Konrad Wolsing, M.Sc.
External Researcher / FKIE
| Ahornstraße 55, building E3 52074 Aachen Germany | |
| wolsing@comsys.rwth-aachen.de |
Short Biography
In November 2019, I graduated with an M.Sc. degree in computer science at the RWTH Aachen University. Since 2020 I am working at Fraunhofer Institute for Communication, Information Processing and Ergonomics (FKIE) in the Cyber Analysis & Defense (CA&D) department. Here at the Chair of Communication and Distributed Systems, I am an external researcher and Ph.D. student.
My research focusses on industrial intrusion detection systems and maritime cybersecurity.
Publications
Exploring Anomaly Detection for Marine Radar Systems.
Computer Security. ESORICS 2024 International Workshops.
Lecture Notes in Computer Science.
Presented at the 10th Workshop on the Security of Industrial Control Systems & of Cyber-Physical Systems
(CyberICPS '24), Bydgoszcz, Poland. September 2025.
GeCos Replacing Experts: Generalizable and Comprehensible Industrial Intrusion Detection.
Proceedings of the 34th USENIX Security Symposium (USENIX Sec ‘25), Aug 13 - Aug 15, 2025, Seattle, WA, USA. August 2025.
Detecting Ransomware Despite I/O Overhead: A Practical Multi-Staged Approach.
Proceedings of the 22nd Annual Network and Distributed System Security Symposium (NDSS ‘25), Feb 24 - Feb 28, 2025, San Diego, CA, USA. February 2025.
Deployment Challenges of Industrial Intrusion Detection Systems.
Proceedings of the 10th Workshop on the Security of Industrial Control Systems & of Cyber-Physical Systems (CyberICPS ‘24), Sep 16 - Sep 20, 2024, Bydgoszcz, Poland. September 2024.
One IDS is not Enough! Exploring Ensemble Learning for Industrial Intrusion Detection.
Computer Security – ESORICS 2023.
Lecture Notes in Computer Science (LNCS), vol. 14345.
Presented at the 28th European Symposium on Research in Computer Security
(ESORICS '23), Sep 25 - Sep 29, 2023, The Hague, The Netherlands. September 2024.
Sherlock: A Dataset for Process-aware Intrusion Detection Research on Power Grid Networks.
Proceedings of the 15th ACM Conference on Data and Application Security and Privacy (CODASPY ‘25), Jun 4 - Jun 6, 2025, Pittsburgh, PA, USA. June 2024.
Demo: Maritime Radar Systems under Attack. Help is on the Way!.
Proceedings of the 2024 IEEE 49th Conference on Local Computer Networks (LCN), Oct 8 - Oct 10, 2024, Caen, Normandy, France. January 2024.
Threat Analysis for Novel Underwater Vehicles: Insights from the Perspective of Cyber Security.
Proceedings of the 4th European Workshop on Maritime Systems, Resilience and Security (MARESEC 2024), Jun 6 - Jun 7, 2024, Bremerhaven, Germany. January 2024.
Retrofitting Integrity Protection into Unused Header Fields of Legacy Industrial Protocols.
Proceedings of the 48th IEEE Conference on Local Computer Networks (LCN), Oct 1 - Oct 5, 2023, Daytona Beach, Florida, US. October 2023.
SoK: Evaluations in Industrial Intrusion Detection Research.
Journal of Systems Research, vol. 3, no. 1. October 2023.
XLab-UUV – A Virtual Testbed for Extra-Large Uncrewed Underwater Vehicles.
Proceedings of the 1st IEEE LCN Workshop on Maritime Communication and Security (MarCaS), Daytona Beach, Florida, USA, co-located with the 48th IEEE Conference on Local Computer Networks (LCN '23). October 2023.
Poster: Ensemble Learning for Industrial Intrusion Detection.
Proceedings of the 38th Annual Computer Security Applications Conference (ACSAC ‘22), Dec 5 - Dec 9, 2022, Austin, TX, USA. December 2022.
Guiding Ship Navigators through the Heavy Seas of Cyberattacks.
Proceedings of the 1st European Workshop on Maritime Systems Resilience and Security (MARESEC 2022), Jun 20 - Jun 22, 2022, Bremerhaven, Germany. October 2022.
IPAL: Breaking up Silos of Protocol-dependent and Domain-specific Industrial Intrusion Detection Systems.
Proceedings of the 25th International Symposium on Research in Attacks, Intrusions and Defenses (RAID 2022), Oct 26 - Oct 28, 2022, Limassol, Cyprus. October 2022.
Can Industrial Intrusion Detection Be SIMPLE?.
Computer Security – ESORICS 2022, vol. 978-3-031-17143-7.
Lecture Notes in Computer Science, vol. 13556.
Presented at the 27th European Symposium on Research in Computer Security
(ESORICS '22), Sep 26 - Sep 30, 2022, Copenhagen, Denmark. September 2022.
Network Attacks Against Marine Radar Systems: A Taxonomy, Simulation Environment, and Dataset.
Proceedings of the 47th IEEE Conference on Local Computer Networks, Sep 26 - Sep 29, 2022, Edmonton, Canada. September 2022.
PowerDuck: A GOOSE Data Set of Cyberattacks in Substations.
Proceedings of the 15th Workshop on Cyber Security Experimentation and Test, Moscow, Russia. August 2022.
A False Sense of Security? Revisiting the State of Machine Learning-Based Industrial Intrusion Detection.
Proceedings of the 8th ACM Cyber-Physical System Security Workshop (CPSS ‘22), May 30, 2022, Nagasaki, Japan, co-located with the 17th ACM ASIA Conference on Computer and Communications Security (ASIACCS '22). May 2022.
Anomaly Detection in Maritime AIS Tracks: A Review of Recent Approaches.
Journal of Marine Science and Engineering, vol. 10, no. 1. January 2022.
SIGMAR: Ensuring Integrity and Authenticity of Maritime Systems using Digital Signatures.
Proceedings of the 2021 International Symposium on Networks, Computers and Communications (ISNCC), Oct 31 - Nov 2, 2021, Dubai, United Arab Emirates. November 2021.
Poster: Facilitating Protocol-independent Industrial Intrusion Detection Systems.
Proceedings of the 2020 ACM SIGSAC Conference on Computer and Communications Security (CCS ’20), Nov 9 - Nov 13, 2020, Virtual. November 2020.
Perceiving QUIC: Do Users Notice or Even Care?.
Proceedings of the 15th International Conference on Emerging Networking Experiments and Technologies (CoNEXT ‘19), Dec 9 - Dec 12, 2019, Orlando, Florida, USA. December 2019.
A Performance Perspective on Web Optimized Protocol Stacks: TCP+TLS+HTTP/2 vs. QUIC.
Proceedings of the Applied Networking Research Workshop (ANRW ‘19), Jul 22, 2019, Montreal, Quebec, Canada. July 2019.
Blitz-starting QUIC Connections.
COMSYS, RWTH Aachen University. May 2019.
Digging into Browser-based Crypto Mining.
Proceedings of the Internet Measurement Conference 2018 (IMC ‘18), Oct 31 - Nov 2, 2018, Boston, US. October 2018.
Characterizing a Meta-CDN.
Passive and Active Measurement.
Lecture Notes in Computer Science, vol. 10771.
Presented at the 19th Annual Passive and Active Measurement Conference
(PAM '2018), Mar 26 - Mar 27, 2018, Berlin, Germany. March 2018.
Advised Theses
Learning Physical Control Invariants for Industrial Intrusion Detection
Master's Thesis, RWTH Aachen University, March 2024
Advisors:
,
Eric Wagner
Examiners:
Klaus Wehrle,
Ulrike Meyer (IT-Sec)
Exploring the Effectiveness of Intrusion Detection for Marine Radar Systems
Master's Thesis, RWTH Aachen University, January 2024
Advisor:
Examiners:
Klaus Wehrle,
Elmar Padilla (H-BRS)
Evaluating the Stability of Industrial Intrusion Detection Systems
Master's Thesis, RWTH Aachen University, June 2023
Advisors:
,
Eric Wagner
Examiners:
Klaus Wehrle,
Sandra Geisler (DSMA)
Systematically Exploring the Fusibility of State-of-the-Art Industrial Intrusion Detection Systems
Master's Thesis, RWTH Aachen University, February 2023
Advisors:
,
Jan Pennekamp,
Eric Wagner
Examiners:
Klaus Wehrle,
Elmar Padilla (H-BRS)FOLKS Award for the best Master's theses in 2023
Utilizing the Accessibility Layer to Generate Benign Activity for HIDS
Bachelor's Thesis, RWTH Aachen University, April 2022
Advisors:
Christian van Sloun,
Examiners:
Klaus Wehrle,
Jürgen Giesl (LuFG i2)
Closer to the Network: Deploying State-Based Industrial Intrusion Detection on Network Flows
Master's Thesis, RWTH Aachen University, December 2021
Advisor:
Examiners:
Klaus Wehrle,
Ulrike Meyer (IT-Sec)
Designing and Evaluating Minimalistic Industrial Intrusion Detection Approaches
Bachelor's Thesis, RWTH Aachen University, October 2021
Advisor:
Examiners:
Klaus Wehrle,
Ulrike Meyer (IT-Sec)
On the Generalizability of Process-Based Industrial Intrusion Detection Systems
Bachelor's Thesis, RWTH Aachen University, April 2021
Examiners:
Klaus Wehrle,
Ulrike Meyer (IT-Sec)