Thesis Topics
On this page, you will find a list of available thesis topics that are available in our institute. Information about on-going and past theses can be found on this page. Some of the thesis descriptions are in German.
Note that because many of our topics are issued in German, some of the descriptions on this page are also German only. We are currently working on providing complete translations.
Open Theses
鈥淭race-based DBMS Performance Evaluations,鈥 Master's thesis, B. Erb (Supervisor), F. Kargl (Examiner), Inst. of Distr. Sys., Ulm Univ., 鈥 Open.
Recording traces of queries sent to a database system allows to replay these traces later as an evaluation workload. Furthermore, traces can be altered and modified in order to enhance the trace-based benchmarking capabilities. The aim of this thesis is to give an overview of the state of the art of trace-based DBMS benchmarks and to explore which tools are currently available for popular open source DBMSs. Furthermore, the thesis should explore the feasibility of advanced capabilities such as altering, tailoring, and scaling traces as well as the use of machine learning techniques to augment recorded traces. This thesis project is provided in collaboration with benchANT GmbH.
鈥淭owards a Novel DBMS Benchmark for Agentic AI Workloads,鈥 Master's thesis, B. Erb (Supervisor), F. Kargl (Examiner), Inst. of Distr. Sys., Ulm Univ., 鈥 Open.
Many database management systems have been heavily extended recently with vector stores and MCP support to enable agentic access. However, the performance characteristics of these new access types have not yet been studied to a sufficient extent. This includes query patterns, transactional behaviors, and data access patterns. The aim of this thesis is to address this gap, compare agentic workloads with traditional database benchmarks (e.g., TPC-C), and derive and appropriate benchmark to evaluate database systems for such agentic usage. This thesis project is provided in collaboration with benchANT GmbH.
鈥淭opics on Web Technologies and Architectures (upon Request),鈥 Bachelor or Master's thesis or individual Master's Project, E. Mei脽ner (Supervisor), F. Kargl (Examiner), Inst. of Distr. Sys., Ulm Univ., 鈥 Open.
The landscape of web technologies and architectures is constantly evolving to meet modern performance and structural demands. Understanding and innovating within these paradigms is key to building next-generation scalable web applications. If you are interested in this area and seek a potential topic, please contact me for further discussion and drafting.
鈥淭opics on Practical and Usable Privacy (upon Request),鈥 Bachelor or Master's thesis or individual Master's Project, E. Mei脽ner (Supervisor), F. Kargl (Examiner), Inst. of Distr. Sys., Ulm Univ., 鈥 Open.
Effective privacy protection in modern software systems requires bridging the gap between strong technical guarantees and actual user adoption. Developing robust Privacy-Enhancing Technologies (PETs) and leveraging Trusted Computing paradigms, such as Trusted Execution Environments (TEEs), are critical challenges for building secure, user-centric systems. If you are interested in this area and seek a potential topic, please contact me for further discussion and drafting.
鈥淩eliability, Privacy and Security Aspects of LLM-based Systems,鈥 Bachelor or Master's thesis, J. Wessner (Supervisor), F. Kargl (Examiner), Inst. of Distr. Sys., Ulm Univ., 鈥 Open.
Large Language Models (LLMs) are transforming many aspects of society and IT systems. Large pre-trained models demonstrate impressive problem understanding and solving capabilities and generalize to domain-specific tasks through in-context learning without further task-specific fine-tuning. This has led to a fast-evolving area of research that focuses on using LLMs to automate complex workflows like software development, system configuration and security incident response. Despite significant progress in this field, the aspects of privacy, security and reliability of such LLM-based systems often remain underexplored. Especially in high-stakes domains like network access control and healthcare or when dealing with sensitive data, reliability, security and privacy of such systems is crucial. We offer various bachelor and master thesis projects in this area of research. Specific thesis topics can be individually discussed and designed with the supervisor.
鈥淧rivacy-Preserving Measures and Information Leakage,鈥 Bachelor or Master's thesis, L. Pietzschmann (Supervisor), F. Kargl (Examiner), Inst. of Distr. Sys., Ulm Univ., 鈥 Open.
This topic addresses the challenges of protecting sensitive information in open data. Even when datasets are anonymized, unintended information leakage can and does still occur. I am particularly interested in quantifying the extent of such leakage and developing privacy-preserving measures to mitigate it. This may also include exploring static code analysis techniques or machine learning approaches to identify potential privacy risks in datasets. If this sounds interesting to you, get in touch with me and we can then further discuss the specific focus and scope of the thesis.
鈥淓nd-to-End Zero-Trust Network Access Policies,鈥 Bachelor or Master's thesis, J. Schoffit (Supervisor), F. Kargl (Examiner), Inst. of Distr. Sys., Ulm Univ., 鈥 Open.
This topic addresses the challenges of securing modern network environments through Zero Trust Network Access. Even when strong perimeter defenses are in place, the lack of true end-to-end network traffic separation still leaves systems vulnerable to lateral movement. I am interested in developing architectures that enforce strict network isolation and verification. This may also include exploring unified policy frameworks to seamlessly synchronize security rules across both the core network infrastructure and the client endpoints. If you wish to explore this topic further, I invite you to contact me and we can then further discuss the specific focus of the thesis.
鈥淪MRctrl: A central mangement component for state-machine replication,鈥 Bachelor Thesis or Project, F. J. Hauck (Supervisor), F. J. Hauck (Examiner), Inst. of Distr. Sys., Ulm Univ., 2026 鈥 Open.
State-machine replication is a concept to achieve fault tolerance. Multiple replicas execute each the same requests on behalf of clients. At the institute we have an own replication framework called SMRteez. As the setup of multiple replicas is complex and error prone, there were initial attempts for a central component that can start, stop and manage replicas from a GUI-based program. The goal of this work is a redesign of this component so that security concerns (e.g., availability of private keys) are considered and the operations are base on a REST interface that can either be operated with a command-line tool or by a web-based single-page application, i.e. a browser GUI. Exact coverage has to be discussed based on the amount of available credit points.
鈥淩e-Implementing etcd using an SMR framework,鈥 Bachelor Thesis or Project, F. J. Hauck (Supervisor), F. J. Hauck (Examiner), Inst. of Distr. Sys., Ulm Univ., 2026 鈥 Open.
State-machine replication is a concept to achieve fault tolerance. There are several frameworks to support SMR-based applications. Etcd is an application implementing a so-called coordination service. It is internally build with SMR technology, but does not use an underlying framework. The task of this work is to reimplement etcd with the BFT-SMaRt/SMRteez framework. The goal is to demonstrate that the framework can handle such applications. In case of a Bachelor's thesis, in case of remaining time also in case of project work, the performance shall be compared to the original etcd implementation.
鈥淢ulti-Faceted Comparison of State-of-the-Art zkSNARK Frameworks,鈥 Bachelor or Master's thesis, E. Mei脽ner (Supervisor), F. Kargl (Examiner), Inst. of Distr. Sys., Ulm Univ., 2026 鈥 Open.
Zero-Knowledge Proofs (ZKPs) are a highly useful building block for engineering privacy-enhancing systems, yet their practical application and implementation remain notoriously complex. Recently, several mature, well-maintained software libraries have emerged to abstract this complexity and streamline the integration of ZKPs. This thesis aims to conduct a multi-faceted comparative analysis of three prominent, generalized zkSNARK frameworks: arkworks (Rust), gnark (Go), and snarkjs/circom (JavaScript/WASM). The core practical component of this thesis will be the implementation of an anonymous credential scheme across all three frameworks, using a common baseline implementation as a reference. These implementations will provide the empirical basis on which to evaluate the frameworks across qualitative dimensions, such as developer experience and quality of documentation. In addition to this qualitative analysis, the resulting implementations should undergo a rigorous performance evaluation, which will be analyzed and discussed in consideration of existing public benchmarks.
鈥淢achine Learning鈥揃ased Quantification of Security Mechanism Outputs into Subjective Logic Opinions in V2X Environments,鈥 Project or Bachelor's thesis or Master's thesis, A. Hermann (Supervisor), F. Kargl (Examiner), Inst. of Distr. Sys., Ulm Univ., 2026 鈥 Open.
Security mechanisms in Vehicle-to-Everything (V2X) environments, such as misbehavior detection systems, generate outputs that indicate potential malicious behavior but do not directly provide a unified and interpretable trust representation. This thesis investigates methods for quantifying such outputs into subjective logic opinions that can be used by trust assessment frameworks. The focus lies on a machine learning鈥揵ased approach that learns the mapping from security mechanism outputs to belief, disbelief, and uncertainty values. The proposed method will be compared against existing quantification techniques to evaluate improvements in accuracy, robustness, and interpretability. The evaluation will be conducted using realistic V2X datasets and scenarios.
鈥淚dentifying Common Statistical Patterns in Psychology Research Code,鈥 Bachelor or Master's thesis or individual lab project, L. Pietzschmann (Supervisor), F. Kargl (Examiner), Inst. of Distr. Sys., Ulm Univ., 2026 鈥 Open.
This thesis will take a quantitative look into statistical practices in empirical research. By analyzing the code that is submitted with preprints on the common preprint server PsyArXiv, we will identify common statistical pipelines and practices. This will allow us to gain insights into common patters and potential pitfalls, which can then aid future research in developing better tools and guidelines for statistical analysis.
鈥淎daptive Timeouts for a Replication Framework,鈥 Bachelor Thesis or Project, C. Denzel (Supervisor), F. J. Hauck (Examiner), Inst. of Distr. Sys., Ulm Univ., 2026 鈥 Open.
State-machine replication is a concept to achieve fault tolerance. Multiple replicas execute each the same requests on behalf of clients. At the institute we have an own replication framework called SMRteez. It is equipped with a mechanism to deterministically measure some metrics in each replica so that adaptation concepts can be built on top. This work is about measuring the length of the underlying consensus protocol and dynamically adjust the local timeout when a replica is considered to be faulty. This not only allows for faster crash detection but also for faster misbehavior detection in Byzantine replicas.
鈥淭rust Analysis of Traffic Sign Classifiers under Occlusions,鈥 Bachelor's thesis or Master's thesis, D. Eisermann (Supervisor), F. Kargl (Examiner), Inst. of Distr. Sys., Ulm Univ., 2025 鈥 Open.
This thesis aims to investigate the reliability and trustworthiness of traffic sign classifiers when subjected to occlusions. Utilizing the German Traffic Sign Recognition Benchmark (GTSRB) dataset, this research will focus on annotating the dataset with various levels and types of occlusions to evaluate if the predictions are still trustworthy. The primary objective is to assess the performance degradation of the classifier under different occlusion scenarios and to develop strategies to enhance its robustness. This study is crucial for improving the safety and reliability of autonomous driving systems where traffic signs might be partially obscured.
鈥淒etection of Natural Adversarial Examples against ImageNet Classifiers,鈥 Master's thesis, D. Eisermann (Supervisor), F. Kargl (Examiner), Inst. of Distr. Sys., Ulm Univ., 2025 鈥 Open.
This thesis will investigate methods for detecting natural adversarial examples against ImageNet classifiers using classic computer vision techniques. Adversarial examples are inputs to machine learning models that are designed to cause the model to make a mistake. This project will utilize the Harder ImageNet Test Set (https://arxiv.org/abs/1907.07174) as an dataset for Natural Adversarial Examples. The primary objective is to explore and compare the effectiveness of traditional computer vision methods, such as histograms and SIFT (Scale-Invariant Feature Transform), in identifying these adversarial examples. The outcome of this research will enhance our understanding of model vulnerabilities and contribute to developing more robust machine learning systems.
鈥淎 Comparison of Various Optimization Strategies for Generating Adversarial Patches,鈥 Bachelor's thesis or Master's thesis, D. Eisermann (Supervisor), F. Kargl (Examiner), Inst. of Distr. Sys., Ulm Univ., 2025 鈥 Open.
This thesis will explore the effectiveness of different optimization strategies in the generation of adversarial patches. Adversarial patches are small, intentionally designed perturbations that can cause machine learning models, particularly in computer vision, to misclassify inputs. The primary objective of this research is to compare various optimization techniques, such as gradient-based methods, evolutionary algorithms, and reinforcement learning, to determine which methods are most effective and efficient in creating these patches. The outcome of this research could significantly enhance our understanding of model vulnerabilities and contribute to the development of more robust machine learning systems.
鈥淭rust Analysis of Traffic Sign Classifiers under Occlusions,鈥 Bachelor's thesis or Master's thesis, D. Eisermann (Supervisor), F. Kargl (Examiner), Inst. of Distr. Sys., Ulm Univ., 2024 鈥 Open.
This thesis aims to investigate the reliability and trustworthiness of traffic sign classifiers when subjected to occlusions. Utilizing the German Traffic Sign Recognition Benchmark (GTSRB) dataset, this research will focus on annotating the dataset with various levels and types of occlusions to evaluate if the predictions are still trustworthy. The primary objective is to assess the performance degradation of the classifier under different occlusion scenarios and to develop strategies to enhance its robustness. This study is crucial for improving the safety and reliability of autonomous driving systems where traffic signs might be partially obscured.
鈥淒etection of Natural Adversarial Examples against ImageNet Classifiers,鈥 Master's thesis, D. Eisermann (Supervisor), F. Kargl (Examiner), Inst. of Distr. Sys., Ulm Univ., 2024 鈥 Open.
This thesis will investigate methods for detecting natural adversarial examples against ImageNet classifiers using classic computer vision techniques. Adversarial examples are inputs to machine learning models that are designed to cause the model to make a mistake. This project will utilize the Harder ImageNet Test Set (https://arxiv.org/abs/1907.07174) as an dataset for Natural Adversarial Examples. The primary objective is to explore and compare the effectiveness of traditional computer vision methods, such as histograms and SIFT (Scale-Invariant Feature Transform), in identifying these adversarial examples. The outcome of this research will enhance our understanding of model vulnerabilities and contribute to developing more robust machine learning systems.
鈥淎utomating Trust Modeling Based On Vehicular System Models,鈥 Bachelor or Master's thesis, N. Trkulja (Supervisor), F. Kargl (Examiner), Inst. of Distr. Sys., Ulm Univ., 2024 鈥 Open.
An autonomous vehicle is equipped with a variety of sensors that produce large quantites of data which the vehicle uses to run a lot of different safety-critical functions, such as Cooperative Adaptive Cruise Control or Park Assist. In this thesis, we focus on the trust between the vehicle computer and other in-vehicle components that it relies upon to provide non-compromised data as input to different safety-critical functions. The goal of the thesis is to build a tool that will automate building of in-vehicular trust models based on a system model of a vehicle. A system model of a simplified vehicle will first need to be created by using the System Modeling Language (SysML). This model will serve as an input to the automation tool that needs to output a trust model in a pre-defined form. The methodology for building such trust models will be provided.
鈥淎 Comparison of Various Optimization Strategies for Generating Adversarial Patches,鈥 Bachelor's thesis or Master's thesis, D. Eisermann (Supervisor), F. Kargl (Examiner), Inst. of Distr. Sys., Ulm Univ., 2024 鈥 Open.
This thesis will explore the effectiveness of different optimization strategies in the generation of adversarial patches. Adversarial patches are small, intentionally designed perturbations that can cause machine learning models, particularly in computer vision, to misclassify inputs. The primary objective of this research is to compare various optimization techniques, such as gradient-based methods, evolutionary algorithms, and reinforcement learning, to determine which methods are most effective and efficient in creating these patches. The outcome of this research could significantly enhance our understanding of model vulnerabilities and contribute to the development of more robust machine learning systems.