SBA Research is a research center for Information Security funded by the national initiative for COMET Competence Centers for Excellent Technologies. We bring together 25 companies, 4 Austrian universities, one university of applied sciences, a non-university research institute, and many international research partners to jointly work on challenges ranging from organizational to technical security.
ISIS @ TU Wien IAIK @ TU Graz DKE @ Uni Wien NM @ WU Wien FH St. Pölten AIT

News

The Washington Post on National Security and IMSI Catchers Catchers.

Adrians ACSAC prepublication is picked up by the Washington Post:

There are rare occurrences when all these indicators are present without an IMSI catcher,” Dabrowski said. “But it’s a situation where you might say, ‘Let’s now be careful and not talk about sensitive things on the phone.’ It’s not a perfect indicator.”

He also warned that the makers of IMSI catchers will probably adapt their technology to defeat the new IMSI catcher-catchers, triggering “an arms race” in surveillance technology and the tools intended to defeat it.

SBA Research – I like IT

SBA Research beim IT-Aktionstag #digtialcitywien

digitalcitywien

P3F Prototype is ready

Picture Privacy Policy Framework: for details on the prototype please go to http://www.p3f.at/

KIRAS Studie zu sicheren E-Government Infrastrukturen startet

Die Bedeutung von E-Government als Schnittstelle zwischen öffentlichen Einrichtungen und BürgerInnen im erweiterten Sinn ist bereits heute eine wichtige. Ziel der vorliegenden Studie ist, Sicherheit von E-Government-Anwendungen, Projekten und Einrichtungen durch die Definition eines entsprechenden Standards sowie eines potentiellen Zertifizierungsprozesses in den Mittelpunkt zu rücken und überprüfbar zu machen.

Partner:

Universität Wien, Rechtswissenschaftliche Fakultät, Institut für Europarecht, Internationales Recht und Rechtsvergleichung
Zentrum für sichere Informationstechnologien – Austria (A-SIT)
REPUCO Unternehmensberatung GmbH

Bedarfsträger:

Bundesministerium für Finanzen
Bundeskanzleramt
Bundesministerium für Inneres

ARES Conference 2014

Today starts the 9th International Conference on Availability, Reliability and Security (ARES 2014). ARES 2014 is organized by SBA Research in cooperation with the University of Fribourg and takes place from 8 – 12 September 2014 in Fribourg, Switzerland. Website

ARES

Andrubis app online

The Andrubis app is now available in Google Play Store. The work has been partly funded by uSmile and COMET. The work is part of Martina’s PhD research.

SBA Research sportlich am Business Run

Auch dieses Jahr haben wieder zwei Teams von SBA Research ihre Sportlichkeit beim 14. Wien Energie Business Run unter Beweis gestellt.

Business Run Team Ultimate Running Heroes Business Run Team zeitlos

Edgar Weippl ist Studio-Gast bei Heute Mittag

Edgar Weippl beantwortet Fragen zu Cloud-Sicherheit bei Heute Mittag (ORF).

Edgar Weippl

SSNOOB v0.5 – Social Snapshots for Facebook

Today, SBA Research releases SSNOOB, a simple Java tool to create Social Snapshots of Facebook accounts, into the public domain.

SNOOB serves three main purposes:

  • Digital Forensics (Extract Facebook account data from forensic images via valid Facebook session cookies)
  • Research (Extract Facebook account data for scientific studies ranging from information security/privacy to web science)
  • Backup (Backup your personal Facebook account data including images)

A precompiled version as well as the source code is available on github:
SSNOOB Version 0.5

Keynote at SECRYPT 2014

Edgar Weippl gives a keynote on Advanced Persistent Threats & Social Engineering at the 11th International Conference on Security and Cryptography (SECRYPT 2014), wich takes place from 28 – 30 August 2014 in Vienna.

Keynote at CRISIS 2014

Edgar Weippl gives a keynote on Empirical and Applied Research in Information Security at the CRISIS 2014 conference in Trento.

“Sicherheitsforscher beginnen Gegen-Überwachung” – media coverage IMSI-Catcher-Catcher

Der IMSI-Catcher-Catcher in den Medien: heise.de, derstandard.at

IMSI Catcher HEISE   standard IMSI

short version / paper as preprint IMSI-Catcher-Catcher

IMSI-Catch Me If You Can: IMSI-Catcher-Catchers - paper accepted at ACSAC 2014

We are proud to announce, that our paper “IMSI-Catch Me If You Can: IMSI-Catcher-Catchers” has been accepted to the 2014 Annual Computer Security Applications Conference (ACSAC).

In this paper, we identify and describe multiple methods for detecting artifacts in the mobile network produced by IMSI Catchers. IMSI Catchers are used in mobile networks to identify, track, attack, spam, reconfigure, and eavesdrop on phones. The first IMSI Catchers date back as early as 1993 and were big, heavy, and expensive. Only a few manufacturers existed and the economic barrier limited the device’s use mostly to governmental agencies.

In the recent years prices for these devices dropped and the number of vendors increased. Even self-made devices have been demonstrated for about US$ 1,500. However, today, it is not ensured, that these devices are solely in the hand of authorized domestic authorities.

Read the short version / paper as preprint

Future plans

The Android app is planed to go into public beta sometime in fall to allow us to fine tune the rule set. It will eventually be open sourced. We aim to make this application to be usable for average smart-phone users. If you are an experienced user and like to help, please contact us at icc@sba-research.org

For the stationary IMSI Catcher Catcher we like to find enough places to build a gapless aera for another field test. Ideally we like to cover the inner districts of Vienna – which demands for about 20-30 stations. If you can offer a rooftop place or penthouse veranda with a free field of view, please contact us at icc@sba-research.org.

Guest talk: “Security challenges in industrial systems”

Dr. Artemios G. Voyiatzis, Associate Researcher, Industrial Systems Institute, “Athena” Research and Innovation Center in ICT, Greece gives a talk about “Security challenges in industrial systems”. Abstract
Tuesday, June 26, 2014, 10.00 – 11.30
This event is hosted by the Vienna ACM SIGSAC Chapter.

SBA Research @ USENIX

Adrian Dabrowski, Martina Lindorfer and Johanna Ullrich visited the flagship conference Usenix Security Symposium, held from 20-22 August in San Diego, California. As usual, the conference hosted a variety of interesting talks covering a vast amont of different aspects in computer security. Johanna presented her paper on IPv6 Security at the co-located Workshop on Offensive Technologies, Adrian presented his work on IMSI catchers in the Work-in-Progress Sections.

USENIX

Visit at SBA Research

A delegation of professors and researchers from the Changwon National University in South Korea visited SBA Research to learn about the successful COMET model where industry and researchers collaborate tightly in long-term research projects.

TechCamp Summer School

Edgar Weippl gave the opening lecture of the TechCamp Summer School that is organized in cooperation with the Vienna University of Technology and our partner company LBS, funded by the European Union. The TechCamp takes place from 19 – 28 August, 2014 at the Vienna University of Technology. 30 students are participating.

Der Standard berichtet über Forschungsprojekte Diana und Diango

derStandard.at berichtet “Dafür soll ein Nachfolgeprojekt namens “Diango” sogar in der Lage sein, Bilder auszuwerten. Genau wie “Diana” wird es von Verteidigungs- und Innenministerium gefördert und unter Leitung der SBA-Research GmbH entwickelt.

"Make sure you have all the updates; make sure you use a browser that is not standard; and pursue more training—talk about the threat."

Engin Kirda et al. analyzed nearly 1,500 suspicious e-mail messages targeting a human-rights NGO. “The team found that, while the malware managed to reliably evade detection by many antivirus programs, the attacks were relatively unsophisticated, using known vulnerabilities that had already been patched.” Read the whole article here.

The paper will be presented the USENIX Security Symposium, taking place from 20 – 22 August, 2014 in San Diego, CA. Read the abstract here.