Gian-Luca Frei is a Security Engineer at Zühlke. His expertise is doing security reviews and implementing security-critical software components like authentication and access control.
During his Bachelors’s studies in computer science with a specialization in IT-Security, he developed a deep understanding of cryptographic methods, application security, and network security. He has done research on modern cryptographic protocols for which he has received the ISSS Excellence Award 2019.
Expertise
IT-Security and Cryptography
Shared-key, public-key, advanced crypto, secure multiparty computation, E-Voting, HSM/TPM
Web Application Security
XXS, CSRF, SSRF, Injection, CSP
Penetration Testing
Reconnaissance, Intrusion, Exploitation, Privilege Escalation
Web Technologies
CORS, Single Page Applications, Java Spring, ASP.Net (Core)
Identity and Access Management
Token-based Authentication, JWT, OAuth2, OpenID Connect, SAML
Methods
OWASP Application Security Verification Standard, Testing Guide, Top 10, Mobile Top 10, Cloud Top 10
Programming
Python, JavaScript, C, Java, C#, Bash, HTML5
Tools
Burp Suite, JD-GUI, GDB
Activities and Links
- ISSS Excellence Award 2019Artikel der Berner Fachhochschule
- BFH Diplomfeier: Rede zum Eid des ArchimedesStudentische Abschlussrede
- Design and Implementation of a Digital Access Control ProtocolBachelor Thesis