TY - CHAP A1 - Völker, Timo A1 - Tüxen, Michael T1 - Packet Too Big Detection and its Integration into QUIC T2 - 2023 16th International Conference on Signal Processing and Communication System (ICSPCS) N2 - A communication over an Internet Protocol (IP) based network fails if an endpoint sends packets that are too big to reach their destination and if the sender is unable to detect that. The node on the path that drops these packets should respond with a Packet Too Big (PTB) message. However, multiple scenarios exist in which the sender will not receive a PTB message. Even if it does, it refrains from using the information in case it suspects that a potential attacker forged the message. In particular, we are not aware of any implementation of the secure transport protocol QUIC (e.g., used by HTTP/3) that processes PTB messages. In this paper, we present a novel parameterizable PTB detection algorithm for reliable transport protocols that does not depend on PTB messages. We further describe how to integrate our algorithm into QUIC, present results from an evaluation using the algorithm within a QUIC simulation model and, based on these results, suggest concrete parameter values. KW - PMTUD KW - PTB KW - black hole KW - transport protocol KW - QUIC Y1 - 2023 U6 - http://nbn-resolving.de/urn/resolver.pl?urn:nbn:de:hbz:836-opus-174119 SN - 979-8-3503-3351-0 PB - IEEE CY - New York, NY, USA ER - TY - CHAP A1 - Salewski, Falk A1 - Bodenburg, Sven A1 - Malechka, Tatsiana ED - Jäkel, Jens ED - Reiff-Stephan, Jörg ED - Schwarz, Jens André T1 - Durchgängige Digitalisierung industrieller Abläufe am Beispiel der Modellfabrik der FH Münster T2 - Tagungsband AALE 2023 - Mit Automatisierung gegen den Klimawandel N2 - Die Modellfabrik der FH Münster erlaubt durch den Umfang und die Komplexität der enthaltenen Automatisierungsaufgaben sowie einen Aufbau aus industriellen Komponenten eine praxisnahe Lehre im Bereich aktueller Anlagenautomatisierung und darüber hinausgehenden Funktionen im Sinne einer durchgängigen Digitalisierung. Die verwendete Unterscheidung der durchgängigen Digitalisierung in horizontale und vertikale Verknüpfungen wird veranschaulicht. Aufbauend auf Erfahrungen mit der Vorgängeranlage werden Neuerungen der 2021 aufgebauten neuen Modellfabrik vorgestellt. Neuerungen umfassen insbesondere die Modularisierung der Anlage, das umgesetzte Sicherheitskonzept, einen Webshop mit Onlinekonfigurator, eine Webvisualiserung des Anlagenzustandes inklusive der Energieverbräuche, sowie Möglichkeiten zur virtuellen Inbetriebnahme. Weiterhin wird das aktuelle Konzept zur Erweiterung der horizontalen digitalen Durchgängigkeit mittels der Einbindung eines autonomen mobilen Roboters in die Modellfabrik vorgestellt. KW - Modellfabrik, Industrie 4.0, Cyber-Physical Systems, Durchgängige Digitalisierung, Autonomer mobiler Roboter, Lehre Y1 - 2023 UR - https://nbn-resolving.org/urn:nbn:de:bsz:l189-qucosa2-839648 SN - 978-3-910103-01-6 U6 - http://dx.doi.org/10.33968/2023.44 ER - TY - JOUR A1 - Homrighausen, Jonas A1 - Horsthemke, Ludwig A1 - Pogorzelski, Jens A1 - Trinschek, Sarah A1 - Glösekötter, Peter A1 - Gregor, Markus T1 - Edge-Machine-Learning-Assisted Robust Magnetometer Based on Randomly Oriented NV-Ensembles in Diamond JF - Sensors N2 - Quantum magnetometry based on optically detected magnetic resonance (ODMR) of nitrogen vacancy centers in nano- or micro-diamonds is a promising technology for precise magnetic-field sensors. Here, we propose a new, low-cost and stand-alone sensor setup that employs machine learning on an embedded device, so-called edge machine learning. We train an artificial neural network with data acquired from a continuous-wave ODMR setup and subsequently use this pre-trained network on the sensor device to deduce the magnitude of the magnetic field from recorded ODMR spectra. In our proposed sensor setup, a low-cost and low-power ESP32 microcontroller development board is employed to control data recording and perform inference of the network. In a proof-of-concept study, we show that the setup is capable of measuring magnetic fields with high precision and has the potential to enable robust and accessible sensor applications with a wide measuring range. Y1 - 2023 UR - https://www.mdpi.com/1424-8220/23/3/1119 U6 - http://dx.doi.org/10.3390/s23031119 VL - 23 IS - 3 ER - TY - CHAP A1 - Ising, Fabian A1 - Poddebniak, Damian A1 - Kappert, Tobias A1 - Saatjohann, Christoph A1 - Schinzel, Sebastian T1 - Content-Type: multipart/oracle -- Tapping into Format Oracles in Email End-to-End Encryption T2 - 32nd USENIX Security Symposium N2 - S/MIME and OpenPGP use cryptographic constructions repeatedly shown to be vulnerable to format oracle attacks in protocols like TLS, SSH, or IKE. However, format oracle attacks in the End-to-End Encryption (E2EE) email setting are considered impractical as victims would need to open many attacker-modified emails and communicate the decryption result to the attacker. But is this really the case? In this paper, we survey how an attacker may remotely learn the decryption state in email E2EE. We analyze the interplay of MIME and IMAP and describe side-channels emerging from network patterns that leak the decryption status in Mail User Agents (MUAs). Concretely, we introduce specific MIME trees that produce decryption-dependent net work patterns when opened in a victim’s email client. We survey 19 OpenPGP- and S/MIME-enabled email clients and four cryptographic libraries and uncover a side-channel leaking the decryption status of S/MIME messages in one client. Further, we discuss why the exploitation in the other clients is impractical and show that it is due to missing feature support and implementation quirks. These unintended defenses create an unfortunate conflict between usability and security. We present more rigid countermeasures for MUA developers and the standards to prevent exploitation. Y1 - 2023 UR - https://www.usenix.org/conference/usenixsecurity23 PB - USENIX Association ER -