Publications
Out of the Dark: UI Redressing and Trustworthy Events
2017 - Marcus Niemietz, Jörg Schwenk
16th International Conference on Cryptology And Network Security (CANS 2017) [Conference] [PDF]On The (In-)Security Of JavaScript Object Signing And Encryption
2017 - Dennis Detering, Juraj Somorovsky, Christian Mainka, Vladislav Mladenov, Jörg Schwenk
ROOTS, November 16–17, 2017, Vienna, Austria [PDF]Same-Origin Policy: Evaluation in Modern Browsers
2017 - Jörg Schwenk, Marcus Niemietz, Christian Mainka
26th USENIX Security Symposium (USENIX Security 17) [PDF]Breaking and Fixing Gridcoin
2017 - Martin Grothe, Tobias Niemann, Juraj Somorovsky, Jörg Schwenk
11th USENIX Workshop on Offensive Technologies (WOOT '17) [Link] [pdf]DOMPurify: Client-Side Protection Against XSS and Markup Injection
2017 - Mario Heiderich, Christopher Späth, Jörg Schwenk
(2017, September). DOMPurify: Client-Side Protection Against XSS and Markup Injection. In European Symposium on Research in Computer Security (ESORICS), Springer, Cham.Simple Security Definitions for and Constructions of 0-RTT Key Exchange
2017 - Britta Hale, Tibor Jager, Sebastian Lauer, Jörg Schwenk
15th International Conference on Applied Cryptography and Network Security - ACNS 2017 [ePrint]Measuring small subgroup attacks against Diffie-Hellman
2017 - Luke Valenta, David Adrian, Antonio Sanso, Shaanan Cohney, Joshua Fried, Marcella Hastings, J. Alex Halderman, Nadia Heninger
In NDSS Symposium 2017 [NDSS Website] [Paper] [Slides] [Youtube Video]SECRET: On the Feasibility of a Secure, Efficient, and Collaborative Real-Time Web Editor
2017 - Dennis Felsch, Christian Mainka, Vladislav Mladenov, Jörg Schwenk
ACM Asia Conference on Computer and Communications Security (ASIACCS) 2017 [GitHub-Project] [Paper] [Slides]SoK: Exploiting Network Printers
2017 - Jens Müller, Vladislav Mladenov, Juraj Somorovsky, Jörg Schwenk
38th IEEE Symposium on Security and Privacy (S&P 2017) [html] [html] [pdf]SoK: Single Sign-On Security – An Evaluation of OpenID Connect
2017 - Christian Mainka, Vladislav Mladenov, Tobias Wich, Jörg Schwenk
IEEE European Symposium on Security and Privacy (EuroS&P 2017) [pdf]