Anna-Katharina Wickert

PhD student at Technische Universität Darmstadt

Technische Universität Darmstadt - Software Technology Group

Biography

I am a doctoral researcher in the Software Technology Group supervised by Prof. Mezini. Currently, I focus on security problems caused by API-misuses, e.g., for cryptographic APIs. A well-known problem of cryptography in software is that cryptographic APIs are used in an insecure way. An example is that developers use ECB as a block mode for encryption which is known to be insecure. Within my research, we want to support developers to write secure code.

As part of my research within CROSSING, I am a contributor to the official Eclipse Plugin CogniCrypt which supports developers in using cryptographic APIs securely. Further, I contributed to the explainer video about CogniCrypt.

Interests

• API-misuses
• Code analyses
• Software security
• Go & it’s communities
• Healthy food & green tea
• Yoga (incl. teaching) & bouldering

Education

• PhD student supervised by Mira Mezini, 2017 - now

  Technische Universität Darmstadt

• MSc IT-Security, 2014 - 2017

  Technische Universität Darmstadt

• Exchange student, 2016

  University of Oslo

• BSc, 2011 - 2014

  Technische Hochschule Bingen

Recent Publications

Anna-Katharina Wickert, Lars Baumgärtner, Michael Schlichtig, Krishna Narasimhan, Mira Mezini (2022). To Fix or Not to Fix: A Critical Study of Crypto-misuses in the Wild. In TRUSTCOM'22.

Cite Dataset

Michael Schlichtig, Anna-Katharina Wickert, Stefan Krüger, Eric Bodden, Mira Mezini (2022). CamBench - Cryptographic API Misuse Detection Tool Benchmark Suite. In MSR'22.

PDF Cite Code DOI

Steffen Herbold, Alexander Trautsch, Benjamin Ledel, Alireza Aghamohammadi, Taher Ahmed Ghaleb, Kuljit Kaur Chahal, Tim Bossenmaier, Bhaveet Nagaria, Philip Makedonski, Matin Nili Ahmadabadi, Kristof Szabados, Helge Spieker, Matej Madeja, Nathaniel Hoy, Valentina Lenarduzzi, Shangwen Wang, Gema Rodríguez-Pérez, Ricardo Colomo-Palacios, Roberto Verdecchia, Paramvir Singh, Yihao Qin, Debasish Chakroborti, Willard Davis, Vijay Walunj, Hongjun Wu, Diego Marcilio, Omar Alam, Abdullah Aldaeej, Idan Amit, Burak Turhan, Simon Eismann, Anna-Katharina Wickert, Ivano Malavolta, Matus Sulir, Fatemeh Fard, Austin Z. Henley, Stratos Kourtzanidis, Eray Tuzun, Christoph Treude, Simin Maleki Shamasbi, Ivan Pashchenko, Marvin Wyrich, James Davis, Alexander Serebrenik, Ella Albrecht, Ethem Utku Aktas, Daniel Strüber, Johannes Erbel (2021). A Fine-grained Data Set and Analysis of Tangling in Bug Fixing Commits. In EMSE.

PDF Cite Code

Anna-Katharina Wickert, Lars Baumgärtner, Florian Breitfelder, Mira Mezini (2021). Python Crypto Misuses in the Wild. In ESEM'21.

PDF Cite Code Dataset Video DOI

See all publications

Recent & Upcoming Talks

Talk: Go Flow Safe: Ensure Data Flow of your App with Taint Analyses@ GopherCon Europe

Jul 31, 2022 — Berlin

CamBench - Cryptographic API Misuse Detection Tool Benchmark Suite

May 19, 2022 — May 24, 2022 Online & Pittsburgh

Go is Memory Safe isnt it? @ BSides Berlin

Aug 28, 2021 Online [Conference]

Crypto Fails and How to Tackle Them in Go @ GoDevNet

May 21, 2021 Online [Meetup]

Crypto Fails and How to Tackle Them in Go @ GoFRM

Apr 21, 2021 Online [Meetup]

See all

Recent & Upcoming Misc

Workshop: Application Security @ GopherCon

Oct 6, 2022 Online [Workshop]

Workshop: Application Security @ GopherCon Europe

May 26, 2021 Online [Conference]

What makes wonderful workshops @ GoTimeFM

May 6, 2021 Online [Podcast]

Experience

 

 

 

 

 

Student Assistant

Technische Uniersität Darmstadt, Software Technology Group,

Sep 2017 – Oct 2017 Darmstadt

Creation of an overview of vulnerabilities in software discussed in recent publications

 

 

 

 

 

Student Assistant

Technische Universität Darmstadt, SOLA Software Lab

Mar 2017 – May 2017 Darmstadt

Evaluation and design of a new research idea Development of a dynamic analysis tool in JavaScript so solve out idea

 

 

 

 

 

Student Assistant

Technische Universität Darmstadt

Feb 2015 – May 2016 Darmstadt

Evaluation and design of a static analysis for Go Development and publication of the design and implementation

 

 

 

 

 

Ada Lovelace Mentor

Fachhochschule Bingen

Dec 2011 – Aug 2014 Bingen

Organization and operation yearly Girl’s Day with other team members. Organization, development, and teaching of workshops and lessons to increase the percentage of women in STEM jobs.