The alps see a surge of trail parks being built. These trails include frequent turns and jumps which are often ridden at high speeds. If bikes block the trail due to a stop or accident, limited line-of-sight can lead to collisions and severe accidents when following bikes crash into the blocking bike. With this work, we want to investigate if V2X communication can provide blocked trail warnings to approaching bikes so that riders can reduce their speed and avoid accidents. For this, a number of technologies that have been developed for collision warning in automotive and street-based scenarios need to be investigated, adapted, and tested for suitability. This includes the V2X communication module and antenna, that need to be adjusted to fit into a bike. Communication ranges and reliability have to be tested in realistic outdoor settings. Second, it needs to be reliably determined whether a bike actually blocks a trail or whether the rider just stopped next to it. For this purpose, GPS accuracy alone is insufficient and might have to coupled with crash detection using motion sensors or camera-based image recognition to detect whether a bike blocks a trail or not. Last but not least, a suitable user interface has to be developed and tested that allows to warn approaching drivers in a reliable and intuitive way which works even during trail rides. The envisioned thesis or project can address one or multiple of these challenges, multiple students could also collaborate on the topic. The project is collaboration between Ulm University and University of Trento. After prototype development, field tests in the Alps in South Tyrolia / Alto Adige are planned.

in.Crease ist ein geplantes Informationssystem für Studierende. In Vorarbeiten wurde bereits ein Modul entworfen, um Personen und Gremien zu verwalten und geeignet darszustellen. Ziel dieses Projekts ist es die Anforderungen an die Darstellung von Personen und Gremien zu überarbeiten und neu zusammen zu stellen. Auch das Datenmodell soll auf Vollständigkeit und Konsistenz abgeklopft werden. Im Anschluss sollen UI-Elemente sowie entsprechende Berechtigungen für die einzelnen Use-Cases implementiert werden - je nach Umfang eventuell nur eine Teilmenge von wichtigen Use-Cases. Zu den Use-Cases gehören nicht nur lesende Zugriffe in Form von geeigneten Anzeigeelementen sondern auch Editier-, Anlege- und Löschfunktionen. Die Arbeit hat damit einen konzeptionellen Anteil sowie einen Implementierungsanteil, der mit TypeScript und Angular in Verbindung mit einem Redux-Store.

In the institute, there is an own framework for replicated state machines, a concept to implement fault-tolerant services. Our framework is called SMRteez and based on BFT-SMaRt, a mature and popular framework written in Java. SMRteez has a different internal structure compared to BFT-SMaRt. However, many classes are identical or have only slight changes. Goal of this project is to track which classes of SMRteez are actually very close to BFT-SMaRt. This could be annotated in a machine-readable format in the source. Further, a tool shall be developed that can automatically identify software updates in BFT-SMaRt as long as these affect derived classes in SMRteez. If there is room, the tooling can be extended to allow supervised updates of SMRteez classes based on updates in BFT-SMaRt.

In the future, vehicles will be able to exchange information with each other and with infrastructure. In this way, safety-cirtical applications such as Cooperative Intersection Management (CIM) can be realized that use data sent by other entities such as vehicles or infrastructure. Since these applications are safety-critical, it is important for the application to evaluate the trustworthiness of the data provided by other entities before using them in these applications. How trustworthy the data is can be specified by the sender of the message. The structure of the messages sent by the entities is specified by ETSI (European Telecommunications Standards Institute). In the current standard of the messages, such trust opinions indicating the trustworhtiness of the data are not defined. Therefore, in this thesis/project ETSI messages such as CAMs are extened so that trust opinions can be set for the provided data. In the second step, these defined messages are implemented in a traffic and network simulation tool. Finally, the impact of the extended ETSI messages is compared to the standard ETSI messages based on certain performance metrics.

State-machine replication (SMR) is a concept to achieve fault-tolerant services. The Institute of Distributed Systems has an own framework to deploy, run and evaluate such services. Unfortunately the overhead of SMR is quite high so that evaluations achieve bad results for very short-running applications. GraphQL is a backend technology for web-based services. The browser sends some sort of query to the backend where it is parsed, evaluated and the results are compiled according to the query demands. This sounds well-suited for evaluating practical SMR services. However, for SMR the application has to stick to certain rules, e.g. use provided locks to control concurrency. The task of this project is to evaluate existing GraphQL implementations in Java, decide on one to adapt, and transform this GraphQL in order to run on our SMR framework. Idealy, the typically used relational database management system is replaced by some simple in-memory implementation, so that a replicated GraphQL service does not need a DBMS to run. In case enough remaining time is available, measurements and comparisons to other non-adapted GraphQL implementations would be ideal.

In the context of Cooperative, connected and automated mobility, a vehicle relies on data from multiple sources to drive autonomously. On the one hand, it relies on data provided by an external entity, such as a road side unit or another vehicle, which is received over the V2X network. On the other hand, it relies on data provided by internal entities within the vehicle, such as a sensor installed in the vehicle or an ECU in the vehicle. Since the autonomous driving functionality is very safety critical, it is important for the function to evaluate the trustworthiness of the data provided by the internal and external entities. In this project/thesis, several entities in the context of an autonomous vehicle are selected. Examples of internal entities could be a GNSS sensor or a camera. Examples of external entities could be another vehicle or a road side unit. Based on the selected entities, trust sources are determined to provide evidence of whether the entity is trustworhty or not. Such trust sources could be security controls such as an IDS or Secure Boot. Finally, an approach is created that determines a trust opinion about the selected entitiy based on the selected trust sources in the context of subjective logic. This calcualated trust opinion describes the trustworthiness of this entity.

Cooperative Intersection Management Systems are a promising approach to improve efficiency and safety at intersections. For this purpose, communicating vehicles are needed that can communicate with each other and with infrastructure, which is also referred to as V2X-Communication. Based on the information exchanged between the vehicles and the infrastructure, a Cooperative Intersection Management System can be realized. There exist various approaches to realized such a Cooperative Intersection Management System. Therefore, the first step of the thesis/project is to conduct a survey on existing approaches of a Cooperative Intersection Management System. Based on this survey, the most promising approach will be selected. In the next step, the selected approach will be implemented in a traffic simulation environment called CARLA. Finally, a performance analysis of the implemented approach will be conducted and compared to a state-of-the-art traffic light system.

Subjective Logic (SL) is a mathematical framework used for reasoning and decision-making that allows for modelling uncertainty which comes from a potential lack of evidence. The goal of this project is to build a Go library for Subjective Logic that will contain SL-specific variables and a vast set of SL operators.

Service Function Chaining (SFC) is a technice to steer traffic through specific network services. To proof that the traffic was actually forwarded through the specified services, a Proof Of Transit (PoT) is used. In this project, different PoT approaches are compared and the most promising solution implemented in a HTTPS-based SFC environment.

Since Google introduced their BeyondCorp project, Zero Trust (ZT) is one of the most popular buzzwords in the area of network security. In a ZT network, Policy Enforcement Point (PEP) and Policy Decision Point (PDP) are responsible for central authentication and authorization (Auth*). Both mentioned components and conventional security functions such as firewalls work largely independently of each other when it comes to processing packets. This leads to inefficient scenarios in which all packets are processed by time- consuming security functions. By coupling the conventional security functions to the PEP/PDP, higher efficiency in security-relevant packet processing can be achieved. This can be achieved by leveraging the Service Function Chaining (SFC) approach. SFC allows the dynamic chaining of conventional network service functions such as HTTP header enricher or firewalls. For each network flow can be decided what service function should be applied to all the flow's packets. The PEP/PDP in a ZT network acts then as the orchestrator, decides about the functions that should be chained together. By doing this, it can be efficiently decided which function should be applied. The goal of the project is to implement one of the thus orchestrated security service functions namely a Multi Factor Authenticator (MFA) that is embedded in a already existing Zero Trust SFC prototype. The MFA must be HTTP based and written in Go. Requirements: Good knowledge of Go and security protocols).