Tom Maier

Thomas Maier

Projects

Gossip

A Python implementation of the gossip protocol together with Anselm Binninger and Ralph O. Schaumann.
Github

SSHKeyDistribut0r

A tool which has been written to make SSH key distribution easier for sysop teams.
Github

Scientific Work

May, 2019: Master's Thesis (English)

Exposing Insecure Configurations of Network Session and Permission Graphs (Thesis, Slides)
Technical University of Munich (TUM), Chair of Network Architectures and Services
in cooperation with the Siemens AG
Keywords: BloodHound AD, Active Directory, Identity Snowball Attack, Lateral Movement, Graph Theory, Centrality Metrics, PageRank

Apr, 2018: Guided Research at TUM (English)

Automated Key Management for End-To-End Encrypted Email Communication (Paper, Slides, Talk)
Technical University of Munich (TUM), Chair of Network Architectures and Services
in cooperation with the University of Bonn, IT Security Working Group
Keywords: End-to-end encryption, email, SMTP, email provider, authenticated public key exchange, protocol design, usability

Feb, 2016: 23. DFN-Konferenz - Sicherheit von vernetzten Systemen (German)

Current Implementation of SMTP over TLS - Current State (Slides)
Verein zur Förderung eines Deutschen Forschungsnetzes, DFN-CERT (Schedule)
MuSe article about this talk
Keywords: SMTP over TLS, internet scan, TLS support, certificate chains, DANE, key lengths, X.509 validity, TLS versions, cipher suites

Jul, 2015: SPRING 10 (German)

Security Analysis of TLS Configurations of SMTP Deployments (Abstract, Slides)
Gesellschaft für Informatik e.V., Fachgruppe SIDAR (Schedule)
Keywords: SMTP over TLS, internet scan, TLS support, certificate chains, DANE, DNSSEC, key lengths, X.509 validity, TLS versions, cipher suites

May, 2015: Bachelor's Thesis (German)

Security Analysis of TLS Configurations of SMTP Deployments (Thesis, Slides)
Munich University of Applied Sciences (MUAS), Munich IT Security Research Group (MuSe)
Keywords: SMTP over TLS, internet scan, TLS support, certificate chains, DANE, DNSSEC, key lengths, X.509 validity, TLS versions, cipher suites