Welcome

I am Associate Professor in Empirical Security and Internet Evolution in the Design and Analysis of Communication Systems Group at the University of Twente.

My research interests revolve around understanding and improving the Internet for everyone, with a particular focus on security aspects. Most recently, I have been working on

• Global-scale measurement of Internet service deployments and their security
• Data-driven security mechanisms
• Analysis of emerging technology and its implications

I view my work through the lens of real-world implications. The tech is not always what matters—it’s the embedding in our world that makes it meaningful. Hence, I work with other disciplines and industry alike to make the Internet a safer, more secure, and altogether more interesting and useful place.

News

• 2021-03: My intake of Bachelor and Master students for the first half of 2021 is now complete, and I cannot accept more students - sorry.

• 2021-02: I am going to teach Network Systems this year. Our proposal to establish a new course, Empirical Security Analysis & Engineering, has also been accepted by the faculty and will run for the first time in Q1/2021.

• 2020-10: Our paper “A Responsible Internet to increase trust in the digital world”, which outlines ideas of our research agenda, has been published in the Journal of Network and Systems management.

• 2020-06-25: Our paper “Tracking the deployment of TLS 1.3 on the Web: A story of experimentation and centralization” has been accepted to SIGCOMM CCR for July 2020. TLDR: TLS 1.3 is being deployed faster than any previous security protocol, and this is largely due to giant corporations with control over both client and server endpoints experimenting with it and then rolling it out at scale. Plus, Cloudflare’s dominance in the domain front-ending market.

Bio

Before joining the University of Twente, I was Lecturer in Networks and Security at the University of Sydney (that’s Asst. Prof. in other systems), Australia. Until 2016, I was a Researcher at NICTA (later Data61), also in Sydney, where I worked on network security and was part of the Security Business Team.

I hold a PhD from Technical University of Munich. I did both my post-grad and under-grad studies at Eberhard Karls University, Tuebingen, one of Germany’s classic universities.

A CV can be found here.

Selected publications

All publications

• Tracking the deployment of TLS 1.3 on the Web: A story of experimentation and centralization. Ralph Holz, Jens Hiller, Johanna Amann, Abbas Razaghpanah, Thomas Jost, Narseo Vallina-Rodriguez, and Oliver Hohlfeld. SIGCOMM Comput. Commun. Rev., 50(3). Jul 2020. Details PDF Link
• Data sharing practices of medicines-related apps and the mobile ecosystem. Quinn Grundy, Kellia Chiu, Fabian Held, Andrea Continella, Lisa Bero, and Ralph Holz. The BMJ, 364(1920). March 2019. Details Link
• The Rise of Certificate Transparency and Its Implications on the Internet Ecosystem. Quirin Scheitle, Oliver Gasser, Theodor Nolte, Johanna Amann, Georg Carle, Ralph Holz, Thomas C. Schmidt, and Matthias Wählisch. Proc. ACM/USENIX 18th Annual Internet Measurement Conference (IMC). Boston, MA, USA, October 2018. Details Link
• A First Look at Certification Authority Authorization (CAA). Quirin Scheitle, Taejoon Chung, Jens Hiller, Oliver Gasser, Johannes Naab, Roland van Rijswijk-Deij, Oliver Hohlfeld, Ralph Holz, Dave Choffnes, Alan Mislove, and Georg Carle. SIGCOMM Comput. Commun. Rev., 48(2):10-23. April 2018. Details PDF Link
• Mission accomplished? HTTPS security after DigiNotar. Johanna Amann, Oliver Gasser, Quirin Scheitle, Lexi Brent, Georg Carle, and Ralph Holz. Proc. ACM/USENIX 17th Annual Internet Measurement Conference (IMC). London, UK, November 2017. Details Link
• HEAP: Reliable assessment of BGP Hijacking attacks. Johann Schlamp, Ralph Holz, Quentin Jacquemart, Georg Carle, and Ernst W. Biersack. IEEE J. Selected Areas of Communication (JSAC), 34(6):1849-1861. 2016. Details PDF
• TLS in the wild-An Internet-wide analysis of TLS-based protocols for electronic communication. Ralph Holz, Johanna Amann, Olivier Mehani, Matthias Wachs, and Mohamed Ali Kafaar. Proc. Network and Distributed System Symposium (NDSS). San Diego, CA, USA, February 2016. Details PDF

Advising

Open student projects

Prospective PhD students

If you want to do a PhD with me, please contact me by email. Please read the admission criteria carefully and take the time to find out what I am working on. Have a look at our research group, too.

Prospective PhD students need a strong background in computer security and networks. I ask that students are able to outline a research idea and how it advances current knowledge and the state of the art. Please consult my list of publications to understand my interests better.

Once you are sure you meet the criteria and have a good idea of what I am working on, please do contact me. You can start out on your research proposal if you already know what you want to do, but I am also happy to answer emails about possible directions. Please do not forget to include a transcript and CV in your email.

Note: I often get generic emails where students are willing to work in pretty much any area, where it is clear the sender’s interests have no relationship to mine, or where the admission criteria are clearly not met. These show no serious commitment and I delete them.

Prospective Bachelor/Master students

One of the best parts of being an academic is working with students who share my passion for security. I generally offer a range of topics in the area of security and network security. Open topics can be found here.

Current students

I currently work with and advise the following students:

• Danish Shabeer Ahmed (Master - Internet measurement)
• Niousha Nazemi (PhD, University of Sydney) - Internet measurement
• Christopher Natoli (PhD, University of Sydney, primary advisor Vincent Gramoli) - Blockchain measurement

Graduated students (since 2016)

Daniel Šatcs - blockchain measurement, Thomas Stouten - blockchain measurement, Benedikt Brandner - blockchain measurement, Eve Martin-Jones - blockchain measurement, Hugh Chan - blockchain measurement, Ilya Nikolaev - blockchain security, Victory Wang - Internet security, Jonathan Yan - software security, Andrew Yang - software security, Joshua Murray - blockchain security, Rabia Chaudry - performance of cloud technology, Gordon Draper - blockchain security, Nyan Thit Lwin - blockchain security, Michael Gravenor - Internet measurement, Jakob Bachhuber - email security, Dario Banfi - Multipath TCP

Teaching

I (co-)teach the following courses in 2021:

• Empirical Security Analysis & Engineering - (Q1, with Andrea Continella)
• Internet Security (Q3, with Anna Sperotto)
• Network Systems (Q3, with Pieter-Tjerk de Boer)

Contact

• +31534899605
Zilverling (building no. 11), Hallenweg 19, Hallenweg 19, The Netherlands
• Location on the arrrrr! map