Contact information


Picture of Patrick Stöckle

Patrick Stöckle

Technical University of Munich

Informatics 4 - Chair of Software & Systems Engineering (Prof. Pretschner)

Postal address

Postal:
Boltzmannstr. 3
85748 Garching b. München

ORCID Scholar GitHub Twitter ResearchGate LinkedIn
0000-0003-0193-5871 Patrick Stöckle pstoeckle @p_stoeckle Patrick_Stoeckle patrick-stoeckle
Public keys for Email Encryption  
PGP S/MIME

About me

Since November 2017, I am a Ph.D. student at the Chair of Software and Systems Engineering, headed by Professor Pretschner. The focus of my research is the field of security configuration. Security can be cumbersome and dangerous. If you lost the key for an encrypted hard drive, you could not recover the data, and there are lost forever. Thus, most of the nowadays systems are configured insecurely and open for attacks. To overcome this problem, I am working together with our industry partner to assess a system’s state regarding its security-configuration and configure the system to be as secure as possible. Thereby, we created our hardening process to be as automated as possible so that it can be used in the context of DevOps, too. For further details about our project, please have a look at our project page.

Research Interests

  • Security
  • Security-Configuration
  • Hardening
  • Model-driven Software Development

Publications

  • Stöckle, Patrick; Wasserer, Theresa; Grobauer, Bernd; Pretschner, Alexander: Automated Identification of Security-Relevant Configuration Settings Using NLP. Proceedings of the 37th IEEE/ACM International Conference on Automated Software Engineering (ASE '22), Association for Computing Machinery, 2022 more… Full text (mediaTUM)
  • Stöckle, Patrick; Pruteanu, Ionuț; Grobauer, Bernd; Pretschner, Alexander: Hardening with Scapolite: A DevOps-Based Approach for Improved Authoring and Testing of Security-Configuration Guides in Large-Scale Organizations. Proceedings of the Twelveth ACM Conference on Data and Application Security and Privacy (CODASPY '22), Association for Computing Machinery, 2022 more… Full text ( DOI ) Full text (mediaTUM)
  • Stöckle, Patrick; Grobauer, Bernd; Pretschner, Alexander: Sicherheitskonfigurationsrichtlinien effizient verwalten und umsetzen: Der Scapolite-Ansatz. Sicherheit in vernetzten Systemen: 29. DFN-Konferenz, BoD - Books on Demand, 2022 more… Full text (mediaTUM)
  • Stöckle, Patrick AND Grobauer, Bernd AND Pretschner, Alexander: Automated Implementation of Windows-related Security-Configuration Guides. Software Engineering 2021, Gesellschaft für Informatik e.V., 2021 more… Full text ( DOI ) Full text (mediaTUM)
  • Stöckle, Patrick; Grobauer, Bernd; Pretschner, Alexander: Automated Implementation of Windows-Related Security-Configuration Guides. Proceedings of the 35th IEEE/ACM International Conference on Automated Software Engineering (ASE '20), Association for Computing Machinery, 2020 more… Full text ( DOI ) Full text (mediaTUM)

Talks

Title Event Date Slides Video
Hardening with Scapolite CODASPY 25.04.2022 Yes Yes
Sicherheitskonfigurationsrichtlinien effizient verwalten und umsetzen: Der Scapolite-Ansatz 29. DFN-Konferenz “Sicherheit in vernetzten Systemen” 03.02.2022 Yes No
Automated Implementation of Windows-related Security-Configuration Guides SE 26.02.2021 Yes No
Open Windows? Attacks on poorly configured Windows 10 instances TAPAS@Siemens 20.10.2020 Internal Internal
Automated Implementation of Windows-related Security-Configuration Guides ASE 23.09.2020 Yes Yes
Towards deriving automated implementation & verification mechanisms from a single machine-readable requirements specification SCAPv2 Workshop 02.05.2019 Yes No

Open Topics

If you are interested in working with me, either have a look at the open theses page or simply write me an email. If you are interested in making machines and systems more secure and there was no open topic on this site or on the open theses page, you could still write me. Maybe I already have some idea for a bachelor/master thesis which is not yet on the homepage.

When writing directly to my mail address, please consider to encrypt your email via PGP or S/MIME using one of the public keys from above.

Title Type

 

Ongoing Topics

Completed Topics

Title Type Name Year
Automatic Detection and Identification of Breaking Security-Configuration Rules Master’s Michael Sammereier 2021
Incident Response Automation: Challenges and Opportunities for Automated Course of Action Deployment Master’s Tobias Hilbig 2021
Generation of OVAL Checks for Security-Configuration Assessments Bachelor’s Quirin Ertz 2021
Automatic Selection of Security-relevant Configurations Bachelor’s Theresa Wasserer 2021
Fighting bushfires with Preparation: Prevention of Malware spread using Security-Configuration Guidelines Bachelor’s Anne Priscilla Lam Wai See 2020
Automatic and Reproducible Attacks on insecurely configured Systems based on Security-Configuration Rules Master’s Felix Huber 2020
Security-Configuration Automation for UNIX Master’s Fabian Raab 2019
Automatic Security Configuration for Mobile Devices Bachelor’s Maximilian Lösch 2019
Design of an Improved Scapolite Check Mechanism Bachelor’s Lena Voigt 2019
Modelling of Attack Trees for Security Assessment of Hardening Mechanisms Bachelor’s Matthias Michailow 2019
Simplifying Configuration Management in the Automotive Industry Master’s Dominik Vinan 2019
Design and Evaluation of an Agile Software Development Process for Space Applications Master’s Alexander Lill 2018

Teaching

Semester Course Role
Summer ’22 Security Engineering Leading Teaching Assistant
Summer ’21 Security Engineering Leading Teaching Assistant
Winter ’21 Seminar Software Quality Teaching Assistant
Winter ’20/21 Advanced Topics of Software Engineering Teaching Assistant
Winter ’20/21 Seminar Software Quality Teaching Assistant
Summer ’20 Security Engineering Leading Teaching Assistant
Winter ’19/20 Advanced Topics of Software Engineering Teaching assistant
Summer ’19 Security Engineering Leading Teaching Assistant
Winter ’18/19 Fundamentals of Programming Teaching assistant