Biblio

Export 18 results:
Filters: Author is Juraj Somorovsky  [Clear All Filters]
2023
Erinola N, Maehren M, Merget R, Somorovsky J, Schwenk J.  2023.  Exploring the Unknown DTLS Universe: Analysis of the DTLS Server Ecosystem on the Internet. 32nd USENIX Security Symposium (USENIX Security 23). :4859--4876.
Hebrok S, Nachtigall S, Maehren M, Erinola N, Merget R, Somorovsky J, Schwenk J.  2023.  We Really Need to Talk About Session Tickets: A Large-Scale Analysis of Cryptographic Dangers with TLS Session Tickets. 32nd USENIX Security Symposium (USENIX Security 23). :4877--4894.
2022
Mayer P, Poddebniak D, Fischer K, Brinkmann M, Somorovsky J, Sasse A, Schinzel S, Volkamer M.  2022.  "I don’t know why I check this...'' - Investigating Expert Users' Strategies to Detect Email Signature Spoofing Attacks. Eighteenth Symposium on Usable Privacy and Security (SOUPS 2022). :77--96.
Maehren M, Nieting P, Hebrok S, Merget R, Somorovsky J, Schwenk J.  2022.  TLS-Anvil: Adapting Combinatorial Testing for TLS Libraries. 31st USENIX Security Symposium (USENIX Security 22). :215--232.
2021
Brinkmann M, Dresen C, Merget R, Poddebniak D, Müller J, Somorovsky J, Schwenk J, Schinzel S.  2021.  ALPACA: Application Layer Protocol Confusion - Analyzing and Mitigating Cracks in TLS Authentication. 30th USENIX Security Symposium (USENIX Security 21). :4293--4310.
Merget R, Brinkmann M, Aviram N, Somorovsky J, Mittmann J, Schwenk J.  2021.  Raccoon Attack: Finding and Exploiting Most-Significant-Bit-Oracles in TLS-DH(E). 30th USENIX Security Symposium (USENIX Security 21). :213--230.
2020
Fiterau-Brostean P, Jonsson B, Merget R, de Ruiter J, Sagonas K, Somorovsky J.  2020.  Analysis of DTLS Implementations Using Protocol State Fuzzing. 29th USENIX Security Symposium (USENIX Security 20). :2523--2540.
2019
Müller J, Brinkmann M, Poddebniak D, Böck H, Schinzel S, Somorovsky J, Schwenk J.  2019.  “Johnny, you are fired!” – Spoofing OpenPGP and S/MIME Signatures in Emails. 28th USENIX Security Symposium (USENIX Security 19). :1011--1028.
Merget R, Somorovsky J, Aviram N, Young C, Fliegenschmidt J, Schwenk J, Shavitt Y.  2019.  Scalable Scanning and Automatic Classification of TLS Padding Oracle Vulnerabilities. 28th USENIX Security Symposium (USENIX Security 19). :1029--1046.
2018
Poddebniak D, Dresen C, Müller J, Ising F, Schinzel S, Friedberger S, Somorovsky J, Schwenk J.  2018.  Efail: Breaking S/MIME and OpenPGP Email Encryption using Exfiltration Channels. 27th USENIX Security Symposium (USENIX Security 18). :549--566.
Böck H, Somorovsky J, Young C.  2018.  Return Of Bleichenbacher’s Oracle Threat (ROBOT}}}}). 27th USENIX Security Symposium (USENIX Security 18). :817--849.
Engelbertz N, Erinola N, Herring D, Somorovsky J, Mladenov V, Schwenk J.  2018.  Security Analysis of eIDAS – The Cross-Country Authentication Scheme in Europe. 12th USENIX Workshop on Offensive Technologies (WOOT 18).
2017
Grothe M, Niemann T, Somorovsky J, Schwenk J.  2017.  Breaking and Fixing Gridcoin. 11th USENIX Workshop on Offensive Technologies (WOOT 17).
2016
Aviram N, Schinzel S, Somorovsky J, Heninger N, Dankel M, Steube J, Valenta L, Adrian D, J. Halderman A, Dukhovni V et al..  2016.  DROWN: Breaking TLS Using SSLv2. 25th USENIX Security Symposium (USENIX Security 16). :689--706.
Böck H, Zauner A, Devlin S, Somorovsky J, Jovanovic P.  2016.  Nonce-Disrespecting Adversaries: Practical Forgery Attacks on GCM in TLS. 10th USENIX Workshop on Offensive Technologies (WOOT 16).
2015
Kupser D, Mainka C, Schwenk J, Somorovsky J.  2015.  How to Break XML Encryption – Automatically. 9th USENIX Workshop on Offensive Technologies (WOOT 15).
2014
Meyer C, Somorovsky J, Weiss E, Schwenk J, Schinzel S, Tews E.  2014.  Revisiting SSL/TLS Implementations: New Bleichenbacher Side Channels and Attacks. 23rd USENIX Security Symposium (USENIX Security 14). :733--748.
2012
Somorovsky J, Mayer A, Schwenk J, Kampmann M, Jensen M.  2012.  On Breaking SAML: Be Whoever You Want to Be. 21st USENIX Security Symposium (USENIX Security 12). :397--412.