SBA Research is a research center for Information Security funded partly by the national initiative for COMET Competence Centers for Excellent Technologies. Within a network of more than 70 companies, 15 Austrian and international universities and research institutions, and many additional international research partners we jointly work on research challenges ranging from organizational to technical security to strengthen Europe’s Cybersecurity capabilities.
ISIS @ TU Wien IAIK @ TU Graz DKE @ Uni Wien NM @ WU Wien FH St. Pölten AIT


ACSAC 2011: Social Snapshots – Digital Forensics for Online Social Networks

We are going to present our social snapshot forensic tool at the Annual Computer Security Applications Conference (ACSAC) 2011.

Recently, academia and law enforcement alike have shown a strong demand for data that is collected from online social networks. In this work, we present a novel method for harvesting such data from social networking websites. Our approach uses a hybrid system that is based on a custom add-on for social networks in combination with a web crawling component. The datasets that our tool collects contain profile information (user data, private messages, photos, etc.) and associated meta-data (internal timestamps and unique identifiers). These social snapshots are significant for security research and in the field of digital forensics. We implemented a prototype for Facebook and evaluated our system on a number of human volunteers. We show the feasibility and efficiency of our approach and its advantages in contrast to traditional techniques that rely on application-specific web crawling and parsing. Furthermore, we investigate different use-cases of our tool that include consensual application and the use of sniffed authentication cookies. Finally, we contribute to the research community by publishing our implementation as an open-source project.

You can find the paper here: Social Snapshot ACSAC11 preprint

Today, Edgar Weippl speaks in Zurich on Cloud Security and takes part in a discussion (more…)

Roundtable: EU-Informationsveranstaltung “Rechtsinformatik”

Edgar Weippl takes part in the round table on electronic identities.
9.00 — 16.30, Haus der Europäischen Union
Wipplingerstraße 35, Vienna

Future Network Zurich: IT-Trends

Edgar Weippl presents SBA’s research on cloud security in Zurich at Future network’s meeting.

Talk on Technical Aspects of Privacy at the Forum Privacy of the Austrian Computer Society

Edgar Weippl gives a presentation of technical options to provide privacy at the Forum Privacy of the Austrian Computer Society. (

CCC – Cloud Computing – Himmelhohe Erwartungen oder doch nur trendiges Nebelreißen?

Der Consultants Competence Circle ist eine Expertendiskussion zu aktuellen Themen aus Wirtschaft und Beratung. Edgar Weippl präsentiert Herausforderungen im Bereich der Informationssicherheit im Rahmen der Expertendiskussion.
29.8., 18 Uhr, Schloss Hunyadi, Schlossgasse 6, Maria Enzersdorf. Veranstaltet von der WKO-NÖ / UBIT.

Japan – Austria Research Workshop

On ARES’ last day, an informal workshop on research collaborations was held. Participants from Japan were Prof. Dr. Ryoichi Sasaki
Tokyo Denki University, Prof. Dr. Noboru Sonehara, National Institute of Informatics, Prof. Dr. Isao Echizen, National Institute of Informatics, Dr. Sven Wohlgemuth, National Institute of Informatics.

ARES Conference

The ARES conference just started…

Usenix Security 2011: Dark Clouds on the Horizon: Using Cloud Storage as Attack Vector and Online Slack Space

Usenix Security 2011: Dark Clouds on the Horizon: Using Cloud Storage as Attack Vector and Online Slack Space

Abstract Full paper

reports on Computerworld, Diogo’s blog, more blogs.

Schwachstelle in Konfiguration von UPC Routern

By continuing to use the site, you agree to the use of cookies. more information

The cookie settings on this website are set to "allow cookies" to give you the best browsing experience possible. If you continue to use this website without changing your cookie settings or you click "Accept" below then you are consenting to this.