News
Paper accepted auf der USENIX 2026
The USENIX Security Symposium is one of the world’s most prestigious cybersecurity research conferences, bringing together researchers, practitioners and developers each year to present and discuss the latest findings on security and privacy in computer systems and networks. ATHENE researchers once again have the opportunity to have their papers accepted at this renowned conference. USENIX announces the accepted papers in several rounds.
The following paper was accepted in the first round:
Analyzing the WebRTC Ecosystem and Breaking Authentication in DTLS-SRTP
Martin Bach, Vukašin Karadžić, Lukas Knittel, Robert Merget, Jean Paul Degabriele
In the paper, the researchers describe a large-scale analysis of the WebRTC ecosystem, focusing particularly on the authentication mechanism in the DTLS handshake during WebRTC connection establishment. To conduct their investigation, the researchers developed an automated testing framework called DTLS-MitM-Scanner (DMS), building upon the TLS-Attacker tool. Using DMS, the researchers identified vulnerabilities in nine out of twenty-four tested providers — which collectively serve hundreds of millions of users — that allow DTLS authentication to be bypassed. The only prerequisite for a successful attack is for the attacker to assume a man-in-the-middle position, such as via a compromised router or internet service provider. This work was conducted as part of the ATHENE project, "Probabilistic Data Structures in Adversarial Environments".
The accepted papers from Round 2 will be announced at a later date and included in this announcement.
USENIX 2026 will take place from 12 to 14 August 2026 in Baltimore, USA.
show all news
