Why Anti-virus Software Fails Daniel Sauder published in Magdeburger Journal zur Sicherheitsforschung (2015, #10, p. 540-546) Info Based on my work about antivirus evasion techniques, I started using antivirus evasion techniques for testing the effectivity of antivirus engines. I researched the internal functionality …

Read More

Trusting Your Cloud Provider Protecting Private Virtual Machines Armin Simma published in Magdeburger Journal zur Sicherheitsforschung (2015, #9, p. 530-539) Info This article proposes an integrated solution that allows cloud customers to increase their trust into the cloud provider including cloud insiders (e.g. …

Read More

IPv6 Security Attacks and Countermeasures in a Nutshell Johanna Ullrich and Katharina Krombholz and Heidelinde Hobel and Adrian Dabrowski and Edgar Weippl published in Magdeburger Journal zur Sicherheitsforschung (2015, #9, p. 514-529) Info The history of computers is full of underestimation: 640 kilobyte, 2-digit …

Read More

Java’s SSLSocket How Bad APIs Compromise Security Georg Lukas published in Magdeburger Journal zur Sicherheitsforschung (2015, #9, p. 506-513) Info Internet security is hard. TLS is almost impossible. Implementing TLS correctly in Java is »Nightmare!«. This paper will show how a badly designed security API introduced …

Read More

An innovative and comprehensive framework for Social Driven Vulnerability Assessment Enrico Frumento and Roberto Puricelli published in Magdeburger Journal zur Sicherheitsforschung (2014, #8, p. 493-505) Info Nowadays security attacks greatly rely on the human vulnerabilities, hence is fundamental to include the human …

Read More

Social Authentication Vulnerabilities, Mitigations, and Redesign Marco Lancini published in Magdeburger Journal zur Sicherheitsforschung (2014, #8, p. 476-492) Info High-value services have introduced two-factor authentication to prevent adversaries from compromising accounts using stolen credentials. Facebook has …

Read More

Sexy Defense Maximizing the home-field advantage Iftach Amit published in Magdeburger Journal zur Sicherheitsforschung (2014, #8, p. 468-475) Info Offensive security is easy, I know. But the goal of offensive security at the end of the day is to make us better defenders. And that’s hard. Usually after the …

Read More

Hacking Medical Devices Florian Grunow published in Magdeburger Journal zur Sicherheitsforschung (2014, #7, p. 453-455) Info In the last few years we have seen an increase of high tech medical devices, including all flavors of communication capabilities. The need of hospitals and patients to transfer data from devices …

Read More

Rezension zu Schluss mit Cybermobbing! Das Trainings- und Präventionsprogramm »Surf-Fair«. von Stephanie Pieschl und Torsten Porsch Jens Holze published in Magdeburger Journal zur Sicherheitsforschung (2013, #6, p. 406-408) Info Eine Rezension zu Schluss mit Cybermobbing! Downloads Download: …

Read More

Design and Implementation of an IPv6 Plugin for the Snort Intrusion Detection System Martin Schütte published in Magdeburger Journal zur Sicherheitsforschung (2013, #6, p. 409-452) Info This work describes the implementation and use of a preprocessor module for the popular open source Intrusion Detection System Snort …

Read More