Main Content

Security, Privacy, Trust

Hackers gonna hack.

Security, privacy, and trust are cross-cutting concerns of any hardware/software system. Our current work focuses on security and privacy risks of contact tracing apps and secure device-to-device communication. We have also investigated approaches for distributed privacy-preserving data aggregation, email server communication security, static and dynamic security analysis of mobile apps, virtual machine security in clouds, TLS security of mobile Android apps, grid security and trust, and identity-based cryptography.

Selected Publications

  • Lars Baumgärtner, Alexandra Dmitrienko, Bernd Freisleben, Alexander Gruler, Jonas Höchst, Joshua Kühlberg, Mira Mezini, Markus Miettinen, Anel Muhamedagic, Thien Du Nguyen, Alvar Penning, Dermot Frederik Pustelnik, Filipp Roos, Ahmad-Reza Sadeghi, Michael Schwarz, Christian Uhl:
    Mind the GAP: Security & Privacy Risks of Contact Tracing Apps. 19th IEEE International Conference on Trust, Security and Privacy in Computing and Communications, Guangzhou, China, 2020 (to appear)
  • Milan Stute, Florian Kohnhauser, Lars Baumgärtner, Lars Almon, Matthias Hollick, Stefan Katzenbeisser, Bernd Freisleben:
    RESCUE: A Resilient and Secure Device-to-Device Communication Framework for Emergencies. IEEE Transactions on Dependable and Secure Computing, doi: 10.1109/TDSC.2020.3036224, 2020
  • Yahya Benkaouz, Mohammed Erradi, Bernd Freisleben:
    Distributed Privacy-Preserving Data Aggregation via Anonymization. Third International Conference on Networked Systems, Agadir, Morocco, LNCS 9466, 94-108, Springer, 2015
  • Lars Baumgärtner, Jonas Hochst, Matthias Leinweber, Bernd Freisleben:
    How to Misuse SMTP over TLS: A Study of the (In) Security of Email Server Communication. 14th IEEE International Conference on Trust, Security and Privacy in Computing and Communications, Helsinki, Finland, 287-294, IEEE, 2015
  • Pablo Graubner, Lars Baumgärtner, Patrick Heckmann, Marcel Müller, Bernd Freisleben:
    Dynalize: Dynamic Analysis of Mobile Apps in a Platform-as-a-Service Cloud. 8th IEEE International Conference on Cloud Computing, New York City, NY, USA, 925-932, IEEE, 2015
  • Lars Baumgärtner, Pablo Graubner, Nils Schmidt, Bernd Freisleben:
    AndroLyze: A Distributed Framework for Efficient Android App Analysis. 2015 IEEE International Conference on Mobile Services, New York City, NY, USA, 73-80, IEEE, 2015
  • Roland Schwarzkopf, Matthias Schmidt, Christian Strack, Simon Martin, Bernd Freisleben:
    Increasing Virtual Machine Security in Cloud Environments. Journal of Cloud Computing 1:12, 2012
  • Sascha Fahl, Marian Harbach, Thomas Muders, Matthew Smith, Lars Baumgärtner, Bernd Freisleben:
    Why Eve and Mallory Love Android: An Analysis of Android SSL (In)Security. ACM Conference on Computer and Communications Security, Raleigh, NC, USA, 50-61, ACM. 2012
  • Matthew Smith, Christian Schridde, Björn Agel, Bernd Freisleben:
    Secure Mobile Communication via Identity-based Cryptography and Server-aided Computations. Journal of Supercomput. 55(2): 284-306, 2011
  • Matthew Smith, Matthias Schmidt, Niels Fallenbeck, Tim Dörnemann, Christian Schridde, Bernd Freisleben:
    Secure On-demand Grid Computing. Future Generation Computer Systems 25(3): 315-325, 2009
  • Christian Schridde, Bernd Freisleben:
    On the Validity of the phi-Hiding Assumption in Cryptographic Protocols. 14th International Conference on the Theory and Application of Cryptology and Information Security (ASIACRYPT), Melbourne, Australia, LNCS 5350, 344-354, Springer, 2008
  • Matthew Smith, Christian Schridde, Bernd Freisleben:
    Securing Stateful Grid Servers through Virtual Server Rotation. 17th International Symposium on High-Performance Distributed Computing, Boston, MA, USA, 11-22, ACM, 2008
  • Elvis Papalilo, Bernd Freisleben:
    Managing Behaviour Trust in Grids Using Statistical Methods of Quality Assurance. Third International Symposium on Information Assurance and Security, Manchester, United Kingdom, 319-324, IEEE, 2007
    (Best Paper Award)
  • Matthew Smith, Thomas Friese, Michael Engel, Bernd Freisleben:
    Countering Security Threats in Service-oriented On-demand Grid Computing Using Sandboxing and Trusted Computing Techniques. Journal of Parallel & Distributed Computing 66(9): 1189-1204, 2006

Further information