1. »
  2. Eingebettete Sicherheit
  3. »
  4. Personen
  5. »
  6. Dipl.-Ing. Timo Kasper

Dipl.-Ing. Timo Kasper

Embedded Security

For­mer As­sis­tant

Address:
Ruhr-University Bochum
Faculty of Computer Science
Embedded Security
Universitätsstr. 150
D-44801 Bochum

Office Hours: By arrangement

E-Mail: timo.kasper@ruhr-uni-bochum.de

Curriculum Vitae

- Since Oct. 2006: Re­se­ar­cher at the Chair for Em­bed­ded Se­cu­ri­ty - 2004: Se­mes­ter ab­road at the Uni­ver­si­ty of Shef­field, UK
- 1999: Stu­dies of Elec­tri­cal En­gi­nee­ring and In­for­ma­ti­on Tech­no­lo­gy at the Ruhr-Uni­ver­si­ty in Bo­chum
Be­si­des re­gu­lar lec­tu­res at the Ruhr-Uni­ver­si­ty Bo­chum Timo has been teaching at the Hoch­schu­le Bonn-Rhein-Sieg in Sankt Au­gus­tin and at the Fa­cul­ty of In­for­ma­ti­on Tech­no­lo­gy at the Czech Tech­ni­cal Uni­ver­si­ty (CVUT) in Pra­gue.


Research

Timo is in­te­rested in all kinds of Em­bed­ded Se­cu­ri­ty De­vices, with a focus on
- Se­cu­ri­ty of Re­al-World Em­bed­ded Sys­tems
- RFID and Wire­less Com­mu­ni­ca­ti­on
- Fault In­jec­tion and Si­de-Chan­nel Ana­ly­sis
- Micro­con­trol­lers, Smart­cards and FPGAs
Timo's Di­plo­ma The­sis Em­bed­ded Se­cu­ri­ty Ana­ly­sis of RFID De­vices was de­cora­ted with the 1st place of the Award for IT Se­cu­ri­ty 2006 (CAST, Darm­stadt). His dis­ser­ta­ti­on Se­cu­ri­ty Ana­ly­sis of Per­va­si­ve Wire­less De­vices - Phy­si­cal and Pro­to­col At­tacks in Prac­tice ob­tained the 1st place of the award for the most out­stan­ding PhD The­sis in IT Se­cu­ri­ty 2012 (CAST, Darm­stadt).


PUBLICATIONS:

2014
Sweet Dreams and Night­ma­res: Se­cu­ri­ty in the In­ter­net of Things

Timo Kas­per, David Os­wald, Chris­tof Paar - In­for­ma­ti­on Se­cu­ri­ty Theo­ry and Prac­tice. Se­cu­ring the In­ter­net of Things - 8th IFIP WG 11.2 In­ter­na­tio­nal Work­shop, WISTP 2014, He­ra­kli­on, Crete, Greece, June 30 - July 2, 2014.

2013
Fu­ming Acid and Cryp­t­ana­ly­sis: Handy Tools for Over­co­ming a Di­gi­tal Lo­cking and Ac­cess Con­trol Sys­tem

Da­e­hyun Stro­bel, Be­ne­dikt Dries­sen, Gre­gor Le­an­der, Timo Kas­per, David Os­wald, Falk Schel­len­berg, Chris­tof Paar - Ad­van­ces in Cryp­to­lo­gy - CRYP­TO 2013 - 33rd An­nual Cryp­to­lo­gy Con­fe­rence, Santa Bar­ba­ra, CA, USA, Au­gust 18-22, 2013

When Re­ver­se-En­gi­nee­ring Meets Si­de-Chan­nel Ana­ly­sis–Di­gi­tal Lock­pi­cking in Prac­tice

David Os­wald, Da­e­hyun Stro­bel, Falk Schel­len­berg, Timo Kas­per, Chris­tof Paar - Selec­ted Areas in Cryp­to­gra­phy -- SAC 2013, Sprin­ger Ber­lin Hei­del­berg, 2014, 571-588

Rights Ma­nage­ment with NFC Smart­pho­nes and Elec­tro­nic ID Cards: A Proof of Con­cept for Mo­dern Car Sharing

Timo Kas­per, David Os­wald, Chris­ti­an Zen­ger, Chris­tof Paar - 9th Work­shop on RFID Se­cu­ri­ty, RFIDsec 2013, July 9-11, 2013, Graz, Aus­tria

Wire­less De­vices and Cryp­to­gra­phy: About Di­gi­tal Pick­po­cke­ting, Open Se­sa­me and Tra­cking Pa­ra­noia

Timo Kas­per - it - In­for­ma­ti­on Tech­no­lo­gy: Vol. 55, No. 3, pp. 123-128

High-Per­for­mance Cryp­t­ana­ly­sis on RI­VY­E­RA and CO­PA­CO­BA­NA Com­pu­ting Sys­tems

Tim Gü­ney­su, Timo Kas­per, Mar­tin No­votný, Chris­tof Paar, Lars Wien­brandt, Ralf Zim­mer­mann - "High-Per­for­mance Com­pu­ting Using FPGAs", Van­der­bauw­he­de, Ben­krid (Eds.), p. 335-366, Fe­bru­ary 2013, Sprin­ger Ver­lag, ISBN: 978-1-4614-1790-3

2011
Se­cu­ri­ty of Wire­less Em­bed­ded De­vices in the Real World

Timo Kas­per, David Os­wald, Chris­tof Paar - In­for­ma­ti­on Se­cu­ri­ty So­lu­ti­ons (ISSE) 2011 - Se­cu­ring Elec­tro­nic Busi­ness Pro­ces­ses (No­vem­ber 22-23 2011, Pra­gue, Czech Re­pu­blic)

Wire­less se­cu­ri­ty thre­ats: Ea­ves­drop­ping and de­tec­ting of ac­tive RFIDs and re­mo­te con­trols in the wild

Timo Kas­per, David Os­wald, Chris­tof Paar - 19th In­ter­na­tio­nal Con­fe­rence on Soft­ware, Tel­e­com­mu­ni­ca­ti­ons and Com­pu­ter Net­works (Soft­COM)

Prak­ti­sche An­grif­fe auf die Bit­strom­ver­schlüs­se­lung von Xi­l­inx FPGAs

Mar­kus Kas­per, Timo Kas­per, Amir Mo­ra­di, Chris­tof Paar - Da­ten­schutz und Da­ten­si­cher­heit - DuD - Aus­ga­be 11/2011 - http://​www.​dud.​de/​Ausgabe/​2011-11.​html

Sei­ten­ka­nal­ana­ly­se kon­takt­lo­ser Smart­Cards

Timo Kas­per, David Os­wald, Chris­tof Paar - Da­ten­schutz und Da­ten­si­cher­heit - DuD - Aus­ga­be 11/2011 - http://​www.​dud.​de/​Ausgabe/​2011-11.​html

On the Vul­nerabi­li­ty of FPGA Bit­stream En­cryp­ti­on against Power Ana­ly­sis At­tacks – Extrac­ting Keys from Xi­l­inx Vir­tex-II FPGAs

Amir Mo­ra­di, Ales­san­dro Ba­renghi, Timo Kas­per, Chris­tof Paar - 18th ACM Con­fe­rence on Com­pu­ter and Com­mu­ni­ca­ti­ons Se­cu­ri­ty, CCS 2011, Chi­ca­go, IL, USA, Oc­to­ber 17-21, 2011, pages 111-124.

Si­de-Chan­nel Ana­ly­sis of Cryp­to­gra­phic RFIDs with Ana­log De­mo­du­la­ti­on

Timo Kas­per, David Os­wald, Chris­tof Paar - 7th Work­shop on RFID Se­cu­ri­ty and Pri­va­cy 2011, RFIDSec 2011, Am­herst, USA, June 26–28, 2011

2010
A Ver­sa­ti­le Frame­work for Im­ple­men­ta­ti­on At­tacks on Cryp­to­gra­phic and Em­bed­ded De­vices

Timo Kas­per, David Os­wald, Chris­tof Paar - Lec­tu­re Notes in Com­pu­ter Sci­ence, 2010

Clo­n­ing Cryp­to­gra­phic RFID Cards for 25$

Timo Kas­per, Ingo von Mau­rich, David Os­wald, Chris­tof Paar - Pre­sen­ted at the 5th Be­ne­lux Work­shop on In­for­ma­ti­on and Sys­tem Se­cu­ri­ty, Wis­S­ec 2010, No­vem­ber 29-30, 2010, Ni­j­me­gen, the Nether­lands.

Cha­me­le­on: A Ver­sa­ti­le Emu­la­tor for Con­tact­less Smart­cards

Timo Kas­per, Ingo von Mau­rich, David Os­wald, Chris­tof Paar - 13th In­ter­na­tio­nal Con­fe­rence on In­for­ma­ti­on Se­cu­ri­ty and Cryp­to­lo­gy - ICISC 2010, Seoul, Korea, De­cem­ber 1-3, 2010, vo­lu­me 6829 of LNCS, pages 189-206, Sprin­ger.

Com­bined Im­ple­men­ta­ti­on At­tack Re­sis­tant Ex­po­nen­tia­ti­on

Jörn-Marc Schmidt, Micha­el Tun­stall, Ro­ber­to Maria Avan­zi, Ilya Kizh­va­tov, Timo Kas­per, David Os­wald - Sprin­ger LNCS 6112, LA­TIN­CRYPT 2010, Pue­b­la, Me­xi­co.

All You Can Eat or Brea­king a Re­al-World Con­tact­less Pay­ment Sys­tem

Timo Kas­per, Micha­el Sil­ber­mann, Chris­tof Paar - Fi­nan­ci­al Cryp­to­gra­phy and Data Se­cu­ri­ty, 10 Ja­nu­a­ry 25-28, 2010, to be pu­blis­hed in Sprin­ger LNCS.

2009
A New Re­mo­te Key­less Entry Sys­tem Re­sis­tant to Power Ana­ly­sis At­tacks

Amir Mo­ra­di, Timo Kas­per - 7th In­ter­na­tio­nal Con­fe­rence on In­for­ma­ti­on, Com­mu­ni­ca­ti­ons and Si­gnal Pro­ces­sing, ICICS 2009, Macau, China, De­zember 7-10, 2009.

Cryp­t­ana­ly­sis of Kee­Loq with CO­PA­CO­BA­NA

Mar­tin No­vot­ny, Timo Kas­per - Spe­cial-pur­po­se Hard­ware for At­ta­cking Cryp­to­gra­phic Sys­tems 2009, SHARCS 2009, Lausan­ne, Swit­z­er­land. Sep­tem­ber 9-10, 2009.

Kee­Loq and Si­de-Chan­nel Ana­ly­sis --- Evo­lu­ti­on of an At­tack

Chris­tof Paar, Tho­mas Ei­sen­barth, Mar­kus Kas­per, Timo Kas­per, Amir Mo­ra­di - 6th IEEE Work­shop on Fault Dia­gno­sis and To­leran­ce in Cryp­to­gra­phy - FDTC 2009.​Lausanne, Swit­z­er­land, Sep­tem­ber 6, 2009.

EM Si­de-Chan­nel At­tacks on Com­mer­ci­al Con­tact­less Smart­cards using Low-Cost Equip­ment

Timo Kas­per, David Os­wald, Chris­tof Paar - 10th In­ter­na­tio­nal Work­shop on In­for­ma­ti­on Se­cu­ri­ty Ap­p­li­ca­ti­ons, WISA 2009, Busan, Korea. Au­gust 25-27, 2009.

New Me­thods for Cost-Ef­fec­tive Si­de-Chan­nel At­tacks on Cryp­to­gra­phic RFIDs

Timo Kas­per, David Os­wald, Chris­tof Paar - Work­shop on RFID Se­cu­ri­ty 2009, RFIDSec 2009, Leu­ven, Bel­gi­um, 30. Juni - 2.​Juli, 2009.

Brea­king Kee­Loq in a Flash: On Extrac­ting Keys at Light­ning Speed

Mar­kus Kas­per, Timo Kas­per, Amir Mo­ra­di, Chris­tof Paar - 2nd In­ter­na­tio­nal Con­fe­rence on Cryp­to­lo­gy in Af­ri­ca, Pro­gress in Cryp­to­lo­gy - AF­RI­CA­CRYPT 2009, Gam­marth, Tu­ni­sia, 21-25 Juni, 2009.

2008
On the Power of Power Ana­ly­sis in the Real World: A Com­ple­te Break of the Kee­Loq Code Hop­ping Sche­me

Tho­mas Ei­sen­barth, Timo Kas­per, Amir Mo­ra­di, Chris­tof Paar, Mahmoud Sal­ma­si­z­adeh, Mo­ham­mad T. Man­zu­ri Shal­ma­ni - 28th In­ter­na­tio­nal Cryp­to­lo­gy Con­fe­rence -- CRYP­TO 2008. Santa Bar­ba­ra, Ca­li­for­nia, USA. Au­gust 17-21, 2008.

Si­cher­heit mo­der­ner Funk­tür­öff­ner­sys­te­me

Tho­mas Ei­sen­barth, Timo Kas­per, Chris­tof Paar - Da­ten­schutz und Da­ten­si­cher­heit - DuD Vo­lu­me 32 Aus­ga­be 8 - Au­gust 2008 - http://​www.​springerlink.​com/​content/​1614-0702/​32/​8/​ - http://​www.​dud.​de/​

Sus­cep­ti­bi­li­ty of eS­TREAM Can­di­da­tes towards Side Chan­nel Ana­ly­sis

Be­ne­dikt Gier­lichs, Lejla Ba­ti­na, Chris­to­phe Cla­vier, Tho­mas Ei­sen­barth, Aline Gouget, He­le­na Hand­schuh, Timo Kas­per, Kers­tin Lem­ke-Rust, Ste­fan Man­gard, Amir Mo­ra­di, Eli­sa­beth Os­wald - The State of the Art of Stream Ciph­ers, SASC 2008, Lausan­ne, Swit­z­er­land. Fe­bru­ar, 13-14 2008.

Cryp­t­ana­ly­sis with CO­PA­CO­BA­NA

Tim Gü­ney­su, Timo Kas­per, Mar­tin No­vot­ny, Chris­tof Paar, Andy Rupp - IEEE Tran­sac­tions on Com­pu­ters, No­vem­ber 2008, vol. 57, no. 11, 2008.

2007
E-Pass­port: Cra­cking Basic Ac­cess Con­trol Keys

Yifei Liu, Timo Kas­per, Kers­tin Lem­ke-Rust, Chris­tof Paar - On the move, OT­M2007, Vil­amou­ra, Al­gar­ve, Por­tu­gal, No­vem­ber 25-30, 2007.

Col­li­si­on At­tacks on AES-ba­sed MAC: Al­pha-MAC

A. Bi­ryu­kov, An­d­rey Bog­da­nov, D. Khov­ra­to­vich, Timo Kas­per - Cryp­to­gra­phic Hard­ware and Em­bed­ded Sys­tems - CHES 2007, 9. In­ter­na­tio­nal Work­shop, Vi­en­na, Aus­tria, Pro­cee­dings. LNCS, Sprin­ger-Ver­lag, Sep­tem­ber 10 - 13, 2007.

E-Pass­port: Cra­cking Basic Ac­cess Con­trol Keys with Co­pa­co­ba­na

Yifei Liu, Timo Kas­per, Kers­tin Lem­ke-Rust, Chris­tof Paar - Spe­cial-pur­po­se Hard­ware for At­ta­cking Cryp­to­gra­phic Sys­tems, SHARCS Work­shop 2007, Vi­en­na, Aus­tria, Sep­tem­ber 9-10, 2007.

A Light­weight Hard­ware Im­ple­men­ta­ti­on of the Stream Ci­pher VEST-4

Timo Gren­drul­lis, Timo Kas­per, Chris­tof Paar - Wes­tern Eu­ropean Work­shop on Re­se­arch in Cryp­to­lo­gy, We­WORC Work­shop 2007, Bo­chum, Ger­ma­ny, July 4-6, 2007.

An Em­bed­ded Sys­tem for Prac­tical Se­cu­ri­ty Ana­ly­sis of Con­tact­less Smart­cards

Timo Kas­per, Dario Car­luc­cio, Chris­tof Paar - Work­shop in In­for­ma­ti­on Se­cu­ri­ty Theo­ry and Prac­tices 2007, Sprin­ger LNCS 4462, pp. 150-160, He­ra­kli­on, Crete, Greece, Mai 2007.