Welcome
Me

I'm a postdoc in cryptography, hosted by Yevgeniy Dodis at Cryptography Group, New York University. Before that, I worked with Marc Fischlin at Cryptoplexity Group, TU Darmstadt. I did my PhD at the Chair for Network and Data Security, Ruhr University Bochum, supervised by Jörg Schwenk and second supervisor Eike Kiltz. My research area is applied cryptography, especially security of messaging protocols. You can find my published articles at Google Scholar, DBLP, or below.

Twitter@roeslpa
GitHub/roeslpa
Mailpaul.roesler [at] cs.nyu.edu
PGP key

All details are listed in my full CV.
01/22 - now
Postdoc
hosted by Yevgeniy Dodis, New York University
03/21 - 09/21
Postdoc
hosted by Marc Fischlin, TU Darmstadt
10/16 - 02/21
Ph.D. in Applied Cryptography
(summa cum laude) supervised by Jörg Schwenk and second supervisor Eike Kiltz, Ruhr University Bochum
01/20
Research visit
with Yevgeniy Dodis, New York University
10/19
Research visit
with Kenny Paterson, ETH Zürich
11/18
Research visit
with Serge Vaudenay, EPF Lausanne
02/18
Research visit
with Bertram Poettering, Royal Holloway, University of London
10/15 - 12/18
M.Sc. IT Security
(with distinction, best in 2018), Ruhr University Bochum
10/12 - 09/15
B.Sc. IT Security
, Ruhr University Bochum

PC Member:
CRYPTO (2022), PETS (2023, 2022)
External
Reviewing:
CRYPTO (2021,2020,2019), EUROCRYPT (2022,2021,2020), Journal of Cryptology (2021,2020,2018,2017), TOPS (2019), S&P (2021,2020), USENIX Security (2019), CCS (2018), ASIACRYPT (2021,2018), TCC (2020,2019,2018), PKC (2021,2019), CT-RSA (2022,2020), CANS (2021)

On the Worst-Case Inefficiency of CGKA
Alexander Bienstock, Yevgeniy Dodis, Sanjam Garg, Garrison Grogan, Mohammad Hajiabadi, Paul Rösler
Preprint: [PDF full version]
SoK: Game-based Security Models for Group Key Exchange
Bertram Poettering, Paul Rösler, Jörg Schwenk, Douglas Stebila
CT-RSA 2021: [PDF full version], [Talk]
On the Price of Concurrency in Group Ratcheting Protocols
Alexander Bienstock, Yevgeniy Dodis, Paul Rösler
IACR TCC 2020: [PDF full version], [Talk], [Another Talk], [Another Talk]
Determining the Core Primitive for Optimally Secure Ratcheting
Fatih Balli, Paul Rösler, Serge Vaudenay
IACR Asiacrypt 2020: [PDF full version], [Talk]
Combiners for AEAD
Bertram Poettering, Paul Rösler
IACR FSE 2020: [Talk]
IACR ToSC Volume 2020, Issue 1: [Journal], [PDF full version]
Flexible Authenticated and Confidential Channel Establishment (fACCE): Analyzing the Noise Protocol Framework
Benjamin Dowling, Paul Rösler, Jörg Schwenk
IACR PKC 2020: [PDF full version], [Talk]
Towards Bidirectional Ratcheted Key Exchange
Bertram Poettering, Paul Rösler
IACR CRYPTO 2018: [Proceedings], [Talk]
Extended version: Asynchronous ratcheted key exchange [PDF]
Java implementation by Marco Smeets: [Github Repo]
More is Less: On the End-to-End Security of Group Chats in Signal, WhatsApp, and Threema
Paul Rösler, Christian Mainka, Jörg Schwenk
IEEE EuroS&P 2018: [PDF full version], [Talk], [Another Talk], [Another Talk], [Blog 1], [Blog 2]
Attacking Deterministic Signature Schemes using Fault Attacks
Damian Poddebniak, Juraj Somorovsky, Sebastian Schinzel, Manfred Lochter, Paul Rösler
IEEE EuroS&P 2018: [PDF]
Your cloud in my company: Modern rights management services revisited
Martin Grothe, Paul Rösler, Johanna Jupke, Jan Kaiser, Christian Mainka, Jörg Schwenk
ARES 2016: [PDF full version]
How to Break Microsoft Rights Management Services
Martin Grothe, Christian Mainka, Paul Rösler, Jörg Schwenk
USENIX WOOT 2016: [PDF]
Cryptographic Foundations of Modern Stateful and Continuous Key Exchange Primitives
Doctoral Thesis 2021: [PDF]
On the End-to-End Security of Group Chats in Instant Messaging Protocols
Master Thesis 2018: [PDF]
Architektur- und Sicherheitsanalyse von Tresorit und Tresorit DRM
Bachelor Thesis 2015: [PDF]
Blog Posts
Why Receipt Notifications increase Security in Signal (05/19): [Link]
Group Instant Messaging: Why blaming developers is not fair but enhancing the protocols would be appropriate (01/18): [Link]
Insecurities of WhatsApp's, Signal's, and Threema's Group Chats (07/17): [Link]
German Short Stories
2021: [PDF]; 2020: [PDF]; 2019: [PDF]; 2018: [PDF]; 2017: [PDF]; 2016: [PDF]; 2015: [PDF]

SoK: Game-based Security Models for Group Key Exchange
CT-RSA 2021: [PDF slides], [Video]
Resolving Concurrency in Group Ratcheting Protocols
IACR RWC 2021: [PDF slides], [Video]
Determining the Core Primitive for Optimally Secure Ratcheting
IACR Asiacrypt 2020: [PDF slides], [Summary Video]
On the Price of Concurrency in Group Ratcheting Protocols
IACR TCC 2020: [PDF slides], [Video]
Combiners for AEAD
IACR FSE 2020: [PDF slides], [Video]
Resolving Concurrency in Group Ratcheting Protocols
Secure Messaging Summit 2020: [PDF slides], [Video]
Guest lecture on the Signal Protocol (Invited)
Real World Crypto Engineering Course 2020, Paderborn University
Flexible Authenticated and Confidential Channel Establishment (fACCE): Analyzing the Noise Protocol Framework
IACR PKC 2020: [PDF slides], [Video], [Summary Video]
Taming Complexity of Messaging to understand its Security
ZISC Lunch Seminar, ETH Zürich: [PDF slides]
Definitional Foundations of Ratcheting and their Impact on Practice (invited)
Workshop on Secure Messaging, IACR Eurocrypt 2019: [PDF slides]
Towards Bidirectional Ratcheted Key Exchange
IACR CRYPTO 2018: [PDF slides], [Video]
Generalization and Modularization of the ACCE Model
SKECH Workshop 2018: [PDF slides]
Consequences of Complexity in Group Instant Messaging using the Example of WhatsApp and Signal
RuhrSec 2018: [PDF slides], [Video]
More is Less: On the End-to-End Security of Group Chats in Signal, WhatsApp, and Threema
IEEE EuroS&P 2018: [PDF slides]
Complexity of Group Communication in Instant Messaging
CryptoAction Symposium 2018: [PDF slides]
Instant Messaging in Gruppen: Schwachstellen trotz sicherer Verschlüsselung (invited)
Paderborner Tag der IT-Sicherheit 2018: [PDF slides]
On the end-to-end security of group chats
IACR RWC 2018: [PDF slides], [Video]
Datenschutz und Sicherheit von Instant-Messaging-Protokollen
a-i3/BSI-Symposium 2017: [PDF slides]

Paul Rösler + 2022-06-01