SBA Research is a research center for Information Security funded partly by the national initiative for COMET Competence Centers for Excellent Technologies. Within a network of more than 70 companies, 15 Austrian and international universities and research institutions, and many additional international research partners we jointly work on research challenges ranging from organizational to technical security to strengthen Europe’s Cybersecurity capabilities.
ISIS @ TU Wien IAIK @ TU Graz DKE @ Uni Wien NM @ WU Wien FH St. Pölten AIT


Start Secure 2015 – die Finalisten

Die TOP 5 des Ideenwettbewerbs “Start Secure 2015”, welcher von SBA Research, dem Bundesministerium für Inneres, der futurezone sowie dem Kuratorium Sicheres Österreich in den letzten Wochen veranstaltet wurde, stehen fest: TOP 5 in der Futurezone

Die Start-ups werden ihre Ideen und Konzepte im Rahmen der Veranstaltung “Start me up” am Donnerstag, den 12. November, um 18.00 Uhr in der Österreichischen Computer Gesellschaft (Wollzeile 1, 1010 Wien) vorstellen. Zum Event & zur Anmeldung

Der Sieger des Wettbewerbs wird am 19. November beim futurezone Award präsentiert.

Paper accepted @ Euro S&P 2016

Our paper titled “NavigaTor: Finding Faster Paths to Anonymity” has been accepted for publication at Euro S&P 2016. 29 out of 168 submissions were accepted, 17% acceptance rate. The 1st IEEE European Symposium on Security and Privacy will be held on March 21-24, 2016 in Saarbrücken, Germany.

From the abstract: In this paper we propose and evaluate methods to measure and improve performance in the Tor network by using active Round-Trip-Time (RTT) measurements as estimator for the quality of Tor circuits. To estimate the quality of circuits for future traffic, we use a-priori information of the distribution of RTT values, allowing slow circuits to be discarded before having negative impact on user experience. Using NavigaTor, our high performance measurement software which includes a custom Tor path generator, we are the first to conduct large-scale performance measurements on the live Tor network, building millions of circuits within days, without stressing the network. As part of our study, we conduct several experiments from PlanetLab on the live Tor network to analyze the trade-off between the quality of protection and the quality of service. We compare our Circuit-RTT method to the current state-of-the-art method Circuit Build Time (CBT) and the more recently proposed congestion-aware scheme, finding that the congestion-aware scheme in its original design does not achieve any improvement on the current Tor network and that Circuit-RTT improves latency and throughput compared to CBT.

Peter Kieseberg @ 5th KIRAS Fachtagung

Today Peter Kieseberg (SBA Research) presented the results of the SCUDO-Project together with Alexander Szönyi (Thales Austria) and Wolfgang Rosenkranz (Repuco) at the 5th “KIRAS Fachtagung” in the Austria Trend Hotel Savoyen Vienna. This project was focused on the development of a training process for defence simulation trainings in the area of critical infrastructures, including the development of an out-of-the-box training kit and tools for managing distributed exercises.

SCUDO in the press: APA

Aaron Zauner @ RTR Workshop

Aaron Zauner presents the results of Internet-wide scans, that SBA has conducted to assess the current status of e-mail security, during the RTR Workshop on 5th November 2015.

The program can be found here.

Dimitris Simos @ ISSRE 2015

Dimitris Simos gives a talk on November, 3rd about ” Exciting FPGA Cryptographic Trojans using Combinatorial Testing”, joint work with Paris Kitsos (TEI of Western Greece), Dimitris. E. Simos (SBA Researh), Jose Torres-Jimenez (CINVESTAV-Tamaulipas) and Artemios Voyiatzis (SBA Research). ISSRE 2015 takes place from November 2nd to November 5th, 2015 in Gaithersburg, MD, USA at NIST. ISSRE is one of the leading conference for software reliability and testing. The results of this work establish a new research field for combinatorial testing and hardware malware detection.

SBA Research @ IT Sec-X, DeepSec and BSidesVienna

Members of SBA Research will be presenting at numerous upcoming national and international security conferences here in Austria.

IT Sec-X is the annual security exchange event of the FH St. Pölten and will take place on November 6th. Wilfried Mayer, Philipp Reisinger and Peter Kieseberg will give presentations on their work. You can find an overview about all our talks here.

DeepSec is a professional security conference in Vienna, and will take place mid of November. Martin Schmiedecker will present current trends in improving the forensic process, and scaling the methods for conducting forensic analysis to up to hundreds or more Computers (November 20, 2015). You can find the program here.

BSidesVienna is a community-driven instance of the B Sides movement and will take place right after Deepsec on November 21st. Sebastian Neuner, Bernhard Garn, Dimitris Simos and Martin Schmiedecker will present their work there. You can find the full schedule here.

Paper on TLS usage for all email protocols, IPv4-wide is online

Today we’ve published our paper on TLS use in e-mail protocols (SMTP, IMAP, POP..) on the Internet. Our paper and the corresponding dataset are now publicly available, you can find the paper here. Our dataset is published at

Over the time of three months we conducted more than 10 billion TLS handshakes, and are thus the first in the field to draw a comprehensive picture across all email protocols in use today. We find that email submission and transmission are inherently less secure compared to HTTPS. The usage of depreciated ciphers and plaintext fallback mechanisms are non-trivial problems to solve since we as a society heavily depend on email. We also show in the paper that big players like Google, Microsoft and Yahoo can easily continue to lead the way by depreciating insecure transmission mechanisms.

By continuing to use the site, you agree to the use of cookies. more information

The cookie settings on this website are set to "allow cookies" to give you the best browsing experience possible. If you continue to use this website without changing your cookie settings or you click "Accept" below then you are consenting to this.