From Monday, 12. October 2015 to Tuesday, 13. October 2015 SBA hosted the ERCIM Fall 2015 Meetings together with the AISBL General Assembly and the joint meeting with Informatics Europe. As a highlight, Zuzana Kukelova received the Cor Baayen Award for her outstanding scientific contributions to the field of computer graphics.
Black Hat, DEF CON, USENIX, Android Security Conference and Gartner Security & Risk Management Summit – the summer of security is almost over.
For those who didn’t have the chance to participate we put together a special event to present the latest news in the world of IT-Security: Adrian Dabrowski, Georg Merzdovnik and Stefan Jakoubi presented the hottest topics of this summer’s big conferences at our last Security Afterworks, which took place on October 1st.
The presentations of the talks can be found here.
The ERCIM News No. 103 has just been published at http://ercim-news.ercim.eu/en103
SBA Research contributed with one article about the SCUDO project:
A Structured Approach to Defence Simulation Training by Peter Kiesberg
Adrian Dabrowski presented the “myth-buster”-session “Hollywood Hacking by SBA Research” at the European Researcher’s Night 2015, which took place on September 25, 2015.
The European Researchers’ Night celebrated its 10th anniversary this year. Events took place in 280 cities across Europe and beyond. In Austria the Researcher’s Night was organized under the name “F.I.T. for Future” by the University of Applied Sciences St. Pölten.
SBA Research aims to establish a Working Group for Data Security and Trust under the umbrella of the Research Data Alliance (RDA). Stefan Pröll, Rudolf Mayer and Peter Kieseberg presented the proposal during the RDA P6 BoF Session, which was held in Paris on 24 September 2015.
Dimitris Simos is invited to University of Texas at Dallas (UTD), Texas, USA on 25 September 2015 to give a colloquium talk at the computer science department which will be held in Conjunction with the IEEE Reliability Society Fall 2015 Student Outreach. The event is organized by Prof. Eric Wong.
Title: Combinatorial Security Testing: Improving Information Security through Combinatorial Testing
Abstract: Over the recent years, a number of combinatorial strategies have been devised to help testers choose subsets of input combinations that would maximize the probability of detecting faults, with combinatorial testing being the most prominent one. Combinatorial testing has been successfully applied for testing (critical) software systems in large organizations and is an already proven method for security testing of large-scale software systems. In this talk, we review recent advances on web application security testing and testing of operating systems and explore the applicability of combinatorial testing to new and promising application domains of information security.
As part of the newly spawned combinatorial security testing project between SBA Research and NIST ACTS project team, we address how combinatorial testing can be applied to (1) ensure proper error-handling of network security protocols and (2) provide the theoretical guarantees for exciting Trojans injected in cryptographic hardware Besides providing the details of the combinatorial models and industry proof-of-concept studies, we also hinder on the technical challenges that need to be solved in the foundations of combinatorial testing. The talk is concluded with some open research problems and directions for future Research.