Dr. Matthias Wachs

Research Associate
Image 45fd299d

Postal address

  • Institut für Informatik der
  • Technischen Universität München
  • Lehrstuhl I8
  • Boltzmannstr. 3
  • 85748 Garching bei München - Germany


  • Fax: +49 89 289 - 18033
  • e-Mail: matthias.wachsAttum.de
    (GPG: 4594 6915 BA9B 3886 A7A5 91E0 271E D86D 6F53 AD12)


  • Network and communication security
  • Architectures for future communication platforms
  • Security in today's Internet
  • Secure, resilient and privacy-preserving communication
  • Name services, directory services and public key infrastructures
  • Network Analysis, intrusion and anomaly detection

My Erdős number is 5

Research projects

  • TUM User Certification and Secure E-Mail
  • OpenLab-Eclectic

Supervised Theses

In progress

Student Title Type Advisors Links
Moritz Kellermann Email in the Wild - Analyzing Email Security on the Internet BA Matthias Wachs
Stefan Fochler DANE in the Wild - Analyzing DANE Deployment on the Internet IDP Matthias Wachs, Quirin Scheitle


Author Title Type Advisors Links
Elias Hazboun Investigating Mobile Messaging Security 2 - How strong is WhatsApp/Threema/... transport security? IDP Matthias Wachs, Quirin Scheitle Pdf
Adrian Reuter A Workbench to analyze X.509 in Applications BA Matthias Wachs Pdf
Frieder Baumann Privacy Implications of mDNS BA Matthias Wachs Pdf
Michael Schollerer Mail-Security in der Cloud in Großkonzernen am Beispiel BMW Mail M.Sc. Quirin Scheitle, Matthias Wachs
Martin Schanzenbach Design and Implementation of a Censorship Resistant and Fully Decentralized Name System MA Matthias Wachs Pdf
Linus Lotz Design and Implementation of a Secure and Privacy-Preserving Notification Service for Mobile Platforms M.Sc. Matthias Wachs Pdf
Daniel Straub Design and Implementation of a Secure Directory Service for Digital Certificates M.Sc. Matthias Wachs Pdf
Maximilian Meier Enabling OpenPGP in Multi-Device Environments B.Sc. Matthias Wachs Pdf
Valentin Hauner Improving Interoperability of a Secure Directory Service using LDAP, SKS and DANE IDP Matthias Wachs Pdf
Pranav Jagdish Design and Implementation of a Management Service for Digital Certificates M.Sc. Matthias Wachs Pdf
Johannes Zirngibl Mobile Messaging Security - Who can read your messages? B.S. Quirin Scheitle, Matthias Wachs Pdf
Omar Tarabai Decentralized and Autonomous Anomaly Detection Infrastructure for Decentralized Peer-to-Peer Networks MA Matthias Wachs Pdf
Fabian Oehlmann Machine Learning Based Ressource Allocation for P2P Networks M.Sc. Matthias Wachs Pdf


2017.06 Matthias Wachs, Quirin Scheitle, Georg Carle, “Push Away Your Privacy: Precise User Tracking Based on TLS Client Certificate Authentication,” in Network Traffic Measurement and Analysis Conference (TMA), Jun. 2017. [Bib]
2016.05.02 Matthias Wachs, Nadine Herold, Stephan-A. Posselt, Florian Dold, Georg Carle, “GPLMT: A Lightweight Experimentation and Testbed Management Framework,” in Passive and Active Measurement: 17th International Conference, PAM 2016, Heraklion, Greece, Mar. 2016. [Url] [Pdf] [DOI] [Bib]
2016.03 Quirin Scheitle, Matthias Wachs, Johannes Zirngibl, Georg Carle, “Analyzing Locality of Mobile Messaging Traffic using the MATAdOR Framework,” in Passive and Active Measurements Conference (PAM) 2016 , Heraklion, Greece, Mar. 2016. [Pdf] [Preprint] [Slides] [Homepage] [DOI] [Bib]
2016.02 Ralph Holz, Johanna Amann, Olivier Mehani, Matthias Wachs, Mohamed Ali Kafaar, “TLS in the wild—An Internet-wide analysis of TLS-based protocols for electronic communication,” in Proc. Network and Distributed System Symposium (NDSS 2016), San Diego, CA, USA, Feb. 2016. [Pdf] [Bib]
2016 Nadine Herold, Matthias Wachs, Stephan-A. Posselt, Georg Carle, “An Optimal Metric-Aware Response Selection Strategy for Intrusion Response Systems,” in Foundations and Practice of Security: 8th International Symposium, FPS 2016, Quebec, Canada, October 24-26, 2016, Springer International Publishing, 2016. [Bib]
2015.02 Matthias Wachs, “A Secure and Resilient Communication Infrastructure for Decentralized Networking Applications,” PhD thesis, Technische Universität München, Feb. 2015. [Pdf] [Bib]
2014 Matthias Wachs, Martin Schanzenbach, Christian Grothoff, “A Censorship-Resistant, Privacy-Enhancing and Fully Decentralized Name System,” in Cryptology and Network Security - 13th International Conference, CANS 2014, Heraklion, Crete, Greece, October 22-24, 2014. Proceedings, 2014, pp. 127–142. [Pdf] [Bib]
2014 Matthias Wachs, Fabian Oehlmann, Christian Grothoff, “Automatic transport selection and resource allocation for resilient communication in decentralised networks,” in 14th IEEE International Conference on Peer-to-Peer Computing, P2P 2014, London, United Kingdom, September 9-11, 2014, Proceedings, 2014, pp. 1–5. [Pdf] [Bib]
2013 Matthias Wachs, Martin Schanzenbach, Christian Grothoff, “On the Feasibility of a Censorship Resistant Decentralized Name System,” in Foundations and Practice of Security - 6th International Symposium, FPS 2013, La Rochelle, France, October 21-22, 2013, Revised Selected Papers, 2013, pp. 19–30. [Pdf] [Bib]
2012.10 Christian Grothoff Matthias Wachs, Ramakrishna Thurimella, “Partitioning the Internet,” in 7th International Conference on Risks and Security of Internet and Systems CRiSIS2012, Cork, Ireland, Oct. 2012. [Pdf] [Bib]
2011.01 Alexander Klimm, Benjamin Glas, Matthias Wachs, Sebastian Vogel, Klaus D. Müller-Glaser, Jürgen Becker, “A Security Scheme for Dependable Key Insertion in Mobile Embedded Devices,” in International Journal of Reconfigurable Computing, Jan. 2011. [Pdf] [Bib]
2010.05 Alexander Klimm, Benjamin Glas, Matthias Wachs, Klaus D. Müller-Glaser, “A Secure Keyflashing Framework for Access Systems in Highly Mobile Devices,” in 5th International Workshop on Reconfigurable Communication-centric Systems-on-Chip ReCoSoC2010, Karlsruhe, Germany, May 2010. [Pdf] [Bib]