Robert Krahn
Robert joined the Systems Engineering Group in 2015 to work as a research assistant and pursue his PhD.
The underlying topic for his research are security mechanisms in cloud computing, particularly with regard to the secure execution of applications.
The focus is on the Intel-SGX technology and the SCONE framework. In this area Robert investigates performance issues and mitigations.
Contact information
E-Mail: firstname.lastname@tu-dresden.de
Phone: +49 351 463-42358
Office: APB 3077
Teaching
- CDS Lab ('17, '18, '19, '20, '21, '22)
- Programming Exercise ('23)
- SE2 Assignment 1 (Winter '19, '20, '22)
- SFT Exercise (Summer '20, '22)
- SE Lab ('18, '19, '20, '21)
- SE Proseminar (Summer '18)
- 1 lecture of FCDS (Summer '18)
- PODS winter 2017 (general contact)
- Erasmus coordination (2015)
Project Participations
- Neardata (development towards secure execution of software)
- Design and Modeling of Confidential Cloud Computing for e-Health (Gematik)
- SFB Transregio 96 (proposal writing, research of secure datacenter services for manufacturing) (Project @ DFG)
- EuroSys 2019 (organization of local conference arrangements and web chair)
- Atmosphere (progress monitoring)
- Selis (software development)
- DynAPSys (software development, evaluation and project termination)
- TROX (progress reporting)
Research Grants
Supervised Students
A ready-to-go latex thesis template is available here.
Official templates by TUD can be found here (see templates and downloads).
Name | Topic |
---|---|
Leonard Wilhelm | Detecting Software Vulnerabilities with RUST tools. |
Julius Wenzel | Transforming and analyzing YAML requirements and their assessment in Prolog. |
Puneetha Jangir Lok Ram Jangir | Formal policy conformity in cloud systems |
Max Ostermann | Single Sign-On for a Confidential Document Manager |
Greisa Ajdini | Containerized simulation execution with Qt and Matlab |
Richard Steinmetz | Chaos Monkey für MAAS und Kubernetes |
Azizul Hakim Shakil | Automated secure application deployment in Kubernetes |
Josia Mädler |
Sconification of docker images; |
Muhammad Ashfaqur Rahman | Automated benchmarking and monitoring of SGX applications |
Nikson Paul | An integrity protected file system layer for Intel SGX |
Roland Kunkel | Preencrypted data in TLS connections |
Titouan Bion | Data visualization for YCSB benchmarks |
Interesting Articles about Confidential Cloud Computing
Toward Confidential Cloud Computing (ACM)
Enclaves in the Clouds (ACM)
Picking the right colors
We're often confronted with picking 'good' colors for papers and presentations. Some nice examples and pages that I find helpful:
The economist - 2019 in graphic detail
Nytimes - Ads on FB
https://colorbrewer2.org
http://tallys.github.io/color-theory/
Scientific Visualization with Matplotlib
github.com/rougier/scientific-visualization-book
Research interests
- Automated parameter tuning
- Performance monitoring / optimization
- Intel SGX
- Seagate Kinetic Disks
- Protected Storage, NVMeOF, RoCE
- Automated Orchestration
Publications
2024
-
TICAL: Trusted and Integrity-protected Compilation of AppLications , 2024, p. 25-32, 8 p.Electronic (full-text) versionResearch output: Contribution to conferences > Paper
2023
-
SinClave: Hardware-assisted Singletons for TEEs , 27 Nov 2023, p. 85-97, 13 p.Electronic (full-text) versionResearch output: Contribution to conferences > Paper
-
Adaptive Thermal Model for Structure Model Based Correction , 2 Jun 2023, Lecture Notes in Production Engineering. p. 67-82, 16 p., Chapter 6Electronic (full-text) versionResearch output: Contribution to book/conference proceedings/anthology/report > Chapter in book/anthology/report
2021
-
ADAM-CS: Advanced Asynchronous Monotonic Counter Service , Jun 2021, p. 426-437, 12 p.Electronic (full-text) versionResearch output: Contribution to conferences > Paper
2020
-
TEEMon: A Continuous Performance Monitoring Framework for TEEs , 2020, p. 178–192Electronic (full-text) versionResearch output: Contribution to conferences > Paper
2018
-
LibSEAL: Revealing Service Integrity Violations Using Trusted Execution , 2018, p. 1-15, 1 p.Electronic (full-text) versionResearch output: Contribution to conferences > Paper
-
Pesos: Policy Enhanced Secure Object Store , 2018, 1 p.Electronic (full-text) versionResearch output: Contribution to conferences > Paper
-
PubSub-SGX: Exploiting Trusted Execution Environments for Privacy-Preserving Publish/Subscribe Systems , 2018Electronic (full-text) versionResearch output: Contribution to conferences > Paper
-
Varys: Protecting SGX Enclaves from Practical Side-Channel Attacks , 2018, p. 227-240, 14 p.Electronic (full-text) versionResearch output: Contribution to conferences > Paper
2017
-
TaLoS: Secure and Transparent TLS Termination inside SGX Enclaves , 2017, 4 p.Research output: Preprint/documentation/report > Working paper