GlobalSupervision: Paul Rösler Start date: immediately More details:
There are a lot of open questions regarding the security and reliability of Instant Messengers like
If you are interested in a practical or theoretical analysis of their implementations or protocols, we may find a topic for a theses. While practical analyses could focus on the new group chat protocol of Signal , theoretical analyses may be concerned with modeling or proving the security of protocols [2,3]. A practical work could also focus on the implementation of protocols that have only been published theoretical yet . Combining practice with theory could be achieved by reproducing and validating automatically generated proofs [5,6] with tools like ProVerif , CryptoVerif , and Tamarin .
If you are interested in a practical analysis, implementing, or theoretical analysis, write me an E-Mail.
 https://github.com/WhisperSystems/Signal-Android/ ,  https://eprint.iacr.org/2016/1013 ,  http://noiseprotocol.org/ ,  Ask me; it is not published yet ;),  https://eprint.iacr.org/2017/666 ,  https://github.com/Inria-Prosecco/proscript-messaging ,  http://proverif.inria.fr/ ,  http://cryptoverif.inria.fr/ ,  https://tamarin-prover.github.io/
Depending on the focus of your desired thesis you should have
- Good knowledge and experience in source code analysis and debugging and
- Good grades in Network Security 1 & 2
- Interest in practical aspects of cryptography
- Good grades in Cryptography, Authenticated Key Exchange or other courses of Theory in IT-Security