Senior IT security researcher and consultant

Raphael Reischuk is a member of several international programme committees for information security; he is a frequent and passionate speaker at international conferences and appears regularly on network, web and cyber security issues. Raphael Reischuk is Vice President of the Cybersecurity Committee of DigitalSwitzerland, Advisory Board Member of the Swiss Academy of Engineering Sciences and Head of Cybersecurity at Zühlke.

Raphael Reischuk is the author of numerous scientific publications in various fields of IT security and cryptography, for which he has received several (international) awards. After studying computer science with a focus on information security, Raphael Reischuk received his doctorate with distinction in web and cloud security from the Information Security and Cryptography Group at the CISPA (Center for IT-Security, Privacy, and Accountability) at Saarland University and Cornell. Before joining Zühlke Engineering AG, he worked as a Senior Information Security Researcher at ETH Zurich, where he researched and taught on secure Internet architectures and co-developed SCION.

Raphael Reischuk: Lecture topics (selection)

  • Cyber-Security, Hacking, Pentesting, Social Engineering
  • Fake News, Authenticity, Blockchain Security, IoT Security
  • Security of Internet Architectures, Web Security, Privacy, Cloud Security
  • Security in the eHealth ecosystem

Lecture title (selection)

Time for a new secure internet for the 21st century

It is only a matter of time before today’s Internet collapses, before we lose control over content and systems, and until billions of networked IoT devices using artificial intelligence paralyse the critical control systems of our economy and society. Then we will wish we had a secure internet, resistant to distributed hacker attacks and tailored for the 21st century. Is there even a secure internet? Dr Raphael Reischuk will show how security-by-design and innovative research can make the Internet much safer, more efficient and energy-conscious, how the first deployments worldwide are starting up and how the “old” Internet can be replaced.

Innovation in the age of cybercrime

While innovative ideas must feel good and create a certain wow-effect when used, the user should feel comfortable and sleep well even when an innovative product is not in use. What does it take for innovation to be sustainable and for the excellent customer experience not to be spoiled by cybercrime? After all, good sleep and adequate protection of innovation are more important than ever in the digital age. Dr Raphael Reischuk shows in an impressive way how cyber-resilience becomes possible in the post-Covid world.

Securing the largest infrastructure in the world with Blockchain

Our online activities today depend heavily on various trust assumptions, whether for personal use, medical applications, business matters or e-commerce. Trust is typically expressed by accepting the public root keys of a PKI, whereupon a chain of trust to an entity’s key is established. Despite the scalability of authentication, these chains of trust have a number of problems: If one of the elements of a chain of trust is compromised, the final authentication instruction is meaningless, i.e. imitation and man-in-the-middle attacks can occur.

Man-in-the-middle attacks in the TLS ecosystem due to compromised CAs have been mitigated by protocol-based PKI extensions such as certificate transparency. However, these protocol-based systems do not provide sufficient incentives for protocols and monitors and do not provide measures that domains can take in response to CA misconduct.

The talk will present IKP, a block chain-based PKI extension that provides automatic responses to CA misbehaviour and incentives for those who help detect misbehaviour. IKP’s decentralised and intelligent contract system enables open participation, provides incentives to monitor CAs and allows financial recourse to misconduct. Using a game theoretic model and an Ethereum prototype implementation, we show that the incentives and increased deterrence offered by IKP are technically and economically viable.