| DISTINCT: Identity Theft using In-Browser Communications in Dual-Window Single Sign-On | 0 | 0.34 | 2022 |
| Shadow Attacks: Hiding And Replacing Content In Signed Pdfs | 0 | 0.34 | 2021 |
| XSinator.com: From a Formal Model to the Automatic Evaluation of Cross-Site Leaks in Web Browsers | 1 | 0.39 | 2021 |
| Processing Dangerous Paths - On Security And Privacy Of The Portable Document Format | 0 | 0.34 | 2021 |
| 1 Trillion Dollar Refund: How To Spoof PDF Signatures | 1 | 0.37 | 2019 |
| Practical Decryption exFiltration: Breaking PDF Encryption | 1 | 0.37 | 2019 |
| More is Less: On the End-to-End Security of Group Chats in Signal, WhatsApp, and Threema | 4 | 0.44 | 2018 |
| SoK: Single Sign-On Security — An Evaluation of OpenID Connect | 5 | 0.42 | 2017 |
| More is Less: How Group Chats Weaken the Security of Instant Messengers Signal, WhatsApp, and Threema. | 2 | 0.42 | 2017 |
| Same-Origin Policy: Evaluation In Modern Browsers | 2 | 0.36 | 2017 |
| SECRET: On the Feasibility of a Secure, Efficient, and Collaborative Real-Time Web Editor. | 1 | 0.36 | 2017 |
| SoK: XML Parser Vulnerabilities. | 1 | 0.35 | 2016 |
| How to Break Microsoft Rights Management Services. | 1 | 0.43 | 2016 |
| How Secure is TextSecure? | 3 | 0.40 | 2016 |
| Your Cloud in My Company: Modern Rights Management Services Revisited. | 0 | 0.34 | 2016 |
| How to Break XML Encryption – Automatically | 2 | 0.40 | 2015 |
| Not so Smart: On Smart TV Apps. | 2 | 0.39 | 2015 |
| How to Break XML Encryption - Automatically. | 0 | 0.34 | 2015 |
| On the security of modern Single Sign-On Protocols: OpenID Connect 1.0 | 3 | 0.41 | 2015 |
| Your Software at my Service: Security Analysis of SaaS Single Sign-On Solutions in the Cloud | 3 | 0.40 | 2014 |
| A new approach for WS-Policy Intersection using Partial Ordered Sets. | 0 | 0.34 | 2013 |
| A New Approach towards DoS Penetration Testing on Web Services | 11 | 0.54 | 2013 |
| Penetration Testing Tool for Web Services Security | 15 | 1.00 | 2012 |
| Making XML Signatures Immune to XML Signature Wrapping Attacks | 6 | 0.48 | 2012 |
| XML Signature Wrapping Angriffe wirksam unterbinden. | 0 | 0.34 | 2012 |
| XSpRES - Robust and Effective XML Signatures for Web Services. | 2 | 0.50 | 2012 |
