|
|
|
|
|
|
|
Florian Kerschbaum |
|
Contact
|
|
E: |
|
 |
|
|
E1: |
|
 |
|
|
Blog2: |
|
Second Priority Ideas |
|
|
|
1. I am phasing out my old GMX e-mail address, so please update your address books. |
|
2. The views expressed are my own and not necessarily those of my employer. |
|
|
Short Biography
|
|
I am a senior researcher and project lead at SAP Research in Karlsruhe, Germany.
Before SAP I have worked for Siemens, the San Francisco-based startup Arxan, Intel and Digital Equipment in the job functions of project manager, software architect, and developer.
I hold a Ph.D. in computer science from the Karlsruhe Institute of Technology, a master's degree from Purdue University, and a bachelor's degree from Berufsakademie Mannheim.
|
|
|
Research Interests
|
|
I research practical cryptographic algorithms and protocols for the next-generation cross-organizational business applications.
The challenge in my research is to balance the three objectives of security, performance and economic utility.
I have built systems for secure computation of cloud-based collaborative benchmarking and supply chain management (in collaboration with the SecureSCM consortium).
This work includes a very efficient method for private inequality comparison using multiplicative hiding.
I have also developed an authentication protocol and a policy model for the secure exchange of RFID tracking events.
|
|
|
Projects
|
|
|
|
|
Conferences and Workshops
|
|
|
|
|
Journals
|
|
|
|
|
Teaching
|
|
|
Duale Hochschule Baden-Württemberg Mannheim Informationstechnik |
|
-
Winter Semester 2009: Datensicherheit
-
Winter Semester 2008: Datensicherheit
|
|
|
Publications
|
[DBLP]
[Google Scholar]
[ACM DL]
[IEEE Xplore]
[SpringerLink]
|
|
|
Book Chapters |
|
|
-
Ulrich Flegel, Florian Kerschbaum, Philip Miseldine, Ganna Monakova, Richard Wacker, Frank Leymann.
Legally Sustainable Solutions for Privacy Issues in Collaborative Fraud Detection
Matt Bishop, Dieter Gollmann, Jeffrey Hunker, Christian Probst (Eds.).
Insider Threats in Cybersecurity – And Beyond.
Advances in Information Security. Springer, to appear.
Preliminary version available as technical report.
-
Leonardo Weiss Ferreira Chaves, Florian Kerschbaum.
Security and Privacy in Track & Trace Infrastructures
Duarte Bouca, Amaro Gafagnao (Eds.).
Agent-Based Computing.
Nova Publishers, 2010.
-
Florian Kerschbaum.
Data Protection in Collaborative Business Applications
Jean-Marc Seigneur, Adam Slagell (Eds.).
Collaborative Computer Security and Trust Management.
IGI Global, 2009.
|
|
|
Invited Papers |
|
|
-
Florian Kerschbaum, Manfred Aigner.
Securing RFID-supported Supply Chains
Workshop on RFID Security, 2010.
-
Ernesto Damiani, Gabriele Gianini, Florian Kerschbaum, Richard Pibernik.
Toward Value-based Control of Knowledge Sharing in Networked Services Design
Conference on Advanced Information Technologies for Management, 2009.
-
Rafael Accorsi, Ernesto Damiani, Frank Innerhofer-Oberperfler, Florian Kerschbaum.
Editorial to the Second International Workshop on Security and Privacy in Enterprise Computing
2nd IEEE International Workshop on Security and Privacy in Enterprise Computing, 2009.
-
Florian Kerschbaum, Rafael Deitos.
Security Against the Business Partner
ACM Workshop on Secure Web Services, 2008.
|
|
|
Journals |
|
|
-
Axel Schröpfer, Florian Kerschbaum, Christoph Schütz, Richard Pibernik.
Optimizations for Risk-Aware Secure Supply Chain Master Planning
Journal of Universal Computer Science 15 (15), 2009.
-
Rafael Deitos, Florian Kerschbaum.
Parallelizing Secure Linear Programming
Concurrency and Computation: Practice and Experience 21 (10), 2009.
-
Florian Kerschbaum, Philip Robinson.
Security Architecture for Virtual Organizations of Business Web Services
Journal of Systems Architecture 55 (4), 2009.
-
Florian Kerschbaum.
Building A Privacy-Preserving Benchmarking Enterprise System
Enterprise Information Systems 2 (4), 2008.
-
Seny Kamara, Sonia Fahmy, E. Eugene Schultz, Florian Kerschbaum, Michael Frantzen.
Analysis of Vulnerabilities in Internet Firewalls
Computers & Security 22 (3), 2003.
-
Florian Kerschbaum, Eugene H. Spafford, Diego Zamboni.
Embedded Sensors and Detectors for Intrusion Detection
Journal of Computer Security 10 (1/2), 2002.
-
Michael Frantzen, Florian Kerschbaum, E. Eugene Schultz, Sonia Fahmy.
A Framework for Understanding Vulnerabilities in Firewalls Using a Data-Flow Model of Firewall Internals
Computers & Security 20 (3), 2001.
|
|
|
Conferences and Workshops |
|
|
-
Florian Kerschbaum, Alessandro Sorniotti.
Searchable Encryption for Outsourced Data Analytics
7th European Workshop on Public Key Services, Applications and Infrastructures, 2010.
Preliminary version available without formal proceedings.
-
Daniel Funke, Florian Kerschbaum.
Privacy-Preserving Multi-Objective Evolutionary Algorithms
11th International Conference on Parallel Problem Solving From Nature, 2010.
Extended version available as technical report.
-
Florian Kerschbaum, Nina Oertel.
Privacy-Preserving Pattern Matching for Anomaly Detection in RFID Anti-Counterfeiting
6th Workshop on RFID Security, 2010.
-
Florian Kerschbaum.
An Access Control Model for Mobile Physical Objects
15th ACM Symposium on Access Control Models and Technologies, 2010.
-
Florian Kerschbaum, Nina Oertel, Leonardo Weiss Ferreira Chaves.
Privacy-Preserving Computation of Benchmarks on Item-Level Data Using RFID
3rd ACM Conference on Wireless Network Security, 2010. SAP Research Award of Excellence.
-
Florian Kerschbaum.
A Verifiable, Centralized, Coercion-Free Reputation System
ACM Workshop on Privacy in the Electronic Society, 2009.
-
Florian Kerschbaum.
Adapting Privacy-Preserving Computation to the Service Provider Model
1st IEEE International Conference on Privacy, Security, Risk and Trust, 2009.
-
Rafael Deitos, Florian Kerschbaum.
Improving Practical Performance on Secure and Private Collaborative Linear Programming
1st International Workshop on Business Processes Security, 2009.
-
Florian Kerschbaum, Debmalya Biswas, Sebastiaan de Hoogh.
Performance Comparison of Secure Comparison Protocols
1st International Workshop on Business Processes Security, 2009.
-
Florian Kerschbaum, Andreas Schaad, Debmalya Biswas.
Practical Privacy-Preserving Protocols for Criminal Investigations
7th IEEE International Conference on Intelligence and Security Informatics, 2009.
-
Axel Schröpfer, Florian Kerschbaum, Dagmar Sadkowiak, Richard Pibernik.
Risk-Aware Secure Supply Chain Master Planning
7th International Workshop on Security in Information Systems, 2009.
-
Florian Kerschbaum, Alessandro Sorniotti.
RFID-Based Supply Chain Partner Authentication and Key Agreement
2nd ACM Conference on Wireless Network Security, 2009.
-
Florian Kerschbaum, Daniel Dahlmeier, Axel Schröpfer, Debmalya Biswas.
On the Practical Importance of Communication Complexity for Secure Multi-Party Computation Protocols
24th ACM Symposium on Applied Computing, 2009.
-
Florian Kerschbaum, Julien Vayssiere.
Privacy-Preserving Data Analytics as an Outsourced Service
ACM Workshop on Secure Web Services, 2008.
-
Florian Kerschbaum, Andreas Schaad.
Privacy-Preserving Social Network Analysis for Criminal Investigations
ACM Workshop on Privacy in the Electronic Society, 2008.
-
Leonardo Weiss Ferreira Chaves, Florian Kerschbaum.
Industrial Privacy in RFID-based Batch Recalls
1st IEEE International Workshop on Security and Privacy in Enterprise Computing, 2008.
-
Florian Kerschbaum.
Practical Privacy-Preserving Benchmarking
23rd IFIP International Information Security Conference, 2008.
-
Octavian Catrina, Florian Kerschbaum.
Fostering the Uptake of Secure Multiparty Computation in E-Commerce
International Workshop on Frontiers in Availability, Reliability and Security, 2008.
-
Florian Kerschbaum, Julien Vayssiere.
Privacy-Preserving Logical Vector Clocks using Secure Computation Techniques
13th IEEE International Conference on Parallel and Distributed Systems, 2007.
-
Florian Kerschbaum.
Distance-Preserving Pseudonymization for Timestamps and Spatial Data
ACM Workshop on Privacy in the Electronic Society, 2007.
-
Florian Kerschbaum.
Building A Privacy-Preserving Benchmarking Enterprise System
11th IEEE International EDOC Conference, 2007. Best Paper Award.
-
Florian Kerschbaum.
Simple Cross-Site Attack Prevention
3rd IEEE International Conference on Security and Privacy in Communication Networks, 2007.
-
Florian Kerschbaum, Rafael Deitos, Philip Robinson.
Securing VO Management
4th International Conference on Trust, Privacy & Security in Digital Business, 2007.
-
Florian Kerschbaum.
A new way to think about Secure Computation: Language-Based Secure Computation
5th International Workshop on Security in Information Systems, 2007.
-
Rafael Deitos, Florian Kerschbaum, Philip Robinson, Jochen Haller.
A Comprehensive Security Architecture for Dynamic, Web Service Based Virtual Organizations for Businesses
ACM Workshop on Secure Web Services (Poster), 2006.
-
Yücel Karabulut, Florian Kerschbaum, Fabio Massacci, Philip Robinson, Artsiom Yautsiukhin.
Security and Trust in IT Business Outsourcing: a Manifesto
2nd International Workshop on Security and Trust Management, 2006.
-
Philip Robinson, Florian Kerschbaum, Andreas Schaad.
From Business Process Choreography to Authorization Policies
20th Annual IFIP WG 11.3 Working Conference on Data and Applications Security, 2006.
-
Florian Kerschbaum, Orestis Terzidis.
Filtering for Private Collaborative Benchmarking
International Conference on Emerging Trends in Information and Communication Security, 2006.
-
Florian Kerschbaum, Jochen Haller, Yücel Karabulut, Philip Robinson.
PathTrust: A Trust-Based Reputation Service for Virtual Organization Formation
4th International Conference on Trust Management, 2006.
-
Florian Kerschbaum.
Practical Private Regular Expression Matching
IFIP WG 11.4 I-NetSec Workshop, 2006.
-
Florian Kerschbaum, Mikhail J. Atallah, David M'Raihi, John R. Rice.
Private Fingerprint Verification without Local Storage
International Conference on Biometric Authentication, 2004.
-
Mikhail J. Atallah, Florian Kerschbaum, Wenliang Du.
Secure and Private Sequence Comparisons
ACM Workshop on Privacy in the Electronic Society, 2003.
-
Mikhail J. Atallah, Victor Raskin with Michael Crogan, Christian Hempelmann, Florian Kerschbaum, Dina Mohamed, Sanket Naik.
Natural Language Watermarking: Design, Analysis and a Proof-of-Concept Implementation
4th International Information Hiding Workshop, 2001.
-
Florian Kerschbaum, Eugene H. Spafford, Diego Zamboni.
Using Embedded Sensors for Detecting Network Attacks
1st ACM Workshop on Intrusion Detection Systems, 2000.
|
|
|
Without Formal Proceedings |
|
|
-
Florian Kerschbaum, Alessandro Sorniotti.
Extending Searchable Encryption for Outsourced Data Analytics
8th International Conference on Applied Cryptography and Network Security – Industrial Track, 2010.
-
Axel Schröpfer, Florian Kerschbaum, Debmalya Biswas, Steffen Geißinger, Christoph Schütz.
L1 – Faster Development and Benchmarking of Cryptographic Protocols
Workshop on Software Performance Enhancement for Encryption and Decryption and Cryptographic Compilers, 2009.
|
|
|
Technical Reports |
|
|
-
Daniel Funke, Florian Kerschbaum.
Privacy-Preserving Multi-Objective Evolutionary Algorithms
Cryptology ePrint Archive: Report 2010/326, 2010.
-
Richard Pibernik, Yingying Zhang, Florian Kerschbaum, Axel Schröpfer.
Secure Collaborative Supply Chain Planning and Inverse Optimization – The JELS Model
European Business School Research Paper No. 10-09, 2010.
-
Ulrich Flegel, Florian Kerschbaum, Richard Wacker.
Collaborative Fraud Detection in Outsourcing Scenarios: Issues of and Solutions for Privacy and Confidentiality
Dagstuhl Seminar "Countering Insider Threats", 2008.
|
|
|
Patents |
[esp@cenet]
[Free Patents Online]
|
|
|
-
Florian Kerschbaum.
Secure Computation of Private Values
EP1940074, 2010.
-
Florian Kerschbaum.
System and Method for Comparison of Private Values
EP1804416, 2010.
-
Florian Kerschbaum, Luciana Moreira Sá de Souza.
Privacy-Preserving Substring Creation
EP1876749, 2010.
-
Florian Kerschbaum, Luciana Moreira Sá de Souza.
Privacy-Preserving Concatenation of Strings
EP1876748, 2009.
-
Florian Kerschbaum.
Distance-Preserving Anonymization of Data
EP1959372, 2009.
-
Florian Kerschbaum.
Enhanced Cross-Site Attack Prevention
EP1986395, 2009.
|
|
|
Invited Talks
|
|
|
Academic |
|
|
-
Rutgers University. Center for Information Management, Integration and Connectivity, 2010.
Secure Sharing of RFID Events
-
University of Bochum. Horst Görtz Institute Colloquium, 2010.
Security Challenges in Supply Chain Management
-
Purdue University. Computer Science Colloquium, 2009.
Security Challenges in Supply Chain Management
-
University of Kassel. Abfalltechnik Tagung "Mit RFID zur innovativen Kreislaufwirtschaft", 2009.
RFID Datenerhebung als Sicherheitsrisiko
-
Workshop on Business Process Security. Panel "Risk Management and Information Disclosure in Supply Chain Analysis", 2009.
Business Cases for Information Security in Supply Chains
-
Dagstuhl. Seminar "Web Application Security", 2009.
Verifying XSS and XSRF Protection and Web-Based Two-Party Secure Computation
-
University of Trier. Informatik Colloquium, 2009.
Security Against the Business Partner
-
Université de Paris 12. Laboratoire d'Algorithmique, Complexité et Logique Séminaire, 2008.
Privacy-Preserving Benchmarking Platform
-
University of Freiburg. Telematik Ringvorlesung, 2008.
Privacy-Preserving Benchmarking Platform
-
Purdue University. CERIAS Research Symposium, 2001.
Natural Language Watermarking
|
|
|
Industrial |
|
|
-
Midwest Venture Summit, 2004.
Private Fingerprint Matching
|