Items where Author is "Backes, Michael"

Conference or Workshop Item (A Paper)

(2024) SecurityNet: Assessing Machine Learning Vulnerabilities on Public Models. (In Press)

(2024) Measuring the Effects of Stack Overflow Code Snippet Evolution on Open-Source Software Security.

(2023) Unsafe Diffusion: On the Generation of Unsafe Images and Hateful Memes From Text-To-Image Models. (Submitted)

(2023) PrivTrace: Differentially Private Trajectory Synthesis by Adaptive Markov Model.

(2023) UnGANable: Defending Against GAN-based Face Manipulation.

(2023) Bilingual Problems: Studying the Security Risks Incurred by Native Extensions in Scripting Languages.

(2023) SEAL: Capability-Based Access Control for Data-Analytic Scenarios. (In Press)

(2023) A Systematic Study of the Consistency of Two-Factor Authentication User Journeys on Top-Ranked Websites.

(2023) On the Evolution of (Hateful) Memes by Means of Multimodal Contrastive Learning.

(2022) Auditing Membership Leakages of Multi-Exit Networks.

(2022) Finding MNEMON: Reviving Memories of Node Embeddings. (In Press)

(2022) Freely Given Consent? Studying Consent Notice of Third-Party Tracking and Its Violations of GDPR in Android Apps. (In Press)

(2022) Graph Unlearning. (In Press)

(2022) Membership Inference Attacks by Exploiting Loss Trajectory.

(2022) On the Privacy Risks of Cell-Based NAS Architectures.

(2022) Why So Toxic? Measuring and Triggering Toxic Behavior in Open-Domain Chatbots.

(2022) A framework for constructing Single Secret Leader Election from MPC. (In Press)

(2022) ML-Doctor: Holistic Risk Assessment of Inference Attacks Against Machine Learning Models.

(2022) Inference Attacks Against Graph Neural Networks.

(2022) Industrial practitioners' mental models of adversarial machine learning.

(2022) Dynamic Backdoor Attacks Against Machine Learning Models.

(2022) On Xing Tian and the Perseverance of Anti-China Sentiment Online.

(2022) Get a Model! Model Hijacking Attack Against Machine Learning Models.

(2021) When Machine Unlearning Jeopardizes Privacy.

(2021) 12 Angry Developers – A Qualitative Study on Developers’ Struggles with CSP.

(2021) DoubleX: Statically Detecting Vulnerable Data Flows in Browser Extensions at Scale.

(2021) A11y and Privacy don’t have to be mutually exclusive: Constraining Accessibility Service Misuse on Android. (In Press)

(2021) Explanation Beats Context: The Effect of Timing & Rationales on Users’ Runtime Permission Decisions.

(2021) PrivSyn: Differentially Private Data Synthesis.

(2021) Stealing Links from Graph Neural Networks.

(2021) Share First, Ask Later (or Never?) - Studying Violations of GDPR's Explicit Consent in Android Apps.

(2021) Why Eve and Mallory Still Love Android: Revisiting TLS (In)Security in Android Applications. (In Press)

(2021) Accountability in the Decentralised-Adversary Setting. (In Press)

(2021) MLCapsule: Guarded Offline Deployment of Machine Learning as a Service.

(2021) Measuring User Perception for Detecting Unexpected Access to Sensitive Resource in Mobile Apps. (Submitted)

(2021) Statically Detecting JavaScript Obfuscation and Minification Techniques in the Wild.

(2021) Do winning tickets exist before DNN training?

(2021) BadNL: Backdoor Attacks against NLP Models with Semantic-preserving Improvements.

(2020) Up2Dep: Android Tool Support to Fix Insecure Code Dependencies.

(2020) Planning in the Browser.

(2020) Membership Inference Against DNA Methylation Databases.

(2020) Updates-Leak: Data Set Inference and Reconstruction Attacks in Online Learning.

(2020) A Tale of Two Headers: A Formal Analysis of Inconsistent Click-Jacking Protection on the Web.

(2020) Assessing the Impact of Script Gadgets on CSP at Scale.

(2020) Is FIDO2 the Kingslayer of User Authentication? A Comparative Usability Study of FIDO2 Passwordless Authentication.

(2020) TrollThrottle — Raising the Cost of Astroturfing.

(2020) Towards Plausible Graph Anonymization.

(2019) JStap: A Static Pre-Filter for Malicious JavaScript Detection.

(2019) MemGuard: Defending against Black-Box Membership Inference Attacks via Adversarial Examples.

(2019) HideNoSeek: Camouflaging Malicious JavaScript in Benign ASTs.

(2019) Fairwalk: Towards Fair Graph Embedding.

(2019) Short Text, Large Effect: Measuring the Impact of User Reviews on Android App Security & Privacy.

(2019) Fidelius: Protecting User Secrets from Compromised Browsers.

(2019) MBeacon: Privacy-Preserving Beacons for DNA Methylation Data.

(2019) ML-Leaks: Model and Data Independent Membership Inference Attacks and Defenses on Machine Learning Models.

(2019) Automated Verification of Accountability in Security Protocols. (In Press)

(2019) Causality & Control flow. (In Press)

(2019) Efficient Non-Interactive Zero-Knowledge Proofs in Cross-Domains without Trusted Setup. (In Press)

(2019) How to wrap it up - A formally verified proposal for the use of authenticated wrapping in PKCS#11. (In Press)

(2019) Membership Privacy for Fully Dynamic Group Signatures.

(2019) Ring Signatures: Logarithmic Size, No Setup -- from Standard Assumptions.

(2019) Towards Automated Network Mitigation Analysis.

(2019) Towards Automated Network Mitigation Analysis (extended version).

(2019) Up-To-Crash: Evaluating Third-Party Library Updatability on Android.

(2018) Better managed than memorized? Studying the Impact of Managers on Password Strength and Reuse.

(2018) JaSt: Fully Syntactic Detection of Malicious (Obfuscated) JavaScript.

(2018) Precise and Scalable Detection of Double-Fetch Bugs in OS Kernels.

(2018) Dissecting Privacy Risks in Biomedical Data.

(2018) Tagvisor: A Privacy Advisor for Sharing Hashtags.

(2018) Didn’t You Hear Me? — Towards More Successful Web Vulnerability Notifications.

(2018) Formally Reasoning about the Cost and Efficacy of Securing the Email Infrastructure.

(2018) PRIMA: Privacy-Preserving Identity and Access Management at Internet-Scale.

(2018) Privacy-Preserving Similar Patient Queries for Combined Biomedical Data. (In Press)

(2018) The Rise of the Citizen Developer: Assessing the Security Impact of Online App Generators.

(2018) Signatures with Flexible Public Key: Introducing Equivalence Classes for Public Keys. (In Press)

(2018) Stackelberg Planning: Towards Effective Leader-Follower State Space Search.

(2017) walk2friends: Inferring Social Links from Mobility Profiles.

(2017) Linking Amplification DDoS Attacks to Booter Services.

(2017) Reconciling Privacy and Utility in Continuous-Time Diffusion Networks.

(2017) Lessons Learned from Using an Online Platform to Conduct Large-Scale, Online Controlled Security Experiments with Software Developers.

(2017) Identifying Personal DNA Methylation Profiles by Genotype Inference.

(2017) Comparing the Usability of Cryptographic APIs.

(2017) Stack Overflow Considered Harmful? The Impact of Copy&Paste on Android Application Security.

(2017) ARTist: The Android Runtime Instrumentation and Security Toolkit.

(2017) Efficient and Flexible Discovery of PHP Application Vulnerabilities.

(2017) LUNA: Quantifying and Leveraging Uncertainty in Android Malware Analysis through Bayesian Machine Learning.

(2017) A Novel Approach for Reasoning about Liveness in Cryptographic Protocols and its Application to Fair Exchange.

(2017) Who Controls the Internet? Analyzing Global Threats using Property Graph Traversals.

(2017) Dachshund: Digging for and Securing (Non-)Blinded Constants in JIT Code.

(2017) Unleashing Use-Before-Initialization Vulnerabilities in the Linux Kernel Using Targeted Stack Spraying.

(2017) How the Web Tangled Itself: Uncovering the History of Client-Side Web (In)Security.

(2017) The ART of App Compartmentalization: Compiler-based Library Privilege Separation on Stock Android.

(2017) Adversarial Examples for Malware Detection.

(2017) Deemon: Detecting CSRF with Dynamic Analysis and Property Graphs.

(2017) Keep me Updated: An Empirical Study of Third-Party Library Updatability on Android.

(2017) Seamless In-App Ad Blocking on Stock Android.

(2017) A Stitch in Time: Supporting Android Developers in Writing Secure Code.

(2016) Simulating the Large-Scale Erosion of Genomic Privacy Over Time.

(2016) Computational Soundness for Dalvik Bytecode.

(2016) Efficient Cryptographic Password Hardening Services From Partially Oblivious Commitments.

(2016) Identifying the Scan and Attack Infrastructures behind Amplification DDoS attacks.

(2016) Membership Privacy in MicroRNA-based Studies.

(2016) On Profile Linkability despite Anonymity in Social Media Systems.

(2016) Reliable Third-Party Library Detection in Android and its Security Applications.

(2016) On the Feasibility of TTL-based Filtering for DRDoS Mitigation.

(2016) Hey, You Have a Problem: On the Feasibility of Large-Scale Web Vulnerability Notification.

(2016) On Demystifying the Android Application Framework: Re-Visiting Android Permission Specification Analysis.

(2016) Privacy in Epigenetics: Temporal Linkability of MicroRNA Expression Profiles.

(2016) What Cannot be Read, Cannot be Leveraged? Revisiting Assumptions of JIT-ROP Defenses.

(2016) Detecting Hardware-Assisted Virtualization.

(2016) R-Droid: Leveraging Android App Analysis with Static Slice Optimization.

(2016) RamCrypt: Kernel-based Address Space Encryption for User-mode Processes.

(2016) SoK: Lessons Learned From Android Security Research For Appified Software Platforms.

(2016) You Get Where You're Looking For: The Impact Of Information Sources On Code Security.

(2016) Implementation-level Analysis of the JavaScript Helios Voting Client.

(2016) How to Make ASLR Win the Clone Wars: Runtime Re-Randomization.

(2016) Anonymous RAM.

(2016) POSTER: The ART of App Compartmentalization.

(2016) SandPrint: Fingerprinting Malware Sandboxes to Provide Intelligence for Sandbox Evasion.

(2016) POSTER: Mapping the Landscape of Large-Scale Vulnerability Notifications.

(2015) Your Choice MATor(s): Large-scale Quantitative Anonymity Assessment of Tor Path Selection Algorithms Against Structural Attacks.

(2015) POSTER: In the Net of the Spider - Measuring the Anonymity-Impact of Network-level Adversaries Against Tor.

(2015) POSTER: Towards Compiler-Assisted Taint Tracking on the Android Runtime (ART).

(2015) Boxify: Full-fledged App Sandboxing for Stock Android.

(2015) Symbolic Malleable Zero-knowledge Proofs.

(2015) Oblivion: Mitigating Privacy Leaks by Controlling the Discoverability of Online Information.

(2015) ADSNARK: Nearly-Practical Privacy-Preserving Proofs on Authenticated Data.

(2015) PriCL: Creating a Precedent. A Framework for Reasoning about Privacy Case Law.

(2015) Fully Secure Inner-Product Proxy Re-Encryption with constant size Ciphertext.

(2015) Computational Soundness for Interactive Primitves.

(2015) Secrecy without Perfect Randomness: Cryptography with (Bounded) Weak Sources.

(2014) Android Security Framework: Extensible Multi-Layered Access Control on Android.

(2014) Scippa: System-Centric IPC Provenance on Android.

(2014) (Nothing else) MATor(s): Monitoring the Anonymity of Tor's Path Selection.

(2014) You Can Run but You Can't Read: Preventing Disclosure Exploits in Executable Code.

(2014) Lime: Data Lineage in the Malicious Environment.

(2014) Oxymoron: Making Fine-Grained Memory Randomization Practical by Allowing Code Sharing.

(2014) TUC: Time-sensitive and Modular Analysis of Anonymous Communication.

(2014) Asynchronous MPC with a Strict Honest Majority Using Non-equivocation.

(2014) WebTrust - A Comprehensive Authenticity and Integrity Framework for HTTP.

(2014) BackRef: Accountability in Anonymous Communication Networks.

(2014) X-pire 2.0 - A User-Controlled Expiration Date and Copy Protection Mechanism.

(2014) Computational Soundness Results for ProVerif - Bridging the Gap from Trace Properties to Uniformity.

(2013) Using Mobile Device Communication to Strengthen e-Voting Protocols.

(2013) Verifiable Delegation of Computation on Outsourced Data.

(2013) AppGuard – Fine-grained Policy Enforcement for Untrusted Android Applications.

(2013) Differentially Private Smart Metering with Battery Recharging.

(2013) AnoA: A Framework For Analyzing Anonymous Communication Protocols.

(2013) Computational Soundness of Symbolic Zero-Knowledge Proofs: Weaker Assumptions and Mechanized Verification.

(2013) Preventing Side-Channel Leaks in Web Traffic: A Formal Approach.

(2013) AnoA: A Framework for Analyzing Anonymous Communication Protocols.

(2013) Asynchronous Computational VSS with Reduced Communication Complexity.

(2013) Idea: Callee-Site Rewriting of Sealed System Libraries.

(2013) Privacy-Preserving Accountable Computation.

(2012) Computational Soundness without Protocol Restrictions.

(2012) Ace: An Efficient Key-Exchange Protocol for Onion Routing.

(2012) Brief announcement: distributed cryptography using trinc.

(2012) Verified Security of Merkle-Damgård.

(2012) ObliviAd: Provably Secure and Practical Online Behavioral Advertising.

(2012) Automated Synthesis of Secure Distributed Applications.

(2012) Adding query privacy to robust DHTs.

(2012) Computational Soundness of Symbolic Zero-knowledge Proofs: Weaker Assumptions and Mechanized Verification. (Unpublished)

(2012) Diffusion-Based Image Compression in Steganography.

(2012) On the Development and Formalization of an Extensible Code Generator for Real Life Security Protocols.

(2012) Provably Secure and Practical Onion Routing.

(2012) SAFE Extensibility of Data-Driven Web Applications.

(2011) A Security API for Distributed Social Networks.

(2011) Automatically Verifying Typing Constraints for a Data Processing Language.

(2011) Computational Verifiable Secret Sharing Revisited.

(2011) G2C: Cryptographic Protocols from Goal-Driven Specifications.

(2011) Non-Uniform Distributions in Quantitative Information-Flow.

(2011) Securing social networks.

(2011) Union and Intersection Types for Secure Protocol Implementations.

(2010) Acoustic Side-Channel Attacks of Printers.

(2010) Anonymity and Trust in Distributed Systems.

(2010) Anonymous Webs of Trust.

(2010) Computationally Sound Abstraction and Verification of Secure Multi-Party Computations.

(2010) Computationally Sound Verification of Source Code.

(2010) RatFish: A File Sharing Protocol Provably Secure Against Rational Users.

(2010) Speaker Recognition in Encrypted Voice-over-IP Traffic.

(2009) Achieving Security Despite Compromise Using Zero-knowledge.

(2009) Anonymity and Censorship Resistance in Unstructured Overlay Networks.

(2009) Anonymous and Censorship-resistant Content-sharing in Unstructured Overlays.

(2009) Automatic Discovery and Quantification of Information Leaks.

(2009) CSAR: A practical and provable technique to make randomized systems accountable.

(2009) CoSP: a general framework for computational soundness proofs.

(2009) Design and Verification of Anonymous Trust Protocols.

(2009) Tempest in a Teapot: Compromising Reflections Revisited.

(2008) Automated Verification of Remote Electronic Voting Protocols in the Applied Pi-calculus.

(2008) Brief Announcement: Anonymous and Censorship-resistant Content-sharing in Unstructured Overlays.

(2008) CASPA: Causality-based Abstraction for Security Protocol Analysis.

(2008) Compromising Reflections or How to Read LCD Monitors Around the Corner.

(2008) Computational Soundness of Symbolic Zero-Knowledge Proofs Against Active Attackers.

(2008) A Formal Language for Cryptographic Pseudocode.

(2008) Formally Bounding the Side-Channel Leakage in Unknown-Message Attacks.

(2008) Limits of Constructive Security Proofs.

(2008) OAEP is Secure Under Key-dependent Messages.

(2008) Type-checking zero-knowledge.

(2008) Zero-Knowledge in the Applied Pi-calculus and Automated Verification of the Direct Anonymous Attestation Protocol.

(2007) A Calculus of Challenges and Responses.

(2007) Causality-based Abstraction of Multiplicity in Security Protocols.

(2007) Information Flow in the Peer-Reviewing Process (extended abstract).

(2007) Key-dependent Message Security under Active Attacks - BRSIM/UC-Soundness of Symbolic Encryption with Key Cycles.

(2007) On Simulatability Soundness and Mapping Soundness of Symbolic Cryptography.

(2007) On the Necessity of Rewinding in Secure Multiparty Computation.

(2006) Computationally Sound Secrecy Proofs by Mechanized Flow Analysis.

(2006) Conditional Reactive Simulatability.

(2006) Cryptographically Sound Security Proofs for Basic and Public-key Kerberos.

(2006) Cryptographically Sound Theorem Proving.

(2006) Formal Methods and Cryptography.

(2006) Limits of the Reactive Simulatability/UC of Dolev-Yao Models with Hashes.

(2006) On the Cryptographic Key Secrecy of the Strengthened Yahalom Protocol.

(2006) Secure Key-Updating for Lazy Revocation.

(2006) Symbolic and Cryptographic Analysis of the Secure WS-ReliableMessaging Scenario.

(2005) Anonymous yet accountable access control.

(2005) Compositional Analysis of Contract Signing Protocols.

(2005) A Cryptographically Sound Dolev-Yao Style Security Proof of an Electronic Payment System.

(2005) Lazy Revocation in Cryptographic File Systems.

(2005) Limits of the Cryptographic Realization of Dolev-Yao-style XOR.

(2005) On Fairness in Simulatability-based Cryptographic Systems.

(2005) Public-Key Steganography with Active Attacks.

(2005) Quantifying Probabilistic Information Flow in Computational Reactive Systems.

(2005) Relating Symbolic and Cryptographic Secrecy.

(2005) Tailoring the Dolev-Yao Abstraction to Web Services Realities - A Comprehensive Wish List.

(2004) An Algebra for Composing Enterprise Privacy Policies.

(2004) A Cryptographically Sound Dolev-Yao Style Security Proof of the Otway-Rees Protocol.

(2004) Efficient Comparison of Enterprise Privacy Policies.

(2004) A General Composition Theorem for Secure Reactive System.

(2004) How to Break and Repair a Universally Composable Signature Functionality.

(2004) Low-level Ideal Signatures and General Integrity Idealization.

(2004) Symmetric Encryption in a Simulatable Dolev-Yao Style Cryptographic Library.

(2004) Unification in Privacy Policy Evaluation - Translating EPAL to Prolog.

(2003) A Composable Cryptographic Library with Nested Operations.

(2003) A Cryptographically Sound Security Proof of the Needham-Schroeder-Lowe Public-Key Protocol.

(2003) Cryptographically Sound and Machine-Assisted Verification of Security Protocols.

(2003) From Absence of Certain Vulnerabilities towards Security Proofs - Pushing the Limits of Formal Verification.

(2003) Intransitive Non-Interference for Cryptographic Purposes.

(2003) Proactive Secure Message Transmission in Asynchronous Networks.

(2003) Reactively Secure Signature Schemes.

(2003) Reliable broadcast in a computational hybrid model with Byzantine faults, crashes, and recoveries.

(2003) Security in Business Process Engineering.

(2003) Symmetric Authentication Within a Simulatable Cryptographic Library.

(2003) A Toolkit for Managing Enterprise Privacy Policies.

(2003) Unifying Simulatability Definitions in Cryptographic Systems under Different Timing Assumptions (Extended Abstract).

(2002) Computational Probabilistic Non-Interference.

(2002) Deriving Cryptographically Sound Implementations Using Composition and Formally Verified Bisimulation.

(2002) Polynomial Fairness and Liveness.

Article

(2022) Pareto-Optimal Defenses for the Web Infrastructure: Theory and Practice.

(2021) Swarm Learning for decentralized and confidential clinical machine learning.

(2020) Decentralized Privacy-Preserving Proximity Tracing.

(2019) Adversarial Initialization - when your network performs the way I want -.

(2018) The Limitations of Model Uncertainty in Adversarial Settings.

(2018) Killing Three Birds with one Gaussian Process: Analyzing Attack Vectors on Classification. (Submitted)

(2018) A Survey on Routing in Anonymous Communication Protocols.

(2017) How Internet Resources Might Be Helping You Develop Faster but Less Securely.

(2017) On the (Statistical) Detection of Adversarial Examples. (Submitted)

(2017) Simulated Penetration Testing and Mitigation Analysis.

(2017) Studying the Impact of Managers on Password Strength and Reuse.

(2016) Adversarial Perturbations Against Deep Neural Networks for Malware Classification.

(2016) A Survey on Routing in Anonymous Communication Protocols.

(2016) Boxify: Bringing Full-Fledged App Sandboxing to Stock Android.

(2015) How well do you blend into the crowd? - d-convergence: A novel paradigm for quantifying privacy in the age of Big-Data.

(2015) Data Lineage in Malicious Environments.

(2015) Oblivion: Mitigating Privacy Leaks by Controlling the Discoverability of Online Information.

(2015) Oblivion: Mitigating Privacy Leaks by Controlling the Discoverability of Online Information.

(2015) Quantifying Information Flow in Cryptographic Systems.

(2014) Union, intersection and refinement types and reasoning about type disjointness for secure protocol implementations.

(2014) Operational Signature Schemes.

(2013) Union, Intersection, and Refinement Types and Reasoning About Type Disjointness for Secure Protocol Implementations.

(2013) Highly Controlled, Fine-grained Delegation of Signing Capabilities.

(2013) Introducing Accountability to Anonymity Networks.

(2011) Cryptographically sound security proofs for basic and public-key Kerberos.

(2011) A Local Cross-Site Scripting Attack against Android Phones.

(2010) Computational Soundness of Symbolic Zero-Knowledge Proofs.

(2008) Conditional Reactive Simulatability.

(2008) Key-dependent Message Security under Active Attacks - BRSIM/UC-Soundness of Symbolic Encryption with Key Cycles.

(2008) Limits of the BRSIM/UC soundness of Dolev-Yao-style XOR.

(2007) The Reactive Simulatability Framework for Asynchronous Systems.

(2006) Compositional Analysis of Contract Signing Protocols.

(2006) Real-or-Random Key Secrecy of the Otway-Rees Protocol via a Symbolic Security Proof.

(2005) Reactively Secure Signature Schemes.

(2005) Relating Symbolic and Cryptographic Secrecy.

(2005) Symmetric Authentication Within a Simulatable Cryptographic Library.

(2005) Unifying Simulatability Definitions in Cryptographic Systems under Different Timing Assumptions.

(2004) Computational Probabilistic Non-Interference.

(2004) A Cryptographically Sound Security Proof of the Needham-Schroeder-Lowe Public-Key Protocol.

(2004) Polynomial Liveness.

(2002) Factorization of Univariate Polynomials.

(2002) New Number-Theoretic Assumptions in Cryptography (in german).

Thesis

(2002) Cryptographically Sound Analysis of Security Protocols.

Book Section

(2016) Delegatable Functional Signatures.

(2016) From Zoos to Safaris - From Closed-World Enforcement to Open-World Assessment of Privacy.

(2013) AppGuard - Enforcing User Requirements on Android Apps.

(2013) Callee-site Rewriting of Sealed System Libraries.

(2007) Enterprise Privacy Policies and Languages.

(2007) Enterprise Privacy Policies and Languages.

(2004) Justifying a Dolev-Yao Model under Active Attacks.

Book

(2006) Proceedings of 9th International Conference on Information Security (ISC), Samos Island, Greece.

(2005) Proceedings of 3rd International Workshop on Security and Concurrency (SecCo), affiliated with CONCUR'05, San Francisco, CA.

(2003) Proceedings of 1st ACM Workshop on Formal Methods in Security Engineering (FMSE) , affiliated with ACM CCS'03, Washington D.C.

Monograph

(2014) Taking Android App Vetting to the Next Level with Path-sensitive Value Analysis. (Unpublished)

(2013) AppGuard - Fine-grained Policy Enforcement for Untrusted Android Applications. (Unpublished)

(2012) AppGuard - Real-time Policy Enforcement for Third-Party Applications. (Unpublished)

(2011) X-pire! - A digital expiration date for images in social networks.

Other

(2018) MLCapsule: Guarded Offline Deployment of Machine Learning as a Service.

(2018) Formally Reasoning about the Cost and Efficacy of Securing the Email Infrastructure (full version).

(2008) Gespiegelt / Verräterische Reflexionen: Wie Brillengläser Geheimnisse verraten.

(2007) Causality-based Abstraction of Multiplicity in Security Protocol Analysis.

(2007) On the Security of Protocols with Logarithmic Communication Complexity.

(2007) Vorgetäuscht / Böse Textdokumente -- Postscript gone wild.

(2006) Computationally Sound Secrecy Proofs by Mechanized Flow Analysis. (Unpublished)

(2006) Games and the Impossibility of Realizable Ideal Functionality.

(2006) On the Necessity of Rewinding in Secure Multiparty Computation.

(2006) Soundness Limits of Dolev-Yao Models.

(2003) A Cryptographically Sound Security Proof of the Needham-Schroeder-Lowe Public-Key Protocol (Extended Abstract).