Office Hours

For reliable meetings, please arrange an appointment via mail.
Alternatively, you can try to drop by at my office.

Artur Hermann

Artur Hermann is a research assistant at the Institute of Distributed Systems. He holds a Bachelor of Science degree (B.Sc.) and a Master of Science degree (M.Sc) in Computer Science from Ulm University.

His research focuses on connected and autonomous vehicles. In this context, he is particularly interested in security, privacy and artificial intelligence.

Research

Projects

  • CONNECT (09/2022; ongoing): Continuous and Efficient Cooperative Trust Management for Resilient CCAM. Funding: European Union’s Horizon Europe
  • ConnRAD (01/2023; ongoing): Connectivity & Resilienz für automatisierte Fahrfunktionen in Deutschland. Funding: BMBF.
  • SAVE (11/2020 – 06/2023): Securing Automated VEhicles – Japan-Germany. Funding: BMBF.
  • SecForCARs (04/2018 – 01/2023): Security for Connected Automated Cars. Funding: BMBF.

Publications

2024

Bradatsch, L., Hermann, A. and Kargl, F. 2024. Attribute Threat Analysis and Risk Assessment for ABAC and TBAC Systems. In Proceedings of the 21st International Conference on Security and Cryptography (Jul. 2024), 26–39.

2023

Kargl, F., Trkulja, N., Hermann, A., Sommer, F., Ferraz de Lucena, A.R., Kiening, A. and Japs, S. 2023. Securing Cooperative Intersection Management through Subjective Trust Networks. 2023 IEEE 97th Vehicular Technology Conference (VTC2023-Spring) (2023), 1–7.
Connected, Cooperative, and Autonomous Mobility (CCAM) will take intelligent transportation to a new level of complexity. CCAM systems can be thought of as complex Systems-of-Systems (SoSs). They pose new challenges to security as consequences of vulnerabilities or attacks become much harder to assess. In this paper, we propose the use of a specific type of a trust model, called subjective trust network, to model and assess trustworthiness of data and nodes in an automotive SoS. Given the complexity of the topic, we illustrate the application of subjective trust networks on a specific example, namely Cooperative Intersection Management (CIM). To this end, we introduce the CIM use-case and show how it can be modelled as a subjective trust network. We then analyze how such trust models can be useful both for design time and run-time analysis, and how they would allow us a more precise quantitative assessment of trust in automotive SoSs. Finally, we also discuss the open research problems and practical challenges that need to be addressed before such trust models can be applied in practice.
Hermann, A., Wolf, M., Trkulja, N., Jemaa, I.B., Bkakria, A. and Kargl, F. 2023. Privacy of Smart Traffic Lights Systems. 2023 IEEE Vehicular Networking Conference (VNC) (2023), 17–24.
Smart traffic lights systems (STLSs) are a promising approach to improve traffic efficiency at intersections. They rely on the information sent by vehicles via C2X communication (like in cooperative awareness messages (CAMs)) at the managed intersection. While there exists a large body of work on privacy-enhancing technologies (PETs) for cooperative Intelligent Transport Systems (cITS) in general, such PETs like changing pseudonyms often impact the performance of cITS applications. This paper analyzes the extent to which different PETs affect the performance of two types of STLSs, a phase-based and a reservation-based STLS. These are implemented in SUMO and combined with four different PETs. Through extensive simulations we then investigate the impact of those PETs on STLS performance metrics like time loss, waiting time, fuel consumption, and average velocity. Our analysis shows that the impact of PETs on performance varies greatly depending on the type of STLS. Finally, we propose a hybrid STLS which is a combination of the two STLS types as a potential solution for limiting the negative impact of PETs on performance.
Trkulja, N., Hermann, A., Petrovska, A., Kiening, A., Ferraz de Lucena, A.R. and Kargl, F. 2023. In-vehicle trust assessment framework. 21th escar Europe : The World’s Leading Automotive Cyber Security Conference (Hamburg, 15. - 16.11.2023) (2023).
Today’s vehicles run various safety-critical applications requiring data input from diverse in-vehicle components. Adaptive Cruise Control (ACC), for example, can rely on the data input from components such as lidar, radar, GNSS, and cameras. Malicious manipulation of any of this data compromises the data integrity and can result in safety incidents or accidents on the road. Security mechanisms like intrusion detection can be in place; however, they can not reliably assess the consequences of attacks on a system level or for arbitrary subsystems. In this paper, we present a Trust Assessment Framework (TAF) that allows an in-vehicle application in a complex System-of-Systems to assess whether it can trust the integrity of its input data.The TAF assesses the trustworthiness of every component in the data flow chain based on collected evidence. We explain this concept with the example of ACC and show case two ossible implementations of the TAF inside a vehicle.