SBA Research is a research center for Information Security funded partly by the national initiative for COMET Competence Centers for Excellent Technologies.
Dr. Raghu Kacker, Mathematical and Computational Sciences Division (MCSD), Information Technology Laboratory (ITL),National Institute of Standards and Technology (NIST), USA gives a talk about “Introduction to Advanced Combinatorial Testing System “. Friday, April 10th, 2015, 10:15-10:30.
As part of an ongoing project on increasing TLS security we are today announcing https://tlscompare.org This webpage is about evaluating a massive extension of the ruleset for HTTPSEverywhere, a browser extension for Chrome and Firefox which switches user traffic from… Read More
As part of a business trip to Austria and Germany, SBA Research welcomed guests from the Ministry of Science and Technology, the Information and Communication Security Technology Center and the National Applied Research Laboratories, Taiwan, at our research institution. Read More
Dr. Stefan Brunthaler, Department of Computer Science, Donald Bren School of Information & Computer Sciences, USA gives a talk about “Large-scale Automated Software Diversity – Programming Language Technology to Enhance System Security”. The Abstract can be found here. Thursday, March 26, 2015, 10:00-11:00 This event ist hosted by the IEEE… Read More
Zum zweiten Mal in Folge, gewann das CTF-Team (We 0wn You Lite) unter der Führung von SBA und FH St.Pölten (sowie je einem Gast aus Östrreich, Deutschland und Indien) den Hackerwettbewerb “Packetwars” im Rahmen der Troopers 2015. Simuliert wurde ein Car-2-Car Netzwerk und eine darin grassierende Malware (“Gridlock”). Das ganze… Read More
Peter defended his thesis (“Database Forensics: Towards a forensic-aware database solution”) successfully and graduated with distinction. Congratulations! Abstract… Read More
Peter Kieseberg and Sebastian Schrittwieser give a talk about “iAnalyze – Automated security analysis of iOS apps” at the “Hacking Mobiles Vol. 2.1 – MMA: Mobile Malicious Apps” workshop, which is held at Troopers15 conference in Heidelberg, Germany. Workshop Agenda Troopers 2015
“Wirklich gute Alternativen zu Captchas gibt es noch nicht – manchmal werden stattdessen Rechenaufgaben gestellt, für Smartphones könnten auch Audio-Captchas besser geeignet sein. Dahingehend müsste noch mehr geforscht werden”. Artikel Edgar Weippl in der pressetext Nachrichtenagentur, www.pressetext.com
Together with sipgate and ISMK Stralsund, Gabriel Gegenhuber, researcher at SBA Research and University of Vienna, and Michael Pucher, researcher at SBA research, discovered and investigated a vulnerability in the Voice of LTE (VoLTE) stack that is broadly used within MediaTek-based smartphones. ∞
In the Mediatek modem, there is a possible system crash due to a missing bounds check. This could lead to remote denial of service, if a UE has connected to a rogue base station controlled by the attacker, with no additional execution privileges needed. User interaction is not needed for exploitation. ∞