Artificial Intelligence has recently made great progress in many different applications including face recognition and image classification. In many areas of expertise these AIs even exceed human performances. Something they however fail to do is answer one simple question: why? Why does an AI what it does, what is the underlying reasoning behind its decisions? Explainability poses an important cahllenge especially whenn fields like medicine and law are concerned. New regulations would require future AI to explain itself.

Watch Andreas Holzinger step in for daughter Katharina representing SBA at the 2018 AI Congress:

Video

Paper accepted at 12th EAI International Conference on Performance Evaluation Methodologies and Tools (VALUETOOLS) 2019: “Uncle Traps: Harvesting Rewards in a Queue-based Ethereum Mining Pool”, Sam M. Werner and Paul J. Pritz and Alexei Zamyatin and William J. Knottenbelt
Pre-Print
Website

Talk accepted at Community Ethereum Development Conference (EDCON) 2019, Sydney, Australia

Website

Dietmar Winkler, Bernhard Brenner and Matthias Eckhart represented the Christian Doppler Laboratory for Security and Quality Improvement in the Production System Lifecycle (CDL-SQI) at the Software Quality Days 2019.

“Früher war Sicherheit einfach Firewalls, und fertig.” Thomas Konrad berichtet im DigitalMondayBlog über einfache Fehler mit tausendfacher Auswirkung und die Verschmelzung zweier Welten.

Ganzer Artikel

sec4dev: Konferenz und Bootcamp

Um sich genau diesen Themen zu widmen, hat SBA Research, die sec4dev für Softwareentwickler*Innen geschaffen: Von 25. bis 27. Februar 2019 verwandelt sich der Campus Gußhaus der TU Wien in einen Hotspot für regen Austausch und Weiterbildung rund um das Thema sichere Softwareentwicklung. Die sec4dev-Konferenz bietet praxisorientierte Vorträge, Workshops und ganztägige Bootcamps zu den Bereichen sicheres Coding, sicherer Betrieb, Security-Testing und vieles mehr. Die Teilnehmer*Innen können dabei direkt auf das Wissen und die Erfahrung von Sicherheitsexpert*Innen, Softwareentwickler*Innen und Softwarearchitekt*Innen zugreifen.

What better way to start the New Year than with three new Bridge Projects.

Wellfort is about secure storage, a trusted analysis environment, and combining data from different companies for analysis while respecting user privacy.

KnoP-2D (lead SCCH) is about creativity and AI. SBA will look at distributed learning and privacy as well as access control mechanisms that should evolve automatically.

ISaFe is about injecting security features into constrained embedded firmwares.

“If HTTPS Were Secure, I Wouldn’t Need 2FA – End User and Administrator Mental Models of HTTPS” by Katharina Krombholz (CISPA Helmholtz Center (i.G.)), Karoline Busse (University of Bonn), Katharina Pfeffer (SBA Research), Matthew Smith (University of Bonn) and Emanuel von Zezschwitz (University of Bonn) has been accepted at the 40th IEEE Symposium on Security and Privacy (IEEE S&P 2019). The paper investigates users’ and administrators’ mental models of HTTPS and how these interfere with secure configurations and usage behavior. The conference will be held from May 20-22, 2019 in San Francisco, CA.