Both sides previous revision Previous revision Next revision | Previous revisionLast revisionBoth sides next revision |
people:svenda [2018-01-05 13:36] – xukrop | people:svenda [2020-07-22 08:29] – xsvenda |
---|
<grid> | <grid> |
<col xs="5" sm="4" lg="4"> | <col xs="5" sm="4" lg="4"> |
{{:people:svenda-face512shadow.jpg?300&nolink|Petr Švenda}} | {{:people:svenda-face512shadow.jpg?170&nolink|Petr Švenda}} |
| |
<well><TEXT size="large" align="center"> | <well><TEXT size="large" align="center"> |
<col xs="7" sm="8" lg="8"> | <col xs="7" sm="8" lg="8"> |
| |
====== RNDr. Petr Švenda Ph.D. ====== | ====== doc. Petr Švenda Ph.D. (associate professor) ====== |
| |
<TEXT size="large"> | <TEXT size="large"> |
| |
==== Secure hardware ==== | ==== Secure hardware ==== |
I have a strong passion for cryptographic smartcards, both for the research and development topics. We recently analyzed millions RSA keys extracted from smartcards to detect biases in generated public keys ({{:publications:pdf:2016-usenixsec-svenda.pdf|USENIXSec'16, best paper award}}). Our follow-up lead to discovery of the weak RSA key generation algorithm on Infineon smartcards known as [[https://roca.crocs.fi.muni.cz/ | ROCA vulnerability (CVE-2017-15361)]] received The Real-World Impact award at [[https://acmccs.github.io/papers/ | ACM CCS 2017]]. The more precise method to measure the popularity of cryptographic libraries detects the significant variation in a source of certificates submitted weekly to Certificate Transparency and shows that OpenSSL is more popular than ever in internet-wide scans ([[https://crocs.fi.muni.cz/papers/acsac2017 | ACSAC 2017]]). | I have a strong passion for cryptographic smartcards, both for the research and development topics. We recently analyzed millions RSA keys extracted from smartcards to detect biases in generated public keys ({{:publications:pdf:2016-usenixsec-svenda.pdf|USENIXSec'16, best paper award}}). Our follow-up lead to discovery of the weak RSA key generation algorithm on Infineon smartcards known as [[https://roca.crocs.fi.muni.cz/ | ROCA vulnerability (CVE-2017-15361)]] received The Real-World Impact award at [[https://acmccs.github.io/papers/ | ACM CCS 2017]]. The more precise method to measure the popularity of cryptographic libraries detects the significant variation in a source of certificates submitted weekly to Certificate Transparency and shows that OpenSSL is more popular than ever in internet-wide scans ([[https://crocs.fi.muni.cz/papers/acsac2017 |ACSAC 2017]]). |
| |
The compromise-resistant ECC-based signing and key generation via secure multiparty computation protocol on a grid of smartcards was showcased at [[https://enigmabridge.com/mpc.html|DEFCON 2017]] with all details published at [[https://trojantolerance.org | ACM CCS 2017]]. I co-developed library for Bignat and ECPoint for JavaCard platform which requires no vendor proprietary API [[http://opencryptojc.org/|JCMathLib]] showcased at [[https://www.blackhat.com/us-17/briefings.html#opencrypto-unchaining-the-javacard-ecosystem | BlackHat 2017]] and used in [[https://trojantolerance.org | ACM CCS 2017]] prototype. In 2006 I started and still maintain the largest open-source database of performance and algorithmic support tests of smartcards with JavaCard platform ([[http://jcalgtest.org |JCAlgTest project]]). | The compromise-resistant ECC-based signing and key generation via secure multiparty computation protocol on a grid of smartcards was showcased at [[https://enigmabridge.com/mpc.html|DEFCON 2017]] with all details published at [[https://trojantolerance.org | ACM CCS 2017]]. I co-developed library for Bignat and ECPoint for JavaCard platform which requires no vendor proprietary API [[http://opencryptojc.org/|JCMathLib]] showcased at [[https://www.blackhat.com/us-17/briefings.html#opencrypto-unchaining-the-javacard-ecosystem | BlackHat 2017]] and used in [[https://trojantolerance.org | ACM CCS 2017]] prototype. In 2006 I started and still maintain the largest open-source database of performance and algorithmic support tests of smartcards with JavaCard platform ([[http://jcalgtest.org |JCAlgTest project]]). |
| |
===== My publications ===== | ===== My publications ===== |
| |
| ==== 2020 ==== |
| {{section>publications:authors:petr-svenda#2020&noheader&fullpage}} |
| |
| ==== 2019 ==== |
| {{section>publications:authors:petr-svenda#2019&noheader&fullpage}} |
| |
| ==== 2018 ==== |
| {{section>publications:authors:petr-svenda#2018&noheader&fullpage}} |
| |
==== 2017 ==== | ==== 2017 ==== |