Florian Kerschbaum
Contact
E:
E1:
Blog2: Second Priority Ideas
1. I am phasing out my old GMX e-mail address, so please update your address books.
2. The views expressed are my own and not necessarily those of my employer.
Short Biography
I am a senior researcher and project lead at SAP Research in Karlsruhe, Germany. Before SAP I have worked for Siemens, the San Francisco-based startup Arxan, Intel and Digital Equipment in the job functions of project manager, software architect, and developer. I hold a Ph.D. in computer science from the Karlsruhe Institute of Technology, a master's degree from Purdue University, and a bachelor's degree from Berufsakademie Mannheim.
Research Interests
I research practical cryptographic algorithms and protocols for the next-generation cross-organizational business applications. The challenge in my research is to balance the three objectives of security, performance and economic utility. I have built systems for secure computation of cloud-based collaborative benchmarking and supply chain management (in collaboration with the SecureSCM consortium). This work includes a very efficient method for private inequality comparison using multiplicative hiding. I have also developed an authentication protocol and a policy model for the secure exchange of RFID tracking events.
Projects
Conferences and Workshops
Journals
Teaching
Duale Hochschule Baden-Württemberg Mannheim Informationstechnik
  1. Winter Semester 2009: Datensicherheit
  2. Winter Semester 2008: Datensicherheit
Publications  [DBLP] [Google Scholar] [ACM DL] [IEEE Xplore] [SpringerLink]
Book Chapters
  1. Ulrich Flegel, Florian Kerschbaum, Philip Miseldine, Ganna Monakova, Richard Wacker, Frank Leymann.
    Legally Sustainable Solutions for Privacy Issues in Collaborative Fraud Detection
    Matt Bishop, Dieter Gollmann, Jeffrey Hunker, Christian Probst (Eds.).
    Insider Threats in Cybersecurity – And Beyond.
    Advances in Information Security. Springer, to appear.
    Preliminary version available as technical report.
  2. Leonardo Weiss Ferreira Chaves, Florian Kerschbaum.
    Security and Privacy in Track & Trace Infrastructures
    Duarte Bouca, Amaro Gafagnao (Eds.).
    Agent-Based Computing.
    Nova Publishers, 2010.
  3. Florian Kerschbaum.
    Data Protection in Collaborative Business Applications
    Jean-Marc Seigneur, Adam Slagell (Eds.).
    Collaborative Computer Security and Trust Management.
    IGI Global, 2009.
Invited Papers
  1. Florian Kerschbaum, Manfred Aigner.
    Securing RFID-supported Supply Chains
    Workshop on RFID Security, 2010.
  2. Ernesto Damiani, Gabriele Gianini, Florian Kerschbaum, Richard Pibernik.
    Toward Value-based Control of Knowledge Sharing in Networked Services Design
    Conference on Advanced Information Technologies for Management, 2009.
  3. Rafael Accorsi, Ernesto Damiani, Frank Innerhofer-Oberperfler, Florian Kerschbaum.
    Editorial to the Second International Workshop on Security and Privacy in Enterprise Computing
    2nd IEEE International Workshop on Security and Privacy in Enterprise Computing, 2009.
  4. Florian Kerschbaum, Rafael Deitos.
    Security Against the Business Partner
    ACM Workshop on Secure Web Services, 2008.
Journals
  1. Axel Schröpfer, Florian Kerschbaum, Christoph Schütz, Richard Pibernik.
    Optimizations for Risk-Aware Secure Supply Chain Master Planning
    Journal of Universal Computer Science 15 (15), 2009.
  2. Rafael Deitos, Florian Kerschbaum.
    Parallelizing Secure Linear Programming
    Concurrency and Computation: Practice and Experience 21 (10), 2009.
  3. Florian Kerschbaum, Philip Robinson.
    Security Architecture for Virtual Organizations of Business Web Services
    Journal of Systems Architecture 55 (4), 2009.
  4. Florian Kerschbaum.
    Building A Privacy-Preserving Benchmarking Enterprise System
    Enterprise Information Systems 2 (4), 2008.
  5. Seny Kamara, Sonia Fahmy, E. Eugene Schultz, Florian Kerschbaum, Michael Frantzen.
    Analysis of Vulnerabilities in Internet Firewalls
    Computers & Security 22 (3), 2003.
  6. Florian Kerschbaum, Eugene H. Spafford, Diego Zamboni.
    Embedded Sensors and Detectors for Intrusion Detection
    Journal of Computer Security 10 (1/2), 2002.
  7. Michael Frantzen, Florian Kerschbaum, E. Eugene Schultz, Sonia Fahmy.
    A Framework for Understanding Vulnerabilities in Firewalls Using a Data-Flow Model of Firewall Internals
    Computers & Security 20 (3), 2001.
Conferences and Workshops
  1. Florian Kerschbaum, Alessandro Sorniotti.
    Searchable Encryption for Outsourced Data Analytics
    7th European Workshop on Public Key Services, Applications and Infrastructures, 2010.
    Preliminary version available without formal proceedings.
  2. Daniel Funke, Florian Kerschbaum.
    Privacy-Preserving Multi-Objective Evolutionary Algorithms
    11th International Conference on Parallel Problem Solving From Nature, 2010.
    Extended version available as technical report.
  3. Florian Kerschbaum, Nina Oertel.
    Privacy-Preserving Pattern Matching for Anomaly Detection in RFID Anti-Counterfeiting
    6th Workshop on RFID Security, 2010.
  4. Florian Kerschbaum.
    An Access Control Model for Mobile Physical Objects
    15th ACM Symposium on Access Control Models and Technologies, 2010.
  5. Florian Kerschbaum, Nina Oertel, Leonardo Weiss Ferreira Chaves.
    Privacy-Preserving Computation of Benchmarks on Item-Level Data Using RFID
    3rd ACM Conference on Wireless Network Security, 2010. SAP Research Award of Excellence.
  6. Florian Kerschbaum.
    A Verifiable, Centralized, Coercion-Free Reputation System
    ACM Workshop on Privacy in the Electronic Society, 2009.
  7. Florian Kerschbaum.
    Adapting Privacy-Preserving Computation to the Service Provider Model
    1st IEEE International Conference on Privacy, Security, Risk and Trust, 2009.
  8. Rafael Deitos, Florian Kerschbaum.
    Improving Practical Performance on Secure and Private Collaborative Linear Programming
    1st International Workshop on Business Processes Security, 2009.
  9. Florian Kerschbaum, Debmalya Biswas, Sebastiaan de Hoogh.
    Performance Comparison of Secure Comparison Protocols
    1st International Workshop on Business Processes Security, 2009.
  10. Florian Kerschbaum, Andreas Schaad, Debmalya Biswas.
    Practical Privacy-Preserving Protocols for Criminal Investigations
    7th IEEE International Conference on Intelligence and Security Informatics, 2009.
  11. Axel Schröpfer, Florian Kerschbaum, Dagmar Sadkowiak, Richard Pibernik.
    Risk-Aware Secure Supply Chain Master Planning
    7th International Workshop on Security in Information Systems, 2009.
  12. Florian Kerschbaum, Alessandro Sorniotti.
    RFID-Based Supply Chain Partner Authentication and Key Agreement
    2nd ACM Conference on Wireless Network Security, 2009.
  13. Florian Kerschbaum, Daniel Dahlmeier, Axel Schröpfer, Debmalya Biswas.
    On the Practical Importance of Communication Complexity for Secure Multi-Party Computation Protocols
    24th ACM Symposium on Applied Computing, 2009.
  14. Florian Kerschbaum, Julien Vayssiere.
    Privacy-Preserving Data Analytics as an Outsourced Service
    ACM Workshop on Secure Web Services, 2008.
  15. Florian Kerschbaum, Andreas Schaad.
    Privacy-Preserving Social Network Analysis for Criminal Investigations
    ACM Workshop on Privacy in the Electronic Society, 2008.
  16. Leonardo Weiss Ferreira Chaves, Florian Kerschbaum.
    Industrial Privacy in RFID-based Batch Recalls
    1st IEEE International Workshop on Security and Privacy in Enterprise Computing, 2008.
  17. Florian Kerschbaum.
    Practical Privacy-Preserving Benchmarking
    23rd IFIP International Information Security Conference, 2008.
  18. Octavian Catrina, Florian Kerschbaum.
    Fostering the Uptake of Secure Multiparty Computation in E-Commerce
    International Workshop on Frontiers in Availability, Reliability and Security, 2008.
  19. Florian Kerschbaum, Julien Vayssiere.
    Privacy-Preserving Logical Vector Clocks using Secure Computation Techniques
    13th IEEE International Conference on Parallel and Distributed Systems, 2007.
  20. Florian Kerschbaum.
    Distance-Preserving Pseudonymization for Timestamps and Spatial Data
    ACM Workshop on Privacy in the Electronic Society, 2007.
  21. Florian Kerschbaum.
    Building A Privacy-Preserving Benchmarking Enterprise System
    11th IEEE International EDOC Conference, 2007. Best Paper Award.
  22. Florian Kerschbaum.
    Simple Cross-Site Attack Prevention
    3rd IEEE International Conference on Security and Privacy in Communication Networks, 2007.
  23. Florian Kerschbaum, Rafael Deitos, Philip Robinson.
    Securing VO Management
    4th International Conference on Trust, Privacy & Security in Digital Business, 2007.
  24. Florian Kerschbaum.
    A new way to think about Secure Computation: Language-Based Secure Computation
    5th International Workshop on Security in Information Systems, 2007.
  25. Rafael Deitos, Florian Kerschbaum, Philip Robinson, Jochen Haller.
    A Comprehensive Security Architecture for Dynamic, Web Service Based Virtual Organizations for Businesses
    ACM Workshop on Secure Web Services (Poster), 2006.
  26. Yücel Karabulut, Florian Kerschbaum, Fabio Massacci, Philip Robinson, Artsiom Yautsiukhin.
    Security and Trust in IT Business Outsourcing: a Manifesto
    2nd International Workshop on Security and Trust Management, 2006.
  27. Philip Robinson, Florian Kerschbaum, Andreas Schaad.
    From Business Process Choreography to Authorization Policies
    20th Annual IFIP WG 11.3 Working Conference on Data and Applications Security, 2006.
  28. Florian Kerschbaum, Orestis Terzidis.
    Filtering for Private Collaborative Benchmarking
    International Conference on Emerging Trends in Information and Communication Security, 2006.
  29. Florian Kerschbaum, Jochen Haller, Yücel Karabulut, Philip Robinson.
    PathTrust: A Trust-Based Reputation Service for Virtual Organization Formation
    4th International Conference on Trust Management, 2006.
  30. Florian Kerschbaum.
    Practical Private Regular Expression Matching
    IFIP WG 11.4 I-NetSec Workshop, 2006.
  31. Florian Kerschbaum, Mikhail J. Atallah, David M'Raihi, John R. Rice.
    Private Fingerprint Verification without Local Storage
    International Conference on Biometric Authentication, 2004.
  32. Mikhail J. Atallah, Florian Kerschbaum, Wenliang Du.
    Secure and Private Sequence Comparisons
    ACM Workshop on Privacy in the Electronic Society, 2003.
  33. Mikhail J. Atallah, Victor Raskin with Michael Crogan, Christian Hempelmann, Florian Kerschbaum, Dina Mohamed, Sanket Naik.
    Natural Language Watermarking: Design, Analysis and a Proof-of-Concept Implementation
    4th International Information Hiding Workshop, 2001.
  34. Florian Kerschbaum, Eugene H. Spafford, Diego Zamboni.
    Using Embedded Sensors for Detecting Network Attacks
    1st ACM Workshop on Intrusion Detection Systems, 2000.
Without Formal Proceedings
  1. Florian Kerschbaum, Alessandro Sorniotti.
    Extending Searchable Encryption for Outsourced Data Analytics
    8th International Conference on Applied Cryptography and Network Security – Industrial Track, 2010.
  2. Axel Schröpfer, Florian Kerschbaum, Debmalya Biswas, Steffen Geißinger, Christoph Schütz.
    L1 – Faster Development and Benchmarking of Cryptographic Protocols
    Workshop on Software Performance Enhancement for Encryption and Decryption and Cryptographic Compilers, 2009.
Technical Reports
  1. Daniel Funke, Florian Kerschbaum.
    Privacy-Preserving Multi-Objective Evolutionary Algorithms
    Cryptology ePrint Archive: Report 2010/326, 2010.
  2. Richard Pibernik, Yingying Zhang, Florian Kerschbaum, Axel Schröpfer.
    Secure Collaborative Supply Chain Planning and Inverse Optimization – The JELS Model
    European Business School Research Paper No. 10-09, 2010.
  3. Ulrich Flegel, Florian Kerschbaum, Richard Wacker.
    Collaborative Fraud Detection in Outsourcing Scenarios: Issues of and Solutions for Privacy and Confidentiality
    Dagstuhl Seminar "Countering Insider Threats", 2008.
Patents [esp@cenet] [Free Patents Online]
  1. Florian Kerschbaum.
    Secure Computation of Private Values
    EP1940074, 2010.
  2. Florian Kerschbaum.
    System and Method for Comparison of Private Values
    EP1804416, 2010.
  3. Florian Kerschbaum, Luciana Moreira Sá de Souza.
    Privacy-Preserving Substring Creation
    EP1876749, 2010.
  4. Florian Kerschbaum, Luciana Moreira Sá de Souza.
    Privacy-Preserving Concatenation of Strings
    EP1876748, 2009.
  5. Florian Kerschbaum.
    Distance-Preserving Anonymization of Data
    EP1959372, 2009.
  6. Florian Kerschbaum.
    Enhanced Cross-Site Attack Prevention
    EP1986395, 2009.
Invited Talks
Academic
  1. Rutgers University. Center for Information Management, Integration and Connectivity, 2010.
    Secure Sharing of RFID Events
  2. University of Bochum. Horst Görtz Institute Colloquium, 2010.
    Security Challenges in Supply Chain Management
  3. Purdue University. Computer Science Colloquium, 2009.
    Security Challenges in Supply Chain Management
  4. University of Kassel. Abfalltechnik Tagung "Mit RFID zur innovativen Kreislaufwirtschaft", 2009.
    RFID Datenerhebung als Sicherheitsrisiko
  5. Workshop on Business Process Security. Panel "Risk Management and Information Disclosure in Supply Chain Analysis", 2009.
    Business Cases for Information Security in Supply Chains
  6. Dagstuhl. Seminar "Web Application Security", 2009.
    Verifying XSS and XSRF Protection and Web-Based Two-Party Secure Computation
  7. University of Trier. Informatik Colloquium, 2009.
    Security Against the Business Partner
  8. Université de Paris 12. Laboratoire d'Algorithmique, Complexité et Logique Séminaire, 2008.
    Privacy-Preserving Benchmarking Platform
  9. University of Freiburg. Telematik Ringvorlesung, 2008.
    Privacy-Preserving Benchmarking Platform
  10. Purdue University. CERIAS Research Symposium, 2001.
    Natural Language Watermarking
Industrial
  1. Midwest Venture Summit, 2004.
    Private Fingerprint Matching