sich, dass eine optimierte Dokumentation viele Beispiele haben sollte. Sie sollte gut strukturiert, durchsuchbar und bei Google leicht auffindbar sein. Weitere wichtige Funktionen wären: Ein Bereich mit Tutorials, eine klassische Referenz und Videos für den schnellen Überblick. Zu jedem Themenbereich sollte es die Möglichkeit für Fragen, Antworten und Diskussionen geben. Durch ein Bewertungssystem sollten gute Lösungen aus der Diskussion in die Beispiele einfließen können. Weiter konnte anhand der Antworten der Probanden ein Interaktionsmuster identifiziert werden, welches das Zusammenspiel der einzelnen Teile einer optimierten API-Dokumentation beschreibt. Auf Basis dieser Erkenntnisse soll in einem nächsten Schritt ein Prototyp entwickelt und seine Wirksamkeit hinsichtlich der Unterstützung im Softwareentwicklungsprozess von sicherheitskritischen Anwendungen evaluiert werden.

Phishing Attack Recognition by End-Users: Concepts for URL Visualization and Implementation

Tue, 01 Jan 2019 00:00:00 +0000

Abstract

Social engineering, through means of phishing, is a very popular entry point for a targeted attack in order to obtain further data on a company or private individual, e.g. by injecting malware on the victim’s machine. A phishing attack that leads to a malicious website can usually be identified by the HTTP link with expert knowledge. However, only very few users pay attention to the link or have the necessary knowledge to recognize a threat as such. This work addresses the question of how current link visualization could be improved so that a user can better identify whether the link points to a phishing site or a legitimate site. Additionally, we also address the question of how our proposed link concepts can be put into practice. As an improvement, the outer shape of a link will be adapted by content-based formatting, trimming and other features. The user will thus be able to interactively explore a URL and its components in order to gain a better decision. As a next step, we plan to evaluate our concepts in a controlled lab environment with few test persons as well as by a large-scale online user-study.

Benutzbarkeit von zustandsbehafteten, Hash-basierten Signaturverfahren

Fri, 16 Nov 2018 00:00:00 +0000

Abstract

Quantum computers pose a danger to asymmetric cryptographic schemes. As development continues, schemes such as RSA will likely be broken in a few years’ time. For this reason, different algorithms that would also withstand powerful quantum computers are already being considered today. One class of such algorithms are hash-based signature schemes, some of which, including XMSS, are stateful. This leads to additional challenges for error-free use and integration in IT systems by developers. However, the security of IT systems depends on the correct use of cryptographic algorithms. This thesis therefore proposes a usable API design for stateful signature schemes using XMSS/XMSSMT as an example. This design was developed through a series of interviews with software developers, prototypically implemented and evaluated in further user studies. It was shown that the API can manage the stateful key in a way that is transparent to the user. However, this leads to many of the study’s participants not being aware of using stateful schemes. Regarding the documentation and applicability of the API, good results could be achieved.

Impressum / Imprint

Thu, 28 Jun 2018 00:00:00 +0100

Prof. Dr. Andreas Heinemann
c/o
Fachbereich Informatik
Hochschule Darmstadt - University of Applied Sciences
Schöfferstr. 3
D-64295 Darmstadt

Represented by

Prof. Dr. Andreas Heinemann

Contact

Tel: 06151-553 68 48 2
E-Mail: andreas DOT heinemann AT h-da DOT de
Web: https://ucs.h-da.io/author/andreas-heinemann

Person responsible for content in accordance with § 18 Abs. 2 MStV

Andreas Heinemann

Originators of the team member photos:

Johanna Henrich, Hochschule Darmstadt
Nicolai Schmitt, Hochschule Darmstadt
Sven Wroblewski, Hochschule Darmstadt

Disclaimer

Accountability for content

The contents of our pages have been created with the utmost care. However, we cannot guarantee the contents’ accuracy, completeness or topicality. According to statutory provisions, we are furthermore responsible for our own content on these web pages. In this context, please note that we are accordingly not obliged to monitor merely the transmitted or saved information of third parties, or investigate circumstances pointing to illegal activity. Our obligations to remove or block the use of information under generally applicable laws remain unaffected by this as per §§ 8 to 10 of the Telemedia Act (TMG).

Accountability for links

Responsibility for the content of external links (to web pages of third parties) lies solely with the operators of the linked pages. No violations were evident to us at the time of linking. Should any legal infringement become known to us, we will remove the respective link immediately.

Copyright

This web pages and their contents are subject to German copyright law. Unless expressly permitted by law (§ 44a et seq. of the copyright law), every form of utilizing, reproducing or processing works subject to copyright protection on our web pages requires the prior consent of the respective owner of the rights. Individual reproductions of a work are allowed only for private use, so must not serve either directly or indirectly for earnings. Unauthorized utilization of copyrighted works is punishable (§ 106 of the copyright law).

Auf dem Weg zu sicheren abgeleiteten Identitäten mit Payment Service Directive 2

Mon, 01 Jan 2018 00:00:00 +0000

Zusammenfassung

Online-Dienste erfordern eine eindeutige Identifizierung der Benutzer und somit eine sichere Authentisierung. Insbesondere eGovernment-Dienste innerhalb der EU erfordern eine starke Absicherung der Benutzeridentität. Auch die mobile Nutzung solcher Dienste wird bevorzugt. Das Smartphone kann hier als einer der Faktoren für eine Zwei-Faktor-Authentifizierung dienen, um eine höhere Sicherheit zu erreichen. Diese Arbeit schlägt vor, den Zugang und die Nutzung einer abgeleiteten Identität mit einem Smartphone zu sichern, um es dem Benutzer zu ermöglichen, sich auf sichere Weise gegenüber einem Online-Dienst zu identifizieren. Dazu beschreiben wir ein Schema zur Ableitung der Identität eines Benutzers mithilfe eines Account Servicing Payment Service Provider (ASPSP) unter Verwendung der Payment Service Directive 2 (PSD2) der Europäischen Union. PSD2 erfordert eine Schnittstelle für Dritte, die von ASPSPs implementiert werden muss. Diese Schnittstelle wird genutzt, um auf die beim ASPSP gespeicherten Kontoinformationen zuzugreifen und daraus die Identität des Kontoinhabers abzuleiten. Zur Sicherung der abgeleiteten Identität ist der Einsatz von FIDO (Fast Identity Online) vorgesehen. Wir bewerten unseren Vorschlag anhand der Richtlinien von eIDAS LoA (Level of Assurance) und zeigen, dass für die meisten Bereiche das Vertrauensniveau substantiell erreicht werden kann. Um diesem Level vollständig gerecht zu werden, ist zusätzlicher Arbeitsaufwand erforderlich: Zunächst ist es erforderlich, Extended Validation-Zertifikate für alle Institutionen zu verwenden. Zweitens muss der ASPSP sichere TAN-Methoden verwenden. Schließlich kann derWiderruf einer abgeleiteten Identität nicht erfolgen, wenn der Benutzer keinen Zugriff auf sein Smartphone hat, das mit der abgeleiteten ID verknüpft ist. Daher ist ein anderes Widerrufsverfahren erforderlich (z. B. eine Support-Hotline).

Alle reden über Blockchain

Sun, 01 Jan 2017 00:00:00 +0000

Design and Implementation Aspects of Mobile Derived Identities

Sun, 01 Jan 2017 00:00:00 +0000

Abstract

With the ongoing digitalisation of our everyday tasks, more and more eGovernment services make it possible for citizens to take care of their administrative obligations online. This type of services requires a certain assurance level for user authentication. To meet these requirements, a digital identity issued to the citizen is essential. Nowadays, due to the widespread use of smartphones, mobile user authentication is often favoured. This naturally supports two-factor authentication schemes (2FA). We use the term mobile derived identity to stress two aspects: a) the identity is enabled for mobile usage and b) the identity is somehow derived from a physical or digital proof of identity. This work reviews 21 systems and publications that support mobile derived identities. One subset of the considered systems is already in place (public or private sector in Europe), another subset is subject to research. Our goal is to identify prevalent design and implementation aspects for these systems in order to gain a better understanding on best practises and common views on mobile derived identities. We found, that research prefers storing identity data on the mobile device itself whereas real world systems usually rely on cloud storage. 2FA is common in both worlds, however biometrics as second factor is the exception.

Zur Wirksamkeit von Security-Awareness-Maßnahmen

Sun, 01 Jan 2017 00:00:00 +0000

Zusammenfassung

Im Rahmen einer elfwöchigen Studie bei einem mittelständigen Unternehmen wurde untersucht, ob das Investment in ein Präsenztraining zur Verbesserung der Security Awareness mit Fokus auf E-Mail-Phishing-Angriffe lohnenswert ist. Das erstellte Präsenztraining wird mit kostengünstig erwerbbaren Online-Lernspielen verglichen. Die Auswertung der Daten zeigt, dass beide Maßnahmen sich positiv auf das Verhalten der Mitarbeiter auswirken, jedoch die Verbesserungen durch das Präsenztraining überwiegen. Hierbei ist auffällig, dass bei einer freiwilligen Teilnahme die Motivation, eigenständig ein Online-Lernspiel zu absolvieren, sehr gering ist. Bemerkenswert ist ebenfalls, dass allein das Versenden von fingierten Phishing-E-Mails zu einer Sensibilisierung der Mitarbeiter führt.

Usability-Untersuchung eines Papierprototypen für eine mobile Online-Ausweisfunktion des Personalausweises

Fri, 30 Sep 2016 00:00:00 +0000

Abtract (german)

Die Online-Ausweisfunktion des Personalausweises in Deutschland besitzt eine Reihe von Usability-Schwierigkeiten und somit eine geringe Akzeptanz bei den Bürgerinnen und Bürgern. Die Umsetzung des Personalausweises in Form einer App auf einem Smartphone könnte hier Abhilfe schaffen. Mithilfe eines Papierprototypen wurden erste Usabilty-Untersuchungen durchgeführt, die zeigen, dass zwar die Benutzbarkeit der App gegeben ist, das Vertrauen in die Sicherheitsfunktionen der App jedoch nicht.

AnonDrop - Räumlich begrenzte anonyme Informationsverbreitung

Tue, 27 Sep 2016 00:00:00 +0000

Abstract (german)

Opportunistische Netze bieten ein alternatives Kommunikationssystem in Situationen, in denen ein repressiver Staat die klassische Internetkommunikation filtert oder ganz unterbindet. AnonDrop erlaubt hier eine räumlich begrenzte Kommunikation, die mittels dynamischer Netzadressen (MAC und IP) und weiterer Schutzmaßnahmen Angriffen auf die Identifizierung von Knoten überwiegend standhält. Auf Basis von Android Smartphones wurde ein Prototyp realisiert, der bei ersten Last- und Mobilitätstests zufriedenstellende Ergebnisse zeigt.

Security-Management-as-a-Service für die öffentliche Verwaltung

Tue, 27 Sep 2016 00:00:00 +0000

Abstract (german)

Die vorliegende Arbeit stellt einen Ansatz vor, der kommunale Behörden bei der Etablierung eines ganzheitlichen IT-Sicherheitsprozesses und dessen Aufrechterhaltung im laufenden Betrieb unterstützt. Die wesentliche Idee besteht darin, derzeit umgesetzte organisatorische Sicherheitsmaßnahmen in Technische umzuwandeln, die wiederum durch einen zentralen Dienst ausgelagert werden können. Der zur Verfügung gestellte, zentrale Dienst soll die Kommune ebenfalls bei der Etablierung eines Informations- sicherheitsmanagementsystems unterstützen. Um die Anforderungen an einen solchen zentralen Dienst formulieren zu können, wurden die IT-Infrastrukturen in verschiedenen kommunalen Bürgerämtern untersucht. Des Weiteren wurden Mitarbeiter befragt und bei der Durchführung ihrer Aufgaben beobachtet. Basierend auf diesen Untersuchungen wurden Hauptprobleme, die zu Sicherheitsvorfällen führen können, erhoben und zusammengefasst. Darauf aufbauend wird ein erster Lösungsvorschlag für die Konzeption und Einbindung des zentralen Dienstes diskutiert.

Zur Benutzbarkeit der AusweisApp2

Sun, 04 Sep 2016 00:00:00 +0000

Abstract (german)

Die Akzeptanz und Nutzung der Online-Ausweisfunktion des deutschen Personalausweises liegt hinter den Erwartungen zurück. Sie verlangte in der Vergangenheit vom Anwender den Einsatz der AusweisApp, die eine Reihe von Usability-Schwächen zeigt. Aus diesem Grund wurde bei der Neuentwicklung des Nachfolgers – der AusweisApp2 – auf den frühzeitigen und stetigen Einbezug des Anwenders geachtet. Im Rahmen von entwicklungsbegleitenden Usability-Untersuchungen konnten so frühzeitig Schwächen identifiziert und für die finale Version der AusweisApp2 eliminiert werden. Es zeigt sich jedoch auch, dass schwerwiegende Usability-Schwächen erst in der Interaktion des Gesamtsystems (Personalausweis, Kartenleser, AusweisApp2, Browser, Diensteanbieter) zum Vorschein treten und nicht durch die AusweisApp2 allein, sondern nur in der Betrachtung des Gesamtsystems zu lösen sind.