Dr.-Ing. Jens Müller

  • Ehemalige/r Mitarbeiter/in - Lehrstuhl Netz- und Datensicherheit

Adresse

Ruhr-Universität Bochum
Lehrstuhl für Netz- und Datensicherheit
Universitätsstraße 150
D-44801 Bochum

E-Mail:
jens.a.mueller@rub.de PGP Schlüssel
Webseite:
http://hacking-printers.net/

Lebenslauf

  • Vorträge (Auswahl). Black Hat USA (2020); USENIX WOOT (2020); WAC3 (2020); IEEE CNS (2020); HackCon #15, Oslo (2020); IT-Defense 2020, Bonn; German OWASP Day 2019, Karlsruhe; Black Hat EU, London (2019); HackPra, Münster (2019); USENIX Security, Santa Clara (2019); DEF CON 27, Las Vegas (2019); ACNS, Bogotá (2019); HackPra, Bochum (2019); IT-Defense 2019, Stuttgart; German OWASP Day 2018, Münster; RAID 2018, Heraklion; Black Hat USA, Las Vegas (2018); RuhrSec, Bochum (2018); Black Hat USA, Las Vegas (2017); CAST-Förderpreis IT-Sicherheit 2017, Darmstadt; German OWASP Day 2017, Essen; CASED, Darmstadt (2017); IEEE Symposium on Security and Privacy, San Jose (2017); OWASP AppSec Europe 2017, Belfast; RuhrSec, Bochum (2017); a-i3/BSI Symposium, Bochum (2017); Hack In Paris (2013)
  • CVE IDs (Auswahl). CVE-2017-11173; CVE-2017-17848; CVE-2018-2768; CVE-2018-4221; CVE-2018-4227; CVE-2018-5162; CVE-2018-5184; CVE-2018-8160; CVE-2018-8161; CVE-2018-12372; CVE-2018-15587; CVE-2018-15588; CVE-2018-19409; CVE-2019-8772; CVE-2019-10740; CVE-2019-12269; CVE-2019-14664; CVE-2020-11879; CVE-2020-11880; CVE-2020-12803
  • Auszeichnugnen. CAST IT-Se­cu­ri­ty Award 2017: Beste Masterarbeit; MSRC Most Valuable Security Researchers 2017-2019

Forschung

OpenPGP, S/MIME, OOXML, ODF, PDF, Printer Security, PostScript, PJL, Fax, Cross-Site printing, CORS, Smart Metering, PLC

Veröffentlichungen

2021
ALPACA: Application Layer Protocol Confusion-Analyzing and Mitigating Cracks in TLS Authentication

Marcus Brinkmann, Christian Dresen, Robert Merget, Damian Poddebniak, Jens Müller, Juraj Somorovsky, Jörg Schwenk, Sebastian Schinzel - 30th USENIX Security Symposium, August 11–13, 2021, Vancouver, B.C., Canada

Processing Dangerous Paths - On Security and Privacy of the Portable Document Format

Jens Müller, Dominik Noß, Christian Mainka, Vladislav Mladenov, Jörg Schwenk - 28th Network and Distributed System Security Symposium (NDSS 2021)

2020
Powerless Security – A Security Analysis of in-Home Power Line Communications based on HomePlug AV2

Stefan Hoffmann, Jens Müller, Jörg Schwenk, Gerd Bumiller - 18th International Conference on Applied Cryptography and Network Security (ACNS 2020)

Mitigation of Attacks on Email End-to-End Encryption

Jörg Schwenk, Marcus Brinkmann, Damian Poddebniak, Jens Müller, Juraj Somorovsky, Sebastian Schinzel - ACM CCS 2020 - November 9-13, 2020

Office Document Security and Privacy

Jens Müller, Fabian Ising, Vladislav Mladenov, Christian Mainka, Sebastian Schinzel, Jörg Schwenk - 14th USENIX Workshop on Offensive Technologies (WOOT 2020)

Mailto: Me Your Secrets. On Bugs and Features in Email End-to-End Encryption

Jens Müller, Marcus Brinkmann, Damian Poddebniak, Sebastian Schinzel, Jörg Schwenk - 8th IEEE Conference on Communications and Network Security (CNS 2020)

2019
Practical Decryption exFiltration: Breaking PDF Encryption

Jens Müller, Fabian Ising, Vladislav Mladenov, Christian Mainka, Sebastian Schinzel, Jörg Schwenk - 26th ACM Con­fe­rence on Com­pu­ter and Com­mu­ni­ca­ti­ons Se­cu­ri­ty

Vulnerability Report: Attacks bypassing confidentiality in encrypted PDF

Jens Müller, Fabian Ising, Vladislav Mladenov, Christian Mainka, Sebastian Schinzel, Jörg Schwenk

“Johnny, you are fired!” – Spoofing OpenPGP and S/MIME Signatures in Emails

Jens Müller, Marcus Brinkmann, Damian Poddebniak, Hanno Böck, Sebastian Schinzel, Juraj Somorovsky, Jörg Schwenk - 28th USE­NIX Se­cu­ri­ty Sym­po­si­um (USE­NIX Se­cu­ri­ty '19)

Re: What's up Johnny? – Covert Content Attacks on Email End-to-End Encryption

Jens Müller, Marcus Brinkmann, Damian Poddebniak, Sebastian Schinzel, Jörg Schwenk - 17th International Conference on Applied Cryptography and Network Security (ACNS 2019)

Efail: Angriffe auf S/MIME und OpenPGP

Damian Poddebniak, Christian Dresen, Jens Müller, Fabian Ising, Sebastian Schinzel, Simon Friedberger, Juraj Somorovsky, Jörg Schwenk - 16. Deutscher IT-Sicherheitskongress

2018
Efail: Breaking S/MIME and OpenPGP Email Encryption using Exfiltration Channels

Damian Poddebniak, Christian Dresen, Jens Müller, Fabian Ising, Sebastian Schinzel, Simon Friedberger, Juraj Somorovsky, Jörg Schwenk - 27th USE­NIX Se­cu­ri­ty Sym­po­si­um (USE­NIX Se­cu­ri­ty 18)

PostScript Undead: Pwning the Web with a 35 Years Old Language

Jens Müller, Vladislav Mladenov, Dennis Felsch, Jörg Schwenk - 21st International Symposium on Research in Attacks, Intrusions, and Defenses (RAID 2018)

2017
SoK: Exploiting Network Printers

Jens Müller, Vladislav Mladenov, Juraj Somorovsky, Jörg Schwenk - 38th IEEE Symposium on Security and Privacy (S&P 2017)