Chris Brzuska lecture at TU Eindhoven

Date:   Thursday 16.11.2017, 10-11 hr. 
Place: Filmzaal de Zwarte Doos + Lounge, Eindhoven.
Speaker: Chris Brzuska
From MiniCrypt to Obfustopia
Cryptography hinges on assumptions that, if true, imply that P is not equal to NP. Therefore, cryptographic assumptions are unlikely to be proven true in the near future.

Yet, not all cryptographic assumptions are equally likely to be true. In 2005, Russell Impagliazzo gave an invited talk titled "A personal view of Average-Case Complexity" where he distinguished between the (minimal) "MiniCrypt" world where One-Way Functions exist and the (more adventurous) "Cryptomania" world where One-Way Functions with trapdoors exist.

Since then, the cryptographic community has become substantially more adventurous. In 2009, Craig Gentry suggested a candidate fully homomorphic encryption (FHE) scheme. If FHE exists, numerous long-standing open crypto problems could be solved. In 2013, Garg, Gentry, Halevi, Raykova, Sahai and Waters suggested a candidate construction for a yet more adventurous primitive called indistinguishability obfuscation (iO). If iO exists, it solves numerous further big open problems in cryptography. Sceptics call this world "Obfustopia".

Yet, iO is not only a strong assumption, but also a conceptually intriguing object. iO is mutually exclusive with other cryptographic assumptions that were believed before... ...and (unlike most of cryptography) iO exists if P equals NP! In the talk, we will discuss the conceptual oddities of iO.


Thursday, November 16, 2017

Protecting Web Passwords from Rogue Servers using Trusted Execution Environments

Guest Lecture by Andrew Paverd
13:30, Tuesday , October 24th
Lecture Hall H
Organized by Cyber Security Group, Supported by 4TU.Nirict

Passwords are undoubtedly the most dominant user authentication mechanism on the web today. Although password-based authentication is inexpensive and easy-to-use, it faces various security concerns, including phishing and theft of password databases. Users' tendency to re-use passwords across different services further exacerbates these two concerns. Current solutions are not fully satisfactory: they typically address only one of the two concerns; they do not protect passwords from rogue servers; they do not provide users with any verifiable evidence of their (server-side) adoption; and they face deployability challenges in terms of cost for service providers and/or ease-of-use for end users.

In this talk I will present SafeKeeper, a comprehensive approach to protect the confidentiality of passwords on the web. Unlike previous approaches, SafeKeeper protects against very strong adversaries, including rogue servers and sophisticated external phishers. It is inexpensive to deploy as it (i) uses widely available hardware security mechanisms like Intel SGX; (ii) is integrated into popular web platforms like WordPress; and (iii) has small performance overhead. I will describe a variety of challenges we faced in designing and implementing such a system, and how we overcame them.

Andrew Paverd is a Research Fellow at Aalto University, Finland, and a Deputy Director of the Helsinki-Aalto Center for Information Security. He obtained his Masters degree in Electrical and Computer Engineering from the University of Cape Town in 2012, and his PhD in Computer Science from the University of Oxford in 2016. He is a recipient of the 2017-18 Fulbright Cybersecurity Scholar Award, for which he will visit the USA in early 2018. His research interests are primarily in the area of systems security, and in particular the use of hardware security mechanisms, such as TPMs, Intel SGX, and ARM TrustZone. His interests also include the design and analysis of security protocols, distributed consensus mechanisms, and privacy-enhancing technologies.

Tuesday, October 24, 2017

3rd Cyber Security Workshop in the Netherlands

3rd CSNextGen Cyber Security Workshop in the Netherlands


5 oktober 2017

The annual Cyber Security Workshop in the Netherlands (supported by 4TU.NIRICT, dcypher, and NWO) aims to contribute to a stronger and more connected cyber security research community in the Netherlands. Seize this excellent opportunity to share ideas, experiences, and information, within the diverse topics of cyber security. Both researchers and practitioners working within the field of cyber security are cordially invited to join.

The 3rd edition of this workshop will be held in Den Haag on Thursday, October 5, 2017. Participation is free of charge.

We are delighted to have Dr. Luca Allodi giving a keynote speech: ‘Tales from the Russian Underground: Infection Technologies and Economics’.

As in the previous year, the program committee is soliciting abstracts describing work on cyber security. All PhD and MSc students are encouraged to submit a one-page abstract in pdf-format, including names of the authors, affiliations and e-mail addresses.

You can subscribe here to see this event, invitation or participant information and view route description. Use the menu at the left side for this functionality.

Important Dates

  • Abstract submission deadline: September 10, 2017, 23:59
  • Notification of acceptance: September 17, 2017
  • Registration deadline: October 1, 2017
  • Workshop date: October 5, 2017


Registration via

Wednesday, October 4, 2017

dcypher Symposium 2017, October 4th, Utrecht

Are you interested or involved in cybersecurity research, development, innovation, business and/or (higher) education? Come and join us at the first edition of the dcypher Symposium on the 4th of October. There will be a lot to learn, to discuss and share in cybersecurity R&D, innovation and higher education.

Registration via Eventbrite

We believe that networking is essential so there will be many opportunities to meet speakers and participants. Our event is a meeting place for cybersecurity teachers and students, for former, current and possibly future executors of cybersecurity R&D projects, for public and private research partners, for enterprises in need of cybersecurity professionals, for potential profit and non-profit users of research results and policy makers.

Showcase cybersecurity solutions reached in partnership. 
Our participants get an impression of the output resulting from earlier tenders for short term, medium term (SBIR) and long term cybersecurity research, both nationally and internationally. Solutions for bridging gaps between cybersecurity higher education curricula and demands from the labor market will be addressed. Sharing ideas will be encouraged, e.g. by discussing challenges of translating research output into innovative solutions, how to make cybersecurity a strength of our infrastructures, how to improve the flow between higher and academic education in cyber security. We offer a podium for cybersecurity R&D and education projects, either recently completed or in progress. Also an exposition of new cybersecurity solutions is foreseen.

The symposium is organised by dcypher in close cooperation with the Netherlands Organisation for Scientific Research (NWO), the Netherlands Enterprise Agency (RvO), the National Cyber Security Centre (NCSC) and Applied Science Organisation (SIA).



Tuesday, October 3, 2017

Next = Now: CSNextGen takes the floor, October 4th, Delft.

connects cybersecurity knowledge  

Room: Beam
Language: English
Chaired by Dr. Zeki Erkin, TU Delft


Internet Security: from attacks, to mitigation, to prevention
Dr. Anna Sperotto, Twente University
Everybody loves the Internet. Hackers too! And they make intensive use of it. But what does this means in practice? How direct is the security problem? What is the impact of a mitigation strategy? In this talk we will see examples of network-based attacks and mitigation strategies and we will bring into focus on how network measurements can enhance Internet Security and enable the prevention of future attacks.


Paneldiscussion: Next NCSRA (III)
Next = Now: How does the Next Generation shape the Next NCSRA?




NB also subscribe for the 3rd CSNextGen Cyber Security Workshop in the Netherlands, October fifth at NWO, The Hague

Tuesday, October 3, 2017

The National Cyber Security Summer School is back in 2017!

After a successful first year, the National Cyber Security Summer School is back again in 2017!

The NCS3 is a summer school intended to introduce Bachelor’s and Master’s to the topic of Cyber Security. Initiated by the Dutch Cyber Security Council and organised by dcypher (the Dutch Cyber Security Platform for Higher Education and Research), the NCS3 counts with the support of a wide variety of organizations across the public and private sectors, and Universities in the Netherlands. 

This year, the NCS3 will take its participants to The Hague, Amsterdam, Rotterdam, Utrecht and Eindhoven for a program filled with lectures, active learning sessions, and networking activities that will introduce participants to many different topics of this field.

Interested in learning about cyber security? Apply now!
For more information please visit

Sunday, August 20, 2017


The Conference for ICT-Research in the Netherlands.
The 2017 edition was held on 21 and 22 March at de Flint Amersfoort.
The ICT.OPEN event is organised annually by the Netherlands Organisation for Scientific Research (NWO) under the auspices of ICT research Platform Netherlands (IPN).

We are looking forward to seeing you on 20 & 21 March 2018! 

Sunday, March 19, 2017

2nd Workshop on Cyber Security Research in the Netherlands

October 13, 2016
The Cyber Security Workshop in the Netherlands (supported by 4TU.NIRICT and NWO) aims to create a cyber security research community in the Netherlands that shares ideas, experiences and information on several aspects of cyber security. Both researchers and practitioners working within the field of cyber security are cordially invited to join.
More info:

Wednesday, October 12, 2016

1st Workshop on Cyber Security Research in the Netherlands

26 November 2015
The aim of the workshop is to create a cyber security research community that shares ideas, experiences and information on several aspects of cyber security. Both researchers and practitioners working within the field of cyber security are cordially invited to join! Participation is free of charge. 

The first edition of the workshop focuses on the theme “Secure Information Sharing”. We are proud to have Dr. Emiliano de Cristofaro (University College London) as invited speaker on this occasion.


Wednesday, November 25, 2015