Edgar Weippl

E-Mail
Phone: +43 (1) 505 36 88
Fax: +43 (1) 505 88 88

Bio

Edgar R. Weippl (CISSP, CISA, CISM, CRISC, CSSLP, CMC) is Research Director of SBA Research and Associate Professor (Privatdozent) at the Vienna University of Technology. His research focuses on applied concepts of IT-security and e-learning. Edgar is member of the editorial board of Computers & Security (COSE) and he organizes the ARES conference.

After graduating with a Ph.D. from the Vienna University of Technology, Edgar worked for two years in a research startup. He then spent one year teaching as an assistant professor at Beloit College, WI. From 2002 to 2004, while with the software vendor, he worked as a consultant in New York, NY and Albany, NY, and in Frankfurt, Germany. In 2004 he joined the Vienna University of Technology and founded together with A Min Tjoa and Markus Klemen the research center SBA Research.

Publications

Sebastian Schrittwieser and Peter Fruehwirt and Peter Kieseberg and Manuel Leithner and Martin Mulazzani and Markus Huber and Edgar R. Weippl, "Guess Who Is Texting You? Evaluating the Security of Smartphone Messaging Applications," in Network and Distributed System Security Symposium (NDSS 2012), 2012. BibTeX

@INPROCEEDINGS{Schrittwieser_Guess_Who_s_Texting_You_Evalua_2012, Author = {Sebastian Schrittwieser and Peter Fruehwirt and Peter Kieseberg and Manuel Leithner and Martin Mulazzani and Markus Huber and {Edgar R.} Weippl}, sbahotlist = {true}, title = {Guess Who Is Texting You? Evaluating the Security of Smartphone Messaging Applications}, booktitle = {Network and Distributed System Security Symposium (NDSS 2012)}, year = {2012}, month = {2}, }
Markus Huber and Martin Mulazzani and Edgar R. Weippl and Gerhard Kitzler and Sigrun Goluch, "Friend-in-the-middle Attacks: Exploiting Social Networking Sites for Spam," IEEE Internet Computing: Special Issue on Security and Privacy in Social Networks, 2011. BibTeX | PDF

@ARTICLE{Huber_Friend_in_the_middle_Attacks_E_2011, Author = {Markus Huber and Martin Mulazzani and {Edgar R.} Weippl and Gerhard Kitzler and Sigrun Goluch}, title = {Friend-in-the-middle Attacks: Exploiting Social Networking Sites for Spam}, journal = {IEEE Internet Computing: Special Issue on Security and Privacy in Social Networks}, year = {2011}, month = {5}, pdf = {FITM_InternetComputing_preprint.pdf}, note = {Pre Print}, }
Martin Mulazzani and Sebastian Schrittwieser and Manuel Leithner and Markus Huber and Edgar R. Weippl, "Dark Clouds on the Horizon: Using Cloud Storage as Attack Vector and Online Slack Space," in USENIX Security, 2011. BibTeX | PDF

@INPROCEEDINGS{Mulazzani_Dark_Clouds_on_the_Horizon_Usi_2011, Author = {Martin Mulazzani and Sebastian Schrittwieser and Manuel Leithner and Markus Huber and {Edgar R.} Weippl}, sbahotlist = {true}, title = {Dark Clouds on the Horizon: Using Cloud Storage as Attack Vector and Online Slack Space}, booktitle = {USENIX Security}, year = {2011}, month = {8}, pdf = {dropboxUSENIX2011.pdf}, }
Markus Huber and Martin Mulazzani and Manuel Leithner and Sebastian Schrittwieser and Gilbert Wondracek and Edgar R. Weippl, "Social Snapshots: Digital Forensics for Online Social Networks," in Annual Computer Security Applications Conference (ACSAC), 2011. BibTeX | PDF

@INPROCEEDINGS{_Social_Snapshots_Digital_Foren_2011, Author = {Markus Huber and Martin Mulazzani and Manuel Leithner and Sebastian Schrittwieser and Gilbert Wondracek and {Edgar R.} Weippl}, sbahotlist = {true}, title = {Social Snapshots: Digital Forensics for Online Social Networks}, booktitle = {Annual Computer Security Applications Conference (ACSAC)}, year = {2011}, month = {12}, pdf = {social_snapshots_preprint.pdf}, }
Martin Mulazzani and Markus Huber and Edgar R. Weippl, "Anonymity and Monitoring: How to Monitor the Infrastructure of an Anonymity System," IEEE Transactions on Systems, Man, and Cybernetics, Part C: Applications and Reviews, pp. 539-546, 2010. BibTeX

@ARTICLE{Mulazzani_Anonymity_and_Monitoring_How_t_2010, Author = {Martin Mulazzani and Markus Huber and {Edgar R.} Weippl}, title = {Anonymity and Monitoring: How to Monitor the Infrastructure of an Anonymity System}, journal = {IEEE Transactions on Systems, Man, and Cybernetics, Part C: Applications and Reviews}, year = {2010}, month = {9}, pages = {539-546}, }
Markus Huber and Martin Mulazzani and Edgar R. Weippl and Gerhard Kitzler and Sigrun Goluch, "Exploiting social networking sites for spam," in Proceedings of the 17th ACM conference on Computer and communications security, 2010, pp. 693-695. BibTeX | PDF

@INPROCEEDINGS{Huber_Proceedings_of_the_17th_ACM_co_2010, Author = {Markus Huber and Martin Mulazzani and {Edgar R.} Weippl and Gerhard Kitzler and Sigrun Goluch}, title = {Exploiting social networking sites for spam}, booktitle = {Proceedings of the 17th ACM conference on Computer and communications security}, year = {2010}, month = {10}, pdf = {Poster_CCS_2010.pdf}, pages = {693-695}, note = {Poster - ACM CCS 2010}, }
Markus Huber and Martin Mulazzani and Sigrun Goluch and Gerhard Kitzler and Edgar R. Weippl, "Poster ACM CCS 2010: Friend-in-the-middle Attacks," in Proceedings of the 17th ACM conference on Computer and communications security, 2010. BibTeX

@INPROCEEDINGS{Huber_Poster_ACM_CCS_2010_Friend_in__2010, Author = {Markus Huber and Martin Mulazzani and Sigrun Goluch and Gerhard Kitzler and {Edgar R.} Weippl}, title = {Poster ACM CCS 2010: Friend-in-the-middle Attacks}, booktitle = {Proceedings of the 17th ACM conference on Computer and communications security}, year = {2010}, month = {10}, }
Stefan Fenz and Edgar R. Weippl and Andreas Ekelhart and Gernot Goluch and Markus Steinkellner, "XML Security – A comparative literature review," Journal of Systems and Software, vol. 81, pp. 1715-1724, 2008. BibTeX | PDF

@ARTICLE{Ekelhart_XMLSecurity_2008, Author = {Stefan Fenz and {Edgar R.} Weippl and Andreas Ekelhart and Gernot Goluch and Markus Steinkellner}, sbahotlist = {true}, title = {XML Security - A comparative literature review}, journal = {Journal of Systems and Software}, year = {2008}, month = {1}, abstract = {Since the turn of the millenium, Working Groups of the W3C have been concentrating on the development of XML based security standards, which are paraphrased as XML Security. XML Security consists of three recommendations: XML (Digital) Signature, XML Encryption and XML Key Management Specification (XKMS), all of them published by the W3C. By means of a review of the available literature the authors draw several conclusions about the status quo of XML Security. Furthermore the current state and focuses of research as well as the existing challenges are derived. Trends to different application areas - e.g. use of XML Security for Mobile Computing - are also outlined. Based on this information the analyzed results are discussed and a future outlook is predicted.}, pdf = {2008 - Ekelhart - XML security -- A Comparative Literature Review.pdf}, volume = {81}, pages = {1715-1724}, note = {ISSN: 0164-1212}, }
Stefan Fenz and Edgar R. Weippl and Markus Klemen and Andreas Ekelhart, "Security Ontologies: Improving Quantitative Risk Analysis," in Proceedings of the 40th Hawaii International Conference on System Sciences, HICSS2007, 2007, pp. 156-162. BibTeX | PDF

@INPROCEEDINGS{Ekelhart_SecurityOntologiesImproving_2007, Author = {Stefan Fenz and {Edgar R.} Weippl and Markus Klemen and Andreas Ekelhart}, sbahotlist = {true}, title = {Security Ontologies: Improving Quantitative Risk Analysis}, booktitle = {Proceedings of the 40th Hawaii International Conference on System Sciences, HICSS2007}, year = {2007}, month = {1}, pdf = {2007 - Ekelhart - Security Ontologies Improving Quantitative Risk Analysis.pdf}, pages = {156-162}, publisher = {IEEE Computer Society}, note = {0-7695-2755-8}, }
Stefan Fenz and Edgar R. Weippl, "Ontology-based IT-Security Planning," in Proceedings of the 12th Pacific Rim International Symposium on Dependable Computing, PRDC2006, 2006, pp. 389-390. BibTeX | PDF

@INPROCEEDINGS{Fenz_OntologybasedITSecurityPlanning_2006, Author = {Stefan Fenz and {Edgar R.} Weippl}, title = {Ontology-based IT-Security Planning}, booktitle = {Proceedings of the 12th Pacific Rim International Symposium on Dependable Computing, PRDC2006}, year = {2006}, month = {12}, abstract = {IT-security has become a much diversified field and small and medium sized enterprises (SMEs), in particular, do not have the financial ability to implement a holistic IT-security approach. We thus propose a security ontology, to provide a solid base for an applicable and holistic IT-security approach for SMEs, enabling low-cost risk management and threat analysis.}, pdf = {2006 - Fenz - Ontology-based IT Security Planning.pdf}, pages = {389-390}, publisher = {IEEE Computer Society}, note = {9353421}, }
A Min Tjoa and Stefan Fenz and Edgar R. Weippl and Markus Klemen and Andreas Ekelhart, "The Semantic Desktop: A Semantic Personal Information Management System based on RDF and Topic Maps," in Proceedings of the ODBIS Workshop, 31st International Conference on Very Large Data Bases (VLDB) 2005, 2005, pp. 135-151. BibTeX | PDF

@INPROCEEDINGS{Weippl_SemanticDesktopSemantic_2005, Author = {{A Min} Tjoa and Stefan Fenz and {Edgar R.} Weippl and Markus Klemen and Andreas Ekelhart}, sbahotlist = {true}, title = {The Semantic Desktop: A Semantic Personal Information Management System based on RDF and Topic Maps}, booktitle = {Proceedings of the ODBIS Workshop, 31st International Conference on Very Large Data Bases (VLDB) 2005}, year = {2005}, month = {10}, pdf = {2005 - Weippl - The Semantic Desktop.pdf}, number = {4623}, pages = {135-151}, }
Edgar R. Weippl and Eva Gahleitner and Wernher Behrendt and Juergen Palkoska, "On Cooperatively Creating Dynamic Ontologies," in Proceedings of the 16th ACM Conference on Hypertext and Hypermedia, 2005. BibTeX

@INPROCEEDINGS{Gahleitner_CooperativelyCreatingDynamic_2005, Author = {{Edgar R.} Weippl and Eva Gahleitner and Wernher Behrendt and Juergen Palkoska}, sbahotlist = {true}, title = {On Cooperatively Creating Dynamic Ontologies}, booktitle = {Proceedings of the 16th ACM Conference on Hypertext and Hypermedia}, year = {2005}, month = {9}, publisher = {ACM}, }
Edgar R. Weippl and Wolfgang Essmayr and Stefan Probst, "Role-Based Access Controls: Status, Dissemination, and Prospects for Generic Security Mechanisms," International Journal of Electronic Commerce Research, vol. 4, iss. 1, pp. 127-156, 2004. BibTeX | PDF

@ARTICLE{weippl_ae, Author = {{Edgar R.} Weippl and Wolfgang Essmayr and Stefan Probst}, title = {Role-Based Access Controls: Status, Dissemination, and Prospects for Generic Security Mechanisms}, journal = {International Journal of Electronic Commerce Research}, year = {2004}, month = {1}, pdf = {Papers/Weippl/ae_2002_essmayr.pdf}, volume = {4}, number = {1}, pages = {127--156}, publisher = {Kluwer}, }

View all publications

Martin Mulazzani and Markus Huber and Edgar R. Weippl, "Social Network Forensics: Tapping the Data Pool of Social Networks," Eighth Annual IFIP WG 11.9 International Conference on Digital Forensics, 2012. BibTeX | PDF

@ARTICLE{Mulazzani_Social_Network_Forensics_2012, Author = {Martin Mulazzani and Markus Huber and {Edgar R.} Weippl}, title = {Social Network Forensics: Tapping the Data Pool of Social Networks}, journal = {Eighth Annual IFIP WG 11.9 International Conference on Digital Forensics}, year = {2012}, month = {01}, pdf = {socialForensics_preprint.pdf}, }
Sebastian Schrittwieser and Peter Fruehwirt and Peter Kieseberg and Manuel Leithner and Martin Mulazzani and Markus Huber and Edgar R. Weippl, "Guess Who Is Texting You? Evaluating the Security of Smartphone Messaging Applications," in Network and Distributed System Security Symposium (NDSS 2012), 2012. BibTeX

@INPROCEEDINGS{Schrittwieser_Guess_Who_s_Texting_You_Evalua_2012, Author = {Sebastian Schrittwieser and Peter Fruehwirt and Peter Kieseberg and Manuel Leithner and Martin Mulazzani and Markus Huber and {Edgar R.} Weippl}, sbahotlist = {true}, title = {Guess Who Is Texting You? Evaluating the Security of Smartphone Messaging Applications}, booktitle = {Network and Distributed System Security Symposium (NDSS 2012)}, year = {2012}, month = {2}, }
Markus Huber and Martin Mulazzani and Manuel Leithner and Sebastian Schrittwieser and Gilbert Wondracek and Edgar R. Weippl, "Social Snapshots: Digital Forensics for Online Social Networks," in Annual Computer Security Applications Conference (ACSAC), 2011. BibTeX | PDF

@INPROCEEDINGS{_Social_Snapshots_Digital_Foren_2011, Author = {Markus Huber and Martin Mulazzani and Manuel Leithner and Sebastian Schrittwieser and Gilbert Wondracek and {Edgar R.} Weippl}, sbahotlist = {true}, title = {Social Snapshots: Digital Forensics for Online Social Networks}, booktitle = {Annual Computer Security Applications Conference (ACSAC)}, year = {2011}, month = {12}, pdf = {social_snapshots_preprint.pdf}, }
Peter Kieseberg and Sebastian Schrittwieser and Lorcan Morgan and Martin Mulazzani and Markus Huber and Edgar R. Weippl, "Using the Structure of B plus Trees for Enhancing Logging Mechanisms of Databases," in International Conference on Information Integration and Web-based Applications & Services (iiWAS2011), 2011. BibTeX

@INPROCEEDINGS{_Using_the_Structure_of_B_Trees_2011, Author = {Peter Kieseberg and Sebastian Schrittwieser and Lorcan Morgan and Martin Mulazzani and Markus Huber and {Edgar R.} Weippl}, title = {Using the Structure of B plus Trees for Enhancing Logging Mechanisms of Databases}, booktitle = {International Conference on Information Integration and Web-based Applications & Services (iiWAS2011)}, year = {2011}, month = {12}, }
Martin Mulazzani and Sebastian Schrittwieser and Manuel Leithner and Markus Huber and Edgar R. Weippl, "Dark Clouds on the Horizon: Using Cloud Storage as Attack Vector and Online Slack Space," in USENIX Security, 2011. BibTeX | PDF

@INPROCEEDINGS{Mulazzani_Dark_Clouds_on_the_Horizon_Usi_2011, Author = {Martin Mulazzani and Sebastian Schrittwieser and Manuel Leithner and Markus Huber and {Edgar R.} Weippl}, sbahotlist = {true}, title = {Dark Clouds on the Horizon: Using Cloud Storage as Attack Vector and Online Slack Space}, booktitle = {USENIX Security}, year = {2011}, month = {8}, pdf = {dropboxUSENIX2011.pdf}, }
Markus Huber and Martin Mulazzani and Edgar R. Weippl and Gerhard Kitzler and Sigrun Goluch, "Friend-in-the-middle Attacks: Exploiting Social Networking Sites for Spam," IEEE Internet Computing: Special Issue on Security and Privacy in Social Networks, 2011. BibTeX | PDF

@ARTICLE{Huber_Friend_in_the_middle_Attacks_E_2011, Author = {Markus Huber and Martin Mulazzani and {Edgar R.} Weippl and Gerhard Kitzler and Sigrun Goluch}, title = {Friend-in-the-middle Attacks: Exploiting Social Networking Sites for Spam}, journal = {IEEE Internet Computing: Special Issue on Security and Privacy in Social Networks}, year = {2011}, month = {5}, pdf = {FITM_InternetComputing_preprint.pdf}, note = {Pre Print}, }
Peter Kieseberg and Sebastian Schrittwieser and Martin Mulazzani and Markus Huber and Edgar R. Weippl, "Trees Cannot Lie: Using Data Structures for Forensics Purposes," in European Intelligence and Security Informatics Conference (EISIC 2011), 2011. BibTeX | PDF

@INPROCEEDINGS{Kieseberg_Trees_Cannot_Lie_Using_Data_St_2011, Author = {Peter Kieseberg and Sebastian Schrittwieser and Martin Mulazzani and Markus Huber and {Edgar R.} Weippl}, title = {Trees Cannot Lie: Using Data Structures for Forensics Purposes}, booktitle = {European Intelligence and Security Informatics Conference (EISIC 2011)}, year = {2011}, month = {9}, pdf = {btree_forensics_camera_ready.pdf}, }
Sebastian Schrittwieser and Peter Kieseberg and Isao Echizen and Sven Wohlgemuth and Noboru Sonehara and Edgar R. Weippl, "An Algorithm for k-anonymity-based Fingerprinting," in International Workshop on Digital-forensics and Watermarking (IWDW 2011), 2011. BibTeX | PDF

@INPROCEEDINGS{_An_Algorithm_for_k_anonymity_b_2011, Author = {Sebastian Schrittwieser and Peter Kieseberg and Isao Echizen and Sven Wohlgemuth and Noboru Sonehara and {Edgar R.} Weippl}, title = {An Algorithm for k-anonymity-based Fingerprinting}, booktitle = {International Workshop on Digital-forensics and Watermarking (IWDW 2011)}, year = {2011}, month = {10}, pdf = {k_anonymity_algorithm_2011.pdf}, }
Martin Mulazzani and Sebastian Schrittwieser and Manuel Leithner and Markus Huber and Edgar R. Weippl, "Cloud Speicherdienste als Angriffsvektoren," in 9th Information Security Konferenz in Krems, 2011. BibTeX | PDF

@INPROCEEDINGS{DropboxKrems2011, Author = {Martin Mulazzani and Sebastian Schrittwieser and Manuel Leithner and Markus Huber and {Edgar R.} Weippl}, title = {Cloud Speicherdienste als Angriffsvektoren}, booktitle = {9th Information Security Konferenz in Krems}, year = {2011}, month = {10}, pdf = {DunkleWolken.pdf}, }
Philipp Reschl and Martin Mulazzani and Markus Huber and Edgar R. Weippl, "Poster ACSAC 2011: Efficient Browser Identification with JavaScript Engine Fingerprinting," in Annual Computer Security Applications Conference (ACSAC), 2011. BibTeX | PDF

@INPROCEEDINGS{Reschl_Poster_ACSAC_2011_Efficient_Br_2011, Author = {Philipp Reschl and Martin Mulazzani and Markus Huber and {Edgar R.} Weippl}, title = {Poster ACSAC 2011: Efficient Browser Identification with JavaScript Engine Fingerprinting }, booktitle = {Annual Computer Security Applications Conference (ACSAC)}, year = {2011}, month = {12}, pdf = {JSFingerprinting_ACSAC.pdf}, }
W. Sunindyo and Stefan Biffl and C. Frühwirth and R. Mordinyi and T. Moser and Alexander Schatten and Sebastian Schrittwieser and Edgar R. Weippl, "Defect Detection Using Event-Based Process Analysis in Software Engineering Projects," in 36th Euromicro Conference Software Engineering and Advanced Applications SEAA 2010, 2010. BibTeX

@INPROCEEDINGS{Sunindyo_Defect_Detection_Using_Event_B_2010, Author = {W. Sunindyo and Stefan Biffl and C. Frühwirth and R. Mordinyi and T. Moser and Alexander Schatten and Sebastian Schrittwieser and {Edgar R.} Weippl}, title = {Defect Detection Using Event-Based Process Analysis in Software Engineering Projects}, booktitle = {36th Euromicro Conference Software Engineering and Advanced Applications SEAA 2010}, year = {2010}, month = {9}, }
Muhammad Asfand e yar and Amin Anjomshoaa and Edgar R. Weippl and A Min Tjoa, "Exploiting Ontology for Software License Agreements," International Journal of Software and Informatics (IJSI), vol. 4, iss. 1, pp. 1-12, 2010. BibTeX | PDF

@ARTICLE{Asfand-e-yar_Exploiting_Ontology_for_Softwa_2010, Author = {Muhammad Asfand e yar and Amin Anjomshoaa and {Edgar R.} Weippl and {A Min} Tjoa}, title = {Exploiting Ontology for Software License Agreements}, journal = {International Journal of Software and Informatics (IJSI)}, year = {2010}, month = {3}, pdf = {Papers/Weippl/ax_2010_ontologyLicense.pdf}, volume = {4}, number = {1}, pages = {1--12}, note = {According to Aminwithin Reporting Timeframe}, }
Amin Anjomshoaa and Khue Vo Sao and Amirreza Tahamtan and A Min Tjoa and Edgar R. Weippl, "Self-Monitoring in Social Networks," Special issue for the International Journal of Intelligent Information and Database Systems (IJIIDS), 2010. BibTeX

@ARTICLE{Anjomshoaa_Self_Monitoring_in_Social_Netw_2010, Author = {Amin Anjomshoaa and Khue Vo Sao and Amirreza Tahamtan and {A Min} Tjoa and {Edgar R.} Weippl}, title = {Self-Monitoring in Social Networks}, journal = {Special issue for the International Journal of Intelligent Information and Database Systems (IJIIDS)}, year = {2010}, month = {NA}, note = {According to Aminwithin Reporting Timeframe}, }
Markus Huber and Martin Mulazzani and Edgar R. Weippl and Gerhard Kitzler and Sigrun Goluch, "Exploiting social networking sites for spam," in Proceedings of the 17th ACM conference on Computer and communications security, 2010, pp. 693-695. BibTeX | PDF

@INPROCEEDINGS{Huber_Proceedings_of_the_17th_ACM_co_2010, Author = {Markus Huber and Martin Mulazzani and {Edgar R.} Weippl and Gerhard Kitzler and Sigrun Goluch}, title = {Exploiting social networking sites for spam}, booktitle = {Proceedings of the 17th ACM conference on Computer and communications security}, year = {2010}, month = {10}, pdf = {Poster_CCS_2010.pdf}, pages = {693-695}, note = {Poster - ACM CCS 2010}, }
Markus Huber and Martin Mulazzani and Sigrun Goluch and Gerhard Kitzler and Edgar R. Weippl, "Poster ACM CCS 2010: Friend-in-the-middle Attacks," in Proceedings of the 17th ACM conference on Computer and communications security, 2010. BibTeX

@INPROCEEDINGS{Huber_Poster_ACM_CCS_2010_Friend_in__2010, Author = {Markus Huber and Martin Mulazzani and Sigrun Goluch and Gerhard Kitzler and {Edgar R.} Weippl}, title = {Poster ACM CCS 2010: Friend-in-the-middle Attacks}, booktitle = {Proceedings of the 17th ACM conference on Computer and communications security}, year = {2010}, month = {10}, }
Nicolas Racz and Edgar R. Weippl and Andreas Seufert, "A Frame of Reference for Research of Integrated Governance, Risk and Compliance (GRC)," in Proceedings of IFIP CMS 2010, 2010. BibTeX

@INPROCEEDINGS{weippl_bzze_2010_CMS_Racz, Author = {Nicolas Racz and {Edgar R.} Weippl and Andreas Seufert}, title = {A Frame of Reference for Research of Integrated Governance, Risk and Compliance (GRC)}, booktitle = {Proceedings of IFIP CMS 2010}, year = {2010}, month = {3}, publisher = {Springer LNCS}, }
Markus Huber and Martin Mulazzani and Sebastian Schrittwieser and Edgar R. Weippl, "Cheap and Automated Socio-Technical Attacks based on Social Networking Sites," in 3rd Workshop on Artificial Intelligence and Security (AISec’10), 2010. BibTeX

@INPROCEEDINGS{Huber_Cheap_and_Automated_Socio_Tech_2010, Author = {Markus Huber and Martin Mulazzani and Sebastian Schrittwieser and {Edgar R.} Weippl}, title = {Cheap and Automated Socio-Technical Attacks based on Social Networking Sites}, booktitle = {3rd Workshop on Artificial Intelligence and Security (AISec'10)}, year = {2010}, month = {10}, }
Edgar R. Weippl, "Data Warehousing Design and Advanced Engineering Applications: Methods for Complex Construction." Information Science Reference, IGI Global, 2010, pp. 272-279. BibTeX | PDF

@INBOOK{Weippl_SecurityinDataWarehouses_2010, Author = {{Edgar R.} Weippl}, title = {Data Warehousing Design and Advanced Engineering Applications: Methods for Complex Construction}, year = {2010}, month = {1}, pdf = {weippl_arh_securityDWH.pdf}, chapter = {Security in Data Warehouses}, pages = {272--279}, publisher = {Information Science Reference, IGI Global}, }
Farman Ali Khan and Sabine Graf and Edgar R. Weippl and A Min Tjoa, "Role of Learning Styles and Affective States in Web-based Adaptive Learning Environments," in Proceedings of ED-MEDIA, 2010. BibTeX

@INPROCEEDINGS{weippl_bzzh_2010_LearningStyles_EDMEDIA, Author = {Farman {Ali Khan} and Sabine Graf and {Edgar R.} Weippl and {A Min} Tjoa}, title = {Role of Learning Styles and Affective States in Web-based Adaptive Learning Environments}, booktitle = {Proceedings of ED-MEDIA}, year = {2010}, month = {9}, publisher = {AACE}, }
Nicolas Racz and Edgar R. Weippl and Andreas Seufert, "A process model for integrated IT governance, risk, and compliance management," in Proceedings of the Ninth Conference on Databases and Information Systems (DB IS 2010), 2010. BibTeX

@INPROCEEDINGS{weippl_bzzf_2010_Racz, Author = {Nicolas Racz and {Edgar R.} Weippl and Andreas Seufert}, title = {A process model for integrated IT governance, risk, and compliance management}, booktitle = {Proceedings of the Ninth Conference on Databases and Information Systems (DB IS 2010)}, year = {2010}, month = {7}, publisher = {Springer LNCS}, }
Amirreza Tahamtan and Amin Anjomshoaa and Edgar R. Weippl and A Min Tjoa, "A SOM-Based Technique for a User-Centric Content Extraction and Classification of Web 2.0 with a Special Consideration of Security Aspects," in Proc. of 4th International Conference on Knowledge Science, Engineering & Management (KSEM’10), 2010. BibTeX

@INPROCEEDINGS{Tahamtan_A_SOM_Based_Technique_for_a_Us_2010, Author = {Amirreza Tahamtan and Amin Anjomshoaa and {Edgar R.} Weippl and {A Min} Tjoa}, title = {A SOM-Based Technique for a User-Centric Content Extraction and Classification of Web 2.0 with a Special Consideration of Security Aspects}, booktitle = {Proc. of 4th International Conference on Knowledge Science, Engineering & Management (KSEM'10)}, year = {2010}, month = {9}, note = {According to Aminwithin Reporting Timeframe}, }
Peter Fruehwirt and Markus Huber and Martin Mulazzani and Edgar R. Weippl, "Sicherheit in sozialen Netzwerken: Quo Vadis," in 8th Information Security Konferenz in Krems, 2010. BibTeX

@INPROCEEDINGS{Fruewirt_Sicherheit_in_sozialen_Netzwer_2010, Author = {Peter Fruehwirt and Markus Huber and Martin Mulazzani and {Edgar R.} Weippl}, title = {Sicherheit in sozialen Netzwerken: Quo Vadis}, booktitle = {8th Information Security Konferenz in Krems}, year = {2010}, month = {11}, }
Markus Huber and Martin Mulazzani and Edgar R. Weippl, "Social Networking Sites Security Quo Vadis," in Proceedings of the 1st International Workshop on Privacy Aspects of Social Web and Cloud Computing, 2010. BibTeX

@INPROCEEDINGS{Huber_Social_Networking_Sites_Securi_2010, Author = {Markus Huber and Martin Mulazzani and {Edgar R.} Weippl}, title = {Social Networking Sites Security Quo Vadis}, booktitle = {Proceedings of the 1st International Workshop on Privacy Aspects of Social Web and Cloud Computing}, year = {2010}, month = {8}, }
Peter Kieseberg and Manuel Leithner and Martin Mulazzani and Lindsay Munroe and Sebastian Schrittwieser and Mayank Sinha and Edgar R. Weippl, "QR Code Security," in Fourth International Workshop on Trustworthy Ubiquitous Computing (TwUC 2010), 2010. BibTeX | PDF

@INPROCEEDINGS{twuc_2010, Author = {Peter Kieseberg and Manuel Leithner and Martin Mulazzani and Lindsay Munroe and Sebastian Schrittwieser and Mayank Sinha and {Edgar R.} Weippl}, title = {QR Code Security}, booktitle = {Fourth International Workshop on Trustworthy Ubiquitous Computing (TwUC 2010)}, year = {2010}, month = {1}, pdf = {QR_Code_Security.pdf}, }
Peter Fruehwirt and Markus Huber and Martin Mulazzani and Edgar R. Weippl, "InnoDB Database Forensics," in Proceedings of the 24th International Conference on Advanced Information Networking and Applications, 2010. BibTeX | PDF

@INPROCEEDINGS{Huber_InnoDB_Database_Forensics_2010, Author = {Peter Fruehwirt and Markus Huber and Martin Mulazzani and {Edgar R.} Weippl}, title = {InnoDB Database Forensics}, booktitle = {Proceedings of the 24th International Conference on Advanced Information Networking and Applications}, year = {2010}, month = {4}, pdf = {AINA2010-InnoDBforensics_preprint.pdf}, }
C. Frühwirth and Stefan Biffl and Alexander Schatten and Sebastian Schrittwieser and Edgar R. Weippl, "Research Challenges in the Security Design and Evaluation of an Engineering Service Bus Platform," in 36th Euromicro Conference Software Engineering and Advanced Applications (SEAA 2010, 2010. BibTeX

@INPROCEEDINGS{Fruehwirth_Research_Challenges_in_the_Sec_2010, Author = {C. Frühwirth and Stefan Biffl and Alexander Schatten and Sebastian Schrittwieser and {Edgar R.} Weippl}, title = {Research Challenges in the Security Design and Evaluation of an Engineering Service Bus Platform}, booktitle = {36th Euromicro Conference Software Engineering and Advanced Applications (SEAA 2010}, year = {2010}, month = {9}, }
Markus Huber and Martin Mulazzani and Gerhard Kitzler and Sigrun Goluch and Edgar R. Weippl, "Technical Report: Friend-in-the-middle Attacks’," , TR-SBA-Res, 2010. BibTeX | PDF

@TECHREPORT{fitm10, Author = {Markus Huber and Martin Mulazzani and Gerhard Kitzler and Sigrun Goluch and {Edgar R.} Weippl}, title = {Technical Report: Friend-in-the-middle Attacks'}, year = {2010}, month = {1}, pdf = {pdf/FITM_TR-SBA-Research-0710-01.pdf}, number = {TR-SBA-Res}, }
Nicolas Racz and Andreas Seufert and Edgar R. Weippl, "Questioning the need for separate IT risk management frameworks," in Konferenz Risk Management, Compliance und Governance für widerstandsfähige Informationssysteme, 2010, pp. 245-252. BibTeX

@INPROCEEDINGS{Weippl_Questioning_the_need_for_separ_2010, Author = {Nicolas Racz and Andreas Seufert and {Edgar R.} Weippl}, title = {Questioning the need for separate IT risk management frameworks}, booktitle = {Konferenz Risk Management, Compliance und Governance für widerstandsfähige Informationssysteme }, year = {2010}, month = {9}, abstract = {The growing importance of enterprise risk management and the resulting integration efforts put the need for separate IT risk management frameworks in question. In this research we analyse common and distinct elements of the COSO enterprise risk management and ISACA Risk IT frameworks. The analysis affirms the hypothesis that separate IT risk management frameworks are redundant}, pages = {245-252}, }
Markus Huber and Martin Mulazzani and Edgar R. Weippl, "Who On Earth Is Mr. Cypher? Automated Friend Injection Attacks on Social Networking Sites," in Proceedings of the IFIP International Information Security Conference 2010: Security and Privacy, 2010. BibTeX | PDF

@INPROCEEDINGS{Huber_Who_On_Earth_Is_Mr_Cypher_Auto_2010, Author = {Markus Huber and Martin Mulazzani and {Edgar R.} Weippl}, title = {Who On Earth Is Mr. Cypher? Automated Friend Injection Attacks on Social Networking Sites}, booktitle = {Proceedings of the IFIP International Information Security Conference 2010: Security and Privacy}, year = {2010}, month = {9}, pdf = {sec2010-friendInjection_preprint.pdf}, }
Thomas Neubauer and Johannes Heurix and A Min Tjoa and Edgar R. Weippl, "Pseudonymisierung für die datenschutzkonforme Speicherung medizinischer Daten," Elektrotechnik und Informationstechnik, vol. 127, iss. 5, pp. 135-142, 2010. BibTeX

@ARTICLE{Neubauer_Pseudonymisierung_f_r_die_date_2010, Author = {Thomas Neubauer and Johannes Heurix and {A Min} Tjoa and {Edgar R.} Weippl}, title = {Pseudonymisierung für die datenschutzkonforme Speicherung medizinischer Daten}, journal = {Elektrotechnik und Informationstechnik}, year = {2010}, month = {5}, volume = {127}, number = {5}, pages = {135-142}, }
Markus Huber and Martin Mulazzani and Edgar R. Weippl, "Tor HTTP usage and information leakage," in Proceedings of IFIP CMS 2010, 2010, pp. 245-255. BibTeX

@INPROCEEDINGS{Mulazzani_Tor_HTTP_usage_and_information_2010, Author = {Markus Huber and Martin Mulazzani and {Edgar R.} Weippl}, title = {Tor HTTP usage and information leakage}, booktitle = {Proceedings of IFIP CMS 2010}, year = {2010}, month = {5}, pages = {245-255}, }
Martin Mulazzani and Markus Huber and Edgar R. Weippl, "Anonymity and Monitoring: How to Monitor the Infrastructure of an Anonymity System," IEEE Transactions on Systems, Man, and Cybernetics, Part C: Applications and Reviews, pp. 539-546, 2010. BibTeX

@ARTICLE{Mulazzani_Anonymity_and_Monitoring_How_t_2010, Author = {Martin Mulazzani and Markus Huber and {Edgar R.} Weippl}, title = {Anonymity and Monitoring: How to Monitor the Infrastructure of an Anonymity System}, journal = {IEEE Transactions on Systems, Man, and Cybernetics, Part C: Applications and Reviews}, year = {2010}, month = {9}, pages = {539-546}, }
Martin Mulazzani and Edgar R. Weippl, "Aktuelle Herausforderungen in der Datenbankforensik," in 7th Information Security Konferenz in Krems, 2009. BibTeX | PDF

@INPROCEEDINGS{Mulazzani_AktuelleHerausforderungenin_2009, Author = {Martin Mulazzani and {Edgar R.} Weippl}, title = {Aktuelle Herausforderungen in der Datenbankforensik}, booktitle = {7th Information Security Konferenz in Krems}, year = {2009}, month = {1}, pdf = {Mulazzani_AktuelleHerausforderungenin_2009.pdf}, publisher = {OCG Austrian Computer Society, Krems}, }
Edgar R. Weippl and Mohammad Tabatabai Irani, "Automation Of Post-Exploitation," in Proceedings of International Conference on Security Technology (SecTech 2009), 2009. BibTeX | PDF

@INPROCEEDINGS{TabatabaiIrani_AutomationOfPostExploitation_2009, Author = {{Edgar R.} Weippl and Mohammad {Tabatabai Irani}}, title = {Automation Of Post-Exploitation}, booktitle = {Proceedings of International Conference on Security Technology (SecTech 2009)}, year = {2009}, month = {1}, pdf = {TabatabaiIrani_AutomationOfPostExploitation_2009.pdf}, publisher = {Springer LNCS}, }
Edgar R. Weippl and Benjamin Böck, "The Handbook of Technology Management." Wiley and Sons, 2009. BibTeX

@INBOOK{Bock_acceptedforpublicationSocialEngineering_2009, Author = {{Edgar R.} Weippl and Benjamin Böck}, title = {The Handbook of Technology Management}, year = {2009}, month = {1}, chapter = {accepted for publication: Social Engineering}, publisher = {Wiley and Sons}, }
A Min Tjoa and Edgar R. Weippl and Farman Ali Khan and Sabine Graf, "An Approach for Identifying Affective States through Behavioral Patterns in Web-based Learning Management System," in Proceedings of the 11th International Conference on Information Integration and Web Based Applications and Services (iiWAS2009), 2009. BibTeX

@INPROCEEDINGS{Khan_Identifying_and_Incorporating__2010, Author = {{A Min} Tjoa and {Edgar R.} Weippl and Farman Ali Khan and Sabine Graf}, title = {An Approach for Identifying Affective States through Behavioral Patterns in Web-based Learning Management System}, booktitle = {Proceedings of the 11th International Conference on Information Integration and Web Based Applications and Services (iiWAS2009)}, year = {2009}, month = {12}, abstract = {Learning styles and affective states influence students learning. The purpose of this study is to develop a conceptual framework for identifying and integrating learning styles and affective states of a learner into web-based learning management systems and therefore provide learners with adaptive courses and additional individualized pedagogical guidance that is tailored to their learning styles and affective states. The study was carried out in three phases, the first of which was the investigation and determination of learning styles and affective states which are important for learning. Phase two consisted of the development of an approach for the identification of learning styles and affective states as well as the development of a mechanism to calculate them from the students learning interactions within web-based learning management systems. The third phase was to develop a learning strategy that is more personalized and adaptive in nature and tailored to learners needs and current situation through considering learners learning styles and affective states, aiming to lead to better learning outcomes and progress}, }
Stefan Fenz and Edgar R. Weippl and Andreas Ekelhart and Gernot Goluch and Markus Steinkellner, "XML Security – A comparative literature review," Journal of Systems and Software, vol. 81, pp. 1715-1724, 2008. BibTeX | PDF

@ARTICLE{Ekelhart_XMLSecurity_2008, Author = {Stefan Fenz and {Edgar R.} Weippl and Andreas Ekelhart and Gernot Goluch and Markus Steinkellner}, sbahotlist = {true}, title = {XML Security - A comparative literature review}, journal = {Journal of Systems and Software}, year = {2008}, month = {1}, abstract = {Since the turn of the millenium, Working Groups of the W3C have been concentrating on the development of XML based security standards, which are paraphrased as XML Security. XML Security consists of three recommendations: XML (Digital) Signature, XML Encryption and XML Key Management Specification (XKMS), all of them published by the W3C. By means of a review of the available literature the authors draw several conclusions about the status quo of XML Security. Furthermore the current state and focuses of research as well as the existing challenges are derived. Trends to different application areas - e.g. use of XML Security for Mobile Computing - are also outlined. Based on this information the analyzed results are discussed and a future outlook is predicted.}, pdf = {2008 - Ekelhart - XML security -- A Comparative Literature Review.pdf}, volume = {81}, pages = {1715-1724}, note = {ISSN: 0164-1212}, }
Stefan Fenz and Edgar R. Weippl and Andreas Ekelhart, "Fortification of IT security by automatic security advisory processing," in Proceedings of the 22nd International Conference on Advanced Information Networking and Applications, AINA2008, 2008, pp. 575-582. BibTeX | PDF

@INPROCEEDINGS{Fenz_FortificationofIT_2008, Author = {Stefan Fenz and {Edgar R.} Weippl and Andreas Ekelhart}, title = {Fortification of IT security by automatic security advisory processing}, booktitle = {Proceedings of the 22nd International Conference on Advanced Information Networking and Applications, AINA2008}, year = {2008}, month = {3}, abstract = {The past years have seen the rapid increase of security related incidents in the field of information technology. IT infrastructures in the commercial as well as in the governmental sector are becoming evermore heterogeneous which increases the complexity of handling and maintaining an adequate security level. Especially organizations which are hosting and processing highly sensitive data are obligated to establish a holistic company-wide security approach. We propose a novel security concept to reduce this complexity by automatic assessment of security advisories. A central entity collects vulnerability information from various sources, converts it into a standardized and machine-readable format and distributes it to its subscribers. The subscribers are then able to automatically map the vulnerability information to the ontological stored infrastructure data to visualize newly-discovered software vulnerabilities. The automatic analysis of vulnerabilities decreases response times and permits precise response to new threats and vulnerabilities, thus decreasing the administration complexity and increasing the IT security level.}, pdf = {2008 - Fenz - Fortification of IT Security by Automatic Security Advisory Processing.pdf}, pages = {575-582}, publisher = {IEEE Computer Society}, }
Edgar R. Weippl, "Cyber Attacks and the article 5 of the Treaty of NATO," Euro Atlantic Quarterly, p. 22, 2008. BibTeX | PDF

@ARTICLE{weippl_gca, Author = {{Edgar R.} Weippl}, title = {Cyber Attacks and the article 5 of the Treaty of NATO}, journal = {Euro Atlantic Quarterly}, year = {2008}, month = {1}, pdf = {Papers\Weippl\gca_article5.doc}, pages = {22}, note = {ISSN 1336-8761}, }
Edgar R. Weippl and Markus Klemen and Philippe Benditsch and Gerald Futschek, "OCG IT-Security Zertifikat fuer Nutzer," in IRIS 2008, 2008. BibTeX

@INPROCEEDINGS{Benditsch_OCGITSecurityZertifikat_2008, Author = {{Edgar R.} Weippl and Markus Klemen and Philippe Benditsch and Gerald Futschek}, title = {OCG IT-Security Zertifikat fuer Nutzer}, booktitle = {IRIS 2008}, year = {2008}, month = {1}, }
Stefan Fenz and Edgar R. Weippl and Andreas Ekelhart, "Semantic Potential of existing Security Advisory Standards," in Proceedings of the FIRST2008 Conference, 2008. BibTeX | PDF

@INPROCEEDINGS{Fenz_SemanticPotentialof_2008, Author = {Stefan Fenz and {Edgar R.} Weippl and Andreas Ekelhart}, title = {Semantic Potential of existing Security Advisory Standards}, booktitle = {Proceedings of the FIRST2008 Conference}, year = {2008}, month = {1}, abstract = {New discoveries made on a nearly daily basis and the constantly growing amount of vulnerabilities in software products have led to the distribution of great numbers of vendor dependent vulnerability information over various channels such as mailing lists and RSS (Really Simple Syndication) feeds. However, the format of these messages presents a major problem as it lacks standardized, semantic information, resulting in very time-intensive, expensive, and error-prone processing due to the necessary human involvement. Recent developments in the field of IT security have increased the need for a sound semantic security advisory standard that allows for automatic processing of relevant security advisories in a more precise and timely manner. This would reduce pressure on organizations trying to keep their complex infrastructures secure and up-to-date by complying with standards, such as Basel II and local legislations. This paper conducts an evaluation of existing security advisory standards to identify usable semantic standards, which enable the automated processing of security advisories to ensure faster reaction times and precise response to new threats and vulnerabilities. In this way IT management can concentrate on solutions rather than on filtering messages.}, pdf = {2008 - Fenz - Semantic Potential of Existing Security Advisory Standards.pdf}, }
Edgar R. Weippl and Martin Ebner, "Security Privacy Challenges in E-Learning 2.0," in E-Learn 2008, 2008. BibTeX

@INPROCEEDINGS{Weippl_SecurityPrivacyChallenges_2008, Author = {{Edgar R.} Weippl and Martin Ebner}, title = {Security Privacy Challenges in E-Learning 2.0}, booktitle = {E-Learn 2008}, year = {2008}, month = {1}, }
Edgar R. Weippl and Joe Luca, ED-MEDIA Conference Proceedings, AACE, 2008. BibTeX

@BOOK{Weippl_EDMEDIAConferenceProceedings_2008, Author = {{Edgar R.} Weippl and Joe Luca}, title = {ED-MEDIA Conference Proceedings}, year = {2008}, month = {1}, publisher = {AACE}, }
Edgar R. Weippl, "Handbook of Research on Information Security and Assurance." Idea Group, 2008. BibTeX

@INBOOK{Weippl_SecurityAwarenessVirtualEnvironmentsandELearning_2008, Author = {{Edgar R.} Weippl}, title = {Handbook of Research on Information Security and Assurance}, year = {2008}, month = {1}, chapter = {Security Awareness: Virtual Environments and E-Learning}, publisher = {Idea Group}, }
Edgar R. Weippl, "Preface to Social Implications of Data Mining and Information Privacy: Interdisciplinary Frameworks and Solutions." IGI Global, 2008. BibTeX

@INBOOK{Weippl__2008, Author = {{Edgar R.} Weippl}, title = {Preface to Social Implications of Data Mining and Information Privacy: Interdisciplinary Frameworks and Solutions}, year = {2008}, month = {1}, publisher = {IGI Global}, }
Edgar R. Weippl and Simon Tjoa and Stefan Jakoubi, ARES Conference Proceedings, IEEE, 2008. BibTeX

@BOOK{Tjoa_ARESConferenceProceedings_2008, Author = {{Edgar R.} Weippl and Simon Tjoa and Stefan Jakoubi}, title = {ARES Conference Proceedings}, year = {2008}, month = {1}, publisher = {IEEE}, }
Edgar R. Weippl and Markus Klemen and Stefan Raffeiner, "The Semantic Web for Knowledge and Data Management: Technologies and Practices." Idea Group, 2008, pp. 38-48. BibTeX

@INBOOK{Weippl_ImprovingStorageConceptsforSemanticModelsandOntologies_2008, Author = {{Edgar R.} Weippl and Markus Klemen and Stefan Raffeiner}, title = {The Semantic Web for Knowledge and Data Management: Technologies and Practices}, year = {2008}, month = {1}, chapter = {Improving Storage Concepts for Semantic Models and Ontologies}, pages = {38--48}, publisher = {Idea Group}, }
Edgar R. Weippl and Bernhard Riedl, "Handbook of Research on Mobile Multimedia, Second Edition." Information Science Reference, 2008, p. IX. BibTeX

@INBOOK{Weippl_SecurityTrustandPrivacyonMobileDevicesandMultimediaApplications_2008, Author = {{Edgar R.} Weippl and Bernhard Riedl}, title = {Handbook of Research on Mobile Multimedia, Second Edition}, year = {2008}, month = {1}, chapter = {Security, Trust and Privacy on Mobile Devices and Multimedia Applications}, pages = {Chapter IX}, publisher = {Information Science Reference}, note = {ISBN: 978-1-60566-046-2}, }
Edgar R. Weippl, "Encyclopedia of Data Warehousing and Mining." Idea Group, 2008. BibTeX

@INBOOK{Weippl_DatabaseSecurityandStatisticalDatabaseSecurity_2008, Author = {{Edgar R.} Weippl}, title = {Encyclopedia of Data Warehousing and Mining}, year = {2008}, month = {1}, chapter = {Database Security and Statistical Database Security}, publisher = {Idea Group}, }
Edgar R. Weippl, "Security Considerations in M-Learning: Threats and Countermeasures," Advanced Technology for Learning, vol. 4, iss. 2, pp. 1-7, 2007. BibTeX

@ARTICLE{Weippl_SecurityConsiderationsin_2007, Author = {{Edgar R.} Weippl}, title = {Security Considerations in M-Learning: Threats and Countermeasures}, journal = {Advanced Technology for Learning}, year = {2007}, month = {1}, volume = {4}, number = {2}, pages = {1--7}, publisher = {Acta Press}, }
Edgar R. Weippl and Markus Klemen and Benjamin Böck, "The Handbook of Computer Networks." Wiley, 2007. BibTeX

@INBOOK{Bock_SocialEngineering_2007, Author = {{Edgar R.} Weippl and Markus Klemen and Benjamin Böck}, title = {The Handbook of Computer Networks}, year = {2007}, month = {1}, chapter = {Social Engineering}, publisher = {Wiley}, }
Edgar R. Weippl, "Dependability in E-Assessment," International Journal on E-Learning, vol. 6, iss. 2, 2007. BibTeX

@ARTICLE{Weippl_DependabilityinEAssessment_2007, Author = {{Edgar R.} Weippl}, title = {Dependability in E-Assessment}, journal = {International Journal on E-Learning}, year = {2007}, month = {1}, volume = {6}, number = {2}, publisher = {AACE}, }
Stefan Fenz and Edgar R. Weippl and Andreas Ekelhart, "Security Ontologies: How to Improve Understanding of Complex Relationships," in Proceedings of the World Conference on Educational Multimedia, Hypermedia and Telecommunications 2007, 2007, pp. 404-407. BibTeX | PDF

@INPROCEEDINGS{Weippl_SecurityOntologiesHow_2007, Author = {Stefan Fenz and {Edgar R.} Weippl and Andreas Ekelhart}, title = {Security Ontologies: How to Improve Understanding of Complex Relationships}, booktitle = {Proceedings of the World Conference on Educational Multimedia, Hypermedia and Telecommunications 2007}, year = {2007}, month = {6}, abstract = {It is commonly accepted that simulation can provide a valuable tool in improving learning. Building on a complex knowledge base of IT security related concepts we offer our students a simulation to experience how different safeguards can influence the outcome of security incidents. The goal is to teach students that countermeasures have to cost-effective, that is, the cost of installing and operating safeguards should not exceed the anticipated benefit.}, pdf = {2007 - Weippl - Security Ontologies How to Improve Understanding of Complex Relationships.pdf}, pages = {404-407}, publisher = {AACE}, }
A Min Tjoa and Stefan Fenz and Edgar R. Weippl and Andreas Ekelhart and Witold Abramowicz and Dominik Zyskowski and Monika Kaczmarek, "Security aspects in Semantic Web Services Filtering," in Proceedings of the 9th @WAS International Conference on Information Integration and Web-based Applications \& Services (iiWAS2007), 2007, pp. 21-31. BibTeX | PDF

@INPROCEEDINGS{Abramowicz_Securityaspectsin_2007, Author = {{A Min} Tjoa and Stefan Fenz and {Edgar R.} Weippl and Andreas Ekelhart and Witold Abramowicz and Dominik Zyskowski and Monika Kaczmarek}, title = {Security aspects in Semantic Web Services Filtering}, booktitle = {Proceedings of the 9th @WAS International Conference on Information Integration and Web-based Applications \& Services (iiWAS2007)}, year = {2007}, month = {1}, abstract = {Security and trust aspects, perceived as difficult to quantify, have been neglected in various service interactions. However, factors related to security and trust are in fact crucial in the overall value of service quality. A security ontology that enables a quantification of risks related to the usage of Semantic Web services in enterprise information systems was created to meet users' requirements and enhance Semantic Web services with machine processable security information. This article presents how this security ontology can be integrated into the Web service description and how it enhances the process of Web services filtering.}, pdf = {2007 - Abramowicz - Security Aspects in Semantic Web Services Filtering.pdf}, volume = {229}, pages = {21-31}, publisher = {Austrian Computer Society}, }
Edgar R. Weippl and Bernhard Riedl and Veronika Grascher, "Wikis im Social Web." OCG Austrian Computer Society, 2007, pp. 190-198. BibTeX

@INBOOK{Weippl_EinsatzvonAuditsinWikisanStellevonZugriffskontrollenalssozioorganisatorischeSicherheitsmassnahme_2007, Author = {{Edgar R.} Weippl and Bernhard Riedl and Veronika Grascher}, title = {Wikis im {S}ocial {W}eb}, year = {2007}, month = {1}, chapter = {Einsatz von Audits in Wikis an Stelle von Zugriffskontrollen als sozio-organisatorische Sicherheitsmassnahme}, pages = {190--198}, publisher = {OCG Austrian Computer Society}, }
Edgar R. Weippl and Gernot Goluch and Bernhard Riedl and Stefan Poechlinger, "Comparative Literature Review on RFID Security and Privacy," in Proceedings of The 9th International Conference on Information Integration and Web-based Applications and Services (iiWAS2007), 2007. BibTeX

@INPROCEEDINGS{Riedl_ComparativeLiteratureReview_2007, Author = {{Edgar R.} Weippl and Gernot Goluch and Bernhard Riedl and Stefan Poechlinger}, title = {Comparative Literature Review on RFID Security and Privacy}, booktitle = {Proceedings of The 9th International Conference on Information Integration and Web-based Applications and Services (iiWAS2007)}, year = {2007}, month = {1}, }
Stefan Fenz and Edgar R. Weippl and Andreas Ekelhart and Gernot Goluch, "Ontological Mapping of Common Criterias Security Assurance Requirements," in New Approaches for Security, Privacy and Trust in Complex Environments, Proceedings of the IFIP TC 11 22nd International Information Security Conference, IFIPSEC2007, May 14-16, 2007, pp. 85-95. BibTeX

@INPROCEEDINGS{Ekelhart_OntologicalMappingof_2007, Author = {Stefan Fenz and {Edgar R.} Weippl and Andreas Ekelhart and Gernot Goluch}, title = {Ontological Mapping of Common Criterias Security Assurance Requirements}, booktitle = {New Approaches for Security, Privacy and Trust in Complex Environments, Proceedings of the IFIP TC 11 22nd International Information Security Conference, IFIPSEC2007, May 14-16}, year = {2007}, month = {5}, abstract = {The Common Criteria (CC) for Information Technology Security Evaluation provides comprehensive guidelines for the evaluation and certification of IT security regarding data security and data privacy. Due to the very complex and time-consuming certification process a lot of companies abstain from a CC certification. We created the CC Ontology tool, which is based on an ontological representation of the CC catalog, to support the evaluator at the certification process. Tasks such as the planning of an evaluation process, the review of relevant documents or the creating of reports are supported by the CC Ontology tool. With the development of this tool we reduce the time and costs needed to complete a certification.}, volume = {232_2007}, pages = {85-95}, publisher = {International Federation for Information Processing ,}, note = {978-0-387-72366-2}, }
Stefan Fenz and Edgar R. Weippl and Markus Klemen and Andreas Ekelhart and Gernot Goluch, "Architectural approach for handling semi-structured data in an user-centered working environment," International Journal of Web Information Systems, vol. 3, iss. 3, pp. 198-211, 2007. BibTeX | PDF

@ARTICLE{Ekelhart_Architecturalapproachhandling_2007, Author = {Stefan Fenz and {Edgar R.} Weippl and Markus Klemen and Andreas Ekelhart and Gernot Goluch}, title = {Architectural approach for handling semi-structured data in an user-centered working environment}, journal = {International Journal of Web Information Systems}, year = {2007}, month = {1}, abstract = {Purpose of this paper Today the amount of all kind of digital data (e.g., documents and e-mails), existing on every user's computer, is continuously growing. Users are faced with huge difficulties when it comes to handling the existing data pool and finding specific information respectively. We aim to discover new ways of searching and finding semi-structured data by integrating semantic metadata. Design/methodology/approach The proposed architecture allows cross border searches spanning various applications and operating system activities (e.g., file access and network traffic) and improves the human working process by offering context specific, automatically generated links that are created using ontologies. Findings The proposed semantic enrichment of automated gathered data is a useful approach to reflect the human way of thinking which is accomplished by remembering relations rather than keywords or tags. The proposed architecture supports the goals of supporting the human working process by managing and enriching personal data, e.g. by providing a database model which supports the semantic storage idea through a generic and flexible structure or the modular structure and composition of data collectors. Originality/value Available programs to manage personal data usually offer searches either via keywords or full text search. Each of these existing search methodologies has its shortcomings and apart from that, people tend to forget names of specific objects. It is often easier to remember the context of a situation in which e.g. a file was created or a website was visited. By proposing our architectural approach for handling semi-structured data we are able to offer sophisticated and more applicable search mechanism regarding the way of human thinking.}, pdf = {2007 - Ekelhart - Architectural Approach for Handling Semi-Structured Data in a User-Centered Working Environment.pdf}, volume = {3}, number = {3}, pages = {198-211}, note = {ISSN: 1744-0084}, }
Stefan Fenz and Edgar R. Weippl and Markus Klemen and Andreas Ekelhart, "Security Ontologies: Improving Quantitative Risk Analysis," in Proceedings of the 40th Hawaii International Conference on System Sciences, HICSS2007, 2007, pp. 156-162. BibTeX | PDF

@INPROCEEDINGS{Ekelhart_SecurityOntologiesImproving_2007, Author = {Stefan Fenz and {Edgar R.} Weippl and Markus Klemen and Andreas Ekelhart}, sbahotlist = {true}, title = {Security Ontologies: Improving Quantitative Risk Analysis}, booktitle = {Proceedings of the 40th Hawaii International Conference on System Sciences, HICSS2007}, year = {2007}, month = {1}, pdf = {2007 - Ekelhart - Security Ontologies Improving Quantitative Risk Analysis.pdf}, pages = {156-162}, publisher = {IEEE Computer Society}, note = {0-7695-2755-8}, }
A Min Tjoa and Stefan Fenz and Edgar R. Weippl and Andreas Ekelhart, "Security Issues for the Use of Semantic Web in e-Commerce," in Business Information Systems, 10th International Conference on Business Information Systems, BIS 2007, 2007, pp. 1-13. BibTeX | PDF

@INPROCEEDINGS{Ekelhart_SecurityIssuesUse_2007, Author = {{A Min} Tjoa and Stefan Fenz and {Edgar R.} Weippl and Andreas Ekelhart}, title = {Security Issues for the Use of Semantic Web in e-Commerce}, booktitle = {Business Information Systems, 10th International Conference on Business Information Systems, BIS 2007}, year = {2007}, month = {4}, pdf = {2007 - Ekelhart - Security Issues for the Use of Semantic Web in e-Commerce.pdf}, number = {978-3-540-}, pages = {1-13}, publisher = {Springer Berlin Heidelberg}, }
Stefan Fenz and Edgar R. Weippl and Andreas Ekelhart and Gernot Goluch and Bernhard Riedl, "Information Security Fortification by Ontological Mapping of the ISO IEC 27001 Standard," in Proceedings of the 13th Pacific Rim International Symposium on Dependable Computing, PRDC2007, 2007, pp. 381-388. BibTeX | PDF

@INPROCEEDINGS{Fenz_InformationSecurityFortification_2007, Author = {Stefan Fenz and {Edgar R.} Weippl and Andreas Ekelhart and Gernot Goluch and Bernhard Riedl}, title = {Information Security Fortification by Ontological Mapping of the ISO IEC 27001 Standard}, booktitle = {Proceedings of the 13th Pacific Rim International Symposium on Dependable Computing, PRDC2007}, year = {2007}, month = {12}, pdf = {2007 - Fenz - Information Security Fortification by Ontological Mapping of the ISOIEC 27001 Standard.pdf}, pages = {381-388}, publisher = {IEEE Computer Society}, note = {0-7695-3054-0}, }
Stefan Fenz and Edgar R. Weippl and Andreas Ekelhart and Thomas Neubauer, "Formal threat descriptions for enhancing governmental risk assessment," in Proceedings of the First International Conference on Theory and Practice of Electronic Governance, 2007, pp. 40-43. BibTeX | PDF

@INPROCEEDINGS{Ekelhart_Formalthreatdescriptions_2007, Author = {Stefan Fenz and {Edgar R.} Weippl and Andreas Ekelhart and Thomas Neubauer}, title = {Formal threat descriptions for enhancing governmental risk assessment}, booktitle = {Proceedings of the First International Conference on Theory and Practice of Electronic Governance}, year = {2007}, month = {1}, abstract = {Compared to the last decades, we have recently seen more and more governmental applications which are provided via the Internet directly to the citizens. Due to the long history of IT systems in the governmental sector and the connection of these legacy systems to newer technologies, most governmental institutions are faced with a heterogeneous IT environment. More and more governmental duties and responsibilities rely solely on IT systems which have to be highly dependable to ensure the proper operation of these governmental services. An increasing amount of software vulnerabilities and the generally heightened physical threat level due to terror attacks and natural disasters demand for a holistic IT security approach which captures, manages, and secures the entire governmental IT infrastructure. Our contribution is (1) a novel inventory solution, (2) a mechanism to embed the virtual IT infrastructure data into a physical model provided by our security ontology, and (3) a methodology to automatically identify threatened assets and to reason on the current security status based on formal threat definitions taking software configurations and physical locations into account. A prototypical implementation of the aforementioned concepts shows how these concepts help governmental institutions to secure their IT infrastructure in a holistic and systematic way to fortify their IT systems in an appropriate way against current and future threats.}, pdf = {2007 - Ekelhart - Formal Threat Descriptions for Enhancing Governmental Risk Assessment.pdf}, volume = {232}, pages = {40-43}, publisher = {ACM}, note = {978-1-59593-822-0}, }
Edgar R. Weippl and Khalid Latif, "Question Driven Semantics Interpretation for Collaborative Knowledge Engineering and Ontology Reuse," in IEEE International Conference on Information Reuse and Integration, 2007. BibTeX

@INPROCEEDINGS{Latif_QuestionDrivenSemantics_2007, Author = {{Edgar R.} Weippl and Khalid Latif}, title = {Question Driven Semantics Interpretation for Collaborative Knowledge Engineering and Ontology Reuse}, booktitle = {IEEE International Conference on Information Reuse and Integration}, year = {2007}, month = {8}, }
Edgar R. Weippl and Markus Klemen and Thomas Neubauer, "The Handbook of Computer Networks." Wiley, 2007. BibTeX

@INBOOK{Klemen_BusinessRequirementsofBackupSystems_2007, Author = {{Edgar R.} Weippl and Markus Klemen and Thomas Neubauer}, title = {The Handbook of Computer Networks}, year = {2007}, month = {1}, chapter = {Business Requirements of Backup Systems}, publisher = {Wiley}, }
Edgar R. Weippl and Jamil Wahbeh, "Mobile Multimedia: Communication Engineering Perspective." Nova Science Publishers, 2006, pp. 101-116. BibTeX

@INBOOK{Weippl_SecuringMobileCommunicationRADIUSinaWindowsEnvironment_2006, Author = {{Edgar R.} Weippl and Jamil Wahbeh}, title = {Mobile Multimedia: Communication Engineering Perspective}, year = {2006}, month = {1}, chapter = {Securing Mobile Communication: RADIUS in a Windows Environment}, pages = {101--116}, publisher = {Nova Science Publishers}, }
Edgar R. Weippl and Mathias Strasser, "Sarbanes-Oxley Act Compliance: Strategies for Implementing a Audit Committee Complaints Procedure," Information Systems Control Journal, vol. 4, iss. 10, 2006. BibTeX

@ARTICLE{Weippl_SarbanesOxleyActCompliance_2006, Author = {{Edgar R.} Weippl and Mathias Strasser}, title = {Sarbanes-Oxley Act Compliance: Strategies for Implementing a Audit Committee Complaints Procedure}, journal = {Information Systems Control Journal}, year = {2006}, month = {8}, volume = {4}, number = {10}, publisher = {ISACA}, }
Edgar R. Weippl and Stefan Biffl and Thomas Neubauer, "Digital Signatures with Familiar Appearance for e-Government Documents: Authentic PDF," in Proceedings of the International Conference on Availability, Reliability and Security (ARES’06), 2006, pp. 723-731. BibTeX

@INPROCEEDINGS{Neubauer_DigitalSignatureswith_2006, Author = {{Edgar R.} Weippl and Stefan Biffl and Thomas Neubauer}, title = {Digital Signatures with Familiar Appearance for e-Government Documents: Authentic PDF}, booktitle = {Proceedings of the International Conference on Availability, Reliability and Security (ARES'06)}, year = {2006}, month = {1}, pages = {723-731}, }
Edgar R. Weippl and Thomas Neubauer and Christian Stummer, "Workshop-based Multiobjective Security Safeguard Selection," in Proceedings of the irst International Conference on Availability, Reliability and Security (ARES), 2006, pp. 366-373. BibTeX

@INPROCEEDINGS{Neubauer_WorkshopbasedMultiobjectiveSecurity_2006, Author = {{Edgar R.} Weippl and Thomas Neubauer and Christian Stummer}, title = {Workshop-based Multiobjective {S}ecurity Safeguard Selection}, booktitle = {Proceedings of the irst International Conference on Availability, Reliability and Security (ARES)}, year = {2006}, month = {1}, pages = {366--373}, publisher = {IEEE Computer Society}, }
Edgar R. Weippl, "Handbook of Research on Mobile Multimedia." Idea Group, 2006, pp. 22-37. BibTeX

@INBOOK{Weippl_Chapter3SecurityandTrustinMobileMultimedia_2006, Author = {{Edgar R.} Weippl}, title = {Handbook of Research on Mobile Multimedia}, year = {2006}, month = {1}, chapter = {Chapter 3:Security and Trust in Mobile Multimedia}, pages = {22--37}, publisher = {Idea Group}, }
Edgar R. Weippl and Thomas Neubauer and Arno Hollosi, "Digitale PDF-Signaturen mit der Bürgerkarte," in Proceedings of D-A-CH Security 2006, 2006. BibTeX

@INPROCEEDINGS{Neubauer_DigitalePDFSignaturenmit_2006, Author = {{Edgar R.} Weippl and Thomas Neubauer and Arno Hollosi}, title = {Digitale {P}{D}{F}-{S}ignaturen mit der {B}\"urgerkarte}, booktitle = {Proceedings of D-A-CH Security 2006}, year = {2006}, month = {1}, }
Edgar R. Weippl and Gernot Goluch, "Nichtabstreitbarkeit und Audits in ELearning," in IRIS 2006, 2006. BibTeX

@INPROCEEDINGS{Goluch_NichtabstreitbarkeitundAudits_2006, Author = {{Edgar R.} Weippl and Gernot Goluch}, title = {Nichtabstreitbarkeit und Audits in ELearning}, booktitle = {IRIS 2006}, year = {2006}, month = {1}, }
A Min Tjoa and Edgar R. Weippl and Andreas Holzinger, "Security Aspects of Ubiquitous Computing in Health Care," e\&i, vol. 2006, iss. 4, pp. 156-161, 2006. BibTeX

@ARTICLE{Weippl_SecurityAspectsof_2006, Author = {{A Min} Tjoa and {Edgar R.} Weippl and Andreas Holzinger}, title = {Security Aspects of Ubiquitous Computing in Health Care}, journal = {e\&i}, year = {2006}, month = {1}, volume = {2006}, number = {4}, pages = {156--161}, publisher = {Springer Verlag}, note = {http://dx.doi.org/10.1007/s00502-006-0336}, }
Edgar R. Weippl, "On the Use of Test Centers in e-Assessment," eLearning Reports, iss. 7, 2006. BibTeX

@ARTICLE{Weippl_UseofTest_2006, Author = {{Edgar R.} Weippl}, title = {On the Use of Test Centers in e-Assessment}, journal = {eLearning Reports}, year = {2006}, month = {2}, volume = {0}, number = {7}, }
A Min Tjoa and Stefan Fenz and Edgar R. Weippl and Markus Klemen and Andreas Ekelhart, "Ontology-based Business Knowledge for Simulating Threats to Corporate Assets," in Practical Aspects of Knowledge Management, 6th International Conference, PAKM 2006, 2006, pp. 37-48. BibTeX | PDF

@INPROCEEDINGS{Ekelhart_OntologybasedBusinessKnowledge_2006, Author = {{A Min} Tjoa and Stefan Fenz and {Edgar R.} Weippl and Markus Klemen and Andreas Ekelhart}, title = {Ontology-based Business Knowledge for Simulating Threats to Corporate Assets}, booktitle = {Practical Aspects of Knowledge Management, 6th International Conference, PAKM 2006}, year = {2006}, month = {12}, pdf = {2006 - Ekelhart - Ontology-based Business Knowledge for Simulating Threats to Corporate Assets.pdf}, volume = {4333_2006}, pages = {37-48}, publisher = {Springer Berlin Heidelberg}, note = {978-3-540-49998-5}, }
Stefan Fenz and Edgar R. Weippl and Markus Klemen and Andreas Ekelhart, "Security Ontology: Simulating Threats to Corporate Assets," in Information Systems Security, Second International Conference, ICISS 2006, 2006, pp. 249-259. BibTeX | PDF

@INPROCEEDINGS{Ekelhart_SecurityOntologySimulating_2006, Author = {Stefan Fenz and {Edgar R.} Weippl and Markus Klemen and Andreas Ekelhart}, title = {Security Ontology: Simulating Threats to Corporate Assets}, booktitle = {Information Systems Security, Second International Conference, ICISS 2006}, year = {2006}, month = {12}, pdf = {2006 - Ekelhart - Security Ontology Simulating Threats to Corporate Assets.pdf}, volume = {4332_2006}, pages = {249-259}, publisher = {Springer Berlin Heidelberg}, note = {978-3-540-68962-1}, }
Edgar R. Weippl, "Addressing the Weakest Link: How to improve teaching of IT security," in Proceedings of ED-MEDIA 2006, 2006. BibTeX

@INPROCEEDINGS{Weippl_AddressingWeakestLink_2006, Author = {{Edgar R.} Weippl}, title = {Addressing the Weakest Link: How to improve teaching of IT security}, booktitle = {Proceedings of ED-MEDIA 2006}, year = {2006}, month = {1}, }
Edgar R. Weippl and Markus Klemen, "Enterprise Information Systems Assurance and System Security: Managerial and Technical Issues." Idea Group, 2006. BibTeX

@INBOOK{Weippl_ImplementingITSecurityforSmallandMediumSizedEnterprises_2006, Author = {{Edgar R.} Weippl and Markus Klemen}, title = {Enterprise Information Systems Assurance and System Security: Managerial and Technical Issues}, year = {2006}, month = {1}, chapter = {Implementing IT Security for Small and Medium-Sized Enterprises}, publisher = {Idea Group}, }
Stefan Fenz and Edgar R. Weippl, "Ontology-based IT-Security Planning," in Proceedings of the 12th Pacific Rim International Symposium on Dependable Computing, PRDC2006, 2006, pp. 389-390. BibTeX | PDF

@INPROCEEDINGS{Fenz_OntologybasedITSecurityPlanning_2006, Author = {Stefan Fenz and {Edgar R.} Weippl}, title = {Ontology-based IT-Security Planning}, booktitle = {Proceedings of the 12th Pacific Rim International Symposium on Dependable Computing, PRDC2006}, year = {2006}, month = {12}, abstract = {IT-security has become a much diversified field and small and medium sized enterprises (SMEs), in particular, do not have the financial ability to implement a holistic IT-security approach. We thus propose a security ontology, to provide a solid base for an applicable and holistic IT-security approach for SMEs, enabling low-cost risk management and threat analysis.}, pdf = {2006 - Fenz - Ontology-based IT Security Planning.pdf}, pages = {389-390}, publisher = {IEEE Computer Society}, note = {9353421}, }
Edgar R. Weippl, Security in E-Learning, Springer NY, 2005. BibTeX

@BOOK{Weippl_SecurityinELearning_2005b, Author = {{Edgar R.} Weippl}, title = {Security in E-Learning}, year = {2005}, month = {1}, publisher = {Springer NY}, note = {ISBN 0-387-24341-0, \url{http://www.e-learning-security.org}}, }
Edgar R. Weippl, "On the Use of Test Centers in E-Assessment," published in elearningreports.com, 2005. BibTeX

@ARTICLE{Weippl_UseofTest_2005, Author = {{Edgar R.} Weippl}, title = {On the Use of Test Centers in E-Assessment}, journal = {published in elearningreports.com}, year = {2005}, month = {1}, }
A Min Tjoa and Stefan Fenz and Edgar R. Weippl and Markus Klemen and Andreas Ekelhart, "The Semantic Desktop: A Semantic Personal Information Management System based on RDF and Topic Maps," in Proceedings of the ODBIS Workshop, 31st International Conference on Very Large Data Bases (VLDB) 2005, 2005, pp. 135-151. BibTeX | PDF

@INPROCEEDINGS{Weippl_SemanticDesktopSemantic_2005, Author = {{A Min} Tjoa and Stefan Fenz and {Edgar R.} Weippl and Markus Klemen and Andreas Ekelhart}, sbahotlist = {true}, title = {The Semantic Desktop: A Semantic Personal Information Management System based on RDF and Topic Maps}, booktitle = {Proceedings of the ODBIS Workshop, 31st International Conference on Very Large Data Bases (VLDB) 2005}, year = {2005}, month = {10}, pdf = {2005 - Weippl - The Semantic Desktop.pdf}, number = {4623}, pages = {135-151}, }
Edgar R. Weippl, "Non-Repudiation and Audits in E-Learning, invited paper," in Proceedings of E-Learn 2005, 2005, pp. 1785-1790. BibTeX

@INPROCEEDINGS{Weippl_NonRepudiationandAudits_2005, Author = {{Edgar R.} Weippl}, title = {Non-Repudiation and Audits in E-Learning, invited paper}, booktitle = {Proceedings of E-Learn 2005}, year = {2005}, month = {1}, pages = {1785--1790}, }
A Min Tjoa and Stefan Fenz and Edgar R. Weippl and Markus Klemen and Gernot Goluch and Manfred Linnert, "Semantic Storage: A Report on Performance and Flexibility," in Database and Expert Systems Applications, 16th International Conference, DEXA 2005, 2005, pp. 586-595. BibTeX | PDF

@INPROCEEDINGS{Weippl_SemanticStorageReport_2005, Author = {{A Min} Tjoa and Stefan Fenz and {Edgar R.} Weippl and Markus Klemen and Gernot Goluch and Manfred Linnert}, title = {Semantic Storage: A Report on Performance and Flexibility}, booktitle = {Database and Expert Systems Applications, 16th International Conference, DEXA 2005}, year = {2005}, month = {8}, abstract = {Desktop search tools are becoming more popular. They have to deal with increasing amounts of locally stored data. Another approach is to analyze the semantic relationship between collected data in order to preprocess the data semantically. The goal is to allow searches based on relationships between various objects instead of focusing on the name of objects. We introduce a database architecture based on an existing software prototype, which is capable of meeting the various demands for a semantic information manager. We describe the use of an association table which stores the relationships between events. It enables adding or removing data items easily without the need for schema modifications. Existing optimization techniques of RDBMS can still be used.}, pdf = {2005 - Weippl - Semantic Storage A Report on Performance and Flexibility:2005 - Weippl - Semantic Storage A Report on Performance and Flexibility.pdf}, volume = {3588_2005}, pages = {586-595}, publisher = {Springer Berlin Heidelberg}, }
Edgar R. Weippl, "Encyclopedia of E-Commerce, E-Government and Mobile Commerce." Idea Group, Publish, 2005, pp. 135-140. BibTeX

@INBOOK{Weippl_ComputerSecurityintheContextofELearning_2005, Author = {{Edgar R.} Weippl}, title = {Encyclopedia of E-Commerce, E-Government and Mobile Commerce}, year = {2005}, month = {1}, chapter = {Computer Security in the Context of E-Learning}, pages = {135--140}, publisher = {Idea Group, Publish}, }
Edgar R. Weippl and Eva Gahleitner and Wernher Behrendt and Juergen Palkoska, "On Cooperatively Creating Dynamic Ontologies," in Proceedings of the 16th ACM Conference on Hypertext and Hypermedia, 2005. BibTeX

@INPROCEEDINGS{Gahleitner_CooperativelyCreatingDynamic_2005, Author = {{Edgar R.} Weippl and Eva Gahleitner and Wernher Behrendt and Juergen Palkoska}, sbahotlist = {true}, title = {On Cooperatively Creating Dynamic Ontologies}, booktitle = {Proceedings of the 16th ACM Conference on Hypertext and Hypermedia}, year = {2005}, month = {9}, publisher = {ACM}, }
Edgar R. Weippl and Gerald Futschek and Hakan Kalinyaprak and Georg Blaha, "E-Learning without Text and Language: A Language-Free Learning Model," in Proceedings of EDMEDIA 2005, 2005. BibTeX

@INPROCEEDINGS{Kalinyaprak_ELearningwithoutText_2005, Author = {{Edgar R.} Weippl and Gerald Futschek and Hakan Kalinyaprak and Georg Blaha}, title = {E-Learning without Text and Language: A Language-Free Learning Model}, booktitle = {Proceedings of EDMEDIA 2005}, year = {2005}, month = {6}, }
A Min Tjoa and Edgar R. Weippl and Tho Manh Nguyen and Peter Brezany, "Toward a Grid-Based Zero-Latency Data Warehousing Implementation for Continuous Data Streams Processing," International Journal of Data Warehousing and Mining, vol. 1, iss. 4, pp. 22-55, 2005. BibTeX

@ARTICLE{Nguyen_TowardGridBasedZeroLatency_2005, Author = {{A Min} Tjoa and {Edgar R.} Weippl and {Tho Manh} Nguyen and Peter Brezany}, title = {Toward a Grid-Based Zero-Latency Data Warehousing Implementation for Continuous Data Streams Processing}, journal = {International Journal of Data Warehousing and Mining}, year = {2005}, month = {1}, volume = {1}, number = {4}, pages = {22-55}, publisher = {Idea Group}, }
A Min Tjoa and Edgar R. Weippl, "Privacy in E-learning: How to Implement Anonymity," in Proceedings the 3rd ACS/IEEE International Conference on Computer Systems and Applications (AICCSA-05), Workshop on E-Learning Online Communities (eLOC), 2005. BibTeX

@INPROCEEDINGS{Weippl_PrivacyinElearning_2005a, Author = {{A Min} Tjoa and {Edgar R.} Weippl}, title = {Privacy in E-learning: How to Implement Anonymity}, booktitle = {Proceedings the 3rd ACS/IEEE International Conference on Computer Systems and Applications (AICCSA-05), Workshop on E-Learning Online Communities (eLOC)}, year = {2005}, month = {1}, }
Edgar R. Weippl, "Dependability in E-Assessment," in Proceedings of ED-MEDIA 2005, 2005. BibTeX

@INPROCEEDINGS{Weippl_DependabilityinEAssessment_2005, Author = {{Edgar R.} Weippl}, title = {Dependability in E-Assessment}, booktitle = {Proceedings of ED-MEDIA 2005}, year = {2005}, month = {1}, }
A Min Tjoa and Edgar R. Weippl, "Privacy in E-Learning: Anonymity, Pseudonyms and Authenticated Usage," Interactive Technology and Smart Education (ITSE), vol. 2005, iss. 2, pp. 247-256, 2005. BibTeX

@ARTICLE{Weippl_PrivacyinELearning_2005, Author = {{A Min} Tjoa and {Edgar R.} Weippl}, title = {Privacy in E-Learning: Anonymity, Pseudonyms and Authenticated Usage}, journal = {Interactive Technology and Smart Education (ITSE)}, year = {2005}, month = {1}, volume = {2005}, number = {2}, pages = {247--256}, publisher = {Troubador Publishing Ltd.}, }
Edgar R. Weippl, "The Handbook of Information Security." John Wiley \& Sons, 2005. BibTeX

@INBOOK{Weippl_SecurityinELearning_2005a, Author = {{Edgar R.} Weippl}, title = {The Handbook of Information Security}, year = {2005}, month = {1}, chapter = {Security in E-Learning}, publisher = {John Wiley \& Sons}, note = {ISBN 0-471-64833-7}, }
Edgar R. Weippl, "Security in E-Learning," ACM ELearn Magazine, 2005. BibTeX

@ARTICLE{Weippl_SecurityinELearning_2005, Author = {{Edgar R.} Weippl}, title = {Security in E-Learning}, journal = {ACM ELearn Magazine}, year = {2005}, month = {1}, note = {\url{http://www.elearnmag.org/subpage.cfm?section=tutorials&article=19-1}}, }
Edgar R. Weippl and Wolfgang Essmayr and Stefan Probst, "Role-Based Access Controls: Status, Dissemination, and Prospects for Generic Security Mechanisms," International Journal of Electronic Commerce Research, vol. 4, iss. 1, pp. 127-156, 2004. BibTeX | PDF

@ARTICLE{weippl_ae, Author = {{Edgar R.} Weippl and Wolfgang Essmayr and Stefan Probst}, title = {Role-Based Access Controls: Status, Dissemination, and Prospects for Generic Security Mechanisms}, journal = {International Journal of Electronic Commerce Research}, year = {2004}, month = {1}, pdf = {Papers/Weippl/ae_2002_essmayr.pdf}, volume = {4}, number = {1}, pages = {127--156}, publisher = {Kluwer}, }
Edgar R. Weippl, "Security in Mobile Multimedia," Journal of Communication Engineering, vol. 1, iss. 1, pp. 59-69, 2004. BibTeX | PDF

@ARTICLE{weippl_ag, Author = {{Edgar R.} Weippl}, title = {Security in Mobile Multimedia}, journal = {Journal of Communication Engineering}, year = {2004}, month = {1}, pdf = {Papers/Weippl/ag_2004_weippl.pdf}, volume = {1}, number = {1}, pages = {59--69}, note = {ISSN 1693-5152}, }
Edgar R. Weippl and Wolfgang Essmayr and Ludwig Klug, "A New Approach to Secure Federated Information Bases using Agent Technology," Journal of Database Management, Kluwer, vol. 14, iss. 1, pp. 48-68, 2003. BibTeX | PDF

@ARTICLE{weippl_af, Author = {{Edgar R.} Weippl and Wolfgang Essmayr and Ludwig Klug}, title = {A New Approach to Secure Federated Information Bases using Agent Technology}, journal = {Journal of Database Management, Kluwer}, year = {2003}, month = {1}, pdf = {Papers/Weippl/af_2002_JDM.pdf}, volume = {14}, number = {1}, pages = {48--68}, }
Edgar R. Weippl and Wolfgang Essmayr, "Personal Trusted Devices for web services: Revisiting Multilevel Security," Mobile Networks and Applications, Kluwer, vol. 8, iss. 2, pp. 151-157, 2003. BibTeX | PDF

@ARTICLE{weippl_aa, Author = {{Edgar R.} Weippl and Wolfgang Essmayr}, title = {Personal Trusted Devices for web services: Revisiting Multilevel Security}, journal = {Mobile Networks and Applications, Kluwer}, year = {2003}, month = {1}, pdf = {Papers/Weippl/aa_weippl_monet_121.pdf}, volume = {8}, number = {2}, pages = {151--157}, }
Edgar R. Weippl, "The Transition from E-commerce to M-commerce: Why Security should be the enabling technology," Journal of Information Technology Theory and Application (JITTA), vol. 3, iss. 4, pp. 17-19, 2001. BibTeX

@ARTICLE{weippl_ga, Author = {{Edgar R.} Weippl}, title = {The Transition from E-commerce to M-commerce: Why Security should be the enabling technology}, journal = {Journal of Information Technology Theory and Application (JITTA)}, year = {2001}, month = {1}, volume = {3}, number = {4}, pages = {17--19}, note = {\url{http://peffers.net/journal/volume3_4/ecpreface.pdf}}, }
Edgar R. Weippl and Hans Lohninger, "Teach Me: Leveraging CBT-Course Efficiency Using Improved User Interfaces," in Proceedings of the International Conference on Information and Communication Technologies for Education (EDICT), 2000, pp. 355-362. BibTeX

@INPROCEEDINGS{weippl_bj, Author = {{Edgar R.} Weippl and Hans Lohninger}, title = {Teach Me: Leveraging CBT-Course Efficiency Using Improved User Interfaces}, booktitle = {Proceedings of the International Conference on Information and Communication Technologies for Education (EDICT)}, year = {2000}, month = {12}, pages = {355-362}, }
Edgar R. Weippl and Hans Lohninger, "Knowledge Landscapes: A VR Interface for CBT Knowledge Bases," in 10th European-Japanese Conference on Information Modeling and Knowledge Bases, 2000. BibTeX

@INPROCEEDINGS{weippl_bm, Author = {{Edgar R.} Weippl and Hans Lohninger}, title = {Knowledge Landscapes: A VR Interface for CBT Knowledge Bases}, booktitle = {10th European-Japanese Conference on Information Modeling and Knowledge Bases}, year = {2000}, month = {5}, note = {Reprinted in Kangassalo H., Jaakkola H., Kawaguchi E. (eds), Information Modelling and Knowledge Bases XII, 271-274, ISBN 1-58603-1635. IOS Press, Amsterdam, 2001.}, }
Edgar R. Weippl and Wolfgang Essmayr, "Fine Grained Replication in Distributed Databases: A Taxonomy and Practical Considerations," in Proceedings of the 11th International Conference on Database and Expert Systems Applications (DEXA), 2000. BibTeX

@INPROCEEDINGS{weippl_bk, Author = {{Edgar R.} Weippl and Wolfgang Essmayr}, title = {Fine Grained Replication in Distributed Databases: A Taxonomy and Practical Considerations}, booktitle = {Proceedings of the 11th International Conference on Database and Expert Systems Applications (DEXA)}, year = {2000}, month = {9}, publisher = {LNCS Springer}, }
Edgar R. Weippl and Wolfgang Essmayr, "Identity Mapping: An Approach to Unravel Enterprise Security Management Policies," in Proceedings of the 16th IFIP World Computer Congress, 2000. BibTeX

@INPROCEEDINGS{weippl_bl, Author = {{Edgar R.} Weippl and Wolfgang Essmayr}, title = {Identity Mapping: An Approach to Unravel Enterprise Security Management Policies}, booktitle = {Proceedings of the 16th IFIP World Computer Congress}, year = {2000}, month = {8}, publisher = {Kluwer}, }
Edgar R. Weippl and Hans Lohninger, "Evaluating CBT Software Usage in Schools and Universities," in Proceedings of the 19th IDCE World Conference On Open Learning And Distance Education, 1999. BibTeX

@INPROCEEDINGS{weippl_bo, Author = {{Edgar R.} Weippl and Hans Lohninger}, title = {Evaluating CBT Software Usage in Schools and Universities}, booktitle = {Proceedings of the 19th IDCE World Conference On Open Learning And Distance Education}, year = {1999}, month = {6}, }
Edgar R. Weippl and Hans Lohninger, "Special Requirements for Information Visualization in CBT," in Proceedings of Edu Compugraphics 97, 1997, pp. 133-139. BibTeX

@INPROCEEDINGS{weippl_bp, Author = {{Edgar R.} Weippl and Hans Lohninger}, title = {Special Requirements for Information Visualization in CBT}, booktitle = {Proceedings of Edu Compugraphics 97}, year = {1997}, month = {12}, pages = {133-139}, note = {ISBN 972-8342-02-0}, }
Edgar R. Weippl and Viesturs Kaugers, "Recent developments in model-driven architecture and security," in NA, 1900. BibTeX

@INPROCEEDINGS{Kaugers_Recent_developments_in_model_d_2010, Author = {{Edgar R.} Weippl and Viesturs Kaugers}, title = {Recent developments in model-driven architecture and security}, booktitle = {NA}, year = {1900}, month = {NA}, abstract = {Security is definitely one of the most important aspects in business information systems. This aspect is strongly related to costs, risks and reputation of organization. Currently innovative way to develop software is offered by model-driven architecture. This architecture uses models and transformations to generate executable code. Along with model-driven architecture there is one more approach based on mentioned methodology for developing secure systems. its called model-driven security. It uses the same principles as model-driven security but also introduces new ones like special languages for modeling security requirements, frameworks for building secure systems and means to define security policies. This paper describes current situation, presents overview of topical and perspective model-driven architecture and security developments and gives conclusions on the subject.}, note = {Unpublished yet}, }