- Data and Application Security Group

RBA perception study accepted at ACSAC 2020

The paper More Than Just Good Passwords? A Study on Usability and Security Perceptions of Risk-based Authentication is accepted for ACSAC 2020. A quick overview of the study results and an Open Access version of the paper can be found on the study website.

“Security guru” Bruce Schneier published a blog article on our study.

Evaluation of Risk-based Re-Authentication Methods published

The paper Evaluation of Risk-based Re-Authentication Methods, to appear at IFIP SEC ‘20, is published. A quick overview of the study results can be found on the paper website.

UTE project started

In the research project “User Trust Experience” (UTE), the H-BRS University of Applied Sciences has been commissioned by TÜV TRUST IT in cooperation with Huawei UCD Center to examine influencing factors on users’ trust in technical components. More information can be found on the UTE project page.

ODEA.5G project recommended for funding

Within the framework of the 5G.NRW competition, the North Rhine-Westphalian state government has recommended 13 projects for funding, including the ODEA.5G project. ODEA.5G aims to work on an e-assessment environment based on a 5G campus network together with University of Cologne. This project is a cooperation with Deutsche Telekom AG, Electric Paper Evaluationssysteme GmbH, and Lucerne University of Applied Sciences and Arts.

Paper accepted at EuroUSEC 2020

The paper "Vision: Shred If Insecure - Persuasive Message Design as a Lesson and Alternative to Previous Approaches to Usable Secure Email Interfaces" by Jan Tolsdorf and Luigi Lo Iacono was accepted for the vision track of the 5th European Workshop on Usable Security (EuroUSEC 2020). The workshop is co-located with the 5th IEEE European Symposium on Security and Privacy (EuroS&P 2020) and scheduled for 7 September 2020 in Genova (Italy).

Paper accepted at IFIP SEC 2020

The paper Evaluation of Risk-based Re-Authentication Methods by Stephan Wiefling, Tanvi Patil, Markus Dürmuth and Luigi Lo Iacono was accepted at the 35th International Conference on ICT Systems Security and Privacy Protection (IFIP SEC 2020). The conference will take place September 21-23, 2020 in Maribor Slovenia.

Paper published at AsiaUSEC 2020

The paper In Our Employer We Trust: Mental Models of Office Worker’s Privacy Perceptions by Jan Tolsdorf and Florian Dehling was published at the 1st Asian Workshop on Usable Security (AsiaUSEC 2020). The conference took place at February 14, 2020 in Kota Kinabalu, Sabah, Malaysia.

Paper published at CHI 2020

The paper Listen to Developers! A Participatory Design Study on Security Warnings for Cryptographic APIs by Peter Leo Gorski, Yasemin Acar, Luigi Lo Iacono and Sascha Fahl has been published at the 2020 ACM CHI Conference on Human Factors in Computing Systems (CHI). The conference was supposed to take place from April 25th to April 30th in Honolulu, Hawaii, USA.

Paper accepted at ACM CODASPY 2020

The paper CREHMA: Cache-aware REST-ful HTTP Message Authentication by Hoai Viet Nguyen and Luigi Lo Iacono has been accepted at the The 10th ACM Conference on Data and Application Security and Privacy (CODASPY 2020). The conference will take place from March 16th to March 18th in New Orleans, USA.

Talks at USP Day 2020

Peter Leo Gorski and Stephan Wiefling are confirmed as speakers at the USP Day 2020. Peter will talk about the influence of information flows in secure software development. Stephan’s talk will cover the Risk-based Authentication practices of big online services.

The USP Day 2020 will take place on the 10th of January, 2020 at the Zuse Institute Berlin. You can register free of charge and read the program in the official announcement.