Name	SBA Research Cookie
Provider	SBA Research
Purpose	Saves the settings of the visitors selected in the cookie box.
Cookie name	sba-research-cookie
Cookie runtime	1 year

Name	YouTube
Provider	YouTube
Purpose	Used to unblock YouTube content.
Privacy policy	https://policies.google.com/privacy
Host(s)	google.com
Cookie name	NID
Cookie runtime	6 months

Name	Vimeo
Provider	Vimeo
Purpose	Used to unblock Vimeo content.
Privacy policy	https://vimeo.com/privacy
Host(s)	player.vimeo.com
Cookie name	vuid
Cookie runtime	2 years

Upcoming Events:

OWASP Chapter Vienna Meetup x SBA Security Meetup

28.01.2026

Kubernetes Attack and Defense Wizardry with Stormcenter

03.03.2026 - 06.03.2026

OWASP Chapter Vienna Meetup x SBA Security Meetup

31.03.2026

Kick-Off Meeting BRIDGE Research Project GASTRIC

July 22, 2020

The kick-off meeting of the FFG BRIDGE 1 project GASTRIC (Gene Anonymisation and Synthetisation for Privacy) took place on July 15th, 2020 at SBA Research. The GASTRIC project addresses the challenge to preserve the privacy of individuals taking part in microbiome studies… Read More

How dangerous is TikTok? Edgar Weippl at futurezone.at

July 21, 2020

“TikTok collects a lot of user data. But other apps do that as well. You can use such data to influence political developments in other countries. […]” Read the full article at futurezone.at. Read More

Best in-use Paper Award

July 20, 2020

The paper “Supporting complex decision making by semantic technologies“ by Stefan Fenz has won the best in-use paper award at ESWC20. ESWC20 was held online from June 2 – June 4, 2020. Congrats! You can find the paper here.

Christian Kudera talks about Technical Approaches and Lessons learned at Proximity Tracing Workshop

July 14, 2020

Digital approaches to proximity tracing on Smartphones are expected to contribute significantly to master the Covid-19 pandemic. Several approaches went live since May, and a heated discussion on centralised versus decentralised approaches arose. Beyond technical considerations, like their underlying working principle, constraints due to dependencies on the underlying hardware and… Read More

Stefan Jakoubi moderates IT-Security Cyber Lounge

July 14, 2020

For many companies, the crisis was a rapid driver of digitalization – as a result, the hacker scene has experienced another real upswing. The topic of IT security has thus also gained in importance. As usual, participants will be provided with exciting community news, expert interviews, trends and the most… Read More

Key Researcher Corinna Schmitt publishes new IEFT Draft

July 3, 2020

This document provides an overview of the architecture of the L-band Digital Aeronautical Communications System (LDACS), which provides a secure, scalable and spectrum efficient terrestrial data link for civil aviation. LDACS is a scheduled, reliable multi-application cellular broadband system with support for IPv6. N.Mäurer, T.Gräupl, C.Schmitt: L-band Digital Aeronautical Communications… Read More

SBA Security Advisory – Monsta FTP – Stored Cross-Site Scripting (CVE-2020-14055)

July 1, 2020

Monsta FTP 2.10.1 or below is prone to a stored cross-site scripting vulnerability in the language setting due to insufficient output encoding. Read More

SBA Security Advisory – Monsta FTP – Server-Side Request Forgery (CVE-2020-14056)

July 1, 2020

Monsta FTP 2.10.1 or below is prone to a server-side request forgery vulnerability due to insufficient restriction of the web fetch functionality. This allows attackers to read arbitrary local files and interact with arbitrary third-party services. Read More

SBA Security Advisory – Monsta FTP – Arbitrary File Read and Write (CVE-2020-14057)

July 1, 2020

Monsta FTP 2.10.1 or below allows external control of paths used in filesystem operations. This allows attackers to read and write arbitrary local files, allowing an attacker to gain remote code execution in common deployments. Read More

Successful Scientific Mid-term Evaluation: SBA Research funded by COMET for another 4 Years

June 29, 2020

SBA Research, the Vienna Competence Center for Information Security, will be funded for another four years within the framework of COMET – Competence Centers for Excellent Technologies Report of the FFG On 16 June 2020, the mid-term evaluation of SBA-K1, the COMET flagship research program of SBA Research, took… Read More

SBA Research is a research center for Information Security
funded partly by the national initiative for COMET Competence Centers for Excellent Technologies.

Upcoming Events:

Recent News:

Kick-Off Meeting BRIDGE Research Project GASTRIC

How dangerous is TikTok? Edgar Weippl at futurezone.at

Best in-use Paper Award

Christian Kudera talks about Technical Approaches and Lessons learned at Proximity Tracing Workshop

Stefan Jakoubi moderates IT-Security Cyber Lounge

Key Researcher Corinna Schmitt publishes new IEFT Draft

SBA Security Advisory – Monsta FTP – Stored Cross-Site Scripting (CVE-2020-14055)

SBA Security Advisory – Monsta FTP – Server-Side Request Forgery (CVE-2020-14056)

SBA Security Advisory – Monsta FTP – Arbitrary File Read and Write (CVE-2020-14057)

Successful Scientific Mid-term Evaluation: SBA Research funded by COMET for another 4 Years

Upcoming events @ SBA

SBA Research at a glance

Highlights of the past years:

Privacy settings

SBA Research is a research center for Information Security funded partly by the national initiative for COMET Competence Centers for Excellent Technologies.

Upcoming Events:

Recent News:

Highlights of the past years:

SBA Research is a research center for Information Security
funded partly by the national initiative for COMET Competence Centers for Excellent Technologies.