Completed Theses - System Security | Paderborn University

Completed Theses

This lists all previously finished bachelor and master theses that have been written under the supervision of the System Security group.

Entry marks:

✏️ directly contributed towards a publication
⭐ won an award

10.12.2024

BA: Censorship Probe Scanner with Recommendations

18.11.2024

MA: Building a Framework for Vulnerability-Fixing Commits

03.11.2024

✏️ BA: Evaluating the Interaction of TLS Client Certificates and Session Tickets in Virtual Hosting

01.11.2024

MA: Systematic Security Evaluation of OWL-Live.de

14.10.2024

MA: Large-Scale Analysis of AutoConfig/Autodiscover for E-Mail

16.09.2024

✏️ MA: Investigating HTTP Censorship in China and Iran

04.08.2024

BA: Test Framework for a Systematic Evaluation of XML Parsers

26.07.2024

BA:  Analysis of TLS Session Tickets on E-Mail Servers

14.06.2024

✏️ MA: Breaching Digital Borders: Analysis and Circumvention of DNS Censorship

21.04.2024

BA: Security Analysis of 3D Printer Web Interfaces

19.02.2024

MA: Automated Evaluation of QUIC Censorship

10.12.2023

✏️ BA: Evading Censorship with HTTP Request Smuggling

05.12.2023

BA: Security Analysis of Collaboration Tools on the Example of Zulip

29.11.2023

MA: Usage Analysis of G-Codes in Slicing Software

25.11.2023

MA: Security Analysis of a Modern Conferencing System: OpenVidu

13.11.2023

BA: Analyzing Proxy Censorship

27.10.2023

✏️ MA: Partitioning Oracle Attacks against TLS Session Tickets

15.09.2023

MA: Analyzing Censorship Behavior: Differences in and between Autonomous Systems

20.07.2023

MA: Evaluation of the security of SSH on embedded devices

11.07.2023

MA: An Extended Analysis of DTLS Implementations Using Protocol State Fuzzing

25.06.2023

BA: Security Analysis of a Pacemaker Programmer

18.05.2023

MA: Security Analysis of the Open Packaging Conventions on the Example of OOXML and 3MF

16.05.2023

BA: Content Security Policy: An Updated Look at the Evolution and Security of Deployed Policies

14.05.2023

✏️ BA: Large Scale Scanning of TLS Session Ticket Confusion

28.04.2023

⭐ MA: Analyzing the QUIC Ecosystem With the QUIC-Scanner

10.04.2023

BA: Internet-Wide Analysis of 3D Printer Web Interfaces

26.03.2023

BA: Reassessing XML Parser Vulnerabilities

13.01.2023

MA: XML Signature Fuzzing

15.11.2022

MA: X.509-Anvil: A Combinatorial Testing Framework for X.509

13.11.2022

MA: Discovering Vulnerabilities in TLS Libraries Using CI-Driven Regression Tests

13.11.2022

BA: Security Analysis of TLS Client Authentication in Modern Web Servers

10.11.2022

MA: Dynamic Analysis of TLS Properties in iOS Apps

18.10.2022

MA: DANE Scanner Development and Analysis of DANE Ecosystem in the Wild

30.09.2022

⭐ MA: Analyzing and Circumventing ESNI-/ECH-Based Censorship

12.07.2022

BA: Analyzing Security Aspects Of The DNS Ecosystem

07.07.2022

⭐ BA: Web Key Directory and other key exchange methods for OpenPGP

04.07.2022

MA: Evaluating the Impact of Manger’s Attack on the SSH Ecosystem

29.06.2022

BA: Re-evaluation of Attacks on Email Signatures

07.06.2022

MA: State Learning of STARTTLS Related Protocol Implementations

02.06.2022

MA: On the Security of 3D Printers: Analyzing the Impact of Machine Codes

09.05.2022

MA: Blackbox Evaluation of Randomness in TLS Handshakes

29.04.2022

MA: Active TLS-Server Fingerprinting using Protocol State Fuzzing

28.04.2022

✏️ BA: Security Analysis of eduMEET

05.04.2022

BA: Getting to the Origin: On Exploring the Origin Protection of Incapsula’s Clients

11.03.2022

MA: Analysis of Secure Device Onboarding

10.03.2022

BA: Mining Your P’s and Q’s - Revisited

20.01.2022

BA: Abwehr von anwendungsprotokollübergreifenden Angriffen in TLS-Bibliotheken

13.12.2021

MA: WebRTC and E2E-Encryption in Conferencing Systems

07.12.2021

✏️ MA: Security Analysis of File Formats for 3D Printing Software

28.11.2021

BA: Security Analysis of DDoS Solution Providers

10.11.2021

⭐✏️ BA: Security Analysis of the Web Conferencing System BigBlueButton

20.09.2021

BA: Evaluation of TLS server configuration compatibility to BSI TR-02102-2 and NIST SP 800-52

05.08.2021

⭐✏️ MA: Evaluation of TLS session tickets

07.06.2021

MA: Security evaluation of STARTTLS and TLS configuration in the email ecosystem

14.12.2020

MA: Automatic Scanning of TLS Clients

25.10.2020

MA: Blackbox evaluation of randomness in TLS