Publications | Prof. Dr.-Ing. Thomas Hupperich | Department of Information Systems

2024

Research article (journal)

Hosseini, H., Utz, C., Degeling, M., & Hupperich, T. (2024). A Bilingual Longitudinal Analysis of Privacy Policies Measuring the Impacts of the GDPR and the CCPA/CPRA. Proceedings on Privacy Enhancing Technologies (PoPETs), 2024(2), 434–463.
More details BibTeX Full text DOI

@article{HosseiniUDH2024ABilingual,
  author = {Henry Hosseini and Christine Utz and Martin Degeling and Thomas Hupperich},
  title = {A Bilingual Longitudinal Analysis of Privacy Policies Measuring the Impacts of the GDPR and the CCPA/CPRA},
  journal = {Proceedings on Privacy Enhancing Technologies (PoPETs)},
  year = {2024},
  volume = {2024},
  number = {2},
  pages = {434--463},
  doi = {https://doi.org/10.56553/popets-2024-0058},
  url = {https://petsymposium.org/popets/2024/popets-2024-0058.pdf},
  note = {Publication status: Published}
}

2023

Research article (journal)

Rashidibajgan, S., & Hupperich, T. (2023). Utilizing Blockchains in Opportunistic Networks for Integrity and Confidentiality. Blockchain: Research and Applications, 100167.
More details BibTeX

@article{RashidibajganH2023UtilizingBlockchains,
  author = {Samaneh Rashidibajgan and Thomas Hupperich},
  title = {Utilizing Blockchains in Opportunistic Networks for Integrity and Confidentiality},
  journal = {Blockchain: Research and Applications},
  year = {2023},
  volume = {100167},
  note = {Publication status: Published}
}

Schmidt, L., Hosseini, H., & Hupperich, T. (2023). Assessing the Security and Privacy of Baby Monitor Apps. Journal of Cybersecurity and Privacy (JCP), 3(3).
More details BibTeX Full text DOI

@article{SchmidtHH2023AssessingThe,
  author = {Lukas Schmidt and Henry Hosseini and Thomas Hupperich},
  title = {Assessing the Security and Privacy of Baby Monitor Apps},
  journal = {Journal of Cybersecurity and Privacy (JCP)},
  year = {2023},
  volume = {3},
  number = {3},
  doi = {https://doi.org/10.3390/jcp3030016},
  url = {https://www.mdpi.com/2624-800X/3/3/16/pdf?version=1688028294},
  note = {Publication status: Published}
}

Research article in journal (conference)

Schmidt, L., Kortmann, S., & Hupperich, T. (2023). Improving Trace Synthesis by Utilizing Computer Vision for User Action Emulation.
More details Full text DOI

2022

Research article in proceedings (conference)

Arora, S., Hosseini, H., Utz, C., Bannihatti, K. V. D., Tristan, , Ravichander, A., Story, P., Mangat, J., Chen, R., Degeling, M., Norton, T., Hupperich, T., Wilson, S., & Sadeh, N. (2022). A Tale of Two Regulatory Regimes: Creation and Analysis of a Bilingual Privacy Policy Corpus. In European, L. R. A. (. (Ed.), Proceedings of the 13th Conference on Language Resources and Evaluation (pp. 5460–5472). France: European Language Resources Association.
More details BibTeX Full text DOI

@inproceedings{AroraHUBTRSMCDNHWS2022ATaleOfTwo,
  author = {Siddhant Arora and Henry Hosseini and Christine Utz and Kumar Vinayshekhar: Dhellemmes Bannihatti and  Tristan and Abhilasha Ravichander and Peter Story and Jasmine Mangat and Rex Chen and Martin Degeling and Tom Norton and Thomas Hupperich and Shomir Wilson and Norman Sadeh},
  title = {A Tale of Two Regulatory Regimes: Creation and Analysis of a Bilingual Privacy Policy Corpus},
  booktitle = {Proceedings of the 13$^{th}$ Conference on Language Resources and Evaluation},
  pages = {5460--5472},
  editor = {Language Resources Association (ELRA) European},
  year = {2022},
  publisher = {European Language Resources Association},
  address = {France},
  doi = {https://aclanthology.org/2022.lrec-1.585},
  url = {http://www.lrec-conf.org/proceedings/lrec2022/pdf/2022.lrec-1.585.pdf},
  note = {Publication status: Published}
}

Gunkel, T., & Hupperich, T. (2022). Discovering Vulnerabilities and Patches for Open Source Security. In SciTePress, (Ed.), Proceedings of the 17th International Conference on Software Technologies (pp. 0–0). Lisbon, Portugal: SciTePress.
More details BibTeX

@inproceedings{GunkelH2022Discovering,
  author = {Tamara Gunkel and Thomas Hupperich},
  title = {Discovering Vulnerabilities and Patches for Open Source Security},
  booktitle = {Proceedings of the 17$^{th}$ International Conference on Software Technologies},
  pages = {0--0},
  editor = { SciTePress},
  year = {2022},
  publisher = {SciTePress},
  address = {Lisbon, Portugal},
  issn = {2184-2833},
  note = {Publication status: Published}
}

Hosseini, H., Rengstorf, J., & Hupperich, T. (2022). Automated Search for Leaked Private Keys on the Internet: Has Your Private Key Been Pwned?. In SciTePress, (Ed.), Proceedings of the 17th International Conference on Software Technologies (pp. 649–656). Lisbon, Portugal: SciTePress.
More details BibTeX DOI

@inproceedings{HosseiniRH2022AutomatedSearch,
  author = {Henry Hosseini and Julian Rengstorf and Thomas Hupperich},
  title = {Automated Search for Leaked Private Keys on the Internet: Has Your Private Key Been Pwned?},
  booktitle = {Proceedings of the 17$^{th}$ International Conference on Software Technologies},
  pages = {649--656},
  editor = { SciTePress},
  year = {2022},
  publisher = {SciTePress},
  address = {Lisbon, Portugal},
  isbn = {978-989-758-588-3},
  issn = {2184-2833},
  doi = {10.5220/0011308000003266},
  note = {Publication status: Published}
}

Research article (journal)

Kluss, B., Rashidibajgan, S., & Hupperich, T. (2022). Blossom: Cluster-Based Routing for Preserving Privacy in Opportunistic Networks. Journal of Sensor and Actuator Networks (JSAN), 11(4).
More details BibTeX DOI

@article{KlussRH2022BlossomClusterBased,
  author = {Benedikt Kluss and Samaneh Rashidibajgan and Thomas Hupperich},
  title = {Blossom: Cluster-Based Routing for Preserving Privacy in Opportunistic Networks},
  journal = {Journal of Sensor and Actuator Networks (JSAN)},
  year = {2022},
  volume = {11},
  number = {4},
  doi = {10.3390/jsan11040075},
  note = {Publication status: Published}
}

Rashidibajgan, S., & Hupperich, T. (2022). Improving the Performance of Opportunistic Networks in Real World Applications Using Machine Learning Techniques. Journal of Sensor and Actuator Networks (JSAN), 11 (4), 61–90.
More details BibTeX DOI

@article{RashidibajganH2022ImprovingThe,
  author = {Samaneh Rashidibajgan and Thomas Hupperich},
  title = {Improving the Performance of Opportunistic Networks in Real World Applications Using Machine Learning Techniques},
  journal = {Journal of Sensor and Actuator Networks (JSAN)},
  year = {2022},
  volume = {11 (4)},
  pages = {61--90},
  doi = {10.3390/jsan11040061},
  note = {Publication status: Published}
}

2021

Research article (journal)

Hosseini, H., Degeling, M., Utz, C., & Hupperich, T. (2021). Unifying Privacy Policy Detection. Proceedings on Privacy Enhancing Technologies (PoPETs), 2021(4), 480–499.
More details BibTeX Full text DOI

@article{HosseiniDUH2021UnifyingPrivacy,
  author = {Henry Hosseini and Martin Degeling and Christine Utz and Thomas Hupperich},
  title = {Unifying Privacy Policy Detection},
  journal = {Proceedings on Privacy Enhancing Technologies (PoPETs)},
  year = {2021},
  volume = {2021},
  number = {4},
  pages = {480--499},
  doi = {10.2478/popets-2021-0081},
  url = {https://doi.org/10.2478/popets-2021-0081},
  note = {Publication status: Published}
}

Rashidibajgan, S., Hupperich, T., Doss, R., & Förster, A. (2021). Secure and privacy preserving structure in Opportunistic Networks. Computers & Security, 103.
More details BibTeX

@article{RashidibajganHDF2021SecureAndPrivacy,
  author = {S Rashidibajgan and T Hupperich and R Doss and A Förster},
  title = {Secure and privacy preserving structure in Opportunistic Networks},
  journal = {Computers & Security},
  year = {2021},
  volume = {103},
  note = {Publication status: Published}
}

Working paper

Becker, J., Distel, B., Grundmann, M., Hupperich, T., Kersting, N., Löschel, A., Parreira, d. A. M., & Scholta, H. (2021). Challenges and Potentials of Digitalisation for Small and Mid-sized Towns: Proposition of a Transdisciplinary Research Agenda. In Becker, J., Dugas, M., Gieseke, F., Hellingrath, B., Hoeren, T., Klein, S., Kuchen, H., Trautmann, H., & Vossen, G. (Eds.), Working Papers: Vol. 36. Münster: European Research Center for Information Systems.
More details BibTeX Full text

@techreport{BeckerDGHKLPS2021Challenges,
  author = {Jörg Becker and Bettina Distel and Matthias Grundmann and Thomas Hupperich and Norbert Kersting and Andreas Löschel and do Amaral Marcelo Parreira and Hendrik Scholta},
  title = {Challenges and Potentials of Digitalisation for Small and Mid-sized Towns: Proposition of a Transdisciplinary Research Agenda},
  institution = {European Research Center for Information Systems},
  series = {Working Papers},
  number = {36},
  volume = {36},
  editor = {J. Becker and M. Dugas and F. Gieseke and B. Hellingrath and T. Hoeren and S. Klein and H. Kuchen and H. Trautmann and G. Vossen},
  year = {2021},
  address = {Münster},
  url = {https://www.ercis.org/sites/ercis/files/structure/network/research/ercis-working-papers/ercis_wp_36.pdf},
  note = {Publication status: Published}
}

2020

Research article in proceedings (conference)

Hupperich, T., & Dassel, K. (2020). On the Usefulness of User Nudging and Strength Indication concerning Unlock Pattern Security. In Proceedings of the IEEE International Conference On Trust, Security And Privacy In Computing And Communications, Guangzhou.
More details BibTeX

@inproceedings{HupperichD2020OnTheUsefulness,
  author = {T Hupperich and K Dassel},
  title = {On the Usefulness of User Nudging and Strength Indication concerning Unlock Pattern Security},
  booktitle = {Proceedings of the IEEE International Conference On Trust, Security And Privacy In Computing And Communications},
  year = {2020},
  address = {Guangzhou},
  note = {Publication status: Published}
}

Rashidibajgan, S., Hupperich, T., Doss, R., & Pan, L. (2020). Opportunistic Tracking in Cyber-Physical Systems. In Proceedings of the IEEE International Conference On Trust, Security And Privacy In Computing And Communications, Guangzhou.
More details BibTeX

@inproceedings{RashidibajganHDP2020Opportunistic,
  author = {S Rashidibajgan and T Hupperich and R Doss and L Pan},
  title = {Opportunistic Tracking in Cyber-Physical Systems},
  booktitle = {Proceedings of the IEEE International Conference On Trust, Security And Privacy In Computing And Communications},
  year = {2020},
  address = {Guangzhou},
  note = {Publication status: Published}
}

Research article (journal)

Rashidibajgan, S., & Hupperich, T. (2020). A Secure and Reliable Structure in Opportunistic Networks. Journal of Information System Security, 2020.
More details BibTeX

@article{RashidibajganH2020ASecureAnd,
  author = {S Rashidibajgan and T Hupperich},
  title = {A Secure and Reliable Structure in Opportunistic Networks},
  journal = {Journal of Information System Security},
  year = {2020},
  volume = {2020},
  note = {Publication status: Published}
}

2018

Research article in proceedings (conference)

Bortolameotti, R., van Ede, T., Continella, A., Hupperich, T., Everts, M., Rafati, R., Jonker, W., Hartel, P., & Peter, A. (2018). HeadPrint: Detecting Anomalous Communications through Header-based Application Fingerprinting. In Proceedings of the ACM Symposium on Applied Computing, Brno, Czech Republic.
More details BibTeX

@inproceedings{BortolameottiVECHERJHP2018HeadPrint,
  author = {Riccardo Bortolameotti and Thijs {van Ede} and Andrea Continella and Thomas Hupperich and Maarten Everts and Reza Rafati and Willem Jonker and Pieter Hartel and Andreas Peter},
  title = {HeadPrint: Detecting Anomalous Communications through Header-based Application Fingerprinting},
  booktitle = {Proceedings of the ACM Symposium on Applied Computing},
  year = {2018},
  address = {Brno, Czech Republic},
  note = {Publication status: Published}
}

Hupperich, T., Tatang, D., Wilkop, N., & Holz, T. (2018). An Empirical Study on Online Price Differentiation. In Proceedings of the ACM Conference on Data and Applications Security and Privacy (CODASPY 2018), Tempe, Arizona, USA, 76–83.
More details BibTeX

@inproceedings{HupperichTWH2018AnEmpirical,
  author = {T Hupperich and D Tatang and N Wilkop and T Holz},
  title = {An Empirical Study on Online Price Differentiation},
  booktitle = {Proceedings of the ACM Conference on Data and Applications Security and Privacy (CODASPY 2018)},
  pages = {76--83},
  year = {2018},
  address = {Tempe, Arizona, USA},
  issn = {145035632X},
  note = {Publication status: Published}
}

2017

Research article (journal)

Hupperich, T., Tatang, D., Wilkop, N., & Holz, T. (2017). An Empirical Study on Price Differentiation Based on System Fingerprints. arXiv preprint arXiv:1712.03031, 2017.
More details BibTeX

@article{HupperichTWH2017AnEmpirical,
  author = {T Hupperich and D Tatang and N Wilkop and T Holz},
  title = {An Empirical Study on Price Differentiation Based on System Fingerprints},
  journal = {arXiv preprint arXiv:1712.03031},
  year = {2017},
  volume = {2017},
  note = {Publication status: Published}
}

Krombholz, K., Hupperich, T., & Holz, T. (2017). May the Force Be with You: The Future of Force-Sensitive Authentication. IEEE Internet Computing, 21(3), 64–69.
More details BibTeX DOI

@article{KrombholzHH2017MayTheForce,
  author = {K Krombholz and T Hupperich and T Holz},
  title = {May the Force Be with You: The Future of Force-Sensitive Authentication},
  journal = {IEEE Internet Computing},
  year = {2017},
  volume = {21},
  number = {3},
  pages = {64--69},
  doi = {10.1109/MIC.2017.78},
  note = {Publication status: Published}
}

Thesis (doctoral or post-doctoral)

Hupperich, T. (2017). On the feasibility and impact of digital fingerprinting for system recognition. at the Ruhr-Universität Bochum, Germany.
More details BibTeX

@phdthesis{Hupperich2017OnTheFeasibility,
  author = {T Hupperich},
  title = {On the feasibility and impact of digital fingerprinting for system recognition},
  school = {Ruhr-Universität Bochum, Germany},
  volume = {2017},
  year = {2017},
  note = {Publication status: Published}
}

2016

Research article in proceedings (conference)

Hupperich, T., Krombholz, K., & Holz, T. (2016). Sensor Captchas: On the Usability of Instrumenting Hardware Sensors to Prove Liveliness. In Proceedings of the 9th International Conference on Trust & Trustworthy Computing (TRUST), Vienna, Austria, 40–59.
More details BibTeX DOI

@inproceedings{HupperichKH2016SensorCaptchas,
  author = {T Hupperich and K Krombholz and T Holz},
  title = {Sensor Captchas: On the Usability of Instrumenting Hardware Sensors to Prove Liveliness},
  booktitle = {Proceedings of the 9$^{th}$ International Conference on Trust & Trustworthy Computing (TRUST)},
  pages = {40--59},
  year = {2016},
  address = {Vienna, Austria},
  doi = {10.1007/978-3-319-45572-3_3},
  note = {Publication status: Published}
}

Hupperich, T., Hosseini, H., & Holz, T. (2016). Leveraging Sensor Fingerprinting for Mobile Device Authentication. In Caballero, J., Zurutuza, U., & Rodríguez, R. J. (Eds.), DIMVA 2016: Proceedings of the 13th International Conference on Detection of Intrusions and Malware, and Vulnerability Assessment (pp. 377–396). Spain: Springer.
More details BibTeX DOI

@inproceedings{HupperichHH2016Leveraging,
  author = {Thomas Hupperich and Henry Hosseini and T Holz},
  title = {Leveraging Sensor Fingerprinting for Mobile Device Authentication},
  booktitle = {DIMVA 2016: Proceedings of the 13$^{th}$ International Conference on Detection of Intrusions and Malware, and Vulnerability Assessment},
  pages = {377--396},
  editor = {Juan Caballero and Urko Zurutuza and Ricardo J. Rodríguez},
  year = {2016},
  publisher = {Springer},
  address = {Spain},
  doi = {10.1007/978-3-319-40667-1_19},
  note = {Publication status: Published}
}

Krombholz, K., Hupperich, T., & Holz, T. (2016). Use the force: Evaluating force-sensitive authentication for mobile devices. In Proceedings of the welfth Symposium on Usable Privacy and Security (SOUPS 2016), Denver, USA, 207–219.
More details BibTeX

@inproceedings{KrombholzHH2016UseTheForce,
  author = {K Krombholz and T Hupperich and T Holz},
  title = {Use the force: Evaluating force-sensitive authentication for mobile devices},
  booktitle = {Proceedings of the welfth Symposium on Usable Privacy and Security (SOUPS 2016)},
  pages = {207--219},
  year = {2016},
  address = {Denver, USA},
  note = {Publication status: Published}
}

2015

Research article in proceedings (conference)

Hupperich, T., Maiorca, D., Kührer, M., Holz, T., & Giacinto, G. (2015). On the robustness of mobile device fingerprinting: Can mobile users escape modern web-tracking mechanisms?. In Proceedings of the 31th Annual Computer Security Applications Conference (ACSAC), Los Angeles, California, USA, 191–200.
More details BibTeX

@inproceedings{HupperichMKHG2015OnTheRobustness,
  author = {T Hupperich and D Maiorca and M Kührer and T Holz and G Giacinto},
  title = {On the robustness of mobile device fingerprinting: Can mobile users escape modern web-tracking mechanisms?},
  booktitle = {Proceedings of the 31$^{th}$ Annual Computer Security Applications Conference (ACSAC)},
  pages = {191--200},
  year = {2015},
  address = {Los Angeles, California, USA},
  issn = {1450336825},
  note = {Publication status: Published}
}

Kührer, M., Hupperich, T., Bushart, J., Rossow, C., & Holz, T. (2015). Going wild: Large-scale classification of open DNS resolvers. In Proceedings of the 15th ACM Internet Measurement Conference (IMC), Tokyo, Japan, 355–368.
More details BibTeX

@inproceedings{KuehrerHBRH2015GoingWild,
  author = {M Kührer and T Hupperich and J Bushart and C Rossow and T Holz},
  title = {Going wild: Large-scale classification of open DNS resolvers},
  booktitle = {Proceedings of the 15$^{th}$ ACM Internet Measurement Conference (IMC)},
  pages = {355--368},
  year = {2015},
  address = {Tokyo, Japan},
  issn = {1450338488},
  note = {Publication status: Published}
}

Uellenbeck, S., Hupperich, T., Wolf, C., & Holz, T. (2015). Tactile One-Time Pad: Leakage-Resilient Authentication for Smartphones. In Proceedings of the Financial Cryptography and Data Security, San Juan, Puerto Rico, 237–253.
More details BibTeX DOI

@inproceedings{UellenbeckHWH2015TactileOneTime,
  author = {S Uellenbeck and T Hupperich and C Wolf and T Holz},
  title = {Tactile One-Time Pad: Leakage-Resilient Authentication for Smartphones},
  booktitle = {Proceedings of the Financial Cryptography and Data Security},
  pages = {237--253},
  year = {2015},
  address = {San Juan, Puerto Rico},
  doi = {10.1007/978-3-662-47854-7_15},
  note = {Publication status: Published}
}

Research article (journal)

Hupperich, T., Maiorca, D., Kührer, M., Holz, T., & Giacinto, G. (2015). On the Effectiveness of Fingerprinting Mobile Devices Investigating Modern Web-Tracking Mechanisms. Horst Görtz Institut für IT-Sicherheit (HGI), 2015.
More details BibTeX

@article{HupperichMKHG2015OnTheEffectiveness,
  author = {T Hupperich and D Maiorca and M Kührer and T Holz and G Giacinto},
  title = {On the Effectiveness of Fingerprinting Mobile Devices Investigating Modern Web-Tracking Mechanisms},
  journal = {Horst Görtz Institut für IT-Sicherheit (HGI)},
  year = {2015},
  volume = {2015},
  note = {Publication status: Published}
}

Other scientific publication

Hupperich, T. (2015). Mobile Device Fingerprinting.
More details BibTeX

@techreport{Hupperich2015MobileDevice,
  author = {T Hupperich},
  title = {Mobile Device Fingerprinting},
  institution = {},
  year = {2015},
  note = {Publication status: Published}
}

2014

Research article in proceedings (conference)

Kührer, M., Hupperich, T., Rossow, C., & Holz, T. (2014). Exit from Hell? Reducing the Impact of Amplification DDoS Attacks. In Proceedings of the 23rd USENIX Security Symposium, San Diego, California, USA, 111–125.
More details BibTeX

@inproceedings{KuehrerHRH2014ExitFromHell,
  author = {M Kührer and T Hupperich and C Rossow and T Holz},
  title = {Exit from Hell? Reducing the Impact of Amplification DDoS Attacks.},
  booktitle = {Proceedings of the 23$^{rd}$ USENIX Security Symposium},
  pages = {111--125},
  year = {2014},
  address = {San Diego, California, USA},
  note = {Publication status: Published}
}

Kührer, M., Hupperich, T., Rossow, C., & Holz, T. (2014). Hell of a Handshake: Abusing TCP for Reflective Amplification DDoS Attacks. In Proceedings of the 8th USENIX Workshop on Offensive Technologies (WOOT), San Diego, California, USA.
More details BibTeX

@inproceedings{KuehrerHRH2014HellOfAHandshake,
  author = {M Kührer and T Hupperich and C Rossow and T Holz},
  title = {Hell of a Handshake: Abusing TCP for Reflective Amplification DDoS Attacks.},
  booktitle = {Proceedings of the 8$^{th}$ USENIX Workshop on Offensive Technologies (WOOT)},
  year = {2014},
  address = {San Diego, California, USA},
  note = {Publication status: Published}
}

Research article (journal)

Uellenbeck, S., Hupperich, T., Wolf, C., & Holz, T. (2014). Tactile one-time pad: smartphone authentication resilient against shoulder surfing. Tech. rep., Horst Görtz Institute for IT-Security (HGI), HGI-2014–003;, 2014.
More details BibTeX

@article{UellenbeckHWH2014TactileOneTime,
  author = {S Uellenbeck and T Hupperich and C Wolf and T Holz},
  title = {Tactile one-time pad: smartphone authentication resilient against shoulder surfing},
  journal = {Tech. rep., Horst Görtz Institute for IT-Security (HGI), HGI-2014–003;},
  year = {2014},
  volume = {2014},
  note = {Publication status: Published}
}

Other scientific publication

Kührer, M., Hupperich, T., Rossow, C., & Holz, T. (2014). Amplification DDoS Attacks.
More details BibTeX

@techreport{KuehrerHRH2014Amplification,
  author = {M Kührer and T Hupperich and C Rossow and T Holz},
  title = {Amplification DDoS Attacks},
  institution = {},
  year = {2014},
  note = {Publication status: Published}
}

2012

Research article in proceedings (conference)

Hupperich, T., Löhr, H., Sadeghi, A., & Winandy, M. (2012). Flexible patient-controlled security for electronic health records. In Proceedings of the ACM SIGHIT International Symposium on Health Informatics (IHI), Miami, Florida, USA, 727–732.
More details BibTeX

@inproceedings{HupperichLSW2012FlexiblePatientControlled,
  author = {T Hupperich and H Löhr and A Sadeghi and M Winandy},
  title = {Flexible patient-controlled security for electronic health records},
  booktitle = {Proceedings of the ACM SIGHIT International Symposium on Health Informatics (IHI)},
  pages = {727--732},
  year = {2012},
  address = {Miami, Florida, USA},
  issn = {1450307817},
  note = {Publication status: Published}
}