SBA Research is a research center for Information Security funded partly by the national initiative for COMET Competence Centers for Excellent Technologies.
Bernhard Garn and Dimitris Simos from SBA’s MaTRIS research group (https://matris.sba-research.org/) join the 6th Symposium and Bootcamp on the Science of Security (HotSoS) (https://cps-vo.org/group/hotsos), April 2-3 in Nashville, Tennessee. Bernhard and Dimitris also present their paper ‘Browser Fingerprinting using Combinatorial Sequence Testing’ (Bernhard Garn (SBA… Read More
Edgar Weippl gives a talk at the Workshop: Autonomous and Remotely Operated Systems: Benefits and Challenges to Nuclear Security hosted by WINS (World Insitute for Nuclear Security) on April 3, 2019. More information… Read More
Wilfried Mayer presenting “Measuring Cookies and Web Privacy in a Post-GDPR World” (Adrian Dabrowski, Georg Merzdovnik, Johanna Ullrich, Gerald Sendera, Edgar Weippl) at the Passive and Active Measurement Conference (PAM) 2019 in Puerto Varas,… Read More
Bernhard successfully defended his Master Thesis “Algebraic Methods for Experimental Design Theory” advised by Dimitris E. Simos at the Faculty of Mathematics and Geoinformation of TU Vienna. Bernhard gave an excellent presentation.
Last weekend SBA hosted the CTF Team “We_0wn_Y0u” (https://w0y.at) for another round of iCTF (International Capture the Flag), organized by UCSB. After a bumpy start, they were able to secure the 2nd place in the competition. Congratulations also to Bushwhackers and [SPbCTF] Kappa, for scoring 1st… Read More
Rethink Cybersecurity (hosted by SBA and Anovis) took place on March 14, 2019 as a co event of the 2019 Vienna Cyber Security Week. The session brought together over one hundred decision makers in business, research and government. The agenda featured a total of eight talks and panels on… Read More
Alexei Zamyatin has a talk on “Decentralized Mining Pools: Security and Attacks” accepted at the Breaking Bitcoin Conference. The 2019 conference takes place in Amsterdam, from 8-9 June. Read More
You are cordially invited to join Ulrich Habock´s talk on Friday, March 15, 4:00 pm @ SBA Research. Title: Anonymous Credentials for the Cloud, Revisited. Abstract: In an attribute-based credential (ABC) sys- tem, users obtain a digital certificate on their personal attributes, and can later prove possession of… Read More
Cyber attacks are all over the media and keep putting Austria´s digitization at risk. Global cyber crime and digital insecurities affect society and economy. Who will defend our connected systems in the future, and how will a possible defense look like? How can cyber security be implemented in order to… Read More
Over 100 software developers received a good amount of practical advice at the first edition of sec4dev conference + bootcamp. Above all they learned how to include security in their process from day 1. Futurezone article on sec4dev 2019
Together with sipgate and ISMK Stralsund, Gabriel Gegenhuber, researcher at SBA Research and University of Vienna, and Michael Pucher, researcher at SBA research, discovered and investigated a vulnerability in the Voice of LTE (VoLTE) stack that is broadly used within MediaTek-based smartphones. ∞
In the Mediatek modem, there is a possible system crash due to a missing bounds check. This could lead to remote denial of service, if a UE has connected to a rogue base station controlled by the attacker, with no additional execution privileges needed. User interaction is not needed for exploitation. ∞