CRoCS (Centre for Research on Cryptography and Security)

Centre for Research on Cryptography and Security enables both graduate and pre-graduate students to gain practical experience with current security and crypto solutions and technologies. The main areas of interest are user and data authentication, secure usage of smartcards, security for Internet of Things, usable security. More specific areas of interest are selected with respect to current developments and in accordance with senior members’ current research focus – for an overview of current research projects/areas see this link.

Our goal is to create an environment that allows students to get hands-on experience with the available technical solutions and explore, e.g., various types of attacks in laboratory courses or when working on their thesis. The laboratory is open to students who work on projects within the FI industrial partnership framework or projects running with relevant governmental bodies.


University: Masaryk University, Faculty of Informatics

Project: Usable Security for developers

Members: Martin Ukrop, Vashek Matyáš

The research focus is on usable interfaces of cryptographic libraries from the point of developers and administrators lacking detailed security education. We are interested in both programmable and command-line interfaces. Currently, the emphasis is placed on X.509-capable libraries, such as OpenSSL, GnuTLS and NSS, paying special attention to the process of certificate creation and validation. The goal is to enable the developers to use security APIs errorlessly and API designers create better interfaces less prone to misuse. We emphasize the necessity of a usable design even for tools targeted at experienced users.

Project: Disk encryption and secure storage

Members: Milan Brož

We focus on the Linux disk encryption, both for the kernel encryption module (dm-crypt) and key management (LUKS). The goal of this research project is to improve security of existing solution, either by using authenticated encryption or with introduction of memory-hard key derivation functions for LUKS key management schema.