Sosnowski, Markus scite author profile

Sosnowski, Markus

2Publications

16Citation Statements Received

8Citation Statements Given

How they've been cited

How they cite others

Affiliations

Technical University of Munich, University of Augsburg

Publications

Order By: Most citations

DissecTLS: A Scalable Active Scanner for TLS Server Configurations, Capabilities, and TLS Fingerprinting

Markus

Zirngibl

Sattler

et al. 2023

View full text Add to dashboard Cite

Collecting metadata from Transport Layer Security (TLS) servers on a large scale allows to draw conclusions about their capabilities and configuration. This provides not only insights into the Internet but it enables use cases like detecting malicious Command and Control (C &C) servers. However, active scanners can only observe and interpret the behavior of TLS servers, the underlying configuration and implementation causing the behavior remains hidden. Existing approaches struggle between resource intensive scans that can reconstruct this data and light-weight fingerprinting approaches that aim to differentiate servers without making any assumptions about their inner working. With this work we propose DissecTLS, an active TLS scanner that is both light-weight enough to be used for Internet measurements and able to reconstruct the configuration and capabilities of the TLS stack. This was achieved by modeling the parameters of the TLS stack and derive an active scan that dynamically creates scanning probes based on the model and the previous responses from the server. We provide a comparison of five active TLS scanning and fingerprinting approaches in a local testbed and on toplist targets. We conducted a measurement study over nine weeks to fingerprint C &C servers and analyzed popular and deprecated TLS parameter usage. Similar to related work, the fingerprinting achieved a maximum precision of 99 % for a conservative detection threshold of 100 %; and at the same time, we improved the recall by a factor of 2.8.

show abstract

Traeddy

Martin

Geiger

Götz

et al. 2018

View full text Add to dashboard Cite

Commuting by car can be stressful, especially unexpected traffic jams may result in feelings of loss of control and social disconnectedness. In this paper, we present Traeddy, a teddy bear augmented with embedded technology, which serves as a wellbeing companion for car commuters in case of traffic jams. Traeddy is capable to help, for example by notifying relevant contacts about traffic jams and potential delays. We describe in detail the design process, including 20 contextual inquiries and report the evaluation of Traeddy through an online survey with 102 participants and a field study evaluating Traeddy with three commuters and two contacts in the field. The results of the field study indicate that Traeddy has a positive impact on the relationship between the commuter and the notified contact. Furthermore, the majority of the online participants anticipated Traeddy to be useful and to support their wellbeing in traffic jams.

show abstract

scite is a Brooklyn-based organization that helps researchers better discover and understand research articles through Smart Citations–citations that display the context of the citation and describe whether the article provides supporting or contrasting evidence. scite is used by students and researchers from around the world and is funded in part by the National Science Foundation and the National Institute on Drug Abuse of the National Institutes of Health.

Contact Info

customersupport@researchsolutions.com

10624 S. Eastern Ave., Ste. A-614

Henderson, NV 89052, USA

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

Blog Terms and Conditions API Terms Privacy Policy Contact Cookie Preferences Do Not Sell or Share My Personal Information

Made with 💙 for researchers

Part of the Research Solutions Family.