Welcome to the webpage of the System Security research group
Our research focuses on system security, network security, and applied cryptography. Our know-how made major contributions to the discovery of critical security flaws like DROWN, ROBOT, and Efail. We systematically analyze these vulnerabilities and develop testing tools to identify and fix them. One example is a tool for flexible analyses of TLS libraries: TLS-Attacker.
Do you use S/MIME or OpenPGP to secure your emails? Do you think that validating e-mail signatures is easy? If your answer is yes, you should take a look at our study published together with our colleagues from Karlsruhe Institute of Technology, Münster University of Applied Sciences, and Ruhr University Bochum.
Together with our colleagues from the Ruhr University Bochum, we have published our paper on combinatorial testing of TLS implementations. The paper is presented at USENIX Security in Boston this week.