..

Contact

Prof. Dr. Werner Schindler (BSI)
Head of CASCADE

CASCADE research group / CASED
Mornewegstrasse 32
D-64293 Darmstadt
Germany

+49 6151 16 70472
+49 6151 16 4825

Follow us on


CASCADE is supported by





Prof. Dr. Werner Schindler

Bundesamt für Sicherheit in der Informationstechnik (BSI)

phone: +49 228 9582 5652
e-mail: werner.schindler{at}bsi.bund.de

phone: +49 6151 16 70472  (CASED)
e-mail: werner.schindler{at}cased.de
 

Visitor Address:

Center for Advanced Security Research Darmstadt (CASED)
Mornewegstrasse 32, D-64293 Darmstadt, 4th floor, room 4.2.15

Postal Address:

Center for Advanced Security Research Darmstadt (CASED)
Mornewegstrasse 32, D-64293 Darmstadt

Principal Investigator

Prof. Dr. Werner Schindler is Federal employee at the Bundesamt für Sicherheit in der Informationstechnik (BSI – Federal Office for Information Technology Security) in Bonn and represents the Federal Authority within the scope of its cooperation with CASED. He is also adjunct professor in the Mathematics Department of the Darmstadt University of Technology.

Werner Schindler plays a key role in the “Secure Things” area at CASED. He has founded the workgroup CASCADE, which mainly deals with constructive side channel analysis, secure design of side channel-resistant implementations and with the interaction between attack and design. His key areas of responsibility at the BSI include the analysis and assessment of cryptographic algorithms and protocols as well as IT systems with cryptographic components.

He produces regular professional reports for juridical proceedings dealing with the misuse of bank cards and credit cards via ATMs, and has a wealth of experience in the performance of security analysis for electronic payment systems.

With regard to the scientific aspects of cryptography and IT security, Werner Schindler deals primarily with side channel attacks, the analysis of physical random number generators and hash functions.

His previous fields of research include measurement and integration theory as well as stochastic simulations.

Short curriculum vitae

  • since 2009 - Principal Investigator at CASED and head of CASCADE

  • since 2005 - Professor in the Mathematics Department of the Darmstadt University of Technology

  • since 1993 - BSI employee

  • 1991 bis 1993 - scientific assistant at the University of Regensburg

  • 1998 - Habilitation in mathematics at the Darmstadt University of Technology

  • 1991 - Doctoral degree in mathematics at the Darmstadt University of Technology

  • 1989 - Degree in mathematics at the Darmstadt University of Technology

Fields of interest

  • side channel analysis

  • interaction between side channel attacks and design

  • random number generators for cryptographic applications

  • cryptographic algorithms and protocols

  • stochastic simulations

  • measure and integration theory with applications

Teaching

Since 1999 Werner Schindler has held about 20 courses and seminars at Darmstadt Technical University, University of Bonn and B-IT (Bonn-Aachen International Center for Information Technology). He has treated several fields and a large number of topics in cryptography and IT security (side channel attacks, fault analysis, cryptographic algorithms and protocols, lattices, RNGs, IT security in general, legal aspects). 

List of Publications

Monographs

  1. W. Schindler: Measures with Symmetry Properties. Springer, Lecture Notes in Mathematics 1808, Berlin 2003, IX, 167 pages.

Contributions to Books

  1. W. Schindler: Side-Channel Analysis -- Mathematics has Met Engineering. In: Design Methodologies for Secure Embedded Systems. Springer, Lecture Notes in Electrical Engineering 78, Berlin 2010, 43--62.
  2. W. Schindler: Random Number Generators for Cryptographic Applications. In: Ç.K. Koç (ed.): Cryptographic Engineering. Springer, Berlin 2009, 5-23.
  3. W. Schindler: Evaluation Criteria for Physical Random Number Generators. In: Ç.K. Koç (ed.): Cryptographic Engineering. Springer, Berlin 2009, 25-54.
  4. W. Schindler: Sicherheitsaspekte elektronischer Geldbörsen und des nicht-chipgestützten Geldes. In: F. Braatz, U. Brinker und H.-J. Friederich (eds.): Alles über Zahlungsverkehr mit Karten, Hermann Luchterhand-Verlag, Neuwied, Kriftel 1999, 467-488.

Publications in Journals

  1. W. Schindler: Advanced Stochastic Methods in Side Channel Analysis on Block Ciphers in the Presence of Masking. J. Math. Crypt. 2 (2008), 291-310.
  2. M. Lochter, W. Schindler: Zum Missbrauch von PIN-gestützten Transaktionen mit ec- und Kreditkarten aus Gutachtersicht. MMR - MultiMedia und Recht 5/2006, 292-297.
  3. W. Schindler: Eine abzählbare Familie unabhängiger Zufallsvariablen (Problem). Elem. Math. 61 (2006), Aufgabe 1230, 81.
  4. G. Illies, W. Schindler: Kollisionsangriffe gegen Hashfunktionen - Auswirkungen und Stand der Entwicklung. KES (Zeitschrift für Kommunikations- und EDV-Sicherheit) 5/2005, 58-61.
  5. W. Schindler: Optimized Timing Attacks against Public Key Cryptosystems. Statist. Decisions 20 (2002), 191-210.
  6. W. Schindler: Sichere digitale Kommunikation - Motivation, Anforderungen, mathematisch-technische Realisierung und rechtliche Aspekte. Kommunikation & Recht 09/2002, 481-490.
  7. W. Schindler: Magnetstreifenkarten - preisgünstig, aber nicht immer sicher. WiK - Zeitschrift für die Sicherheit in der Wirtschaft 5/2001, 72-74.
  8. W. Schindler: How to become a Wizard at Figures. Aust. Math. Soc. Gaz. 28 (2001), 184-186.
  9. W. Schindler: Was zeichnet gute Pseudozufallszahlen aus? KES (Zeitschrift für Kommunikations- und EDV-Sicherheit) 3/2000, 57-60.
  10. W. Schindler: An Isoperimetrical Problem in n Dimensions - an Elementary Proof. Math. Gaz. 83 (1999), 433-439.
  11. W. Schindler: Sicherheitsaspekte der elektronischen Unterschrift. Kommunikation & Recht 10/1998, 433-439.
  12. Die neuen PIN-Nummern der ec-Karten. Aufsatz in Interviewform, NJW-CoR (Neue Juristische Wochenschrift - Computerreport) 4/1998, 223-226.
  13. ec-Karten: Wie sicher sind die PIN-Nummern? Aufsatz in Interviewform, NJW-CoR (Neue Juristische Wochenschrift - Computerreport) 5/1997, 283-285.
  14. W. Schindler: On the Efficient Simulation of a Particular Class of Random Rotations Relevant to Computer Graphics. J. Comput. Appl. Math. 81 (1997), 107-114.
  15. W. Schindler: Bi-invariant Integrals on GL(n) with Applications. Math. Nachr. 173 (1995), 297-320.
  16. W. Schindler: Equivariant Mappings: A New Approach in Stochastic Simulations. Comput. Geom. 4 (1994), 327-343.
  17. W. Schindler: The Volume of a Non-Trivial Subset of [0,1]¥. Amer. Math. Mon. (1994), Problem 10402, 682.
  18. W. Schindler: A Generalization of Weyl's Integration Theorem and its Meaning for Stochastic Simulations. Math. Oper. Res. 19 (1994), 523-538.
  19. W. Schindler: A Sufficient Statistic for Con-invariant Test Problems. Math. Nachr. 169 (1994), 243-265.
  20. W. Schindler: Iwasawa's Theorem and Integrals on Lie Groups. Math. Nachr. 162 (1993), 315-327.
  21. J. Bokowski, J. Richter und W. Schindler: On the Distribution of Order Types. Comput. Geom. 1 (1992), 127-142.

Publications in Reviewed Proceedings

  1. A. Heuser, W. Schindler, M. Stöttinger: Revealing Side-Channel Issues of Complex Circuits
    by High-Dimensional Leakage Models. To appear in: Design, Automation & Test in Europe --- DATE 2012, IEEE Press 2012.
  2. A. Heuser, M. Kasper, W. Schindler, M. Stöttinger: A New Difference Method for Side-Channel Analysis with High-Dimensional Leakage Models. To appear in: O. Dunkelman: (Hrsg.): Topics in Cryptology --- CT-RSA 2012, Springer, Lecture Notes in Computer Science 7178, Berlin 2012, 365--382.
  3. W. Schindler, K. Itoh: Exponent Blinding Does not Automatically Lift (Partial) SPA Resistance to Higher-Level Security. In: J. Lopez, G. Tsudik (eds.): Applied Cryptography and Network Security --- ACNS 2011, Springer, Lecture Notes in Computer Science 6715, Berlin 2011, 73 -- 90.
  4. A. Heuser, M. Kasper, W. Schindler, M. Stöttinger: How a Symmetry Metric Assists Side-Channel Evaluation - A Novel Model Verification Method for Power Analysis. In: 14th Euromicro Conference On Digital System Design: Architectures, Methods and Tools --- DSD 2011, IEEE Press 2011
  5. M. Kasper, W. Schindler, M. Stöttinger: A Stochastic Method for Security Evaluation of Cryptographic FPGA Implementations. In: 2010 International Conference on Field-Programmable Technology --- FPT 2010, IEEE Press, CFP10528_CDR, 2010, 146--153.
  6. W. Schindler, C. Walter: Optimal Recovery of Secret Keys from Weak Side Channel Traces. In: M.G. Parker (ed.): Cryptography and Coding - IMA 2009, Springer, Lecture Notes in Computer Science 5921, Berlin 2009, 446-468.
  7. T. Finke, M. Gebhardt, W. Schindler: A New Side-Channel Attack on RSA Prime Generation. In: C. Clavier, K. Gaj (eds.): Cryptographic Hardware and Embedded Systems - CHES 2009, Springer, Lecture Notes in Computer Science 5747, Berlin 2009, 141-155.
  8. F.-X. Standaert, F. Koeune, W. Schindler: How to Compare Profiled Side-Channel Attacks. In: M. Abdalla, D. Pointcheval, P.-A. Fouque, D. Vergnaud (eds.): Applied Cryptography and Network Security - ACNS 2009, Springer, Lecture Notes in Computer Science 5536, Berlin 2009, 485-498.
  9. T. Biere, W. Schindler: Langzeitarchive: Verlust der Sicherheitseignung der Hashfunktion. In: P. Horster, P. Schartner (eds.): D-A-CH Security 2009, syssec Verlag, Klagenfurt 2009, 462-469.
  10. M. Gebhardt, G. Illies, W. Schindler: Auf dem Weg zum SHA-3 - Die Ausschreibung eines neuen Hashfunktionenstandards durch NIST und ihre Hintergründe. In: Sichere Wege in der vernetzten Welt - 11. Deutscher IT-Sicherheitskongress des BSI (2009), SecuMedia-Verlag, Ingelheim 2009, 489-503.
  11. W. Killmann, W. Schindler: A Design for a Physical RNG with Robust Entropy Estimators. In: E. Oswald, P. Rohatgi (eds.): Cryptographic Hardware and Embedded Systems - CHES 2008, Springer, Lecture Notes in Computer Science 5154, Berlin 2008, 146-163.
  12. O. Aciçmez, W. Schindler: A Vulnerability in RSA Implementations due to Instruction Cache Analysis and Its Demonstration on OpenSSL. In: T. Malkin (ed.): Topics in Cryptology - CT-RSA 2008, Springer, Lecture Notes in Computer Science 4964, Berlin 2008, 256-273.
  13. M. Gebhardt, G. Illies, W. Schindler: On an Approach to Compute (at least Almost) Exact Probabilities for Differential Hash Collision Paths. In: A. Alkassar, J. Siekmann (eds.): Sicherheit 2008 - Sicherheit, Schutz und Zuverlässigkeit. Gesellschaft für Informatik, Köllen-Verlag, Lecture Notes in Informatics  P-128, Bonn 2008, 111-125.
  14. M. Gebhardt, G. Illies, W. Schindler: Hashkollisionen und qualifizierte Zertifikate. In: R. Koschke, O. Herzog, K.-H. Rödiger, M. Ronthaler (eds.): Informatik 2007 - Informatik trifft Logistik, Workshop ,,Kryptographie in Theorie und Praxis". Gesellschaft für Informatik, Köllen-Verlag, Lecture Notes in Informatics P-110, Bonn 2007, 174-178.
  15. O. Aciçmez, W. Schindler, Ç.K. Koç: Cache Based Remote Timing Attack on the AES. In: M. Abe (ed.): Cryptographers' Track - CT-RSA 2007, Springer, Lecture Notes in Computer Science 4377, Berlin 2007, 271-286.
  16. M. Gebhardt, G. Illies, W. Schindler: A Note on the Practical Value of Single Hash Collisions for Special File Formats. In: J. Dittmann (ed.): Sicherheit 2006 - ,,Sicherheit - Schutz und Zuverlässigkeit". Gesellschaft für Informatik, Köllen-Verlag, Lecture Notes in Informatics P-77, Bonn 2006, 333-344.
  17. O. Aciçmez, W. Schindler, Ç.K. Koç: Improving Brumley and Boneh Timing Attack on Unprotected SSL Implementations. In: C. Meadows, P. Syverson (Hrsg): 12th ACM Conference on Computer and Communications Security - CCS 2005. ACM Press, New York 2005, 139-146.
  18. W. Schindler, K. Lemke, C. Paar: A Stochastic Model for Differential Side Channel Analysis. In: J.R. Rao, B. Sunar (eds.): Cryptographic Hardware and Embedded Systems - CHES 2005, Springer, Lecture Notes in Computer Science 3659, Berlin 2005, 30-46.
  19. U. Kaiser, C. Paar, J. Pelzl, D. Rappe, W. Schindler, A. Weimerskirch, T. Wollinger: Auswahlkriterien für kryptographische Algorithmen bei Low-Cost-RFID-Systemen. In: P. Horster (eds.): D-A-CH Security 2005, syssec Verlag, Klagenfurt 2005, 358-372.
  20. W. Schindler: On the Optimization of Side-Channel Attacks by Advanced Stochastic Methods. In: S. Vaudenay (ed.): Public Key Cryptography - PKC 2005, Springer, Lecture Notes in Computer Science 3386, Berlin 2005, 85-103.
  21. L. Ly, W. Schindler: How to Embed Short Cycles into Large Nonlinear Feedback Shift Registers. In: C. Blundo, S. Cimato (eds.): Security in Communication Networks - SCN 2004, Springer, Lecture Notes in Computer Science 3352, Berlin 2005, 367-379.
  22. W. Schindler: A Stochastical Model and Its Analysis for a Physical Random Number Generator Presented at CHES 2002. In: K.G. Paterson (ed.): Cryptography and Coding - IMA 2003, Springer, Lecture Notes in Computer Science 2898, Berlin 2003, 276-289.
  23. W. Schindler, C. Walter: More Detail for a Combined Timing and Power Attack against Implementations of RSA. In: K.G. Paterson (ed.): Cryptography and Coding - IMA 2003, Springer, Lecture Notes in Computer Science 2898, Berlin 2003, 245-263.
  24. W. Killmann, W. Schindler: Über die Prüftiefe und die Aussagekraft von IT-Sicherheitsgutachten. In: R. Grimm, H.B. Keller, K. Rannenberg (eds.): Informatik 2003 - Mit Sicherheit Informatik: Schwerpunkt ,,Sicherheit - Schutz und Zuverlässigkeit". Gesellschaft für Informatik, Köllen-Verlag, Lecture Notes in Informatics P-36, Bonn 2003, 203-214.
  25. F. Niedermeyer, W. Schindler: On a Class of Key Agreement Protocols which Cannot be Unconditionally Secure. In: S. Cimato, C. Galdi, G. Persiano (eds.): Security in Communication Networks - SCN 2002. Springer, Lecture Notes in Computer Science 2576, Berlin 2003, 133-145.
  26. W. Schindler, W. Killmann: Evaluation Criteria for True (Physical) Random Number Generators Used in Cryptographic Applications. In: B.S. Kaliski Jr., Ç.K. Koç, C. Paar (eds.): Cryptographic Hardware and Embedded Systems - CHES 2002, Springer, Lecture Notes in Computer Science 2523, Berlin 2003, 431-449.
  27. W. Schindler: A Combined Timing and Power Attack. In: P. Paillier, D. Naccache (eds.): Public Key Cryptography - PKC 2002, Springer, Lecture Notes in Computer Science 2274, Berlin 2002, 263-279.
  28. W. Schindler, F. Koeune, J.-J. Quisquater: Improving Divide and Conquer Attacks Against Cryptosystems by Better Error Detection / Correction Strategies. In: B. Honary (ed.): Cryptography and Coding - IMA 2001, Springer, Lecture Notes in Computer Science 2260, Berlin 2001, 245-267.
  29. W. Schindler: Efficient Online Tests for True Random Number Generators. In: Ç.K. Koç, D. Naccache, C. Paar (eds.): Cryptographic Hardware and Embedded Systems - CHES 2001, Springer, Lecture Notes in Computer Science 2162, Berlin 2001, 103-117.
  30. W. Schindler: A Timing Attack against RSA with the Chinese Remainder Theorem. In: Ç.K. Koç, C. Paar (eds.): Cryptographic Hardware and Embedded Systems - CHES 2000, Springer, Lecture Notes in Computer Science 1965, Berlin 2000, 109-124.
  31. W. Schindler: Zufallszahlen in kryptographischen Anwendungen. In: 6. Deutscher IT-Sicherheitskongreß des BSI (1999), SecuMedia-Verlag, Ingelheim 1999, 267-285.
  32. W. Schindler: Kryptographie bei Chipkartensystemen - Einfälle und Reinfälle. In: 5. Deutscher IT-Sicherheitskongreß des BSI (1997), SecuMedia-Verlag, Ingelheim 1997, 241-248.

Evaluation Guidances for IT Products

  1. W. Killmann, W. Schindler: A Proposal For: Functionality Classes and Evaluation Methodology for True (Physical) Random Number Generators (English translation). Mathematical-technical appendix to AIS 31 ,,Functionality Classes and Evaluation Methodology for Physical Random Number Generators, Version 1 (25.09.2001)".
    https://www.bsi.bund.de/cae/servlet/contentblob/478134/publicationFile/30517/trngk31e-pdf.pdf
  2. W. Schindler: Functionality Classes and Evaluation Methodology for Deterministic Random Number Generators (English translation). Mathematical-technical appendix to AIS 20 ,,Functionality Classes and Evaluation Methodology for Deterministic Random Number Generators, Version 1 (02.12.1999)".
    https://www.bsi.bund.de/cae/servlet/contentblob/478152/publicationFile/30552/ais20e-pdf.pdf

Postdoctoral thesis, PhD thesis, Diploma thesis

  1. Habilitationsschrift: Maße mit Symmetrieeigenschaften. Fachbereich Mathematik der TU Darmstadt, 1998. Referenten: Prof. Dr. K.H. Hofmann, Prof. Dr. J. Lehn, Prof. Dr. G. Ritter (Universität Passau).
  2. Dissertation: Über das Erzeugen und Testen von Pseudozufallselementen. Fachbereich Mathematik der TU Darmstadt, 1991. Referent: Prof. Dr. J. Lehn, Korreferent: Prof. Dr. K.H. Hofmann.
  3. Diplomarbeit: Über die Simulation von Zufallselementen. Fachbereich Mathematik der TU Darmstadt, 1989. Referenten: Prof. Dr. K.H. Hofmann, Prof. Dr. J. Lehn.

Further Publications

  1. W. Schindler: Seitenkanalangriffe gegen Chipkarten und Sicherheitssoftware auf PCs. In: U. Waldmann, T.T. Kniess (eds.): 19. SIT SmartCard Workshop, Fraunhofer SIT, Darmstadt 2009, 25-34.
  2. M. Gebhardt, G. Illies, W. Schindler: Computing Almost Exact Probabilities of Differential Hash Collision Paths by Applying Appropriate Stochastic Methods. Cryptology ePrint Archive, Report 2008/022,
    http://eprint.iacr.org/2008/022
  3. O. Aciçmez, W. Schindler: A Major Vulnerability in RSA Implementations due to MicroArchitectural Analysis Threat. Cryptology ePrint Archive, Report 2007/336, http://eprint.iacr.org/2007/336
  4. M. Gebhardt, G. Illies, W. Schindler: Precise Probabilities of Hash Collision Paths. Second Cryptographic Hash Workshop Santa Barbara, USA 2006; http://www.csrc.nist.gov/pki/HashWorkshop/2006/Papers/
  5. W. Schindler: Elektronische Zahlungssysteme und Homebanking - Funktionalität und Sicherheit. In: C. Eckert (ed.): thema Forschung - IT-Sicherheit, TU Darmstadt, Verlag für Marketing und Kommunikation GmbH & Co. KG, Monsheim 2004, 86-90.
  6. W. Schindler, F. Koeune, J.-J. Quisquater: Unleashing the Full Power of Timing Attack. Katholische Universität Louvain, Belgien, Technical Report CG-2001/3, 17 Seiten.
  7. W. Schindler: A Statistical Test for Markovian Pseudorandon Numbers. Regensburger Beiträge zur Statistik und Ökonometrie, 30 (1991).