Publications
» 2025
Leon Trampert, Daniel Weber, Lukas Gerlach, Christian Rossow, Michael Schwarz.
"Cascading Spy Sheets: Exploiting the Complexity of Modern CSS for Email and Browser Fingerprinting".
2025 Network and Distributed System Security Symposium, NDSS 2025, San Diego, CA, USA.
(Acceptance rate: TBA).
[» pdf]
[» bibtex]
» 2024
Raphael Hiesgen, Marcel Nawrocki, Marcello Barcellos, Daniel Kopp, Oliver Hohlfeld, Echo Chan, Roland Dobbins, Christian Doerr, Christian Rossow, Daniel R. Thomas, Mattijs Jonker, Ricky Mok.
"The Age of DDoScovery: An Empirical Comparison of Industry and Academic DDoS Assessments".
24th ACM Internet Measurement Conference, IMC 2024, Madrid, Spain.
(Acceptance rate: 21.7%).
[» pdf]
[» bibtex]
Bogdan Cebere, Christian Rossow.
"Understanding Web Fingerprinting with a Protocol-Centric Approach".
27th International Symposium on Research in Attacks, Intrusions and Defenses, RAID 2024, Padua, Italy.
(Acceptance rate: 25.0%).
[» pdf]
[» bibtex]
Bogdan Cebere, Jonathan Lasse Bennet Flueren, Silvia Sebastián, Daniel Plohmann, Christian Rossow.
"Down to earth! Guidelines for DGA-based Malware Detection".
27th International Symposium on Research in Attacks, Intrusions and Defenses, RAID 2024, Padua, Italy.
(Acceptance rate: 25.0%).
[» pdf]
[» bibtex]
Fabian Schwarz, Christian Rossow.
"00SEVen -- Re-enabling Virtual Machine Forensics: Introspecting Confidential VMs Using Privileged in-VM Agents".
33rd USENIX Security Symposium, USENIX Sec 2024, Philadelphia, PA.
(Acceptance rate: TBA).
[» pdf]
[» bibtex]
[» code]
Yepeng Pan, Anna Ascheman, Christian Rossow.
"Loopy Hell(ow): Infinite Traffic Loops at the Application Layer".
33rd USENIX Security Symposium, USENIX Sec 2024, Philadelphia, PA.
(Acceptance rate: TBA).
[» pdf]
[» bibtex]
[» code]
Markus Bauer, Lorenz Hetterich, Christian Rossow, Michael Schwarz.
"Switchpoline: A Software Mitigation for Spectre-BTB and Spectre-BHB on ARMv8".
19th ACM ASIA Conference on Computer and Communications Security, ACM AsiaCCS 2024, Singapore
(Acceptance rate: 21.6%).
[» pdf]
[» bibtex]
[» code]
Yepeng Pan, Christian Rossow.
"TCP Spoofing: Reliable Payload Transmission Past the Spoofed TCP Handshake".
45th IEEE Symposium on Security and Privacy, IEEE S&P 2024, San Francisco, USA.
(Acceptance rate: 17.8%).
[» pdf]
[» bibtex]
[» code]
» 2023
Till Schlüter, Amit Choudhari, Lorenz Hetterich, Leon Trampert, Hamed Nemati, Ahmad Ibrahim, Michael Schwarz, Christian Rossow, Nils Ole Tippenhauer.
"FetchBench: Systematic Identification and Characterization of Proprietary Prefetchers".
30th ACM Conference on Computer and Communications Security, CCS 2023, Copenhagen, Denmark.
(Acceptance rate: 19.15%).
[» pdf]
[» bibtex]
[» code]
Leon Trampert, Ben Stock, Sebastian Roth.
"Honey, I Cached our Security Tokens – Re-usage of Security Tokens in the Wild".
26th International Symposium on Research in Attacks, Intrusions and Defenses, RAID 2023, Hong Kong, China.
(Acceptance rate: 23.5%).
[» pdf]
[» bibtex]
Jonas Bushart, Christian Rossow.
"ResolFuzz: Differential Fuzzing of DNS Resolvers".
28th European Symposium on Research in Computer Security, ESORICS 2023, The Hague, Netherlands.
(Acc. rate: 19.5%).
[» pdf]
[» bibtex]
[» code]
Jonas Bushart, Christian Rossow.
"Anomaly-based Filtering of Application-Layer DDoS Against DNS Authoritatives".
8th IEEE European Symposium on Security and Privacy, IEEE EuroS&P 2023, Delft, Netherlands.
(Acceptance rate: 35.0%).
[» pdf]
[» bibtex]
[» code]
» 2022
Markus Bauer, Ilya Grishchenko, Christian Rossow.
"TyPro: Forward CFI for C-Style Indirect Function Calls Using Type Propagation".
2022 Annual Computer Security Applications Conference, ACSAC 2022, Austin, TX.
(Acceptance rate: 24.1%).
[» pdf]
[» bibtex]
[» code]
Ahmad Ibrahim, Hamed Nemati, Till Schlüter, Nils Ole Tippenhauer, Christian Rossow.
"Microarchitectural Leakage Templates and Their Application to Cache Based Side Channel".
29th ACM Conference on Computer and Communications Security, CCS 2022, Los Angeles, CA.
(Acceptance rate: 19.3%).
[» pdf]
[» bibtex]
[» code]
Fabian Schwarz, Khue Do, Gunnar Heide, Lucjan Hanzlik, Christian Rossow.
"FeIDo: Recoverable FIDO2 Tokens Using Electronic IDs".
29th ACM Conference on Computer and Communications Security, CCS 2022, Los Angeles, CA.
(Acceptance rate: 19.3%).
[» pdf]
[» extended version]
[» bibtex]
[» code]
Fabian Schwarz.
"TrustedGateway: TEE-Assisted Routing and Firewall Enforcement Using ARM TrustZone".
25th International Symposium on Research in Attacks, Intrusions and Defenses, RAID 2022, Limassol, Cyprus.
(Acceptance rate: 25.2%).
[» pdf]
[» bibtex]
[» code]
Leon Trampert, Christian Rossow, Michael Schwarz.
"Browser-based CPU Fingerprinting".
27th European Symposium on Research in Computer Security, ESORICS 2022, Copenhagen, Denmark.
(Acceptance rate: 18.5%).
[» pdf]
[» bibtex]
[» code]
Johannes Krupp, Ilya Grishchenko, Christian Rossow.
"AmpFuzz: Fuzzing for Amplification DDoS Vulnerabilities".
31st USENIX Security Symposium, USENIX Sec 2022, Boston, MA.
(Acceptance rate: 18.1%).
[» pdf]
[» bibtex]
[» code]
» 2021
Johannes Krupp, Christian Rossow.
"BGPeek-a-Boo: Active BGP-based Traceback for Amplification DDoS Attacks".
6th IEEE European Symposium on Security and Privacy,
Distinguished Paper Award at IEEE EuroS&P 2021, Vienna, Austria.
(Acceptance rate: 32.2%).
[» pdf]
[» bibtex]
Markus Bauer, Christian Rossow.
"NoVT: Eliminating C++ Virtual Calls to Mitigate Vtable Hijacking".
6th IEEE European Symposium on Security and Privacy, IEEE EuroS&P 2021, Vienna, Austria.
(Acceptance rate: 32.2%).
[» pdf]
[» bibtex]
[» code]
Olivier van der Toorn, Johannes Krupp, Mattijs Jonker, Roland van Rijswijk-Deij, Christian Rossow, Anna Sperotto.
"ANYway: Measuring the Amplification DDoS Potential of Domains".
17th International Conference on Network and Service Management, CNSM 2021, Virtual Conference
(Acceptance rate: 19.3%).
[» pdf]
[» bibtex]
Daniel Weber, Ahmad Ibrahim, Hamed Nemati, Michael Schwarz, Christian Rossow.
"Osiris: Automated Discovery of Microarchitectural Side Channels."
30th USENIX Security Symposium, USENIX Sec 2021, Virtual Conference
(Acceptance rate: 18.8%).
[» pdf]
[» bibtex]
[» code]
Michael Brengel, Christian Rossow.
"YarIx: Scalable YARA-based Malware Intelligence".
30th USENIX Security Symposium, USENIX Sec 2021, Virtual Conference
(Acceptance rate: 18.8%).
[» pdf]
[» bibtex]
[» code]
Markus Bauer, Christian Rossow.
"Cali: Compiler-Assisted Library Isolation".
16th ACM ASIA Conference on Computer and Communications Security, ACM AsiaCCS 2021, Virtual Conference
(Acceptance rate: 19.2%).
[» pdf]
[» bibtex]
[» code]
» 2020
Gaganjeet Singh Reen, Christian Rossow.
"DPIFuzz: A Differential Fuzzing Framework to Detect DPI Elusion Strategies for QUIC Protocol".
2020 Annual Computer Security Applications Conference, ACSAC 2020, Virtual Conference.
(Acceptance rate: 23.2%).
[» pdf]
[» bibtex]
[» code]
Gerry Wan, Liz Izhikevich, David Adrian, Katsunari Yoshioka, Ralph Holz, Christian Rossow, Zakir Durumeric.
"On the Origin of Scanning: The Impact of Location on Internet-Wide Scans".
2020 ACM SIGCOMM Internet Measurement Conference, ACM IMC 2020, Virtual Conference.
(Acceptance rate: 24.5%).
[» pdf]
[» bibtex]
Michael Brengel, Christian Rossow.
"xOSSig: Leveraging OS Diversity to Automatically Extract Malware Code Signatures".
2020 Botnet & Malware Ecosystems Fighting Conference, Botconf 2020, Virtual Conference.
[» pdf]
[» bibtex]
Fabian Schwarz, Christian Rossow.
"SENG, the SGX-Enforcing Network Gateway: Authorizing Communication from Shielded Clients"
29th USENIX Security Symposium, USENIX Sec 2020, Virtual Conference
(Acceptance rate: 16.1%).
[» pdf]
[» bibtex]
[» code]
Jonas Bushart, Christian Rossow.
"Padding Ain't Enough: Assessing the Privacy Guarantees of Encrypted DNS".
10th USENIX Workshop on Free and Open Communications on the Internet, USENIX FOCI 2020, Virtual Conference.
(Acceptance rate: 55%).
[» pdf]
[» bibtex]
[» code]
Benedikt Birtel, Christian Rossow.
"Slitheen++: Stealth TLS-based Decoy Routing".
10th USENIX Workshop on Free and Open Communications on the Internet, USENIX FOCI 2020, Virtual Conference.
(Acceptance rate: 55%).
[» workshop paper]
[» bibtex]
[» extended report]
» 2019
Stephan van Schaik, Alyssa Milburn, Sebastian Österlund, Pietro Frigo, Giorgi Maisuradze, Kaveh Razavi, Herbert Bos, Cristiano Giuffrida.
"RIDL: Rogue In-flight Data Load".
40th IEEE Symposium on Security and Privacy, IEEE S&P 2019, San Francisco, USA.
(Acceptance rate: 12.0%).
[» pdf]
[» bibtex]
Sebastian Walla, Christian Rossow.
"MALPITY: Automatic Identification and Exploitation of Tarpit Vulnerabilities in Malware".
4th IEEE European Symposium on Security and Privacy, IEEE EuroS&P 2019, Stockholm, Sweden.
(Acceptance rate: 20.0%).
[» pdf]
[» code (upon request)]
[» bibtex]
Marius Steffens, Christian Rossow, Martin Johns, Ben Stock.
"Don't Trust The Locals: Investigating the Prevalence of Persistent Client-Side Cross-Site Scripting in the Wild".
2019 Network and Distributed System Security Symposium, NDSS 2019, San Diego, CA, USA.
(Acceptance rate: 17.1%).
[» pdf]
[» bibtex]
» 2018
Giorgi Maisuradze, Christian Rossow.
"ret2spec: Speculative Execution Using Return Stack Buffers".
25th ACM Conference on Computer and Communications Security, CCS 2018, Toronto, Canada.
(Acceptance rate: 16.6%).
[» pdf]
[» bibtex]
Jonas Bushart.
"Optimizing Recurrent Pulsing Attacks using Application-Layer Amplification of Open DNS Resolvers."
12th USENIX Workshop on Offensive Technologies (co-located with USENIX Sec '18), WOOT '18, Baltimore.
(Acceptance rate: 50.0%).
[» pdf]
[» bibtex]
Jonas Bushart, Christian Rossow.
"DNS Unchained: Amplified Application-Layer DoS Attacks Against DNS Authoritatives".
20th International Symposium on Research in Attacks, Intrusions and Defenses, RAID 2018, Heraklion, Greece.
(Acceptance rate: 22.8%).
[» pdf]
[» bibtex]
Michael Brengel, Christian Rossow.
"Identifying Key Leakage of Bitcoin Users".
20th International Symposium on Research in Attacks, Intrusions and Defenses, RAID 2018, Heraklion, Greece.
(Acceptance rate: 22.8%).
[» pdf]
[» bibtex]
Johannes Krupp, Christian Rossow.
"teEther: Gnawing at Ethereum to Automatically Exploit Smart Contracts".
27th USENIX Security Symposium, USENIX Sec 2018, Baltimore, MD.
(Acceptance rate: 19.1%).
[» pdf]
[» bibtex]
Michael Brengel, Christian Rossow.
"MemScrimper: Time- and Space-Efficient Storage of Malware Sandbox Memory Dumps".
13th Conference on Detection of Intrusions and Malware & Vulnerability Assessment, DIMVA 2018, Paris-Saclay, France (Acceptance rate: 30.5%).
[» pdf]
[» code]
[» bibtex]
Rui Tanabe, Wataru Ueno, Kou Ishii, Katsunari Yoshioka, Tsutomu Matsumoto, Takahiro Kasama, Daisuke Inoue, Christian Rossow.
"Evasive Malware via Identifier Implanting".
13th Conference on Detection of Intrusions and Malware & Vulnerability Assessment, DIMVA 2018, Paris-Saclay, France (Acceptance rate: 30.5%).
[» pdf]
Marten Oltrogge, Erik Derr, Christian Stransky, Sven Bugiel, Giancarlo Pellegrino, Christian Rossow, Sascha Fahl, Yasemin Acar, Michael Backes.
"The Rise of the Citizen Developer: Assessing the Security Impact of Online App Generators".
39th IEEE Symposium on Security and Privacy, S&P 2018, San Francisco, CA.
(Acceptance rate: 11.5%).
[» pdf]
[» bibtex]
Ben Stock, Giancarlo Pellegrino, Frank Li, Michael Backes, Christian Rossow.
"Didn't You Hear Me? - Towards More Successful Web Vulnerability Notifications".
2018 Network and Distributed System Security Symposium, NDSS 2018, San Diego, CA, USA.
(Acceptance rate: 21.5%).
[» pdf]
[» bibtex]
» 2017
Giancarlo Pellegrino, Martin Johns, Simon Koch, Michael Backes, Christian Rossow.
"
Deemon: Detecting CSRF with Dynamic Analysis and Property Graphs".
24th ACM Conference on Computer and Communications Security, CCS 2017, Dallas, TX.
(Acceptance rate: 18.1%).
[» pdf]
[» bibtex]
[» code]
Mattijs Jonker, Alistair King, Johannes Krupp, Christian Rossow, Anna Sperotto, Alberto Dainotti.
"Millions of Targets Under Attack: a Macroscopic Characterization of the DoS Ecosystem".
17th ACM Internet Measurement Conference, IMC 2017, London, UK.
(Acceptance rate: 23.5%).
[» pdf]
[» bibtex]
*
ScienceDaily: A third of the Internet is under attack
*
Dcypher.nl: A Third of the Internet is Under Attack
Johannes Krupp, Mohammad Karami, Christian Rossow, Damon McCoy, Michael Backes.
"Linking Amplification DDoS Attacks to Booter Services".
19th International Symposium on Research in Attacks, Intrusions and Defenses, RAID 2017, Atlanta, Georgia.
(Acceptance rate: 20.0%).
[» pdf]
[» bibtex]
Milivoj Simeonovski, Giancarlo Pellegrino, Christian Rossow, Michael Backes.
"Who Controls the Internet? Analyzing Global Threats using Property Graph Traversals".
26th International World Wide Web Conference, 2017, WWW 2017, Perth, Australia.
(Acceptance rate: 17.0%).
[» pdf]
Giorgi Maisuradze, Michael Backes, Christian Rossow.
"Dachshund: Digging for and Securing (Non-)Blinded Constants in JIT Code".
2017 Network and Distributed System Security Symposium, NDSS 2017, San Diego, CA, USA.
(Acceptance rate: 16.1%).
[» pdf]
[» bibtex]
» 2016
Johannes Krupp, Michael Backes, Christian Rossow.
"Identifying the Scanners and Attack Infrastructure behind Amplification DDoS attacks".
23rd ACM Conference on Computer and Communications Security, CCS 2016, Vienna, Austria.
(Acceptance rate: 16.5%).
[» pdf]
[» bibtex]
*
KrebsonSecurity: Are the Days of “Booter” Services Numbered?
Akira Yokoyama, Kou Ishii, Rui Tanabe, Yinmin Papa, Katsunari Yoshioka, Tsutomu Matsumoto, Takahiro Kasama, Daisuke Inoue, Michael Brengel, Michael Backes, Christian Rossow.
"
Sandprint: Fingerprinting Malware Sandboxes to Provide Intelligence for Sandbox Evasion".
19th International Symposium on Research in Attacks, Intrusions and Defenses, RAID 2016, Paris, France.
(Acceptance rate: 25.0%).
[» pdf]
[» bibtex]
Michael Backes, Thorsten Holz, Christian Rossow, Teemu Rytilahti, Milivoj Simeonovski, Ben Stock.
"On the Feasibility of TTL-based Filtering for DRDoS Mitigation".
19th International Symposium on Research in Attacks, Intrusions and Defenses, RAID 2016, Paris, France.
(Acceptance rate: 25.0%).
[» pdf]
[» bibtex]
Giancarlo Pellegrino, Onur Catakoglu, Davide Balzarotti, Christian Rossow.
"Uses and Abuses of Server-Side Requests".
19th International Symposium on Research in Attacks, Intrusions and Defenses, RAID 2016, Paris, France.
(Acceptance rate: 25.0%).
[» pdf]
[» bibtex]
Stefan Nürnberger, Christian Rossow.
"vatiCAN: Vetted, Authenticated CAN Bus".
Conference on Cryptographic Hardware and Embedded Systems 2016, CHES 2016, Santa Barbara, CA.
(Acceptance rate: 20.3%).
[» pdf]
[» bibtex]
Ben Stock, Giancarlo Pellegrino, Christian Rossow, Martin Johns, Michael Backes.
"Hey, You Have a Problem: On the Feasibility of Large-Scale Web Vulnerability Notification".
25th USENIX Security Symposium, USENIX Sec 2016, Austin, TX.
(Acceptance rate: 15.6%).
[» pdf]
[» bibtex]
Giorgi Maisuradze, Michael Backes, Christian Rossow.
"What Cannot be Read, Cannot be Leveraged? Revisiting Assumptions of JIT-ROP Defenses".
25th USENIX Security Symposium, USENIX Sec 2016, Austin, TX.
(Acceptance rate: 15.6%).
[» pdf]
[» bibtex]
Michael Brengel, Michael Backes, Christian Rossow.
"Detecting Hardware-Assisted Virtualized Systems".
13th Conference on Detection of Intrusions and Malware & Vulnerability Assessment, DIMVA 2016, Donostia-San Sebastián, Spain (Acceptance rate: 31.8%).
[» pdf]
[» bibtex]
» 2015
Giancarlo Pellegrino, Constantin Tschürtz, Eric Bodden, Christian Rossow.
"jÄk: Using Dynamic Analysis to Crawl and Test Modern Web Applications".
18th International Symposium on Research in Attacks, Intrusions and Defenses, RAID 2015, Kyoto, Japan.
(Acceptance rate: 20.6%).
[» pdf]
[» bibtex]
[» code]
Lukas Krämer, Johannes Krupp, Daisuke Makita, Tomomi Nishizoe, Takashi Koide, Katsunari Yoshioka, Christian Rossow.
"AmpPot: Monitoring and Defending Against Amplification DDoS Attacks".
18th International Symposium on Research in Attacks, Intrusions and Defenses, RAID 2015, Kyoto, Japan.
(Acceptance rate: 20.6%).
[» pdf]
[» bibtex]
Dennis Andriesse, Christian Rossow, Herbert Bos.
"Reliable Recon in Adversarial Peer-to-Peer Botnets".
15th ACM Internet Measurement Conference, IMC 2015, Tokyo, Japan.
(Acceptance rate: 26.0%).
[» pdf]
[» addendum pdf]
[» bibtex]
Marc Kührer, Thomas Hupperich, Jonas Bushart, Christian Rossow, Thorsten Holz.
"Going Wild: Large-Scale Classification of Open DNS Resolvers".
15th ACM Internet Measurement Conference, IMC 2015, Tokyo, Japan.
(Acceptance rate: 26.0%).
[» pdf]
[» bibtex]
Yin Minn Pa Pa, Shogo Suzuki, Katsunari Yoshioka, Tsutomu Matsumoto, Takahiro Kasama, Christian Rossow.
"IoTPOT: Analysing the Rise of IoT Compromises".
9th USENIX Workshop on Offensive Technologies (co-located with USENIX Sec '15), WOOT '15, Washington, DC.
(Acceptance rate: 35.1%).
[» pdf]
[» bibtex]
Giancarlo Pellegrino, Christian Rossow, Fabrice J. Ryba, Thomas C. Schmidt, Matthias Wählisch (alphabetical order).
"Cashing out the Great Cannon? On Browser-Based DDoS Attacks and Economics".
9th USENIX Workshop on Offensive Technologies (co-located with USENIX Sec '15), WOOT '15, Washington, DC.
(Acceptance rate: 35.1%).
[» pdf]
[» bibtex]
Shankar Karuppayah, Mathias Fischer, Stefanie Roos, Christian Rossow, Max Muehlhaeuser.
"ZeusMilker: Circumventing The P2P Zeus Neighbor List Restriction Mechanism".
35th IEEE International Conference on Distributed Computing Systems, ICDCS 2015, Columbus, OH
(Acceptance rate: 12.9%).
[» pdf]
[» bibtex]
Jannik Pewny, Behrad Garmany, Robert Gawlik, Christian Rossow, Thorsten Holz.
"Cross-Architecture Bug Search in Binary Executables".
36th IEEE Symposium on Security and Privacy, S&P 2015, San Jose, CA.
(Acceptance rate: 13.5%).
[» pdf]
[» bibtex]
» 2014
Jannik Pewny, Felix Schuster, Christian Rossow, Lukas Bernhard, Thorsten Holz.
"Leveraging Semantic Signatures for Bug Search in Binary Programs".
2014 Annual Computer Security Applications Conference, ACSAC 2014, New Orleans, LA.
(Acceptance rate: 19.9%).
[» pdf]
Marc Kührer, Christian Rossow, Thorsten Holz.
"Paint it Black: Evaluating the Effectiveness of Malware Blacklists".
17th International Symposium on Research in Attacks, Intrusion and Defenses, RAID 2014, Gothenburg, Sweden.
(Acceptance rate: 19.4%).
[» pdf]
[» bibtex]
Marc Kührer, Thomas Hupperich, Christian Rossow, Thorsten Holz.
"Hell of a Handshake: Abusing TCP for Reflective Amplification DDoS Attacks".
8th USENIX Workshop on Offensive Technologies (co-located with USENIX Sec '14), WOOT '14, San Diego, CA.
(Acceptance rate: 48.6%).
[» pdf]
[» bibtex]
Marc Kührer, Thomas Hupperich, Christian Rossow, Thorsten Holz.
"Exit from Hell? Reducing the Impact of Amplification DDoS Attacks".
23rd USENIX Security Symposium, USENIX Sec 2014, San Diego, CA.
(Acceptance rate: 19.1%).
[» pdf]
[» bibtex]
Arne Welzel, Christian Rossow, Herbert Bos.
"On Measuring the Impact of DDoS Botnets".
7th European Workshop on Systems Security, EuroSec 2014, Amsterdam, The Netherlands.
(Acceptance rate: 42.9%).
[» pdf]
[» bibtex]
Shankar Karuppayah, Christian Rossow, Mathias Fischer, Max Mühlhäuser.
"On Advanced Monitoring in Resilient and Unstructured P2P Botnets".
2014 IEEE International Conference on Communications, ICC 2014, Sydney, Australia.
(Acceptance rate: 38.2%).
[» pdf]
[» bibtex]
Alexandra Dmitrienko, Christopher Liebchen, Christian Rossow and Ahmad-Reza Sadeghi.
"On the (In)Security of Mobile Two-Factor Authentication".
18th International Conference on Financial Cryptography and Data Security, FC 2014, Barbados.
(Acceptance rate: 20.2%).
[» pdf]
[» bibtex]
Christian Rossow.
"Amplification Hell: Revisiting Network Protocols for DDoS Abuse".
2014 Network and Distributed System Security Symposium, NDSS 2014, San Diego, CA, USA.
(Acceptance rate: 18.6%).
[» pdf]
[» bibtex]
*
US-CERT Alert TA14-017A: UDP-based Amplification Attacks
*
US-CERT Alert TA14-013A: NTP Amplification Attacks
*
CVE-2013-5211 (reported by me on 15 Aug 2013)
*
Cisco Security Notice on NTP DRDoS
*
ShadowServer.org NTP Scan Statistics
*
ShadowServer.org Amplification Protocol Scanning
*
ENISA's Notice on Large-scale UDP Attacks
» 2013
Dennis Andriesse, Christian Rossow, Brett Stone-Gross, Daniel Plohmann, Herbert Bos.
"Highly Resilient Peer-to-Peer Botnets Are Here: An Analysis of Gameover Zeus".
8th IEEE International Conference on Malicious and Unwanted Software, MALWARE 2013, Fajardo, Puerto Rico, USA.
(Acceptance rate: 31%).
[» pdf]
[» bibtex]
Christian J. Dietrich, Christian Rossow, Norbert Pohlmann.
"CoCoSpot: Clustering and Recognizing Botnet Command and Control Channels Using Traffic Analysis".
Computer Networks: The International Journal of Computer and Telecommunications Networking, Volume 57, Issue 2, February, 2013
[» pdf]
[» bibtex]
Christian Rossow, Christian J. Dietrich.
"ProVeX: Detecting Botnets with Encrypted Command and Control Channels".
10th Conference on Detection of Intrusions and Malware & Vulnerability Assessment, DIMVA 2013, Berlin, Germany.
(Acceptance rate: 31.6%).
[» pdf]
[» bibtex]
Christian Rossow, Dennis Andriesse, Tillmann Werner, Brett Stone-Gross, Daniel Plohmann, Christian J. Dietrich, Herbert Bos.
"P2PWNED: Modeling and Evaluating the Resilience of Peer-to-Peer Botnets".
34th IEEE Symposium on Security and Privacy, S&P 2013, San Francisco, CA.
(Acceptance rate: 12.1%).
[» pdf]
[» bibtex]
*
heise.de / h-online.com: "P2P botnets much larger than they seemed"
*
threatpost.com: "Peer-to-Peer Botnets Resilient to Takedown Attempts"
*
threatpost.com: "Number of Peer-to-Peer Botnets Grows 5X"
*
bitdefender.com: "Peer-to-Peer Botnets Grow Larger, Make Takedown Harder"
*
net-security.org: "Researches test resilience of P2P botnets"
*
seculert.com: "New Study Calls for Alternative Mitigation Strategies Against P2P Botnets"
Christian J. Dietrich, Christian Rossow, Norbert Pohlmann.
"Exploiting Visual Appearance to Cluster and Detect Rogue Software".
28th ACM Symposium On Applied Computing, SAC 2013, Coimbra, Portugal.
(Acceptance rate: 24.0%).
[» pdf]
[» bibtex]
» 2012
Chris Grier, Lucas Ballard, Juan Caballero, Neha Chachra, Christian J. Dietrich, Kirill Levchenko, Panayiotis Mavrommatis, Damon McCoy, Antonio Nappa, Andreas Pitsillidis, Niels Provos, Zubair Rafique, Moheeb Abu Rajab, Christian Rossow, Kurt Thomas, Vern Paxson, Stefan Savage, Geoffrey M. Voelker (alphabetical order).
"Manufacturing Compromise: The Emergence of Exploit-as-a-Service".
19th ACM Conference on Computer and Communications Security, CCS 2012, Raleigh, NC, USA.
(Acceptance rate: 18.9%).
[» pdf]
[» bibtex]
Christian Rossow.
"Large-Scale Analysis of Malware Downloaders".
SIDAR Graduierten-Workshop über Reaktive Sicherheit, SPRING 7, July 2012, Berlin, Germany.
(Acceptance rate: 100.0%).
[» pdf]
[» bibtex]
Christian Rossow, Christian J. Dietrich, Herbert Bos.
"Large-Scale Analysis of Malware Downloaders".
9th Conference on Detection of Intrusions and Malware & Vulnerability Assessment, DIMVA 2012, Heraklion, Greece.
(Acceptance rate: 31%).
[» pdf]
[» bibtex]
Christian Rossow, Christian J. Dietrich, Christian Kreibich, Chris Grier, Vern Paxson, Norbert Pohlmann, Herbert Bos, Maarten van Steen.
"Prudent Practices for Designing Malware Experiments: Status Quo and Outlook".
33rd IEEE Symposium on Security and Privacy, S&P 2012, San Francisco, CA.
(Acceptance rate: 13.0%).
[» pdf]
[» bibtex]
Christian J. Dietrich, Christian Rossow, Norbert Pohlmann.
"eID Online Authentication Network Threat Model, Attacks and Implications".
19th DFN Workshop "Sicherheit in vernetzten Systemen", 2012.
[» pdf]
[» bibtex]
» 2011 and earlier
Christian J. Dietrich, Christian Rossow, Felix C. Freiling, Herbert Bos, Maarten van Steen, Norbert Pohlmann.
"On Botnets that use DNS for Command and Control".
European Conference on Computer Network Defense, EC2ND 2011.
(Acceptance rate: 32%).
[» pdf]
[» bibtex]
Christian Rossow, Christian J. Dietrich, Herbert Bos, Lorenzo Cavallaro, Maarten van Steen, Felix C. Freiling, Norbert Pohlmann.
"Sandnet: Network Traffic Analysis of Malicious Software".
ACM Workshop on Building Analysis Datasets and Gathering Experience Returns for Security, BADGERS 2011.
[» pdf]
[» bibtex]
Christian Rossow, Thomas Czerwinski, Christian J. Dietrich, Norbert Pohlmann.
"Detecting Gray in Black and White".
MIT Spam Conference, 2010
(Best Student Paper Award).
[» pdf]
[» bibtex]
Christian J. Dietrich, Christian Rossow.
"Empirical research on IP blacklisting".
Fifth Conference on Email and Anti-Spam, CEAS 2008.
[» pdf]
[» bibtex]