BSc in Computer Science from the University of Pisa, 2017; MSc in Computer Science from ETH Zurich, 2021.
Currently, Matteo Scarlata is a second-year PhD student in the Applied Cryptography Group, ETH Zurich. He is interested in the challenges that arise when cryptography meets real world systems and hardware. This is complemented by an interest in formal methods, both applied in this area and in general.
His main research interest lies in the analysis of pervasive cryptographic protocols, with a focus on provable security of key exchange.
January 16th, 2023 | 52 mins 12 secs
Threema is a Swiss encrypted messaging application. It has more than 10 million users and more than 7000 on-premise customers. Prominent users of Threema include the Swiss Government and the Swiss Army, as well as the current Chancellor of Germany, Olaf Scholz. Threema has been widely advertised as a secure alternative to other messengers.
Kenny, Kien and Matteo from the ETH Zurich Applied Cryptography Group present seven attacks against the cryptographic protocols used by Threema, in three distinct threat models. All the attacks are accompanied by proof-of-concept implementations that demonstrate their feasibility in practice.