Max Maass

Max Maass

Contact

mas maaß team pic mg

E-mail:

Telephone:+49 6151 16-25473

Fax:+49 6151 16-25471

Office:S4|14 4.2.13

Address:
Secure Mobile Networking Lab
Department of Computer Science
Technische Universität Darmstadt
CYSEC, TU Darmstadt
Mornewegstr. 32 (S4|14)
D-64293 Darmstadt

Research Interests

  • Privacy, Transparency and their interplay
  • Privacy in the Web
  • Privacy Law and its application

Open Theses

  • 2019/11/08

    Privacy-Preserving Opt-Out System for Internet Scans

    Bachelor Thesis

    Scans of the Internet, both of IP ranges and websites, are often used by researchers, but sometimes perceived as undesirable or even an attack by system administrators of the scanned systems. These administrators are usually given the option to opt-out of an ongoing study, but so far, these opt-out decisions have to be manually made for every study.

    It would be very useful to have a global database of websites and IP ranges that do not wish to be automatically scanned. In this Bachelor thesis, you will consider what requirements such a system would need to fulfill, considering, for example:

    - Verification of opt-out entries (so that only authorized people can generate a valid opt-out)

    - Opt-out based on different purposes (do people want to only opt out of specific studies)

    - How to share the lists of opted-out websites with researchers in a privacy-preserving way (e.g., using techniques similar to Safe Browsing)

    - Depending on your inclination, you can also consider additional factors, like legal requirements, or the option to provide contact addresses in case scans find problems with a website / IP range, similar to shadowserver.org

    After considering these requirements, you would then build a prototype of this system.

    Due to the engineering-heavy topic, I am currently only announcing this as a bachelor thesis. However, if you have a good argument why this should be sufficient for a master thesis (e.g., by adding additional tasks to the topic, like a user study), feel free to reach out to me.

Ongoing Theses

  • 2019/10/15

    Applicability of IoT Security Frameworks as Guidelines for Penetration Testing

    Master Thesis

  • 2019/10/15

    Semi-Automated Reverse Engineering Tool Support

    Master Thesis

  • 2019/10/15

    Communicating Privacy and Security issues

    Bachelor Thesis

  • 2019/09/24

    Detecting Extension Abuse in the Wild

    Master Thesis

  • 2019/04/30

    PrivacyGraph - A Holistic View of the Online Tracking Ecosystem

    Bachelor Thesis

Supervised Theses

  • 2019/05/02

    PrivacyMail - Analyzing the Email Tracking Ecosystem

    Master Thesis

  • 2019/04/26

    Applicability of Penetration Testing Guides for the Internet of Things

    Master Thesis

  • 2019/02/14

    Inferring Keystrokes from Myo Armband Electromyographic and Inertial Measurement Unit Data

    Master Thesis

  • 2018/08/13

    Testing the Efficacy of Vulnerability Disclosure over different Channels

    Bachelor Thesis

  • 2018/05/22

    Analyzing and Evaluating Interface, Communication, and Web Security in Productive IoT Systems

  • 2018/05/15

    Performance Comparision of Packet Schemes for Mutually Hidden Messages

    Bachelor Thesis

  • 2018/04/18

    Analyzing Vulnerability and Privacy Data from the PrivacyScore platform

    Master Thesis

    Every day new cyber security vulnerabilities are discovered and reported, which indicate weak security standards adapted by websites. The main aim of a hacker is to steal sensitive information by exploiting these vulnerabilities. The information and data compromised can be very costly and damaging for an

  • 2018/04/12

    Privacy als Wettbewerbsfaktor? Analyse der Reaktionen von Unternehmen auf Privacy-Score-Bewertungen

    Master Thesis

  • 2017/09/30

    OAuth 2.0 for IoT: IPsec channel establishment and authorized resource access in the IoT

    Master Thesis

    To secure the Internet of Things (IoT) while keeping its interoperability with today’s Internet is crucial to unleash the full potential of the IoT. Authentication and Authorization are fundamental guarantees to enable further security and operational challenges. To fulfill these guarantees in complex and diverse scenarios, we

  • 2017/01/09

    Design, Implementation and Evaluation of Realistic Scenarios and Movement Models for Natural Disasters Using Simulations for Delay Tolerant Networks

    Master Thesis

    Seeing the continuous increase in natural disasters around the world, many people are contemplating how to contribute helping those in need. Among them are several computer scientists who fulfil their share by developing technology which enables fast and reliable communication in disaster areas. We were inspired by their work and thus wanted to further improve the state-of-the-art. DTN is a specific technology which can be used for the creation of alternative networks in disaster areas, where conventional ones are unavailable due to the inevitable destructions implied by the disaster. Given that such technology is usually evaluated within network simulators we exclusively focus on improving the state-of-the-art of movement models and scenarios utilized within such simulators. The very random driven, and thus not realistic, state-of-the-art is improved by our contribution in the form of a fully designed, implemented, and evaluated realistic natural disaster movement model with underlying scenarios. The results of our evaluation indicate that previously published results might be too optimistic. Thus, further approximations to reality are inevitable for more accurate simulation of DTN, in the goal to ultimately obtain better and more realistic results.

Publications

Exportieren als [feed] Atom [feed] RSS 1.0 [feed] RSS 2.0
Group by: Date | Item type | No grouping
Jump to: 2019 | 2018 | 2017 | 2016 | 2015
Number of items: 12.

2019

Fomichev, Mikhail ; Maass, Max ; Hollick, Matthias (2019):
Zero-Interaction Security - Towards Sound Experimental Validation.
23, In: ACM GetMobile: Mobile Comp. and Comm., (2), ACM, S. 16-21, ISSN 2375-0529, DOI: 10.1145/3372300.3372304,
[Article]

Maass, Max ; Schwär, Stephan ; Hollick, Matthias (2019):
Towards Transparency in Email Tracking.
In: LNCS, In: Privacy Technologies and Policy, In: Annual Privacy Forum 2019, Rome, Italy, June 7th and 8th, 2019, DOI: 10.1007/978-3-030-21752-5_2,
[Online-Edition: https://tuprints.ulb.tu-darmstadt.de/8725],
[Conference item]

Maass, Max ; Schwär, Stephan ; Hollick, Matthias (2019):
Towards Transparency in Email Tracking.
In: Annual Privacy Forum (LNCS), In: Proceedings of the Annual Privacy Forum 2019, Rome, Italy, Rome, [Online-Edition: https://maass.xyz/publication/maass-2019-b/maass-2019-b.pdf],
[Conference item]

Fomichev, Mikhail ; Maass, Max ; Almon, Lars ; Molina, Alejandro ; Hollick, Matthias (2019):
Perils of Zero-Interaction Security in the Internet of Things.
3, In: Proceedings of the ACM on Interactive, Mobile, Wearable and Ubiquitous Technologies (IMWUT), (1), ACM, DOI: 10.1145/3314397,
[Online-Edition: https://tuprints.ulb.tu-darmstadt.de/8516],
[Article]

Maass, Max ; Walter, Nicolas ; Herrmann, Dominik ; Hollick, Matthias (2019):
On the Difficulties of Incentivizing Online Privacy through Transparency: A Qualitative Survey of the German Health Insurance Market.
In: Wirtschaftsinformatik 2019, Siegen, Germany, 25-27.2.2019, [Online-Edition: https://tuprints.ulb.tu-darmstadt.de/8515],
[Conference item]

2018

Aragon, Santiago ; Tiloca, Marco ; Maass, Max ; Hollick, Matthias ; Raza, Shahid (2018):
ACE of Spades in the IoT Security Game: A Flexible IPsec Security Profile for Access Control.
In: 2018 IEEE Conference on Communications and Network Security (CNS), IEEE, ISSN 978-1-5386-4586-4, DOI: 10.1109/CNS.2018.8433209,
[Online-Edition: https://tuprints.ulb.tu-darmstadt.de/7696],
[Article]

2017

Stute, Milan ; Maass, Max ; Schons, Tom ; Hollick, Matthias (2017):
Reverse Engineering Human Mobility in Large-scale Natural Disasters.
In: Proceedings of MSWiM '17, 2. updated version,
In: The 20th ACM International Conference on Modeling, Analysis and Simulation of Wireless and Mobile Systems, Miami, FL, November 21-25, 2017, [Online-Edition: https://tuprints.ulb.tu-darmstadt.de/7682],
[Conference item]

Maass, Max (2017):
Web-Privacy: Lustwandeln im Trackergarten.
MRMCD 2017, [Online-Edition: https://media.ccc.de/v/DC9AG9],
[Other]

Maass, Max ; Laubach, Anne ; Herrmann, Dominik (2017):
PrivacyScore: Analyse von Webseiten auf Sicherheits- und Privatheitsprobleme - Konzept und rechtliche Zulässigkeit.
In: Proceedings of INFORMATIK 2017, Leipzig, Deutschland, [Online-Edition: https://arxiv.org/abs/1705.08889],
[Conference item]

Maass, Max ; Wichmann, Pascal ; Pridöhl, Henning ; Herrmann, Dominik (2017):
PrivacyScore: Improving Privacy and Security via Crowd-Sourced Benchmarks of Websites.
In: Proceedings of the Annual Privacy Forum 2017, Springer, Annual Privacy Forum 2017, Vienna, ISBN 978-3-319-67280-9,
DOI: 10.1007/978-3-319-67280-9_10,
[Online-Edition: https://arxiv.org/abs/1705.05139],
[Conference item]

2016

Maass, Max (2016):
A System for Privacy-Preserving Mobile Health and Fitness Data Sharing: Design, Implementation and Evaluation.
Darmstadt, Technische Universität, [Online-Edition: http://tuprints.ulb.tu-darmstadt.de/6674],
[Master thesis]

2015

Maass, Max ; Müller, Uwe ; Schons, Tom ; Wegemer, Daniel ; Schulz, Matthias (2015):
NFCGate: An NFC Relay Application for Android.
In: WiSec, In: Proceedings of the 8th ACM Conference on Security \& Privacy in Wireless and Mobile Networks, In: ACM WiSec'15, New York, June 24-26th, 2015, [Online-Edition: https://tuprints.ulb.tu-darmstadt.de/5414/],
[Conference item]

This list was generated on Fri Dec 6 05:32:48 2019 CET.

Short Biography

Max Maaß obtained a master's degree in IT Security from TU Darmstadt in September 2016. He joined Secure Mobile Networking Lab (TU Darmstadt) in October 2016 and is currently working on secure and privacy-friendly distribution and use of sensor data within the GRK 2050 “Privacy and Trust for Mobile Users”.