SBA Research is a research center for Information Security funded partly by the national initiative for COMET Competence Centers for Excellent Technologies. Within a network of more than 70 companies, 15 Austrian and international universities and research institutions, and many additional international research partners we jointly work on research challenges ranging from organizational to technical security to strengthen Europe’s Cybersecurity capabilities.
ISIS @ TU Wien IAIK @ TU Graz DKE @ Uni Wien NM @ WU Wien FH St. Pölten AIT


Tomasz Miksa holds keynote on PKOS19

Tomasz Miksa gave a keynote on “Engaging researchers with research data management through machine-actionable Data Management Plans” during the “Pomorska Konferencja Open Science (PKOS)” in Gdańsk, Poland.

In his talk he discussed challenges in rolling out systems supporting open science and explained why machine-actionable Data Management Plans play a central role in creating value for all stakeholders involved in the research data lifecycle.

Young Researchers´Day @ ICT Security Conference 2019

A group of dedicated young researchers presented their work in the course of the ICT Security Conference on October 1-2, 2019. Katharina Pfeffer (SBA) introduced her research in the area of Usable Security.

The conference counting a total of 2500 attendees once more showed that cyber attacks present a great threat to economy, infrastructure, democracy and the apparatus of state. The YRD successfully demonstrates ongoing efforts to ensure security in all areas.

Read more

SBA @ 2nd Conference on Urban Resilience

The 2nd Conference on Urban Resilience, organized by the Czech Informatics, Robotics and Cybernetics Institute (CIIRC), targeted the interdisciplinary approach of fostering technological innovation in an emerging field such as Resilience.

In regard to the specific focus on increasing the urban capabilities to tackle present and future challenges, a diverse mix of industrial, educational, political and scientific representatives attended the two-day conference. Vaclav Hlavac, Miroslav Svitek,Leon Rothkrantz and numerous other speakers described the role of AI, IoT and Blockchain in this field and discussed the potential as well as the threats of such technologies. The industrial point of view was highlighted by presenters such as Jean-Louis Champseix, Peter C. Young and Jean-Baptiste Burtscher, who talked about the positive side-effects of successful attempts to include resilient thinking into management, processing or distribution. Researchers like Massimo Guarascio, Rene Lindner or Eric Rigaud presented the potential of standardization methods and theoretical and practical limitations of existing infrastructures. Speakers in the area of cybersecurity, among them Otto Sladek or Pavlina Blahova, pressed on the necessity of software-based solutions for modern social-ecological challenges. Overall, the conference helped us to establish various contacts in an uttermost diverse field and to initiate talks about future collaboration possibilities.

Tomasz Miksa @ IEEE eScience 2019

Tomasz Miksa  and Bernhard Gößwein presented their paper on Data identification and process monitoring for reproducible earth observation research at the 15th IEEE eScience conference in San Diego.

Earth observation researchers use specialised computing services for satellite image processing offered by various data backends. The source of data is often the same, for example Sentinel-2 satellites operated by Copernicus, but the way how data is pre-processed, corrected, updated, and later analysed may differ among the backends. Backends often lack mechanisms for data versioning, for example, data corrections are not tracked. Furthermore, an evolving software stack used for data processing remains a black box to researchers. Researchers have no means to identify why executions of the same code deliver different results. This hinders reproducibility of earth observation experiments. In this paper, we present how infrastructure of existing earth observation data backends can be modified to support reproducibility. The proposed extensions are based on recommendations of the Research Data Alliance regarding data identification and the VFramework for automated process provenance documentation. We implemented these extensions at the Earth Observation Data Centre, a partner in the openEO consortium. We evaluated the solution on a variety of usage scenarios, providing also performance and storage measures to evaluate the impact of the modifications. The results indicate reproducibility can be supported with minimal performance and storage overhead.

IKT-Sicherheitskonferenz & Young Researchers´ Day 2019

SBA Research organizes jointly with the FH Upper Austria and the Austrian Computer Society the Young Researchers’ Day, co-located with the IKT Sicherheitskonferenz 2019. The Young Researchers’ Day brings together information security graduates from several Austrian institutions. For the first time, the presentations of the young researchers will be integrated into the main program of the IKT Sicherheitskonferenz and thus the results of their work can be made available to a wider audience.

OCG Blog Young Researchers’ Day

Agenda Young Researchers‘ Day

Abstracts Young Researchers‘ Day

Edgar Weippl contributes to Computer & Security Journal Special Issue

The special issue on Security and Privacy in Smart Cyber-physical Systems was published in the latest edition of the Computer & Security Journal.


Philipp Reisinger speaks about Risk Perception and Human Irrationality.

Philipp Reisinger gives a talk at this year´s IKT Sicherheitskonferenz 2019 in Fürstenfeld!

Another Step towards Secure Production – SBA contributes to Establishment of Cyber Security Guideline for Austrian Industry 4.0 Production Plants

The cyber security guideline for production plants was established by members of the platform industry 4.0 expert group “Security and safety”. We are content to have had the opportunity to provide expertise from a security research point of view.

Security Advisory: Easy FancyBox WordPress Plugin Stored Cross-site Scripting (CVE-2019-16524)

The Easy FancyBox WordPress Plugin Version 1.8.17 is susceptible to Stored cross-site Scripting in the Settings > Media admin page due to improper encoding of arbitrarily submitted setting parameters. The vulnerability affects every publicly accessible page of the WordPress site.

Full security advisory:

Philipp Reisinger @ Klub Logischer Denker

Philipp Reisinger gives a talk on the mitigation of cyber security risks in a connected world at the “logical thinkers club” on September 25, 2019.

Logical Thinkers Club

This Website uses Cookies. more information

The cookie settings on this website are set to "allow cookies" to give you the best browsing experience possible. If you continue to use this website without changing your cookie settings or you click "Accept" below then you are consenting to this.