SBA Research is a research center for Information Security funded partly by the national initiative for COMET Competence Centers for Excellent Technologies. Within a network of more than 70 companies, 15 Austrian and international universities and research institutions, and many additional international research partners we jointly work on research challenges ranging from organizational to technical security to strengthen Europe’s Cybersecurity capabilities.
ISIS @ TU Wien IAIK @ TU Graz DKE @ Uni Wien NM @ WU Wien FH St. Pölten AIT

SBA Research moved to a new location!

Our new address: Floragasse 7, 1040 Vienna, Austria Effective since: June 25, 2019 More at:


5th Security Meetup by SBA Research, 01.08.2019!

6 Application Security Design Patterns You Should Know

In this Meetup, we will have a look at 6 application security design patterns that, if considered early, will make your life easier in terms of securing your application.

More information!

IMPACT 2019 @SBA-Research

We want to thank all our guests and colleagues for a great time
@ IMPACT 2019!
A more detailed post will follow soon.

SBA Research @Angular_Meetup

We had a great time @AngularVienna Meetup (Thursday 11.07.2019)! Thomas Konrad (security_rockstar) held a great talk about “Web Application Security for Frontend Devs”.

Next Meetup, 01.08.2019 (18:00)
6 Application Security Design Patterns You Should Know
Share and spread the word of our upcoming event!

You find more information’s regarding our meetup activities here:
Security Meetup by SBA Research

Bernhard Garn and Dimitris Simos @ IEA/AIE 2019

Bernhard Garn and Dimitris Simos from SBA’s MaTRIS research group ( join the 32nd International Conference on Industrial, Engineering & Other Applications of Applied Intelligent Systems (IEA/AIE 2019), July 9-11, 2019 (

Bernhard and Dimitris also present their paper ‘A Fault-Driven Combinatorial Process for Model Evolution in XSS Vulnerability Detection’ (Bernhard Garn (SBA Research, Austria), Marco Radavelli (University of Bergamo, Italy), Angelo Gargantini (University of Bergamo, Italy), Manuel Leithner (SBA Research, Austria) and Dimitris E. Simos (SBA Research, Austria)), which proposes an iterative process that evolves an input model for security testing.

The 32nd International Conference on Industrial, Engineering & Other Applications of Applied Intelligent Systems continues the tradition of emphasizing applications of applied intelligent systems to solve real-life problems in all areas. These areas include: engineering, science, industry, automation & robotics, business & finance, medicine and biomedicine, bioinformatics, cyberspace, and human-machine interactions. IEA/AIE 2019 has a special focus on automated driving, autonomous systems, robotics, and AI in tourism.

Thomas Konrad gives Talk at Angular Meetup on July 11

Thomas Konrad speaks about Webapp Security for JavaScript Frontend Engineers at the upcoming Angular Meetup.

He will briefly cover the most important security topics that have touchpoints with frontend development: Same-Origin Policy (SOP), Cross-Origin Resource Sharing (CORS), Cross-Site Scripting (XSS), Content Security Policy (CSP), and Websocket Security. For each topic, he will also point out a concise checklist of what to consider when coding.

Registration and Details

Martina Lindorfer becomes Key Researcher at SBA

Martina is a tenure-track Assistant Professor in the Security and Privacy Group at TU Wien.

Her research focuses on systems security and privacy, with a special interest in static and dynamic malware and app analysis, as well as mobile system vulnerabilities.

Read more

Rudolf Mayer gives a talk on Adversarial Machine Learning at the Vienna Deep Learning Meetup

As Machine Learning is increasingly integrated in many applications, including safety critical ones such as autonomous cars, robotics, visual authentication and voice control, wrong predictions can have a significant influence on individuals and groups. Advances in prediction accuracy have been impressive, and while machine learning systems still can make rather unexpected mistakes on relatively easy examples, the robustness of algorithms has also steadily increased.

However, many models, and specifically Deep Learning approaches and image analysis, are rather susceptible to adversarial attacks. These attacks are e.g. in the form of small perturbations that remain (almost) imperceptible to human vision, but can cause a neural network classifier to completely change its prediction about an image, with the model reporting a very high confidence on the wrong prediction. A strong form of attack are so-called backdoors, where a specific key is embedded into a data sample, to trigger a pre-defined class prediction in a controlled manner.

This talk will give an overview on various attacks (backdoors, evasion, inversion), and will discuss how they can be mitigated.

Go to the Deep Learning Meetup website for the full schedule.

Johanna Ullrich gives ORF Interview about Vienna Library Data Breach

By reason of the Vienna library’s data breach, senior researcher Johanna Ullrich has been interviewed by Austrian Broadcasting (ORF).

You can see the interview in today’s Wien heute at 7 p.m. on ORF2.
ORF2 Program

Read more

Bernhard Garn @ Algebra Seminar TU Mathematics

Bernhard Garn ( from SBA’s MaTRIS research group ( gave an invited talk titled “Algebraic Modelling of Covering Arrays” in the seminar of the algebra research group of the Institute of Discrete Mathematics and Geometry of TU Vienna.

The talk focused on how algebraic techniques can be used to create and reason about covering arrays, which are mathematical structures that are used in a branch of software testing called combinatorial testing to create test sets and concluded with a brief introduction to combinatorial testing. The talk was well received and attended by 10 faculty members from TUW.

By continuing to use the site, you agree to the use of cookies. more information

The cookie settings on this website are set to "allow cookies" to give you the best browsing experience possible. If you continue to use this website without changing your cookie settings or you click "Accept" below then you are consenting to this.