2024 Available now Wearable Security, Fuzzing, and Impersonation Supervisor: Nils Rollshausen Note: I currently cannot supervise additional master's theses. Are you interested in wearable devices, reverse engineering, security research, and mobile ecosystems? I might just have a topic for you. Possible topics could be: Building fuzzing infrastructure for the Apple Watch and its wireless protocols Exploring data exfiltration / supply chain attacks using spoofed smartwatches Adversarial interoperability between "incompatible" smart ecosystems Building custom, secure infrastructure for GSM-based GPS trackers Whether you're interested in one of those topics or have an idea of your own in this area, get in touch and we can have a chat.
2024 27th ACM Conference on Computer-Supported Cooperative Work and Social Computing (CSCW 2024) Conference PairSonic: Helping Groups Securely Exchange Contact Information Florentin Putz Steffen Haesler Thomas Völkl Maximilian Gehring Nils Rollshausen Matthias Hollick PDF BibTeX DOI: 10.1145/3678884.3681818 Abstract Securely exchanging contact information is essential for establishing trustworthy communication channels that facilitate effective online collaboration. However, current methods are neither user-friendly nor scalable for large groups of users. In response, we introduce PairSonic, a novel group pairing protocol that extends trust from physical encounters to online communication. PairSonic simplifies the pairing process by automating the tedious verification tasks of previous methods through an acoustic out-of-band channel using smartphones' built-in hardware. Our protocol not only facilitates connecting users for computer-supported collaboration, but also provides a more user-friendly and scalable solution to the authentication ceremonies currently used in end-to-end encrypted messengers like Signal or WhatsApp. PairSonic is available as open-source software: https://github.com/seemoo-lab/pairsonic
