SBA Research is a research center for Information Security funded by the national initiative for COMET Competence Centers for Excellent Technologies. We bring together 25 companies, 4 Austrian universities, one university of applied sciences, a non-university research institute, and many international research partners to jointly work on challenges ranging from organizational to technical security.
ISIS @ TU Wien IAIK @ TU Graz DKE @ Uni Wien NM @ WU Wien FH St. Pölten AIT

News

SBA Research @ DBSec 2016

IMG_20160718_132147Artemios G. Voyiatzis presents today our paper “Whom you gonna trust? A longitudinal study on TLS notary services” at the 30th Annual IFIP WG 11.3 Working Conference on Data and Applications Security and Privacy (DBSec 2016) held in Trento, Italy. He is chairing one of the conference’s sessions tomorrow.

DBSec is an annual international conference covering research in data and applications security.

ERCIM News No. 106 – Special Theme coordinated by Edgar Weippl and Fabio Martinelli

The ERCIM News No. 106 has just been published at http://ercim-news.ercim.eu/en106

The Special Theme presents a variety of research results that show the richness and range of Cybersecurity issues and their application domains. This special theme has been coordinated by the guest editors Fabio Martinelli (IIT-CNR) and Edgar Weippl (SBA Research).

Furthermore, SBA Research contributed with the articles “SPLIT: Security Protocol Interaction Testing in Practice” by Dimitris Simos and “On Reducing Bottlenecks in Digital Forensics” by Martin Schmiedecker and Sebastian Neuner.

The issue in pdf.

Countdown for “Security Rockstars”

Submission deadline is 15 July 2016!

Security Rockstars – the European Information Security Start-up Competition  is organized by SBA Research and supported by partners from the public and private sector. The competition’s goal is to find and support innovative ideas and solutions in the area of Information Security. The final pitch takes place in the context of the CCS Conference on 24 October 2016 in Vienna.

PRIZES:security rockstar
First place: 20.000 EUR
Second place: 10.000 EUR
Third place: 5.000 EUR

More information can be found here.
Follow Security Rockstars on Facebook and Twitter

SBA becomes associated partner of the project “SENTER”

SENTER_logoThe “Strengthening European Network Centres of Excellence in Cybercrime” project is funded by the European Commission under Internal Security Fund-Police 2014-2020 (ISFP). The main goal of the project is to create a single point of Reference for EU national Cybercrime Centres of Excellence and develop further the Network of national CoE into well-defined and well-functioning community.

More information can be found here.

SBA joins European Cyber Security Organisation (ECSO)

ecsoThe general objective of the Association is to support all types of initiatives or projects that aim to develop, promote, encourage European cybersecurity. Yesterday, July 5th 2016, the cybersecurity contractual Public-Private Partnership (cPPP) has been signed at the European Parliament of Strasbourg, in presence of the VP Ansip and the Commissioner Oettinger.

More information about ECSO can be found here.

Paper accepted @ ESORICS 2016

The paper “The Beauty or The Beast? Attacking Rate Limits of the Xen Hypervisor” by Johanna Ullrich and Edgar Weippl has been accepted for publication at the 21st European Symposium on Research in Computer Security (ESORICS) which takes place from September, 26th-30th, 2016 in Heraklion, Greece. ESORICS is an A-ranked conference in CORE.

 Abstract

First (ISC)2 SecureAustria with 120 delegates

Today, the one-day conference (ISC)2 SecureAustria, focused on “Securing the virtual organization”, co-organized by the (ISC)2 Austria Chapter and co-hosted by T-Systems Austria & SBA Research was held for the very first time in Vienna.

120 delegates participated in the event, the day provided a diverse and broad range of topics ranging from awareness, organizational and technical aspects within the field of information security.

Find the full agenda here.

SBA-K1 has been granted – new research endeavor ahead

We are happy to report that SBA-K1, our main strategic research endeavor, has been granted continued funding for the period 2017-2025 under the FFG COMET (Competence Centers for Excellent Technologies) K1-Centres program line, with an intermediary evaluation in 2021. This funding will allow us to continue our successful joint research with both our academic and industry partners and we strive to carry on making a difference for academia and our partner companies. We would like to thank all our partners who supported us in the past and we are looking forward to continuing these excellent collaborations.

Read the press release here.
The fact sheet about SBA-K1 can be found here.

Press conference with Minister of Interior Wolfgang Sobotka, KSÖ and SBA: Security Rockstars

Er hoffe auf “frische und unkonventionelle Herangehensweisen an Cybersicherheitsthemen, sagte Innenminister Wolfgang Sobotka (ÖVP) am Mittwoch bei einem Pressegespräch in Wien zu dem vom Innenministerium gemeinsam mit dem  Kuratorium Sicheres Österreich (KSÖ) und SBA Research veranstalteten Start-up-Wettbewerb Security Rockstars: “Start-ups stellen andere Überlegungen an, als etablierte Betriebe.”

Noch rund zwei Wochen lang können Personen und Gründerteams aus ganz Europa ihre Ideen bei dem Sicherheits-Wettbewerb einreichen. Den Siegern winken insgesamt 35.000 Euro Preisgeld sowie  Beratungsleistungen und Hilfestellungen von Experten. 

Read the whole article here: futurezone.at
More about Security Rockstars – apply now until July 15, 2016

Copyright: BMI / Alexander Tuma, 28.06.2016 Wien, Erwin Hameseder, Wolfgang Sobtoka, Andreas Tomek , Pressekonferenz Cyber
Copyright: BMI / Alexander Tuma, 28.06.2016 Wien, Erwin Hameseder, Wolfgang Sobotka, Andreas Tomek , Pressekonferenz Cyber

Dimitris Simos @ Institute for Software Technology, Graz University of Technology

Dimitris Simos is invited to the Graz University of Technology on 20 June 2016 to give a colloquium talk “Combinatorial Methods for Quality Assurance of Secure Software: Recent Results and Challenges Ahead” at the Institute for Software Technology in Graz.

The Abstract can be found here.

How Bitcoin-users tick

Edgar Weippl and Aljosha Judmayr are talking about our study “The Other Side of the Coin: User Experiences with Bitcoin Security and Privacy”, which was published at Financial Crypto 2016.

Read several articles about the topic here: futurezone.at, DerStandard.at, Wirtschaftsblatt, Krone.at, Wiener Zeitung, oe24.at

Markus Klemen moderates the first LSZ Cyber Crime Forum

The first LSZ Cyber Crime Forum will take place on June 14, 2016 at Novomatic Forum, Vienna and deals with the question: “Cyber Crime – a CEO-topic!?!” Markus Klemen leads through the event.

More details and the agenda can be found here.

Cyber Security Lecture given by Prof. Amir Herzberg

Automation Systems Group, SBA Research, and AIT Safety and Security Department are happy to present the “Cyber Security Lecture Series” organizing leading edge talks by international ICT security experts in Austria.

The lecture today is given by Prof. Amir Herzberg, Bar-Ilan University, Israel about “CDN-on-Demand: An Affordable DDoS Defense via Untrusted Clouds”. Abstract

Monday, June 13, 2016, 16.00 – 17.00

This event is hosted by the Vienna ACM SIGSAC Chapter.

Amir Herzberg

(ISC)2 SecureConference for the first time in Austria

SBA Research, T-Systems and the (ISC)2 Chapter Austria are organizing together the first (ISC)2 SecureAustria, which will take place on June 30, 2016.

The conference explores the impact of the rise of the virtual organization on security practice; the solutions that are emerging to tackle this environment; and the lessons being learned within professional practice.

We are looking forward to 10 interesting talks and a networking reception at the end of the day, see the whole agenda here: (ISC)2 SecureAustria

(ISC)2 SecureAustria in the press:
computerwelt.at
monitor.at
all-about-security.de

Dimitris Simos joins the NIST CMVP Programme

Dimitris Simos joined the NIST Cryptographic Module Validation Programme and will contribute to the software module testing group. The main goals of the programme are to research and identify best practices for crypto module testing as well as write specifications for automated testing.

Nimbusec in futurezone.at

Alexander Mitter, nimbusec, and Andreas Tomek, SBA Research, are talking in futurezone.at about the rising number of attacks on company websites, the ideal conditions for current start-ups, and the lacking readiness to assume risks. Nimbusec is last year’s winner of the start-up competition Start Secure which will be held this year under the name Security Rockstars, organized by SBA Research, BM.I and KSÖ.

Read the whole interview here: futurezone.at

SBA Research @ Imagine16

Today Peter Kieseberg from SBA Research gives the keynote at the Digital Networked Data Workshop “Big-Data und Security” at the Imagine16. Furthermore, he will present current research results on data leak protection.

Startup Competition Security Rockstars 2016 organized by SBA Research, BM.I & KSÖ

Security Rockstars 2016 is the European sequel to the Austrian start-up competition Start Secure 2015.

The competition’s goal is to find and support innovative ideas and solutions in the area of Information Security. Submission deadline for proposals is 15 July 2016. Apply now here: http://www.securityrockstars.com/

The final pitch takes place in the context of the CCS conference on 24 October 2016 in Vienna.

Press:
Futurezone.at

Adrian Dabrowski @ MoST 2016

Adrian Dabrowski gives a talk about “Browser History Stealing with Captive Wi-Fi Portals” at the Mobile Security Technologies (MoST) 2016, held as part of the IEEE Computer Society Security and Privacy Workshops, in conjunction with the IEEE Symposium on Security and Privacy in San José.

Abstract: In this paper we show that HSTS headers and long term cookies (such as those used for user tracking) are so prevailing that they allow a malicious Wi-Fi operator to gain significant knowledge about the past browsing history of users. We demonstrate how to combine both into a history stealing attack by including specially crafted references into a captive portal or by injecting them into legitimate HTTP traffic.

More information can be found here.

ITEA2-action DIAMONDS received EUREKA-award

We are proud to announce that the ITEA2-action DIAMONDS where SBA Research participated through the MobseTip project received the prestigious EUREKA-award.

For more information on relevant project aspects please contact Dimitris Simos.