My name is Andreas Koch.
I was born at 7th July 1986, I’m living in Trier, Germany and I’m studying Computer Sciences at the University of Trier, beside the studies, I work as a Software engineer.
In 2011 I wrote a Bachelor thesis with title “Session Hijacking on Android Devices” at the University of Trier. (Chair of Information Security)
DroidSheep was one of the results of this thesis and was (only) developed for demonstrating the weak security of non-encrypted websites.
When I noticed the simplicity of session hijacking attacks, I decided to publish DroidSheep in order to show how easy session hijacking can be. Even without DroidSheep anyone having a computer or a smartphone could do an attack like that, but for demonstrating the danger even for “normal users” DroidSheep seems for me to be the better choice.
DroidSheep can be easily used by anybody who has an Android device and only the provider of the webservice can protect the users. So Anybody can test the security of his account by himself and can decide whether to keep on using the webservice.