Publikationen - Sicherheit und des Datenschutzes in der Informationstechnologie

2025

Donika Mirdita, Haya Schulmann, Michael Waidner:
SoK: An Introspective Analysis of RPKI Security. 🔗
34th USENIX Security Symposium 2025, Seattle, USA, August 2025

2024

Haya Schulmann, Michael Waidner:
Wie Deutschland zur Cybernation wird.
Datenschutz und Datensicherheit (dud) 48(1): 11-15 (2024)

Donika Mirdita, Haya Schulmann, Niklas Vogel, Michael Waidner:
The CURE to Vulnerabilities in RPKI Validation. 🔗
Network and Distributed System Security Symposium (NDSS 2024), San Diego, USA, February 2024

Jens Frieß, Tobias Gattermayer, Nethanel Gelernter, Haya Schulmann, Michael Waidner:
Cloudy with a Chance of Cyberattacks: Dangling Resources Abuse on Cloud Platforms.
USENIX Symposium in Networked Systems Design and Implementation (NSDI 2024), Santa Clara, USA, April 2024

Nethanel Gelerenter, Haya Schulmann, Michael Waidner:
External Attack-Surface of Modern Organizations.
The 19th ACM ASIA Conference on Computer and Communications Security (ASIACCS), Singapore, July 2024

Elias Heftrig, Haya Schulmann, Niklas Vogel, Michael Waidner:
Protocol Fixes for KeyTrap Vulnerabilities.
The ACM/IRTF Applied Networking Research Workshop 2024 (ANRW'24), Vancouver, July 2024

Olivia Gruza, Elias Heftrig, Oliver Jacobsen, Haya Schulmann, Niklas Vogel, Michael Waidner:
Attacking with Something That Does Not Exist: Proof of Non-Existence Can Exhaust DNS Resolver CPU.
18th USENIX WOOT Conference on Offensive Technologies (WOOT 2024), Philadelphia, USA, August 2024

Elias Heftrig, Haya Schulmann, Niklas Vogel, Michael Waidner:
The KeyTrap Denial-of-Service Algorithmic Complexity Attacks on DNS.
The 31th ACM Conference on Computer and Communications Security (CCS), Salt Lake City, USA, October 2024

Donika Mirdita, Jens Frieß, Haya Schulmann, Michael Waidner:
Byzantine-Secure Relying Party for Resilient RPKI.
The 31th ACM Conference on Computer and Communications Security (CCS), Salt Lake City, USA, October 2024

Oliver Jacobsen, Haya Schulmann, Niklas Vogel, Michael Waidner:
Poster: From Fort to Foe: The Threat of RCE in RPKI.
The 31th ACM Conference on Computer and Communications Security (CCS), Salt Lake City, USA, October 2024

Oliver Jacobsen, Haya Schulmann:
Poster: Patching NSEC3-Encloser: The Good, the Bad, and the Ugly.
The 31th ACM Conference on Computer and Communications Security (CCS), Salt Lake City, USA, October 2024

Kevin Nsieyanji Tchokodeu, Haya Schulmann, Gil Sobol, Michael Waidner:
Poster: Security of Login Interfaces in Modern Organizations.
The 31th ACM Conference on Computer and Communications Security (CCS), Salt Lake City, USA, October 2024

Louis Cattepoel, Donika Mirdita, Haya Schulmann, Michael Waidner:
Poster: Kill Krill or Proxy RPKI.
The 31th ACM Conference on Computer and Communications Security (CCS), Salt Lake City, USA, October 2024

Jens Frieß, Haya Schulmann, Michael Waidner:
Crowdsourced Distributed Domain Validation.
The 23th ACM Workshop on Hot Topics in Networks (HotNets 2024), Irvine, California, USA, November 2024

2023

Haya Schulmann, Michael Waidner:
Aktive Cyberabwehr.
Datenschutz und Datensicherheit 47(8): 497-502 (2023)

Jens Friess, Haya Schulmann, Michael Waidner:
Revocation Speedrun: How the WebPKI Copes with Fraudulent Certificates.
PACMNET 1(CoNEXT3): 26:1-26:20 (2023)

Fabian Kaiser, Haya Schulmann, Michael Waidner:
Poster: Longitudinal Analysis of DoS Attacks.
CCS 2023: 3573-3575

Tomas Hlavacek, Philipp Jeitner, Donika Mirdita, Haya Schulmann, Michael Waidner:
Beyond Limits: How to Disable Validators in Secure Networks.
SIGCOMM 2023: 950-966

Haya Schulmann, Shujie Zhao:
Poster: LeMon: Global Route Leak Monitoring Service.
SIGCOMM 2023: 1111-1113

Elias Heftrig, Haya Schulmann, Michael Waidner:
Poster: Off-Path DNSSEC Downgrade Attacks.
SIGCOMM 2023: 1120-1122

Tomas Hlavacek, Haya Schulmann, Niklas Vogel, Michael Waidner:
Keep Your Friends Close, but Your Routeservers Closer: Insights into RPKI Validation in the Internet.
USENIX Security Symposium 2023: 4841-4858

Elias Heftrig, Haya Schulmann, Michael Waidner:
Downgrading DNSSEC: How to Exploit Crypto Agility for Hijacking Signed Zones.
USENIX Security Symposium 2023: 7429-7444

2022

Elisa Bertino, Haya Schulmann, Michael Waidner:
Special issue ESORICS 2021.
J. Comput. Secur. 30(6): 753-755 (2022)

Tomas Hlavacek, Philipp Jeitner, Donika Mirdita, Haya Schulmann, Michael Waidner:
Behind the Scenes of RPKI.
CCS 2022: 1413-1426

Elias Heftrig, Haya Schulmann, Michael Waidner:
Poster: The Unintended Consequences of Algorithm Agility in DNSSEC.
CCS 2022: 3363-3365

Donika Mirdita, Haya Schulmann, Michael Waidner:
Poster: RPKI Kill Switch.
CCS 2022: 3423-3425

Haya Schulmann, Niklas Vogel, Michael Waidner:
Poster: Insights into Global Deployment of RPKI Validation.
CCS 2022: 3467-3469

Haya Schulmann, Michael Waidner:
Poster: DNS in Routers Considered Harmful.
CCS 2022: 3471-3473

Haya Schulmann:
How (Not) to Deploy Cryptography on the Internet.
CODASPY 2022: 1

Tomas Hlavacek, Haya Schulmann, Michael Waidner:
Smart RPKI Validation: Avoiding Errors and Preventing Hijacks.
ESORICS (1) 2022: 509-530

Tomas Hlavacek, Philipp Jeitner, Donika Mirdita, Haya Schulmann, Michael Waidner:
Stalloris: RPKI Downgrade Attack.
USENIX Security Symposium 2022: 4455-4471

Philipp Jeitner, Haya Schulmann, Lucas Teichmann, Michael Waidner:
XDRI Attacks - and - How to Enhance Resilience of Residential Routers.
USENIX Security Symposium 2022: 4473-4490