Alexander Löbel presented at the Annual Privacy Forum 2024 in Karlstad, Sweden, the paper “Access Your Data… if You Can: An Analysis of Dark Patterns Against the Right of Access on Popular Websites”. The Annual Privacy Forum brings together researchers,… Read More
Theoretical Attack Due to Lax Standards
Maximilian Radoy, Sven Hebrok, and Juraj Somorovsky presented the results of their current research on TLS security at the 29th European Symposium on Research in Computer Security (ESORICS). TLS (Transport Layer Security) is a critical protocol for securing internet communication,… Read More
Critical Vulnerabilities on LDAP Servers
Grur Öndarö contributed as a second author to the paper LanDscAPe: Exploring LDAP Weaknesses and Data Leaks at Internet Scale, which was published at the internationally renowned Usenix Security Symposium 2024. In their work, the researchers conducted a comprehensive security… Read More
Teaching Materials of the Future? Explorables for Education
Frederic Salmen presented his dissertation project WebWriter with several contributions at the conferences “Workshop Bildungstechnologien” (DELFI) and the European Conference for Technology-Enhanced Learning (ECTEL). This was accompanied by a short research stay at the Technical University of Vienna. The practical… Read More
Progress at the Graduate Research Group: New Insights and Solutions for IT Security in Medicine, Communication, and Education
The graduate research group has addressed various topics in the field of IT security, including the security of medical applications, emails, web conferences, and IT security in schools. Through intensive research, numerous vulnerabilities have been identified and resolved. The group… Read More
Advice and support: How do children experience security
Frederic Salmen presented the poster „Behind the Screens: The Security & Privacy Advice Landscape of Children in Grades 5 & 6” on behalf of his co-authors Alexander Löbel, Prof. Ulrike Meyer and Prof. Ulrik Schroeder at the WiPSCE 2023 conference… Read More
NERD II Promotion: Unsecure Email Encryption
In his dissertation, Dr. Fabian Ising dealt with edge cases of modern applied cryptography. A special focus was on transport encryption for email protocols (STARTTLS) and so-called oracle attacks against end-to-end encryption. The dissertation uncovered vulnerabilities in OpenPGP and S/MIME… Read More
First successful NERD II PhD defense
Dr. Christoph Saatjohann successfully completed his doctorate on IT security in medical facilities. His research focused on various aspects – from the telematics infrastructure (TI), the central platform for digital applications in the German healthcare system, to IT security gaps… Read More