David Langer successfully defended his dissertation entitled “The Structuration of Moral Capital and Unethical Behavior: When the Organization Hits an Ethical Meltdown” in Wuppertal on 12 July 2023. David has successfully completed the PhD Programme of the Schumpeter School of Business and Economics at the Bergische Universität Wuppertal. Congratulations!
Stephan Wiefling successfully defended his dissertation entitled “Usability, Security, and Privacy of Risk-Based Authentication” in Bochum on 08 May 2023. His dissertation project was carried out as part of a collaboration between the DAS-Group of Prof. Luigi Lo Iacono at H-BRS and the Usable Security and Privacy research group of Prof. Markus Dürmuth. Stephan has successfully completed the PhD Programme of the Faculty of Computer Science at the Ruhr-University Bochum. Congratulations!
Jan Tolsdorf will give an invited talk (in German) on our ongoing research project MedISA. In the project, a catalog of measures for increasing information security awareness is being developed specifically for medical care facilities. The presentation will introduce the project in more detail, present initial research results, and provide an outlook on future work.
Date and time: February 28, 2023 at 4pm - 5:30 pm
Further information and registration can be found here.
Congratulations to Jan Tolsdorf for receiving the the Doctoral Thesis Award 2022 by the Bonn-Rhein-Sieg University Society (“Promotionspreis Hochschulgesellschaft Bonn-Rhein-Sieg 2022”), funded by the Industrie- und Handelsclub Bonn e. V.
With this award the society honors Jan Tolsdorf’s work in the context of his dissertation “Investigation of Information Privacy in Employment: Fundamental Knowledge and Practical Solutions for the Human-Centered Design of Measures to Preserve the Right to Informational Self-Determination in Employment”.
Stephan Wiefling will give an invited talk (in German) on how risk-based authentication (RBA) can protect our accounts with better usability. Participation is free and online.
The presentation shows
Date and time: January 17, 2023 at 4pm - 5:30 pm
The Stifterverband awarded Stephan Wiefling and Luigi Lo Iacono with the Open Data Impact Award 2022. The award recognizes the release of our open Login Data Set for Risk-Based Authentication (RBA), and its innovation potential for science and society. The prize money of 10,000 euros will be used to move RBA forward. You can download the data set and the corresponding publication at our RBA website.
The article “Eight Lightweight Usable Security Principles for Developers” by Peter Leo Gorski, Luigi Lo Iacono, and Matthew Smith has been accepted for inclusion in IEEE Security & Privacy. The article proposes eight usable security principles that provide software developers with a lightweight framework to help them integrate security in a user-friendly way. The principles are supposed to help developers who must weigh usability and security tradeoffs to facilitate adoption.
The paper entitled “Data Protection Officers’ Perspectives on Privacy Challenges in Digital Ecosystems” by Stephan Wiefling, Jan Tolsdorf, and Luigi Lo Iacono has been accepted for presentation at the 4th Workshop on Security, Privacy, Organizations, and Systems Engineering (SPOSE). The paper presents the result of an interview study with seven data protection officers from Germany on challenges in implementing data protection requirements and data subject rights in digital ecosystems.
Jan Tolsdorf successfully defended his dissertation entitled “Investigation of Information Privacy in Employment: Fundamental Knowledge and Practical Solutions for the Human-Centered Design of Measures to Preserve the Right to Informational Self-Determination in Employment” in Göttingen on 08 August 2022. His dissertation project was carried out as part of a collaboration between the DAS-Group of Prof. Luigi Lo Iacono at H-BRS and the Computer Security and Privacy Research Group of Prof. Delphine Reinhardt at the University of Göttingen. Here Jan has undergone the PhD Programme in Computer Science at the Georg-August University School of Science. Congratulations!
The DAS Group cooperated with the multinational telecommunications provider Telenor to study how RBA behaves on a large-scale online service with 3.3 million users and more than 30 million login attempts per year. The results of this study are published in the ACM Transactions on Privacy and Security journal.
To foster RBA development and research in the wild, we published the data set in synthesized form on GitHub and Kaggle. This data set, which is based on real-world data, can be used to improve and test RBA implementations.