Dr. Raphael M. Reischuk
Senior Information Security Researcher and Consultant
Contact
Raphael Reischuk is an experienced information security researcher and
consultant with focus on Internet security, in particular IoT security,
web security, cyber security, and network security.
Raphael Reischuk is member of several international program committees
in information security, he is a frequent and passionate speaker at
international conferences and summits for various topics in network-,
web-, and cyber security. Raphael is author of numerous scientific
publications in information security and cryptography, for which he has
been awarded multiple times.
Before joining Zühlke Engineering AG,
he has worked as senior information security
researcher at ETH Zürich.
He obtained his PhD (with distinction) from the
Information Security and Cryptography Group
at
CISPA
(the Center for IT-Security, Privacy, and Accountability) at
Saarland University under supervision
of Prof. Michael Backes.
Research Interests & Areas of Expertise
- Web security
• TLS infrastructure and the web ecosystem [MR '17]
• secure application design and analysis:
SAFE Activation Framework for Extensibility [WWW '12, ACM CCS '13, ICWE '15]
- Authentication infrastructures [SENT '15, TOPS '17, IEEE S&P '17]
- DDoS defense [ICNP '15, NDSS '16]
- Accountability [ICNP '15, iNetSec '15, SENT '15]
- Cloud security & the Internet of Things (IoT)
Verifiable delegation of computation and data in the cloud [ACM CCS '13, IEEE S&P '15]. - Blockchain technologies
Ethereum-based incentivization system to prevent fraudulent certificates in the TLS ecosystem [MR '17] - Future Internet Architectures
The SCION Internet Architecture [ACM CCS '16, CACM '17] - Cryptographic protocols
• Protocol synthesis from declarative specifications [SecDay '10, TOSCA '11]
• Automated verification for cryptographic protocols [TOSCA '11] - Constraint Programming [CP '09]
Public Talks, News, Community Service, Program Committees
- 2017/12/11 Programm committee member of IEEE CloudCom 2017, Hong Kong.
-
2017/06/30
IT-Spezialisten — nichts dazugelernt
Article in the Swiss newspaper Neue Zürcher Zeitung (NZZ) about the Petya malware. -
2017/06/28
Die vernetzte Welt des 21. Jahrhunderts — Angriffe und Risiken, Innovation und Chancen [Trailer]
Keynote talk at DigitSummit 2017, Zurich. -
2017/06/20
Wie das Internet of Things geltende IT-Regeln auf den Kopf stellt
Article in KMU-Magazin about the digital transformation and the security of IoT. -
2017/06/06
Wanna Cry about the state of IT security?
Panel discussion at TechTuesday, Zurich. -
2017/05/24
The SCION internet architecture
Peer-reviewed article in the journal Communications of the ACM. -
2017/05/16
How ransomware could be stopped. Forever. Globally.
Simple thoughts on how to stop ransomware. -
2017/05/15
How to stay secure even if you WannaCry.
Blog post on the WannaCry ransomware. -
2017/04/05
Why is authenticity becoming more important than confidentiality?
Blog post. -
2017/02/07
Internet Security — Who is holding the trump cards?
Design and deployment challenges of a secure Internet for the 21st century.
Keynote talk at TechTuesday, Zurich. -
2017/01/25 CNIL-Inria Award for Privacy
Protection 2016, Brussels.
See here,
here,
or here.
Awarded for our research paper "ADSNARK", published at the IEEE Security & Privacy Conference 2015 and as part of my dissertation.
-
2016/12/09
Wie bewege ich mich sicher im Internet?
Public talk and workshop at Zurich Dark Night, Karl der Grosse, Zurich. -
2016/11/27
Zeit für ein neues, sicheres Internet.
Public keynote at Treffpunkt Science City, ETH Zurich. -
2016/11/24
A Next-Generation Secure Internet Architecture for the 21st Century.
Keynote talk at Geopolitics-Aware Internet Strategies, Rome. -
2016/06/14
SIBRA: Scalable Internet Bandwidth Reservation Architecture.
Invited talk at the SWITCH Network and Security Conference, Lucerne. -
2016/02/22
SIBRA: Scalable Internet Bandwidth Reservation Architecture.
Conference talk at the Internet Society Network and Distributed System Security Symposium 2016 (NDSS), San Diego, USA. - 2016 Programm committee member of ACM CCS 2016 (posters, demos)
- 2016 Programm committee member of IEEE CloudCom 2016
- 2016 Programm committee member of SCN 2016
- 2016 Programm committee member of IEEE EuroSP 2016
- 2015 Programm committee member of IEEE CloudCom 2015
- 2015 Programm committee member of ICWE 2015
- 2015 Programm committee member of NDSS SENT 2015
Awards & Distinctions
- 2017: 2016 CNIL-Inria Award for Privacy Protection, granted by the National Commission on Informatics and Liberty in France (Commission Nationale de l’Informatique et des Libertés). See here and here.
- 2014: Distinction "summa cum laude" for my dissertation on IT-security at CISPA, Saarland University.
- 2009: FdSI Bachelor Prize for outstanding achievements during the undergraduate studies. See here.
Books
-
SCION — A Secure Internet Architecture
I'm currently co-authoring the first comprehensive book on our Future Internet Architecture SCION. The book will be published by Springer in Spring 2017. Stay tuned!
-
Programmierung — Eine Einführung in die Informatik
I assisted Gert Smolka in writing the first and second edition of this book, an introduction to computer science based on functional programming. It is mostly written for undergraduate CS students (language: German).
Scientific Publications
-
IKP: Turning a PKI Around with Decentralized Automated Incentives
S&P'17: 38th IEEE Symposium on Security and Privacy (Oakland), 2017.
[BibTeX] [Full Version]
-
The SCION Internet Architecture
Communications of the ACM, 2017.
[BibTeX] [Download PDF via ACM] -
Authentication Challenges in a Global Environment
ACM Transactions on Privacy and Security (TOPS), 2017.
[BibTeX] -
SIBRA: Scalable Internet Bandwidth Reservation Architecture
NDSS'16: Network and Distributed System Security Symposium, 2016.
[BibTeX] [Full Version]
-
DEMO: Easy Deployment of a Secure Internet Architecture for the 21st Century
CCS'16: 23rd ACM Conference on Computer and Communications Security, 2016.
[BibTeX] -
IKP: Turning a PKI Around with Blockchains
Cryptology ePrint Archive, 2016.
[BibTeX] -
SCION Five Years Later: Revisiting Scalability Control and Isolation on Next-Generation Networks
arXiv e-prints, 2015.
[BibTeX]
-
Forwarding Accountability: A Challenging Necessity of the Future Data Plane
iNetSec'15: IFIP WG 11.4 Workshop on Open Research Problems in Network Security, 2015.
[BibTeX] -
FAIR: Forwarding Accountability for Internet Reputability
ICNP'15: IEEE International Conference on Network Protocols, 2015.
[BibTeX] [Full Version] -
Balancing Isolation and Sharing of Data in Third-Party Extensible App Ecosystems
ICWE'15: 15th International Conference on Web Engineering, 2015.
[BibTeX] [Full Version] -
ADSNARK: Nearly Practical and Privacy-Preserving Proofs on Authenticated Data
S&P'15: 36th IEEE Symposium on Security and Privacy (Oakland), 2015.
[BibTeX] [Full Version]
-
Certificates-as-an-Insurance: Incentivizing Accountability in SSL/TLS
SENT'15: NDSS Workshop on Security of Emerging Networking Technologies, 2015.
[BibTeX]
-
Declarative Design and Enforcement for Secure Cloud Applications
PhD thesis, 2014.
[BibTeX] -
The Official SAFE Manual
Technical report, 2014.
[BibTeX]
-
Verifiable Delegation of Computation on Outsourced Data
CCS'13: 20th ACM Conference on Computer and Communications Security, 2013.
[BibTeX] [Full Version] [Download PDF via ACM] -
DEMO: Secure and Customizable Web Development in the SAFE Activation Framework
CCS'13: 20th ACM Conference on Computer and Communications Security, 2013.
[BibTeX] [Download PDF via ACM] -
SAFE Extensibility for Data-Driven Web Applications
WWW'12: 21st International World Wide Web Conference, 2012.
[BibTeX] [Download PDF via ACM] -
G2C: Cryptographic Protocols from Goal-Driven Specifications
TOSCA'11: Theory of Security and Applications (now POST), held as part of ETAPS 2011, the Joint European Conferences on Theory and Practice of Software, 2011.
[BibTeX]
-
Cryptographic Protocols From Declarative Specifications
SecDay'10: Grande Region Security and Reliability Day, 2010.
[BibTeX] -
Maintaining State in Propagation Solvers
CP'09: 15th International Conference on Principles and Practice of Constraint Programming, 2009.
[BibTeX]
-
Automated Checking of Observational Equivalence for an Extended Spi Calculus
Students' project, 2009.
[BibTeX]
-
Reconciling Copying and Trailing for Constraint Programming Systems
Bachelor's thesis, 2008.
[BibTeX]
Teaching
- Network Security (fall 16)
- Operating Systems and Networks (spring 16)
- Operating Systems and Networks (spring 15)
- Programming for Engineers (summer 11)
- Current Research in Information Security (summer 11)
- The Magic of Cryptography (summer 11)
- Cryptography (summer 10, teaching award)
- Formal Methods and Cryptography (winter 09/10)
- Current Research in Information Security (summer 09)
- The Magic of Cryptography (summer 09)
- Advanced Cryptography (summer 08)
- Programmierung 1 (winter 07/08, supervision)
- Programmierung 1 (winter 06/07)
- Mathematical intensive course for beginners (winter 07/08)
- Mathematical intensive course for beginners (winter 06/07)
Supervised Students
- Simon Scherrer (Bachelor's thesis, 2016)
- Shefali Garg (internship, 2013)
- Santiago Aragon (implementation project, 2012)
- Parth Tripathi (internship, 2012)
- Florian Schröder (Masters's thesis, 2012)
- Karsten Knuth (Bachelor's thesis, 2011)
- Ines Ciolacu (implementation project, 2011)
- Jan Balzer (Bachelor's thesis, 2011)
- Aleksandra Pochron (research project, 2009/2010)
- Nora Speicher (student project, 2009/2010)
Contact
Dr. Raphael M. ReischukSenior Information Security Researcher and Consultant
Postal Address
|
Zühlke Engineering AG Wiesenstrasse 10a 8952 Zürich Switzerland |
Direct
+41 (0) 44 733 6566raphael.reischuk ® zuehlke.com
Social Media
Partners and Organizations
