Universität Hamburg - der Forschung, der Lehre, der Bildung, zur Homepage
Security and Privacy
Department of InformaticsSecurity and Privacy

Foto: UHH/Denstorf

Security and Privacy

Dr. Pascal Wichmann

 
Pascal Wichmann has left the working group in June 2024.
S/MIME 50FC A71E 97CF B524 F79D 20D2 2793 AFCC 07F7 22CA
ORCID iD 0000-0002-8969-4277

Short Biography

Pascal Wichmann has been a research associate in the Security in Distributed Systems (SVS) research group at Universität Hamburg from July 2020 to June 2024.
He graduated with distinction as Master of Science in Informatics at Universität Hamburg in June 2020 and received his PhD degree in June 2024 for his dissertation with the title »Protection of Security-Critical Web Applications«, which he submitted in February 2024.

Research Interests

  • Security and Privacy on the Web
  • Web-Based Cryptography Applications
  • Network and Distributed Systems Security

Supervised Theses

2024 …

  1. Automated Web Data Harvesting: An Empirical Inquiry Between Data Extraction Techniques and Anti-Scraping Measures (Co-Supervision)
  2. Intrusion Detection for OAuth authentication systems
  3. Analysis and Comparison of Malware Obfuscation Techniques (Co-Supervision)
  4. Browser-Side Monitoring of Client-Side Web Application Code
  5. Improving the Reproducibility of Web Scans: Impact of Scan Environments and Request Parameters
  6. Verifiably Separated Data Exchange With Third Parties in Web Applications
  7. Analysis and Comparison of Security Mechanisms Employed by Browser Extension Stores
  8. Analysis and Relevance of Browser Extension Takeover in Extension Stores
  9. Web Security Mechanisms Bootstrapping Through Gossiping
  10. Empirical Security Analysis of Web-Based Authentication Mechanisms
  11. Design of a Browser Extension for Detection of Insecure Usgae of Cryptography
  12. Testing End-to-End Security Guarantees of Web Applications
  13. Web Application Code Authenticity Validation Through Cryptographic Signatures
  14. Dangers and Prevalence of Client-Side Web API Manipulation
  15. Architecture for a Privacy-Preserving Web-Based Collaborative Calendar
  16. Analysis of the Standards Compliance and Divergences of the Web Cryptography API in Different Browsers
  17. Empirical Study of WebSocket Vulnerabilities
  18. Assessment of Insecure Cryptographic Primitive Usage in JavaScript Libraries
  19. Mutual Authentication for Websites and Users
  20. Assessment of Security and Privacy Risks of Sensor Accesses of Mobile Websites and Design of Protective Measures
  21. Design of a Secure Proxy Library for the Web Cryptography API
  22. Analysis and Improvement of WebSocket Security
  23. Detection and Sanitization of Malicious Media File Uploads and Upload Vulnerabilities in Web Applications

… 2020

Publications and Talks