Gian-Luca Frei is a Security Engineer at Z├╝hlke. His expertise is doing security reviews and implementing security-critical software components like authentication and access control.

During his Bachelors’s studies in computer science with a specialization in IT-Security, he developed a deep understanding of cryptographic methods, application security, and network security. He has done research on modern cryptographic protocols for which he has received the ISSS Excellence Award 2019.

.

Expertise

IT-Security and Cryptography
Shared-key, public-key, advanced crypto, secure multiparty computation, E-Voting, HSM/TPM

Web Application Security
XXS, CSRF, SSRF, Injection, CSP

Penetration Testing
Reconnaissance, Intrusion, Exploitation, Privilege Escalation

Web Technologies
CORS, Single Page Applications, Java Spring, ASP.Net (Core)

Identity and Access Management
Token-based Authentication, JWT, OAuth2, OpenID Connect, SAML

Methods
OWASP Application Security Verification Standard, Testing Guide, Top 10, Mobile Top 10, Cloud Top 10

Programming
Python, JavaScript, C, Java, C#, Bash, HTML5

Tools
Burp Suite, JD-GUI, GDB

.

Activities and Links