SBA Research is a research center for Information Security funded partly by the national initiative for COMET Competence Centers for Excellent Technologies. Within a network of more than 70 companies, 15 Austrian and international universities and research institutions, and many additional international research partners we jointly work on research challenges ranging from organizational to technical security to strengthen Europe’s Cybersecurity capabilities.
ISIS @ TU Wien IAIK @ TU Graz DKE @ Uni Wien NM @ WU Wien FH St. Pölten AIT


sbaPRIME & Start me Up! – 12. November 2015

Beim sbaPRIME Kick-Off Event am 12. November 2015 wurden neben dem Überblick über die Angebote, Möglichkeiten und Vorteile einer sbaPRIME – Mitgliedschaft, aktuelle Themen aus dem Informationssicherheitsbereich präsentiert. Die Keynote von Ira Winkler, Irari Report, USA zu „The Sophisticated Attack Myth: Hiding Unsophisticated Security Programs” hat den Nachmittag eingeleitet.

Haben Sie Interesse an einer sbaPRIME Mitgliedschaft?

Den Info-Folder von sbaPRIME finden Sie hier. Die Präsentationen des Nachmittags finden Sie hier.

Anschließend an das sbaPRIME Kick-Off präsentierten wir gemeinsam mit dem BM.I, dem KSÖ und der futurezone und im Beisein von Bundesministerin für Inneres Johanna Mikl-Leitner die fünf Finalisten des StartSecure 2015 Wettbewerbs bei Start me Up!

SBA Research Accelerator powered by WhatAVenture is now online

Are you passionate about innovative information security technologies and ready to revolutionize an existing market? Then seize this unique opportunity and start & develop your own company in close cooperation with an established industry partner and inspiring mentors. Check out the SBA Research Accelerator in cooperation with WhatAVenture and apply now!

Web server secured? Good, now let’s talk about e-mail

The Register reports on our paper on TLS use in e-mail protocols (SMTP, IMAP, POP) on the Internet. Ivan Ristic pointed to the work in the newsletter

CISA Project on Situational Awareness started

The project CISA represents a consistent fusion of existing research activities in the field of national cyber security, in order to develop a process to establish cyber-situational awareness within a scientifically sound concept. The researchers in the CISA project will work in close cooperation with national stakeholders to create a holistic definition of the term cyber-situational awareness (both military and civilian), describe the creation and utilization processes, and combine (existing) tools to new instruments. At the same time, the involvement of Austrian legal experts is crucial, in order to ensure the real-world applicability of the newly developed solutions. Ultimately, these efforts will be evaluated and assessed in a demonstrator during a cyber exercise.

This project is funded by the FFG through the KIRAS program, the consortium is led by AIT. In case of questions, please contact Peter Kieseberg.

SBA Research @ IT Sec-X

SBA Research was presented at the IT Sec-X, the annual security exchange event of the FH St. Pölten, which took place on November 6th 2015.  Wilfried Mayer gave a talk about Testing TLS in the E-mail Ecosystem at Large and Peter Kieseberg takled about “Directions in Database Forensics”. Philipp Reisinger presented his study about information security in Germany, Austria and Switzerland 2015, which has been conducted within the framework of his master thesis.

Detailed information about the program can be found here.

Gruppenfoto IT Sec-X Peter Kieseberg @ IT Sec-X

Start Ups im Bootcamp

Die fünf Finalisten des Wettbewerbs Start Secure 2015 haben sich in den letzten Tagen bei einem dreitägigen Bootcamp auf ihren entscheidenden Pich vor der Jury vorbereitet. Der Pitch vor einer prominent besetzten Jury ging am letzten Tag der Workshop-Reihe über die Bühne, der Öffentlichkeit werden die TOP 5 Start Ups beim Start me Up! Event am 12. November 2015, im Beisein von Bundesministerin für Inneres Johanna Mikl-Leitner, präsentiert.

„Wir sind stolz fünf äußerst professionelle Unternehmen gefunden zu haben und hoffen ihnen mit diesem Wettbewerb eine Möglichkeit zur Weiterentwicklung und eine Bühne für ihre Ideen geboten zu haben.“ Andreas Tomek in der Futurezone.

Artikel in der Futurezone

Johanna Ullrich @ RAID 2015

Johanna presented her paper “Privacy is Not an Option: Attacking the IPv6 Privacy Extension” at the 18th International Symposium on Research in Attacks, Intrusions and Defenses. RAID 2015 took place from November, 2nd – 4th, 2015 in Kyoto, Japan. RAID is ranked as A conference in CORE.


Johanna @ RAID 2015 Johanna @ RAID 2015

Start Secure 2015 – die Finalisten

Die TOP 5 des Ideenwettbewerbs “Start Secure 2015”, welcher von SBA Research, dem Bundesministerium für Inneres, der futurezone sowie dem Kuratorium Sicheres Österreich in den letzten Wochen veranstaltet wurde, stehen fest: TOP 5 in der Futurezone

Die Start-ups werden ihre Ideen und Konzepte im Rahmen der Veranstaltung “Start me up” am Donnerstag, den 12. November, um 18.00 Uhr in der Österreichischen Computer Gesellschaft (Wollzeile 1, 1010 Wien) vorstellen. Zum Event & zur Anmeldung

Der Sieger des Wettbewerbs wird am 19. November beim futurezone Award präsentiert.

Paper accepted @ Euro S&P 2016

Our paper titled “NavigaTor: Finding Faster Paths to Anonymity” has been accepted for publication at Euro S&P 2016. 29 out of 168 submissions were accepted, 17% acceptance rate. The 1st IEEE European Symposium on Security and Privacy will be held on March 21-24, 2016 in Saarbrücken, Germany.

From the abstract: In this paper we propose and evaluate methods to measure and improve performance in the Tor network by using active Round-Trip-Time (RTT) measurements as estimator for the quality of Tor circuits. To estimate the quality of circuits for future traffic, we use a-priori information of the distribution of RTT values, allowing slow circuits to be discarded before having negative impact on user experience. Using NavigaTor, our high performance measurement software which includes a custom Tor path generator, we are the first to conduct large-scale performance measurements on the live Tor network, building millions of circuits within days, without stressing the network. As part of our study, we conduct several experiments from PlanetLab on the live Tor network to analyze the trade-off between the quality of protection and the quality of service. We compare our Circuit-RTT method to the current state-of-the-art method Circuit Build Time (CBT) and the more recently proposed congestion-aware scheme, finding that the congestion-aware scheme in its original design does not achieve any improvement on the current Tor network and that Circuit-RTT improves latency and throughput compared to CBT.

By continuing to use the site, you agree to the use of cookies. more information

The cookie settings on this website are set to "allow cookies" to give you the best browsing experience possible. If you continue to use this website without changing your cookie settings or you click "Accept" below then you are consenting to this.