Name	SBA Research Cookie
Provider	SBA Research
Purpose	Saves the settings of the visitors selected in the cookie box.
Cookie name	sba-research-cookie
Cookie runtime	1 year

Name	YouTube
Provider	YouTube
Purpose	Used to unblock YouTube content.
Privacy policy	https://policies.google.com/privacy
Host(s)	google.com
Cookie name	NID
Cookie runtime	6 months

Name	Vimeo
Provider	Vimeo
Purpose	Used to unblock Vimeo content.
Privacy policy	https://vimeo.com/privacy
Host(s)	player.vimeo.com
Cookie name	vuid
Cookie runtime	2 years

Upcoming Events:

Inaugural #securitynative Austria meetup

16.12.2025

SHECURITY – Xmas Let’s Hack Together

17.12.2025

Kubernetes Attack and Defense Wizardry with Stormcenter

03.03.2026 - 06.03.2026

Christian Kudera talks about Technical Approaches and Lessons learned at Proximity Tracing Workshop

July 14, 2020

Digital approaches to proximity tracing on Smartphones are expected to contribute significantly to master the Covid-19 pandemic. Several approaches went live since May, and a heated discussion on centralised versus decentralised approaches arose. Beyond technical considerations, like their underlying working principle, constraints due to dependencies on the underlying hardware and… Read More

Stefan Jakoubi moderates IT-Security Cyber Lounge

July 14, 2020

For many companies, the crisis was a rapid driver of digitalization – as a result, the hacker scene has experienced another real upswing. The topic of IT security has thus also gained in importance. As usual, participants will be provided with exciting community news, expert interviews, trends and the most… Read More

Key Researcher Corinna Schmitt publishes new IEFT Draft

July 3, 2020

This document provides an overview of the architecture of the L-band Digital Aeronautical Communications System (LDACS), which provides a secure, scalable and spectrum efficient terrestrial data link for civil aviation. LDACS is a scheduled, reliable multi-application cellular broadband system with support for IPv6. N.Mäurer, T.Gräupl, C.Schmitt: L-band Digital Aeronautical Communications… Read More

SBA Security Advisory – Monsta FTP – Stored Cross-Site Scripting (CVE-2020-14055)

July 1, 2020

Monsta FTP 2.10.1 or below is prone to a stored cross-site scripting vulnerability in the language setting due to insufficient output encoding. Read More

SBA Security Advisory – Monsta FTP – Server-Side Request Forgery (CVE-2020-14056)

July 1, 2020

Monsta FTP 2.10.1 or below is prone to a server-side request forgery vulnerability due to insufficient restriction of the web fetch functionality. This allows attackers to read arbitrary local files and interact with arbitrary third-party services. Read More

SBA Security Advisory – Monsta FTP – Arbitrary File Read and Write (CVE-2020-14057)

July 1, 2020

Monsta FTP 2.10.1 or below allows external control of paths used in filesystem operations. This allows attackers to read and write arbitrary local files, allowing an attacker to gain remote code execution in common deployments. Read More

Successful Scientific Mid-term Evaluation: SBA Research funded by COMET for another 4 Years

June 29, 2020

SBA Research, the Vienna Competence Center for Information Security, will be funded for another four years within the framework of COMET – Competence Centers for Excellent Technologies Report of the FFG On 16 June 2020, the mid-term evaluation of SBA-K1, the COMET flagship research program of SBA Research, took… Read More

Comet Zentren Österreich Übersicht Karte

Johanna Ullrich nominated for 2020 Hedy Lamarr Award

June 29, 2020

A total of eight female researchers have been nominated for this year’s Hedy Lamarr Prize of the City of Vienna. The prize is awarded to women in Austria for their outstanding achievements in the field of information technology. On October 1, the Hedy Lamarr Prize will be awarded for the… Read More

SOUPS 2020 – Paper presented by Alexandra Mai and Katharina Pfeffer

June 29, 2020

Alexandra Mai and Katharina Pfeffer present their paper „User Mental Models of Cryptocurrency Systems – A Grounded Theory Approach“ at this year’s SOUPS (Symposium on usable privacy and security). “ The sixteenth Symposium on Usable Privacy and Security (SOUPS) brings together an interdisciplinary group of… Read More

cyan Security Group & SBA Research – a Success Story

June 25, 2020

Innovative Solutions by joint Research Tangible results demonstrate the lasting benefit of the COMET program – from basic to applied research. 10 years of joint efforts in information security within the COMET program have led to a plethora of new and innovative approaches. cyan Security… Read More

SBA Research is a research center for Information Security
funded partly by the national initiative for COMET Competence Centers for Excellent Technologies.

Upcoming Events:

Recent News:

Christian Kudera talks about Technical Approaches and Lessons learned at Proximity Tracing Workshop

Stefan Jakoubi moderates IT-Security Cyber Lounge

Key Researcher Corinna Schmitt publishes new IEFT Draft

SBA Security Advisory – Monsta FTP – Stored Cross-Site Scripting (CVE-2020-14055)

SBA Security Advisory – Monsta FTP – Server-Side Request Forgery (CVE-2020-14056)

SBA Security Advisory – Monsta FTP – Arbitrary File Read and Write (CVE-2020-14057)

Successful Scientific Mid-term Evaluation: SBA Research funded by COMET for another 4 Years

Johanna Ullrich nominated for 2020 Hedy Lamarr Award

SOUPS 2020 – Paper presented by Alexandra Mai and Katharina Pfeffer

cyan Security Group & SBA Research – a Success Story

Upcoming events @ SBA

SBA Research at a glance

Highlights of the past years:

Privacy settings

SBA Research is a research center for Information Security funded partly by the national initiative for COMET Competence Centers for Excellent Technologies.

Upcoming Events:

Recent News:

Highlights of the past years:

SBA Research is a research center for Information Security
funded partly by the national initiative for COMET Competence Centers for Excellent Technologies.