David Klein

David Klein is a PhD Candidate since October 2018. His research interests include static and dynamic analysis, program transformations, web security, unikernels and privacy

Room 209A

david.klein[at]tu-braunschweig.de

0531/391-2293

Publications

LogPicker: Strengthening Certificate Transparency Against Covert Adversaries.
Alexandra Dirksen, David Klein, Robert Michael, Tilman Stehr, Konrad Rieck and Martin Johns.
Proceedings on Privacy Enhancing Technologies (PETS'21)

Talking About My Generation: Targeted DOM-based XSS Exploit Generation using Dynamic Data Flow Analysis
Souphiane Bensalim, David Klein, Thomas Barber, Martin Johns
Proceedings of the 14th European Workshop on Systems Security (EuroSec '21) [BIB]

Adversarial Preprocessing: Understanding and Preventing Image-Scaling Attacks in Machine Learning
Erwin Quiring, David Klein, Daniel Arp, Martin Johns and Konrad Rieck
Proc. of the 29th USENIX Security Symposium, August 2020 [BIB]

Deploying Contextual Computing in a Campus Setting
Fabio Aversente, David Klein, Schekeb Sultani, Dmitri Vronski, and Jörg Schäfer
Eleventh International Network Conference (INC), 2016

Implementing Situation Awareness for Car-to-X Applications using Domain Specific Languages
Jörg Schäfer, and David Klein
Proceedings of the 77th IEEE Vehicular Technology Conference (VTC), 2013

Supervised Theses

Master's Thesis

By Robin Kirchner.

Popular messaging providers read your messages.
Encrypted instant messaging has received a lot of attention since Snowden’s disclosures of 2013. However, no exhaustive work on snooping by messaging providers has been conducted. We design and implement the HoneyMessages Framework for management and supervision of automatic experimental trials to detect snooping by the service providers. In these experiments, unique closely-monitored tokens are embedded into messages which are transmitted via instrumented online messengers.
The framework detected server-side requests to URLs in chats by the majority of the examined messaging services while three providers repeatedly accessed them. In order to do so, the providers analyze and process the messages beyond transmission, violating privacy assumptions.

Sub-Reviews

Year	Conferences
2021	WWW, CODASPY, SAC, ARES
2020	WWW, EuroS&P, CODASPY, SAC, ICWE, ACSAC
2019	ACSAC, CODASPY, SAC, ICWE
2018	CODASPY, SAC, ACSAC

Teaching assistant

Year	Semester	Name
2020	SS	Programmieren II, Anwendungssicherheit (Seminar)
2019	WS	Programmieren I, Anwendungssicherheit (Seminar)
2019	SS	Programmieren I
2018	WS	Programmieren I

David Klein

Publications

Supervised Theses

Master's Thesis

Sub-Reviews

Teaching assistant

Für alle

Für Studierende

Interne Tools

Kontakt