InfoSec 2015 – International Summer School on Information Security


Bilbao, Spain, temperature 19 degrees centrigrade, cloudy, humidity 88% — It is a very calm morning with little traffic and only few people roaming the streets. The day has not yet started for most of the locals at 9 a.m. local time. But there is one notable exception: At the University of Deusto (see picture), technicians are eagerly preparing projectors, connectors and Windows updates. Meanwhile, the lecture hall is filling at a constant pace. International students, researchers and lecturers are eagerly, but quietly looking for seats with nearby power outlets in the lecture hall. To take notes, of course, that is. There is constant whispering and furious typing while the last participants, with coffee in their hands, close the door behind them – the key note is about to start.
It is a typical morning at the International Summer School on Information Security that takes place in Biblao from July 6 to July 10, 2015. As two of the participants, Fabian Knirsch and Andreas Unterweger are priviledged to report from the air-conditioned lecture hall, in the midst of the fellow participants in the key note talk. Doctoral and post-doctoral students of nearly all nationalities are present. Two hundred eyes are looking at the projector screen, quietly listening as Jan Camenisch talks about privacy in today’s world.
Privacy and security are the main themes of this summer school, similar to the main objectives of the Josef Ressel Center for User-Centric Smart Grid Privacy, Security and Control. The lectures cover both, basic and current topics in information security. From S-box design to quantum cryptography, a wide range of special topics allow everyone to learn something new, while, at the same time, combining expertise of different sub-fields of information security.
The most notable course, by far, is the outstanding three-part lecture of Bart Preneel on practical crypography and cryptanalysis. After introducing both, symmetric and asymmetric encryption, he gave recommendations on key sizes in the post-Snowden world and showed how cryptographic protocols and implementations can be broken in practice. From simple timing attacks to sophisticated bit fiddling with lasers, he showed what is done and can be done by physical means despite mathematically secure designs.
The audience is clapping their hands, mumbling starts, people are standing up, the door opens. There is a 10-minute break to rehydrate with water or coffee and, most importantly, to switch to the neighboring lecture hall before the third part of Bart Preneel’s lecture starts.