Publications

  • Request and Conquer: Exposing Cross-Origin Resource Size
    Tom Van Goethem, Mathy Vanhoef, Frank Piessens, Wouter Joosen
    25th USENIX Security Symposium (USENIX Security), 2016
    Cite
    X
    Cite
    Chicago Van Goethem, Tom, Mathy Vanhoef, Frank Piessens, and Wouter Joosen. "Request and Conquer: Exposing Cross-Origin Resource Size." In Proceedings of the 25th USENIX Security Symposium. 2016.
    BibTeX
    @incollection{van2016request,
      title={Request and Conquer: Exposing Cross-Origin Resource Size},
      author={Van Goethem, Tom and Vanhoef, Mathy and Piessens, Frank and Joosen, Wouter},
      booktitle={Proceedings of the 25th USENIX Security Symposium},
      year={2016}
    }
  • HEIST: HTTP Encrypted Information can be Stolen through TCP-windows
    Tom Van Goethem, Mathy Vanhoef
    Black Hat USA, 2016
  • Accelerometer-based Device Fingerprinting for Multi-factor Mobile Authentication
    Tom Van Goethem, Wout Scheepers, Davy Preuveneers, Wouter Joosen
    Engineering Secure Software and Systems (ESSoS), 2016
    Cite
    X
    Cite
    Chicago Van Goethem, Tom, Wout Scheepers, Davy Preuveneers, and Wouter Joosen. "Accelerometer-Based Device Fingerprinting for Multi-factor Mobile Authentication." In Engineering Secure Software and Systems, pp. 106-121. Springer International Publishing, 2016.
    BibTeX
    @incollection{van2016accelerometer,
      title={Accelerometer-Based Device Fingerprinting for Multi-factor Mobile Authentication},
      author={Van Goethem, Tom and Scheepers, Wout and Preuveneers, Davy and Joosen, Wouter},
      booktitle={Engineering Secure Software and Systems},
      pages={106--121},
      year={2016},
      publisher={Springer}
    }
  • It's Free for a Reason: Exploring the Ecosystem of Free Live Streaming Services
    Zubair Rafique, Tom Van Goethem, Wouter Joosen, Christophe Huygens, Nick Nikiforakis
    In Proceedings of the 23rd Network and Distributed System Security Symposium (NDSS), 2016
    Cite
    X
    Cite
    Chicago Rafique, M. Zubair, Tom Van Goethem, Wouter Joosen, Christophe Huygens, and Nick Nikiforakis. "It’s Free for a Reason: Exploring the Ecosystem of Free Live Streaming Services." (2016).
    BibTeX
    @article{rafique2016s,
      title={It’s Free for a Reason: Exploring the Ecosystem of Free Live Streaming Services},
      author={Rafique, M Zubair and Van Goethem, Tom and Joosen, Wouter and Huygens, Christophe and Nikiforakis, Nick},
      year={2016}
    }
  • The Clock is Still Ticking: Timing Attacks in the Modern Web
    Tom Van Goethem, Wouter Joosen, Nick Nikiforakis
    In Proceedings of the 22nd ACM SIGSAC Conference on Computer and Communications Security (CCS), 2015.
    Cite
    X
    Cite
    Chicago Van Goethem, Tom, Wouter Joosen, and Nick Nikiforakis. "The Clock is Still Ticking: Timing Attacks in the Modern Web." In Proceedings of the 22nd ACM SIGSAC Conference on Computer and Communications Security, pp. 1382-1393. ACM, 2015.
    BibTeX
    @inproceedings{van2015clock,
      title={The Clock is Still Ticking: Timing Attacks in the Modern Web},
      author={Van Goethem, Tom and Joosen, Wouter and Nikiforakis, Nick},
      booktitle={Proceedings of the 22nd ACM SIGSAC Conference on Computer and Communications Security},
      pages={1382--1393},
      year={2015},
      organization={ACM}
    }
  • Maneuvering Around Clouds: Bypassing Cloud-based Security Providers
    Thomas Vissers, Tom Van Goethem, Wouter Joosen, Nick Nikiforakis
    In Proceedings of the 22nd ACM SIGSAC Conference on Computer and Communications Security (CCS), 2015.
    Cite
    X
    Cite
    Chicago Vissers, Thomas, Tom Van Goethem, Wouter Joosen, and Nick Nikiforakis. "Maneuvering Around Clouds: Bypassing Cloud-based Security Providers." In Proceedings of the 22nd ACM SIGSAC Conference on Computer and Communications Security, pp. 1530-1541. ACM, 2015.
    BibTeX
    @inproceedings{vissers2015maneuvering,
      title={Maneuvering Around Clouds: Bypassing Cloud-based Security Providers},
      author={Vissers, Thomas and Van Goethem, Tom and Joosen, Wouter and Nikiforakis, Nick},
      booktitle={Proceedings of the 22nd ACM SIGSAC Conference on Computer and Communications Security},
      pages={1530--1541},
      year={2015},
      organization={ACM}
    }
  • Clubbing Seals: Exploring the Ecosystem of Third-party Security Seals
    Tom Van Goethem, Frank Piessens, Wouter Joosen, Nick Nikiforakis
    In Proceedings of the 2014 ACM SIGSAC Conference on Computer and Communications Security (CCS), 2014.
    Cite
    X
    Cite
    Chicago Van Goethem, Tom, Frank Piessens, Wouter Joosen, and Nick Nikiforakis. "Clubbing Seals: Exploring the Ecosystem of Third-party Security Seals." In Proceedings of the 2014 ACM SIGSAC Conference on Computer and Communications Security, pp. 918-929. ACM, 2014.
    BibTeX
    @inproceedings{van2014clubbing,
      title={Clubbing Seals: Exploring the Ecosystem of Third-party Security Seals},
      author={Van Goethem, Tom and Piessens, Frank and Joosen, Wouter and Nikiforakis, Nick},
      booktitle={Proceedings of the 2014 ACM SIGSAC Conference on Computer and Communications Security},
      pages={918--929},
      year={2014},
      organization={ACM}
    }
  • Large-scale Security Analysis of the Web: Challenges and Findings
    Tom Van Goethem, Ping Chen, Nick Nikiforakis, Lieven Desmet, Wouter Joosen
    In Proceedings of the 7th International Conference on Trust & Trustworthy Computing (TRUST), 2014.
    Cite
    X
    Cite
    Chicago Van Goethem, Tom, Ping Chen, Nick Nikiforakis, Lieven Desmet, and Wouter Joosen. "Large-scale security analysis of the web: Challenges and findings." In Proceedings of the 7th International Conference on Trust & Trustworthy Computing (TRUST 2014). 2014.
    BibTeX
    @inproceedings{van2014arge,
      title={Large-scale security analysis of the web: Challenges and findings},
      author={Van Goethem, Tom and Chen, Ping and Nikiforakis, Nick and Desmet, Lieven and Joosen, Wouter},
      booktitle={Proceedings of the 7th International Conference on Trust \& Trustworthy Computing (TRUST 2014)},
      year={2014}
    }

Talks

Contact

Email:
Address:
Celestijnenlaan 200A
3001, Heverlee
Belgium