Communication Networks

Jonas Primbs, M.Sc.

Phone+49 7071 29-70512
Fax+49 7071 29-5220
Emailjonas.primbsspam prevention@uni-tuebingen.de
RoomB309
Address

Chair of Communication Networks

University of Tübingen
Wilhelm-Schickard-Institute for Computer Science

Sand 13, 72076 Tübingen

ORCID0000-0001-5479-3315

Academic Career

2020
Master of Science

in Computer Science with focus on IT-Security at the Eberhard Karls University of Tübingen.

Title of Final Thesis: "The SSteP-KiZ Prototype: A tool for multimodal real time interaction for the tele-psychotherapy of children in home environment".

2019
Bachelor of Science

in Computer Science at the Eberhard Karls University of Tübingen.

Title of Final Thesis: "Weak point analysis of the OAuth 2.0 Authorization Framework" in cooperation with the SySS GmbH.

2015
General Abitur

at Martin-Gerbert-Gymnasium of Horb a.N.


Research

I'm a researcher and PhD student at the Chair of Communication Networks at University of Tübingen.

Research Interests

  • IT-Security
  • Self-Sovereign Identity
  • Internet of Medical Things
  • Modern Web-Technologies
  • Edge Computing
  • Cloud Computing
  • Distributed Systems

List of Publications

Presentations

  • OAuth Security Workshop 2021: Secure OIDC Authentication for WebRTC (SOAR)
    Recording Slides
  • OAuth Security Workshop 2022: Message Layer Security with OpenID Connect
    Slides
  • OAuth Security Workshop 2023: End-to-End User Authentication with OpenID Connect: Use Cases and Benefits
    Slides
  • 36. Krypto-Tag 2024: OIDC² - A Simple End-to-End User Authentication Method for the Internet
    Slides Abstract
  • OAuth Security Workshop 2024: End-to-End Identities for Humans and Machines
    Slides
  • OAuth Security Workshop 2025: OAuth Cross-Device Flow for Enhanced Authorization in Electric Vehicle Charging
    Slides
  • IETF 124 (2025): Browser-Swapping Attacks
    Slides
  • OAuth Security Workshop 2026: Browser Swapping: How to Hack & How to Fix?
    Slides

Teaching

Courses Held

  • Summer Term 2024: Offensive Security (4 SWS, Esslingen University of Applied Sciences)
  • Summer Term 2025: Offensive Security (4 SWS, Esslingen University of Applied Sciences)
  • Summer Term 2026: Offensive Security (4 SWS, Esslingen University of Applied Sciences)

Courses Supervised

  • Winter Term 2020/21: Network Security (co-supervising, and single lectures and exercises)
  • Winter Term 2020/21: Public Cloud Computing (exercise sheets and supervising)
  • Winter Term 2021/22: Network Security 1 + 2 (co-supervising, and single lectures and exercises)
  • Winter Term 2021/22: Public Cloud Computing (exercise sheets and supervising)
  • Summer Term 2023: Network Security 1 + 2 (co-supervising, and single lectures and exercises)
  • Winter Term 2023/24: Public Cloud Computing (exercise sheets and supervising)

Theses Supervised

  • Bachelor: UI- and UX-Design and Implementation for the Patient and Therapist Frontend of the Teletherapy Application SSTeP-KiZ (2020)
  • Bachelor: Development of a System for Real-Time Monitoring of Body Functions with Bluetooth Sensors for the Teletherapy Project SSTeP-KiZ (2021)
  • Bachelor: Statistic Evaluation of Heart Rate Sensor Data for the Children and Youth Psychotherapy (2021)
  • Research Project: Development of an Application-oriented Exercise for the Public Cloud Computing Lecture (2022)
  • Master: Exploring Cloud Infrastructures using Resource Graphs and Graph Matching Algorithms to match best-practice Cloud Patterns (2022)
  • Master: Intrusion Detection and Prevention for Service-Oriented Architectures with Application to SOME/IP (2022)
  • Bachelor: Design and Implementation of Application Layer Security Based on OpenID Connect (2022)
  • Master: The esatus Wallet in the Self-Sovereign Identity Framework: A Security Analysis (2022)
  • Bachelor: Concept and prototype implementation of an Identity and Access Management for the University Medical Center Tübingen (2023)
  • Bachelor: End-to-End Authentication & Encryption of emails with OpenID Connect (PGPID) (2023)
  • Bachelor: Implementation of a Client for the Instant Messaging protocol Matrix to demonstrate End-to-End Authentication with OpenID Connect (2023)
  • Master: Concept and development of a prototype to demonstrate End-to-End Encryption and Authentication in WebRTC Video Conferences with OIDC² (2023)
  • Bachelor: A study on AWS Cloud Services for Webhook-Infrastructures in the SaaS-Application Meisterplan (2023)
  • Bachelor: Design and Implementation of Secure End-to-End Communication Channels across a Reverse Proxy Using OIDC² and Diffie-Hellman Key Exchange (2024)
  • Research Project: Revision and Validation of the Lab Sessions for the Public Cloud Computing Course (2024)
  • Master: Confidential Computing in Clouds Based on the Trusted Execution Environment Intel SGX Using Remote Attestation and PKI-Issued Identity Tokens for Workload Authentication (2024)
  • Master: Design and Implementation of a Web-Based E-Mail Client Supporting PGP Authentication and Encryption Using OIDC² for PGP Key Certification (2025)
  • Research Project: Koala Questionnaire Service (2025)
  • Bachelor: Design and implementation of a Bluetooth Low Energy (BLE) interface for the Movesense Flash Sensor, including a firmware extension for the temporary storage of measurement data (2025)
  • Master: Design and implementation of a cross-platform application framework for use in telepsychotherapy (2025)
  • Bachelor: Investigation of ways to integrate the Pupil Lab Neon eye tracker with modern web standards and connect it to the KoALA telepsychotherapy platform using WebRTC (2025)
  • Master: Design and implementation of a control and real-time communication platform for wearables for use in telepsychotherapy (2025)
  • Bachelor: Secure Integration of Wearable Sensors on a Wear OS device into a real-time data Streaming platform for application in the KOALA Project (2026)
  • Forschungsprojekt: Development of a Web-Based Client for FHIR Questionnaire Management for the KoALA Project (2026)
  • Master: Evaluation of Advantages and Limitations of automated Penetration Testing in CI/CD Pipelines (2026)
  • Master: Automation of the Least Privileges Paradigm for OAuth 2.0 and its Application to the KoALA Project (2026)
  • Bachelor: Design of Fine-Grained Authorization for Third-Party Model Context Protocol (MCP) Servers to Access Protected Resources Using OAuth and Transaction Tokens (2026)
  • Master: Design, Implementation, and Evaluation of a Real-Time Synchronized Visualization Framework for Sensor Data to Support Tele-Psychotherapy for Children with Obsessive Compulsive Disorder (2026)