Floragasse 7 – 5th floor, 1040 Vienna

SBA Research is a research center for Information Security
funded partly by the national initiative for COMET Competence Centers for Excellent Technologies.

Recent News:

CT Competition at IWCT 2022

On April 4, 2022, a combinatorial testing (CT) tool competition was held for the first time at the premier workshop on CT, IWCT 2022, that evaluated the performance of tools capable of generating covering arrays (CAs), the principal mathematical structure used in CT. The… Read More

Professional Services goes ISO 27001

In February, SBA Research Professional Services went trough an Audit process for our Information Security Management System (ISMS) according to ISO/IEC 27001:2013. The audit was conducted by the OCG. Read More

Conference Paper: How much is the fork?

The conference paper “How much is the fork? Fast Probability and Profitability Calculation during Temporary Forks” will be presented at the 1ST INTERNATIONAL CRYPTOASSET ANALYTICS WORKSHOP (CAAW) on April 25th. Title How much is the fork? Fast Probability and Profitability Calculation during Temporary Forks Authors Aljosha Judmayer , Nicholas Stifter… Read More

Press Release: Vulnerability in Reverse Vending Machines

Researchers were able to redeem fraudulent receipts Glass, plastic, cans: The announcement[1] of the Austrian government to introduce a deposit on plastic bottles and beverage cans in 2025[2] has pushed the topic of reverse vending back into the spotlight. As a tried and tested method for… Read More

LivestockSense – Project Update

In cooperation with our partners from seven countries, we are proud to support the ongoing research on PLF technologies. See more about our latest update to the project here: LivestockSense – a new technology as the future of agriculture More infos about the project LivestockSense… Read More

Journal Article: “In-Parameter-Order strategies for covering perfect hash families” by MATRIS research group

Michael Wagner and Dimitris E. Simos from the MATRIS research group published an article for the Elsevier Applied Mathematics and Computation Journal. Generating optimal covering arrays is a very challenging task where asides its theoretical value has huge impact in software testing, when such mathematical structures are translated to software artifacts. Read More

Safer Internet Day 2022 – Together for a better internet

Today is Safer Internet Day! To raise awareness on the significance of how to navigate the web safely two excellent projects tackle the problem of security training and awareness from a different angle.   Cyber Security Quiz Breaking down essential security topics applying the concepts of microlearning, gamification ,and… Read More

Security Advisory: Shibboleth Identity Provider OIDC OP Plugin 3.0.3 or below Server-Side Request Forgery (CVE-2022-24129)

Shibboleth Identity Provider OIDC OP plugin 3.0.3 or below is prone to a server-side request forgery (SSRF) vulnerability due to an insufficient restriction of the request_uri parameter. This allows unauthenticated attackers to interact with arbitrary third-party HTTP services. Full security advisory: https://github.com/sbaresearch/advisories/tree/public/2022/SBA-ADV-20220127-01_Shibboleth_IdP_OIDC_OP_Plugin_SSRF Credits David Gnedt… Read More

Journal Article: “Verifying compliance in process choreographies: Foundations, algorithms, and implementation” by Walid Fdhila

Title Verifying compliance in process choreographies: Foundations, algorithms, and implementation Authors Walid Fdhila, David Knuplesch, Stefanie Rinderle-Ma, Manfred Reichert Journal Information Systems (Link to article) Abstract The current push towards interoperability drives companies to collaborate through process choreographies. At the same time, they face a jungle of continuously… Read More