Publications

2008

• Paolo Dini, Daniel Schreckling: Notes on Abstract Algebra and Logic: Towards Their Application to Cell Biology and Security, 2nd IEEE International Conference on Digital Ecosystems and Technologies (DEST 2008), Phitsanulok, Thailand, February 26-29, 2008
   

2007

• Martin Johns: On JavaScript Malware and related threats - Web page based attacks revisited, in Journal in Computer Virology, Springer Paris, December 2007 (doi).
   
• Martin Johns, Daniel Schreckling: Automatisierter Code-Audit, Sicherheitsanalyse von Source Code in Theorie und Praxis, DuD, Datenschutz und Datensicherheit, Vieweg-Verlag, Volume 31, Number 12, pp. 888-893, December, 2007 (doi)
   
• Dennis Bliefernicht, Daniel Schreckling: Highly Adaptive Cryptographic Suites for Autonomic WSNs, International Workshop on Technologies for Situated and Autonomic Communications (SAC), Budapest, Hungary, in conjunction with BIONETICS'07, December 10-13, 2007
   
• Lidia Yamamoto, Daniel Schreckling, Thomas Meyer: Self-Replicating and Self-Modifying Programs in Fraglets, 2nd International Conference on Bio-Inspired Models of Network, Information, and Computing Systems (BIONETICS), Budapest, Hungary, December 10-13, 2007
   
• Paolo Dini, Daniel Schreckling: More note on abstract algebra and logic: Towards their application to cell biology and security, Proceedings of 1st OPAALS Workshop, Rome, Italy, November 26-28, 2007
   
• Hannah K. Lee. Unraveling Decentralized Authorization for Multi-domain Collaborations, 2nd IEEE TrustCol-2007, White Plains, NY, USA, Nov. 2007 (PDF).
   
• Hannah K. Lee and Heiko Luedemann. A Lightweight Decentralized Authorization Model for Inter-domain Collaborations, 2007 ACM Workshop on Secure Web-Services (SWS'07), Fairfax, Virginia, USA, Nov. 2007 (PDF).
   
• Martin Johns, Justus Winter: Protecting the Intranet Against "JavaScript Malware" and Related Attacks, in Detection of Intrusions and Malware & Vulnerability Assessment (DIMVA 2007), B. M. Hämmerli and R. Sommer (ed.), Springer, LNCS 4579, pp. 40-59, July 2007 (PDF).
   
• Josep Domingo-Ferrer, Joachim Posegga, Francesc Sebe, and Vicenc Torra (Eds.). COMPUTER NETWORKS, Special Issue on Advances in Smart Cards. Elsevier, Volume 51, June 2007.
   
• Martin Johns: Towards Practical Prevention of Code Injection Vulnerabilities on the Programming Language Level, Technical Report, number 279-07, University of Hamburg, May 2007 (PDF).
   
• Martin Johns, Christian Beyerlein: SMask: Preventing Injection Attacks in Web Applications by Approximating Automatic Data/Code Separation, 22nd ACM Symposium on Applied Computing (SAC 2007), Security Track, Seoul, Korea, March 2007 (PDF).
   
• Daniel Schreckling, Martin Johns, SVS Sectoolers: CISAT: Integration von sicherheitszentrierter statischer Analyse in den Enwicklungsprozess, 14. DFN-CERT Workshop "Sicherheit in vernetzten Systemen", Hamburg, Germany, February 2007 (PDF)
   
• Henrich C. Pöhls: Authenticity and Revocation of Web Content using Signed Microformats and PKI. Technical Report, number 276-07, University of Hamburg, February 2007 (PDF)
   
• Bastian Braun: FCPre: Extending the Arora-Kulkarni Method of Automatic Addition of Fault-Tolerance, ares, pp. 967-974, The Second International Conference on Availability, Reliability and Security (ARES'07), 2007. (PDF)
   

2006

• Bastian Braun: FCPre: Extending the Arora-Kulkarni Method of Automatic Addition of Fault-Tolerance. Technical Report, number 275-06, University of Hamburg, December 2006. (PDF)
   
• Jan Seedorf: SIP Security - Status Quo and Future Issues, Proceedings of 23rd Chaos Communication Congress, Berlin, Germany, December 2006.
   
• Jan Seedorf: Security Challenges for P2P-SIP, Special Issue on Securing Voice over IP, IEEE Network, vol. 20, no. 5, September 2006, pp. 38 - 45
   
• Martin Johns: SessionSafe: Implementing XSS Immune Session Handling in in European Symposium on Research in Computer Security (ESORICS 2006), Gollmann, D.; Meier, J. & Sabelfeld, A. (ed.), Springer, LNCS 4189, pp. 444-460, September 2006 (PDF).
   
• Jan Seedorf: Using Cryptographically Generated SIP-URIs to protect the Integrity of Content in P2P-SIP, Third Annual VoIP Security Workshop, June 2006, Berlin, Germany (PDF)
   
• Martin Johns, Justus Winter: RequestRodeo: Client Side Protection against Session Riding in Proceedings of the OWASP Europe 2006 Conference by Piessens, F. (ed.), Report CW448, Departement Computerwetenschappen, Katholieke Universiteit Leuven, Belgium, May 2006 (PDF).
     
• Josep Domingo-Ferrer, Joachim Posegga, and Daniel Schreckling (Eds.). Proc. 7th Intern. Conf. on Smart Card Research and Applications. Springer LNCS 3928, Tarragona, Spain, 2006.
   
• Henrich C. Pöhls, Joachim Posegga: Smartcard Firewalls Revisited. In 7th Intern. Conf. on Smart Card Research and Applications, Lecture Notes in Computer Science, Tarragona, Spain, April 19-21, 2006. Springer Verlag. (PDF)
   

2005

• Joachim Posegga, Jan Seedorf: Voice Over IP: Unsafe at any Bandwidth? In Proc. EURESCOM Summit 2005: Ubiquitous Services and Applications, Heidelberg, Germany, April 27--29 2005. VDE Verlag. (PDF)
   

2004

• Thomas Walter, Laurent Bussard, Jochen Haller, Roger Kilian-Kehr, Joachim Posegga, Philip Robinson. Secure Mobile Business Applications: Framework, Architecture and Implementation. Information Security Technical Report Journal, Vol. 9 No. 4, pp 6 - 22, December 2004. (PDF)
   
• Heiko Fangmeier, Michel Messerschmidt, Fabian Müller, Jan Seedorf: Risiken der Nichterkennung von Malware in komprimierter Form. In: Flegel, U.; Meier, M. (Hrsg.): Detections of Intrusions and Malware & Vulnerability Assessment (DIMVA 2004), Lecture Notes in Informatics, P-46, S. 201-211
   
• Jochen Haller, Laurent Gomez, and Joachim Posegga. Architektur für ein sicheres Senden von Firmennachrichten / enterprise secure messaging architecture.
  United States Patent Office, US 2004/0068649 A1;
  Europäisches Patentamt, EP 1 532 774 A2;
  Australian Patent Office AU 2003 271 569 A8,
  2004.