- Automatisierte Identifikation von sicherheitsrelevanten Konfigurationseinstellungen mittels NLP. Software Engineering 2023, Gesellschaft für Informatik e.V., 2023, 2 more… Full text (mediaTUM)
- Sichere Konfigurationshärtung laufender Systeme. Sicherheit in vernetzten Systemen: 30. DFN-Konferenz, BoD - Books on Demand, 2023, 20 more… Full text (mediaTUM)
- Automated Identification of Security-Relevant Configuration Settings Using NLP. Proceedings of the 37th IEEE/ACM International Conference on Automated Software Engineering (ASE '22), Association for Computing Machinery, 2022 more… Full text (mediaTUM)
- Hardening with Scapolite: A DevOps-Based Approach for Improved Authoring and Testing of Security-Configuration Guides in Large-Scale Organizations. Proceedings of the Twelveth ACM Conference on Data and Application Security and Privacy (CODASPY '22), Association for Computing Machinery, 2022 more… Full text ( DOI ) Full text (mediaTUM)
- Sicherheitskonfigurationsrichtlinien effizient verwalten und umsetzen: Der Scapolite-Ansatz. Sicherheit in vernetzten Systemen: 29. DFN-Konferenz, BoD - Books on Demand, 2022 more… Full text (mediaTUM)
- Automated Implementation of Windows-related Security-Configuration Guides. Software Engineering 2021, Gesellschaft für Informatik e.V., 2021 more… Full text ( DOI ) Full text (mediaTUM)
- Automated Implementation of Windows-Related Security-Configuration Guides. Proceedings of the 35th IEEE/ACM International Conference on Automated Software Engineering (ASE '20), Association for Computing Machinery, 2020 more… Full text ( DOI ) Full text (mediaTUM)
Contact information
Inaktiv: Der Benutzer ist in TUMonline nicht mehr aktiv!Inactive: The user is not active in TUMonline anymore!
| ORCID | Scholar | GitHub | ResearchGate | ||
|---|---|---|---|---|---|
| 0000-0003-0193-5871 | Patrick Stöckle | pstoeckle | @p_stoeckle | Patrick_Stoeckle | patrick-stoeckle |
About me
Since November 2017, I am a Ph.D. student at the Chair of Software and Systems Engineering, headed by Professor Pretschner. The focus of my research is the field of security configuration. Security can be cumbersome and dangerous. If you lost the key for an encrypted hard drive, you could not recover the data, and there are lost forever. Thus, most of the nowadays systems are configured insecurely and open for attacks. To overcome this problem, I am working together with our industry partner to assess a system’s state regarding its security-configuration and configure the system to be as secure as possible. Thereby, we created our hardening process to be as automated as possible so that it can be used in the context of DevOps, too. For further details about our project, please have a look at our project page.
-
2016 – 2017: M.Sc. in Informatics at the Karlsruhe Institute of Technology (KIT).
Master’s thesis’s title: Model Versioning with Consistency Conservation in Vitruvius in the context of the VITRUVIUS project; supervisor: Prof. Dr. Ralf Reussner; advisors: Dr. Erik Burger, Heiko Klare
-
2012 – 2016: B.Sc. in Informatics at the Karlsruhe Institute of Technology (KIT).
Bachelor’s thesis’s title: Partikelbasierte Erweiterung und Laufzeitoptimierung der Prädiktion von Posen gesuchter Objekte mittels Implicit Shape Models in the context of the Active Scene Recognition project; supervisor: Prof. Dr. Rüdiger Dillmann; advisor: Pascal Meißner
Talks
Open Topics
If you are interested in working with me, either have a look at the open theses page or simply write me an email. If you are interested in making machines and systems more secure and there was no open topic on this site or on the open theses page, you could still write me. Maybe I already have some idea for a bachelor/master thesis which is not yet on the homepage.
When writing directly to my mail address, please consider to encrypt your email via PGP or S/MIME using one of the public keys from above.
| Title | Type |
|---|
| Title | Type | Student’s Name |
|---|---|---|
| Securing the Raspberry Pi OS: An Open Source Security-Configuration Guide |
| Title | Type | Name | Year |
|---|---|---|---|
| Automatic Detection and Identification of Breaking Security-Configuration Rules | Master’s | Michael Sammereier | 2021 |
| Incident Response Automation: Challenges and Opportunities for Automated Course of Action Deployment | Master’s | Tobias Hilbig | 2021 |
| Generation of OVAL Checks for Security-Configuration Assessments | Bachelor’s | Quirin Ertz | 2021 |
| Automatic Selection of Security-relevant Configurations | Bachelor’s | Theresa Wasserer | 2021 |
| Fighting bushfires with Preparation: Prevention of Malware spread using Security-Configuration Guidelines | Bachelor’s | Anne Priscilla Lam Wai See | 2020 |
| Automatic and Reproducible Attacks on insecurely configured Systems based on Security-Configuration Rules | Master’s | Felix Huber | 2020 |
| Security-Configuration Automation for UNIX | Master’s | Fabian Raab | 2019 |
| Automatic Security Configuration for Mobile Devices | Bachelor’s | Maximilian Lösch | 2019 |
| Design of an Improved Scapolite Check Mechanism | Bachelor’s | Lena Voigt | 2019 |
| Modelling of Attack Trees for Security Assessment of Hardening Mechanisms | Bachelor’s | Matthias Michailow | 2019 |
| Simplifying Configuration Management in the Automotive Industry | Master’s | Dominik Vinan | 2019 |
| Design and Evaluation of an Agile Software Development Process for Space Applications | Master’s | Alexander Lill | 2018 |
| Semester | Course | Role |
|---|---|---|
| Summer ’22 | Security Engineering | Leading Teaching Assistant |
| Summer ’21 | Security Engineering | Leading Teaching Assistant |
| Winter ’21 | Seminar Software Quality | Teaching Assistant |
| Winter ’20/21 | Advanced Topics of Software Engineering | Teaching Assistant |
| Winter ’20/21 | Seminar Software Quality | Teaching Assistant |
| Summer ’20 | Security Engineering | Leading Teaching Assistant |
| Winter ’19/20 | Advanced Topics of Software Engineering | Teaching assistant |
| Summer ’19 | Security Engineering | Leading Teaching Assistant |
| Winter ’18/19 | Fundamentals of Programming | Teaching assistant |