Felix Günther

Talks

Lectures at Schools

• TLS 1.3: A New Standard and Its Security [Slides]
  September 19, 2018 at the ECRYPT-NET School on Integrating Advanced Cryptography with Applications (Kos, Greece).
  Invited by Carlos Cid and Kenneth G. Paterson
  

By Invitation to Workshops, Seminars, ...

• Getting the Internet Ready for PQ Crypto – What Does It Take?
  November 24, 2022 at Security Department Seminar, IBM Research – Zurich (Rüschlikon/Zurich, Switzerland).
  Invited by Bertram Poettering
  
• Forward-secure 0-RTT Key Exchange from Puncturable Key Wrapping [Slides]
  July 13, 2022 at 4th SKECH@BiCi Workshop: Secure Key Exchange and Channel Protocols (Bertinoro, Italy).
  Invited by Bertram Poettering
  
• Cryptographic Parameters in TLS 1.3, QUIC, and Co.: Tighter Security and Robust Handling of Unreliable Networks [Slides]
  March 18, 2021 at MIT CSAIL Security Seminar (Virtual).
  Invited by Kyle Hogan
  
• Internet Security Protocols, revised: A Cryptographic Perspective on TLS 1.3 and QUIC
  February 24, 2020 at VMWare Research (Palo Alto, CA, USA).
  Invited by David Ott
  
• A Cryptographic Perspective on TLS 1.3: Modeling Advanced Protocol Security [Slides]
  September 26, 2019 at STM 2019 / ESORICS 2019 (Luxembourg, Luxembourg).
  Invited as winner of the ERCIM STM WG 2019 Award for the Best Ph.D. Thesis on Security and Trust Management
  
• Modeling Advanced Security Aspects of Key Exchange and Secure Channel Protocols (in German) [Slides]
  May 21, 2019 at CAST Workshop "CAST/GI Doctoral Dissertation Award in IT Security 2019", 16th German IT Security Congress (Bonn-Bad Godesberg, Germany).
  Invited as candidate for the CAST/German Informatics Society Doctoral Dissertation Award in IT Security (CAST/GI Promotionspreis IT-Sicherheit)
  
• A Cryptographic Analysis of the TLS 1.3 Handshake Protocol [Slides]
  April 30, 2017 at TLS:DIV (TLS 1.3: Design, Implementation & Verification) Workshop / EuroS&P 2017 & EUROCRYPT 2017 (Paris, France).
  Invited by Antoine Delignat-Lavaud and Santiago Zanella-Béguelin
  
• Establishing Secure Connections: A Cryptographer's Perspective and the Case of TLS 1.3 [Slides]
  March 8, 2017 at UC San Diego (La Jolla, CA, USA).
  Invited by Mihir Bellare
  
• Establishing Secure Connections: A Cryptographer's Perspective and the Case of TLS 1.3 [Slides]
  February 24, 2017 at Berkeley Security Seminar, UC Berkeley (Berkeley, CA, USA).
  Invited by Grant Ho
  
• Establishing Secure Connections: A Cryptographer's Perspective and the Case of TLS 1.3 [Slides]
  February 21, 2017 at Stanford Security Seminar, Stanford University (Stanford, CA, USA).
  Invited by Dan Boneh and David Wu
  
• Establishing Secure Connections: A Cryptographer's Perspective and the Case of TLS 1.3 [Slides]
  January 17, 2017 at Cornell Tech University (New York City, NY, USA).
  Invited by Thomas Ristenpart
  
• 0-RTT Key Exchange with Full Forward Secrecy [Slides]
  January 12, 2017 at Johns Hopkins University (Baltimore, MD, USA).
  Invited by Matthew D. Green
  
• Establishing Secure Connections: A Cryptographer's Perspective and the Case of TLS 1.3 [Slides]
  January 10, 2017 at Cryptography Seminar Series, IBM T.J. Watson Research Center (Yorktown Heights, NY, USA).
  Invited by Hugo Krawczyk
  
• A Cryptographic Analysis of the TLS 1.3 Handshake Protocol Candidates: The main modes, 0-RTT, and replays [Slides]
  July 4, 2016 at 2nd SKECH@BiCi Workshop: Secure Key Exchange and Channel Protocols (Bertinoro, Italy).
  Invited by Marc Fischlin and Bogdan Warinschi
  
• Establishing Secure Connections: A Cryptographer's Perspective and the Case of TLS 1.3 [Slides]
  April 12, 2016 at HGI-Kolloquium, Ruhr-Universität Bochum (Bochum, Germany).
  Invited by Tibor Jager
  
• A Cryptographic Analysis of the TLS 1.3 Handshake Protocol Candidates [Slides]
  April 7, 2016 at COST Action IC1306 CryptoAction Symposium 2016 (Budapest, Hungary).
  Invited by Christina Brzuska
  
• Data Is a Stream: Security of Stream-Based Channels [Slides]
  May 8, 2015 at the Datenschutz und Datensicherheit Seminar, Technische Universität Dresden (Dresden, Germany).
  Invited by Thorsten Strufe
  
• Data Is a Stream: Security of Stream-Based Channels [Slides]
  April 26, 2015 at COST Action IC1306 CryptoAction Meeting of WG2 Protocol Analysis (Sofia, Bulgaria).
  Invited by Christina Brzuska
  
• When One Key is Not Enough: Multi-Stage Key Exchange and the Case of Google's QUIC Protocol [Slides]
  January 29, 2015 at the ISG Research Seminar, Royal Holloway, University of London (Egham, UK).
  Invited by Kenneth G. Paterson
  
• Multi-Stage Key Exchange [Slides]
  June 4, 2014 at 1st SKECH@BiCi Workshop: Secure Key Exchange and Channel Protocols (Bertinoro, Italy).
  Invited by Marc Fischlin and Bogdan Warinschi
  
• Cryptographic Treatment of Private User Profiles (in German) [Slides]
  November 24, 2011 at CAST Workshop "CAST Award IT Security 2011" (Darmstadt, Germany).
  Invited as candidate for the CAST Advancement Award IT Security, category "Bachelor and Study Theses"
  

Talks at Conferences, Workshops, Seminars, ...

• Robust Channels: Handling Unreliable Networks in the Record Layers of QUIC and DTLS 1.3 [Slides] [Video]
  January 11, 2021 at RWC 2021 (Virtual).
  
• Modeling Memory Faults in Signature and Authenticated Encryption Schemes [Slides]
  February 25, 2020 at CT-RSA 2020 (San Francisco, CA, USA).
  
• Robust Channels: Handling Unreliable Network Messages in QUIC's Record Layer [Slides]
  February 23, 2020 at QUIPS (QUIC Privacy and Security) Workshop 2020 / NDSS 2020 (San Diego, CA, USA).
  
• Two-Tier Authenticated Encryption: Nonce Hiding in QUIC Encryption [Slides]
  February 23, 2020 at QUIPS (QUIC Privacy and Security) Workshop 2020 / NDSS 2020 (San Diego, CA, USA).
  
• Replay Attacks on Zero Round-Trip Time: The Case of the TLS 1.3 Handshake Candidates [Slides]
  April 26, 2017 at EuroS&P 2017 (Paris, France).
  
• 0-RTT Key Exchange with Full Forward Secrecy [Slides] [Video]
  January 5, 2017 at RWC 2017 (New York City, NY, USA).
  
• Secure Logging Schemes and Certificate Transparency [Slides]
  September 29, 2016 at ESORICS 2016 (Heraklion, Crete, Greece).
  
• Key Confirmation in Key Exchange: A Formal Treatment and Implications for TLS 1.3 [Slides] [Video]
  May 24, 2016 at IEEE S&P 2016 (San Jose, CA, USA).
  
• Establishing Secure Connections: A Cryptographer's Perspective and the Case of TLS 1.3 [Slides]
  April 14, 2016 at CROSSING Seminar, Technische Universität Darmstadt (Darmstadt, Germany).
  
• A Cryptographic Analysis of the TLS 1.3 draft-10 Full and Pre-shared Key Handshake Protocol [Slides]
  February 21, 2016 at TRON (TLS1.3 – Ready or Not?) Workshop / NDSS 2016 (San Diego, CA, USA).
  
• A Cryptographic Analysis of the TLS 1.3 Handshake Protocol Candidates [Slides]
  October 15, 2015 at ACM CCS 2015 (Denver, CO, USA).
  
• Data Is a Stream: Security of Stream-Based Channels [Slides] [Video]
  August 19, 2015 at CRYPTO 2015 (Santa Barbara, CA, USA).
  
• Linkable Message Tagging: Solving the Key Distribution Problem of Signature Schemes [Slides]
  June 30, 2015 at ACISP 2015 (Brisbane, Australia).
  
• Data Is a Stream: Security of Stream-Based Channels [Slides]
  June 26, 2015 at the Cryptography Reading Group, Information Security Discipline, Queensland University of Technology (Brisbane, Australia).
• Multi-Stage Key Exchange and the Case of Google's QUIC Protocol [Slides]
  November 6, 2014 at CCS 2014 (Scottsdale, Arizona, USA).
  
• Privacy-Enhanced Participatory Sensing with Collusion Resistance and Data Aggregation [Slides]
  October 24, 2014 at CANS 2014 (Heraklion, Crete, Greece).
  
• Pseudorandom Signatures – Relations among Privacy Notions for Digital Signatures [Slides]
  May 8, 2013 at ASIACCS 2013 (Hangzhou, China).
  
• Key Management in Distributed Online Social Networks [Slides]
  June 20, 2011 at D-SPAN Workshop / WoWMoM 2011 (Lucca, Italy).