[Recent PCs] [Past Teaching] [Past Projects] [Past Organization] [Publications]
Research Interests
Security of Distributed Data and Systems, Systems&Software Engineering, Usage Control (demo videos available), Privacy, Model-Based Testing, Automatic Test Case Generation, Model-Based Development
- Programming
- Exercises for the Programming module
- Security Engineering
- Seminar Secure IT Systems
- Group seminar
- Internet Privacy (BMBF, 2011-2013)
- Peer Energy Cloud (BMWi, 2011-2014)
- Competence Center for Applied Security Research (BMBF, 2011-2015)
- System-wide cross-layer data-driven usage control (DFG, 2010-2012)
- Secure Provision and Consumption in the Internet of Services (EU-STREP, 2010-2013)
- Towards Operational Privacy (Google Research Award, 2010-2011)
- Distributed Usage Control for the Cloud (Google Focused Research Award, 2010-2012)
- Distributed Usage Control (Fraunhofer Attract, 2008-2013)
- Professor in Karlsruhe, since 2010
- Associate editor, IEEE Transactions on Dependable and Secure Comptuing, since 2011
- Associate editor, The Journal of Software Testing, Verification and Reliability, since 2011
- Associate editor, The Journal of Software and Systems Modeling, since 2007
- Member of the steering committee of the workshops on Security Testing, since 2010
- Former member of the conference board, Swiss Testing Day, 2007-2009
- Member of the steering committee of the workshops on Advances in Model-based Software Testing, since 2008
- Former member of the steering committee of the workshops on Model-Driven Engineering, Verification and Validation, 2006-2008
- Google Focused Research Award “Usage Control in the Cloud”, 2010, 2012
- Google Research Award “Towards Operational Privacy”, 2010
- Fraunhofer Attract project “Distributed Usage Control”, since 2008
- Outstanding Paper Award, CODASPY 2012
Best paper award, period 2010/2011 of the DFG priority program 1496
Best paper award, ICST 2008
Best paper award, ICSNC 2006 - Associate editor of IEEE Transactions on Dependable and Secure Computing since 2011, The Journal of Software Testing, Verification and Reliability since 2011, The Journal of Software and Systems Modeling since 2007
- Guest professorships in Rennes, Innsbruck, Trento, 2007
Awards to students
- ObjektForum award 2011, Tobias Wüchner
- Best Master's thesis at Fraunhofer IESE 2011, Cornelius Moucha
- Research award of the Rheinland-Pfalz data protection officer 2009, Stefan Willenbrock
Recent Program Committee Memberships
- MODELS 2012, SERE 2012, TAIC-PART 2012, SACMAT 2012, CODASPY 2012, ICST 2012, ICSE 2012 tutorial track, QSIC 2012, SE 2012, German Testing Day 2011, OGK 2011, ESEC/FSE 2011 technical briefings, STM 2011, ICST 2011, ASIACCS 2011, QSIC 2011, SACMAT 2011, AST 2011, VG+ODRL 2011, SE 2011, TAIC-PART 2011, SSIRI 2011
- SS 11: Security Engineering Lab, KIT
- SS 11: Advanced Topics of Software Testing, KIT
- SS 11: Exercises for the Programming module, KIT
- SS 11: Seminar Secure IT Systems, KIT
- WS 10/11: Programming, KIT
- SS 10: Security Engineering, TU Kaiserslautern
- WS 09/10: Security Engineering Lab, TU Kaiserslautern
- WS 09/10: Advanced Topics of Software Testing, TU Kaiserslautern
- SS 09: Security Engineering, TU Kaiserslautern
- WS 08: Advanced Topics of Software Testing, TU Kaiserslautern
- WS08: Software Engineering Seminar, TU Kaiserslautern
- FS 08: Software Testing, ETH Zürich
- HS 07: Security Engineering, ETH Zürich; with David Basin
- SS 07: Software Testing, ETH Zürich
- WS 06/07: Security Engineering, ETH Zürich; with David Basin
- WS 04/05: Security Engineering, ETH Zürich; with Heiko Mantel
- SS 03: Hauptseminar "Modellbasierte Implementierung eingebetteter SW-Systeme", TU München
- SS 02:Hauptseminar"Software-Test", TU München
- SS 01:Hauptseminar"Design hybrider, eingebetteter Systeme", TU München
At Fraunhofer IESE and TU Kaiserslautern:
- Distributed Usage Control (Fraunhofer Attract, 2008-2013)
- Managing Assurance, Security and Trust for Services (MASTER); EU FP7 Integrated Project; ongoing
- Distributed Usage Control Enforcement, with DoCoMo Euro-Labs; completed
At ETH Zürich:
- Managing Assurance, Security and Trust for Services (MASTER); EU FP7 Integrated Project; ongoing
- Distributed Usage Control Enforcement, with DoCoMo Euro-Labs; completed
- Enforcement for Usage Control, with DoCoMo Euro-Labs; completed
This project is concerned with understanding and modeling client-side enforcement mechanisms for usage control requirements, and with developing a server-side architecture that is capable of applying a wide range of such mechanisms. Results include this survey of control mechanisms and the definition of a specification language for obligations together with a system model for distributed usage control. - Usage Control Requirements in Mobile and Ubiquitous Computing Applications, with DoCoMo Euro-Labs; completed
This project was concerned with understanding usage control requirements in mobile and ubiquitous computing applications. Requirements elicitation was done on the grounds of structured interviews and a literature survey. - Requirements for Distributed Usage Control, with Siemens (CH); completed
This project was concerned with the understanding of general usage control requirements. Requirements elicitation was done on the grounds of structured interviews and a literature survey.
At TU München:
- AutoFocus Model and Model-Based Testing of the MOST Network Master, with BMW; completed
- Formal Smartcard Testing, with Giesecke&Devrient and Validas AG; completed
- Incremental Design of Reactive Systems, funded by DFG; completed
- Model based development of safety critical systems, with Validas and EADS-M; completed
- Continuous-discrete systems: Integrated Mathematical Modeling of Machines (DFG-Schwerpunktprogramm KONDISK); completed
At the University of Kansas:
- Ontology Based Informing Web Agent Navigation, funded by NSF; completed. I was working on distribution/communication issues and personalization.
At RWTH Aachen:
- Functional Logic Programming: TasteCurry; completed; now PAKCS. I was working on the module system. Check out my (German) thesis on Higher Order Narrowing, Curry's operational semantics!
- Octree-based hexahedral mesh generation: HexaMesh; completed. My contribution was an optimized version of the octree generator.
- German Testing Day 2011
- General Co-Chair of the 4th International Conference on Software Testing, Verification, and Validation, 2011 (with Ina Schieferdecker)
- General Co-Chair of the 6th Workshop on Security and Trust Management
- Co-Organizer of a Dagstuhl seminar on Model-Based Testing in Practice, 2010 (with Rob Hierons and Wolfgang Grieskamp)
- Organization of a Dagstuhl seminar on Distributed Usage Control, 2010 (with Marianne Winslett, Sandro Etalle, Ravi Sandhu)
- Organization of the 2nd Workshop on Constraints in Software Testing, Verification and Analysis
- Organization of the ZISC workshop on Advanced Topics of Access and Usage Control, 2008
- Organization of doctoral symposia at Software Engineering 2010, Models 2008 (follow this link) and Modellierung 2008
- Co-organization of the first, second, third and fourth ICSE International Workshops on Software Engineering for Automotive Systems
[summaries of the workshops in Edinburgh in 2004; in St. Louis in 2005; in Shanghai in 2006] - Co-organization of the 1st Intl. workshop on Security Testing, Lillehammer, 2008
- Co-organization of the fourth and fifth workshops on Model-Driven Engineering, Verification, and Validation, 2007, 2008
- Co-organization of a workshop on Model-Based Trustworthy Health Information Systems
- Co-organization of a workshop on Modellbasierte Qualitätssicherung, Informatik 2005, Bonn, September 2005
- Co-organization of a GI/Dagstuhl research seminar on Model-Based Testing, January 2004
- Organization Workshop Testprozeß, Testfallgenerierung, Testfallspezifikation, Munich, January 2002; slides (participants only)
