In the course of our research on Trusted Execution Environments we discovered multiple vulnerabilities in security-critical software running in protected memory areas of modern Intel processors. In the worst-case scenario, harmful...

In der Bachelorarbeit von Lasse Bruns wurde die Sicherheit von IP-Webcams untersucht. IP-Webcams erlauben es dem Benutzer, über das Internet das Kamerabild abzurufen. Hierbei wurde eine Lücke festgestellt, die es erlaubt hat, ein...

In order to maintain the increasing chip performance while simultaneously advancing miniaturization, manufactures of modern memory- and processing units are increasingly relying on highly optimized, parallelized...

In the summer term, we offer a bachelor seminar on Vulnerability Detection and Analysis.

A trusted execution environment introduces a hardware-based protection environment for programm code and data. The TEE ensures that neither malicious code nor a compromised operating system can access code and data contained in...

After publishing our Paper on  "Sereum: Protecting Existing Smart Contracts Against Re-Entrancy Attacks" at NDSS 2019 we continued running experiments to identify new potential attacks happening in recent blocks of the Ethereum...

Lucas Davi joins as Associate Editor the Editorial Board of the renowned ACM Transactions on Privacy and Security (TOPS). ACM TOPS publishes high-quality research results in the fields of information and system security and...

In the winter term, we offer two bachelor seminars with the topics Malware Analysis and Vulnerability Detection and Analysis.

Why software errors can undermine crypto algorithms? Tutorial at the Real-World Crypto and Privacy Summer School in Sibenik, Croatia.

Michael Rodler presented Sereum, a new method to protect smart contracts, at the NDSS Symposium in San Diego, CA.

The poster about the automated evaluation of fuzzers by Sebastian Surminski, Michael Rodler, and Lucas Davi received the distinguished technical poster award on the NDSS Symposium 2019.

On the NDSS Symposium in February in San Diego, CA, we will present our new framework for automated evaluation of fuzzers.