Welcome to the webpage of the System Security research group

Our research focuses on system security, network security, and applied cryptography. Our know-how made major contributions to the discovery of critical security flaws like DROWN, ROBOT, and Efail. We systematically analyze these vulnerabilities and develop testing tools to identify and fix them. One example is a tool for flexible analyses of TLS libraries: TLS-Attacker.

News

Our study on e-mail signature spoofing attacks presented at SOUPS

08/11/2022 | Do you use S/MIME or OpenPGP to secure your emails? Do you think that validating e-mail signatures is easy? If your answer is yes, you should take a look at our study published together with our colleagues from Karlsruhe Institute of Technology,…

TLS-Anvil presented at USENIX Security

08/11/2022 | Together with our colleagues from the Ruhr University Bochum, we have published our paper on combinatorial testing of TLS implementations. The paper is presented at USENIX Security in Boston this week.