Paper at RAID 2013

Freitag, 24. Mai 2013

Our paper "A Primitive for Revealing Stealthy Peripheral-based Attacks on the Computing Platform's Main Memory" has been accepted to RAID 2013.

SecT at "Network Security" conference

Mittwoch, 22. Mai 2013

Ravishankar Borgaonkar is attending "Network Security" conference and giving a talk on "Small Cells in Hostile Environment".

SecT at PHDays 2013

Mittwoch, 22. Mai 2013

Dmitry Nedospasov of FG SecT and Thorsten Schröder of Modzero are attending PHDays 2013 in Moscow, Russia. They are presenting "Let the Hardware Do All the Work", their ongoing research on utilizing programmable logic for embedded security analysis.

TrustED 2013 - International Workshop Announcement

Donnerstag, 02. Mai 2013

© TrustED 2013

TrustED

International Workshop on Trustworthy Embedded Devices

In this workshop we consider selected aspects of cyber physical systems and their environments. We aim at bringing together experts from academia, research institutes, industry and government for discussing and investigating problems, challenges and some recent scientific and technological developments in this field. In this context we particularly are interested in the participation of industry representatives.

The workshop includes (but is not limited to) the following topics:

• Embedded system security
  
• Privacy aspects of embedded systems (e.g., medical devices, electronic IDs)
• Physical and logical convergence (e.g., secure and privacy preserving facility management),
• Hardware entangled cryptography
• Foundation, development, and applications of physical security primitives (e.g., physically unclonable functions – PUFs),
• Remote attestation
• IP protection for embedded systems
• Reverse engineering
• Secure execution environments (e.g., TrustZone, TPMs, etc.) on mobile devices
• New protection paradigms for trustworthy embedded systems

In addition to the presentation of the accepted papers, we have invited speakers from industry and academia to share their experiences.

Important Dates

Official website: http://trusted.trust.cased.de/

SICS Security Seminar 2013: Future Trustworthy IT Systems

Mittwoch, 24. April 2013

On 11 April, Prof. Jean-Pierre Seifert gave a talk at "SICS Security Seminar 2013: Future Trustworthy IT Systems" titled "Trustworthy IT Systems - where is the trust boundary?" Details

Talk Announcement: Kristian Beilke

Donnerstag, 11. April 2013

Title: FlexCOS - An Open Smartcard Platform for Research and Education

Date/Time: Tue 23 April, 2013, 03:00 PM – 04:00 PM

Location: Room- TEL 1118/19 (11th Floor), Ernst-Reuter-Platz 7, 10587 Berlin,

Abstract: 

The smartcard industry treats their know-how and products as confidential. Consequently it is difficult to do research on smartcards without NDAs. We present a platform meant to lower the barrier to entry for smartcard research. It is built with mostly free software on affordable hardware and is designed to provide access to every level of the system. This platform allows to do research without NDAs as well as a more practical approach to education, since it is reproducible with limited costs. Its main advantages are the ability to make changes to the operating system, debugging on the running platform, and the possibility to integrate new hardware components into the system. We achieve this by compromising on hardware security aspects and form factor, and focus on the software aspects instead.

Paper at DIMVA2013

Montag, 01. April 2013

We attend DIMVA 2013, and we present our paper "SMS-based One-Time Passwords: Attacks and Defense" (conference website).

SECT member of SysSec EU Project

Dienstag, 26. März 2013

SecT@Droidcon

Montag, 25. Februar 2013

On 9 April, Matthias Lange will give a talk at Droidcon titled "State of the Union: Android Security Overview - Is Android the new XP?" Details

Spar Wars IT Defense 2013: GSM-Angriffe für kleines Geld

Freitag, 22. Februar 2013

Mit entsprechendem Know-how und einem 5-Euro-Telefon kann ein Angreifer Gespräche verhindern und Kurznachrichten auf sein eigenes Gerät umleiten. Diese und andere Sicherheitslücken präsentierten hochklassige Referenten Ende Januar bei der elften IT-Defense in Berlin. iX 3/2013, Seite 14

First IEEE Conference on Communications and Network Security

Donnerstag, 14. Februar 2013

© IEEE CNS

IEEE CNS 2013 - IEEE Conference on Communications and Network Security. October 14-16, 2013. Washington, D.C., USA. More

Conference Announcement: CARDIS 2013

Donnerstag, 29. November 2012

The 12th Smart Card Research and Advanced Application Conference will be hosted by SecT in Berlin! Short info (PDF, 773,4 KB)

Talk Announcement: Werner Schindler (BSI)

Montag, 19. November 2012

Title: Der stochastische Ansatz in der Poweranalyse - ein effizientes Angriffsverfahren und ein designunterstützendes Werkzeug

Date/Time: Wed 21 Nov., 2012, 02:00 PM – 03:00 PM

Location: TEL 1118/19

Abstract:

Der stochastische Ansatz ist ein effizientes Angriffsverfahren, das ingenieurmäßige Expertise mit mathematischen Methoden aus der multivariaten Statistik kombiniert. Im Gegensatz zu anderen Powerattacken quantifiziert der stochastische Ansatz das Seitenkanalleakage bezüglich einer Vektorraumbasis. Diese Eigenschaft ermöglicht es, Schwachstellen der Implementierung zu erkennen und Annahmen über Eigenschaften des Leakages zu verifizieren oder zu falsifizieren. Die so gewonnenen Erkenntnisse können positiv für ein gezieltes (Re-)Design genutzt werden.

Hardware Security Lecture

Donnerstag, 08. November 2012

The HW Security lecture will take place at 12:15 today! We will meet in front of TEL1118/19.

DIMVA2013 website is up

Montag, 29. Oktober 2012

The DIMVA2013 website is up and the call for papers is open.

“Aufpassen, wo man draufklickt” - telegraphen_lounge „Mobile Revolution – Lieber bequem als sicher“

Mittwoch, 17. Oktober 2012

Smartphones erobern alle Bereiche unseres täglichen Lebens. Sie sind einfach zu bedienen und fast immer griffbereit – das macht die mobile Revolution so erfolgreich. Aber hält auch die Sicherheit mit der Entwicklung der mobilen Anwendungen Schritt? Oder geht einfache Bedienbarkeit mobiler Endgeräte und Dienste zwangsweise auf Kosten der Sicherheit? Mehr

SecT@ToorCon

Montag, 15. Oktober 2012

Matthias Lange will give a talk titled "Taming the Robots - Enhancing Security of Mobile Devices with Multiple Personalities" at ToorCon 14.

Dmitry Nedospasov will also be giving a Seminar on his ongoing Photonic Emission Analysis Research.

Introductory Meeting

Dienstag, 09. Oktober 2012

If you are interested in our course offer, please attend our introductory meeting on Monday, 15 October 2012, 10-12 a.m. in room TEL 1118/19.

Flaws allow 3G devices to be tracked

Dienstag, 09. Oktober 2012

New privacy threats have been uncovered by security researchers that could allow every device operating on 3G networks to be tracked. Read full article of SC Magazine

Media Coverage of the USSD/Android-Dialer-vulnerability

BBC: http://www.bbc.co.uk/news/technology-19784413

Forbes: http://www.forbes.com/sites/adriankingsleyhughes/2012/10/03/protect-your-android-smartphone-from-the-remote-wipe-ussd-vulnerability/ 

The Telegraph: http://www.telegraph.co.uk/technology/samsung/9565395/Hidden-web-code-means-hackers-can-wipe-Samsung-Galaxy-S3.html 

AP: http://www.huffingtonpost.com/2012/09/30/ravi-borgaonkar-says-andr_n_1923867.html

Spiegel Online: http://www.spiegel.de/netzwelt/gadgets/zahlencode-loescht-speicher-von-samsung-handys-a-857873.html

heise online: http://www.heise.de/newsticker/meldung/Sicherheitsleck-Samsung-Smartphones-aus-der-Ferne-loeschbar-1716849.html

The Inquirer: http://www.theinquirer.net/inquirer/news/2208019/samsung-galaxy-phones-are-vulnerable-to-a-remote-wipe-attack

Security Watch (PC Magazine): http://securitywatch.pcmag.com/none/303097-dirty-ussd-hack-wipes-samsung-phones-is-yours-vulnerable

engadget: http://www.engadget.com/2012/09/25/dirty-ussd-code-samsung-hack-wipe/

Video of the talk at ekoparty 2012: http://www.youtube.com/watch?v=Q2-0B04HPhs

SecT at Intel Security Conference

Montag, 17. September 2012

Dmitry Nedospasov will be speaking at the 2012 Intel Security Conference in Hillsboro, Oregon.

Paper at CHES 2012

Freitag, 07. September 2012

We will be presenting our paper "Simple Photonic Emission Analysis" at CHES 2012 (program).

Paper at ACM CCS 2012

Our paper titled "New privacy issues in mobile telephony: fix and verification" is accepted at ACM CCS 2012. List of accepted paper can be found here.

SecT at CAST-Workshop "Mobile und Embedded Security"

Dienstag, 28. August 2012

We will attend this year's CAST-workshop on mobile and embedded security. Juliane Krämer will give a talk titled "Photonische Seitenkanal-Analyse". Michael Peter's talk is titled "Eine Systemarchitektur für sichere mobile Geräte".

SecT @ Crypto 2012 Rump Session

Mittwoch, 22. August 2012

Juliane Krämer gave a talk at the CRYPTO 2012 Rump Session.

CRYPTO 2012

Montag, 13. August 2012

We will attend CRYPTO 2012.

Best Paper Award at WOOT'12

Montag, 06. August 2012

© Benjamin Michéle

Collin Mulliner and Benjamin Michéle received the "Best Paper Award" at WOOT'12 for their paper "Read It Twice! A Mass-Storage-Based TOCTTOU Attack".

Conference Announcement: DIMVA 2013

Montag, 30. Juli 2012

The 10th Conference on Detection of Intrusions and Malware & Vulnerability Assessment (DIMVA Anniversary!) will be hosted by SecT in Berlin!

Short info (PDF, 5,0 MB)

Paper at WOOT'12

Montag, 30. Juli 2012

We will be attending WOOT'12, the 6th USENIX Workshop on Offensive Technologies, and we present our paper "Read It Twice! A Mass-Storage-Based TOCTTOU Attack".

Paper at DIMVA

Donnerstag, 26. Juli 2012

We attend DIMVA 2012, and we present our paper "Understanding DMA Malware" (conference program).

SPRING7 at SecT

Mittwoch, 04. Juli 2012

On July 5 and 6, Spring7 will be held in Berlin at SecT.

Fokusseminar "Elektronik-Hardware für hohe Datensicherheitsanforderungen" der HRSST

Freitag, 22. Juni 2012

This seminar is part of the doctoral program of the Helmholtz Research School on Security Technologies.

June 25, 2012

9.00am - 5.30pm

TEL 6 (T-Labs / Technische Universität Berlin, Ernst-Reuter-Platz 7, 10587 Berlin)

Flyer (PDF, 359,5 KB)

SPRING 7 Program

Mittwoch, 20. Juni 2012

The workshop program is online now.

Best Student Presentation at HOST 2012

Mittwoch, 13. Juni 2012

© Dmitry Nedospasov

Dmitry Nedospasov received the "Best Student Presentation Award" at HOST 2012 for his talk on "Functional Integrated Circuit Analysis".

Paper at CHES 2012

Mittwoch, 13. Juni 2012

Our paper "Simple Photonic Emission Analysis of AES" has been accepted to CHES 2012.

Paper at HOST 2012

Freitag, 18. Mai 2012

We will be attending HOST 2012, and we present our paper "Functional Integrated Circuit Analysis" (conference program).

IEEE Security & Privacy 2012

Freitag, 18. Mai 2012

We will be attending IEEE S&P 2012, and we present our posters "Hardware and Software Emission Analysis" and "CASTOR: Container Allowing for Secure and Trustworthy OS Refinement (PDF, 1,8 MB)".

Talk at SummerCon

Freitag, 18. Mai 2012

We are giving a talk on Binary Instrumentation for Android at SummerCon in New York City in June 2012.

Paper at DIMVA 2012

Freitag, 13. April 2012

Our paper "Understanding DMA Malware" has been accepted at DIMVA 2012.

Course Information Summer Semester 2012

Dienstag, 10. April 2012

We updated the course information for this summer semester, see the Teaching overview webpage.

ISPEC 2012

Mittwoch, 11. April 2012

We will be attending the 8th International Conference on Information Security Practice and Experience (ISPEC 2012) in Hangzhou, China and present our paper 'Structure-Based RSA Fault Attacks'.

Fokusseminar "Elektronik-Hardware für hohe Datensicherheitsanforderungen" der HRSST

Mittwoch, 04. April 2012

This seminar is part of the doctoral program of the Helmholtz Research School on Security Technologies.

June 25, 2012

9.00am - 5.30pm

TEL 6 (T-Labs / Technische Universität Berlin, Ernst-Reuter-Platz 7, 10587 Berlin)

Program (PDF, 359,5 KB)

SecT organisiert den 7. Graduierten-Workshop SPRING in Berlin

Montag, 26. März 2012

© FG SIDAR, GI

Die GI-Fachgruppe SIDAR bietet im Juli wieder eine Veranstaltung für den wissenschaftlichen Nachwuchs im Bereich Reaktive Sicherheit an. Das Themenspektrum der Reaktiven Sicherheit beinhaltet:

• Verwundbarkeitsanalyse
• Intrusion Detection
• Malware
• Incident Management
• Forensik

Eckdaten der Veranstaltung:

SPRING - 7. SIDAR Graduierten-Workshop über Reaktive Sicherheit
5./6. Juli 2012, Berlin
http://www.gi-fg-sidar.de/spring/
mailto: spring{at}gi-fg-sidar.de
bis 4. Juni 2012: Einreichung von Beiträgen

Nähere Informationen zur Veranstaltung finden sich im Call for Abstracts [PDF|TXT].

Droidcon 2012

Mittwoch, 14. März 2012

Prof. Seifert held a Keynote Speech at Droidcon 2012 about "Designing Security-Aware Android Applications for the Enterprise".

CeBit 2012

Dienstag, 06. März 2012

We attend CeBit 2012. You can find us in hall 26 at stand G30 of the Telekom Innovation Laboratories: T-Labs@CeBit

Hotmobile 2012

Dienstag, 28. Februar 2012

Steffen Liebergeld will present his poster about the impact of mobile virtualization on the power usage of mobile devices at Hotmobile 2012 in San Diego. Matthias Lange shows a demo of the L4Android security framework on the Samsung Galaxy S2.

Talks at Nokia, Samsung and Huawei Research

Donnerstag, 23. Februar 2012

Prior to Hotmobile 2012 Matthias Lange and Steffen Liebergeld will give talks about the L4Android security framework at Nokia Research, Samsung Research and Huawei Research in the silicon valley.

Mobile World Congress

Freitag, 17. Februar 2012

Prof. Dr. Jean-Pierre Seifert will be attending Mobile World Congress 2012 at Barcelona, Spain. 

NDSS 2012

Donnerstag, 09. Februar 2012

We attended and presented our paper ' Weaponizing Femtocells: The Effect of Rogue Devices on Mobile Telecommunications ' at 19th Annual Network and Distributed System Security Symposium, (NDSS 2012), San Diego. [PDF (PDF, 815,0 KB)]

Talk announcement: Sebastian Schinzel (Uni Erlangen)

Montag, 30. Januar 2012

Date/Time:  1. February 2012 - 14:00-15:00

Location: TEL1118/19

Title: Practical Side Channel Attacks on the Web

Abstract:

Inspired by the discrimination of covert timing channels and covert storage channels, we extend the general area of side channels by distinguishing storage side channels from timing side channels. We give a general method by which storage side channels can be detected in web applications. As main example we show that in several existing web applications with user management it is possible to find out whether a certain high-privileged user account exists or not. This information is usually treated as confidential because knowledge of high-privileged user names eases password guessing and phishing attacks. In another example, we show that an online gallery leaks the amount of hidden pictures in a given album to unprivileged users. Furthermore, we show a new method to exploit those timing side channels that have the property that the timing differences can be influenced by the attacker. We model these special timing side channels as a possibilistic timing side channel. The method allows very efficient timing side channel attacks even over noisy networks such as the Internet. We show that our method can break the confidentiality of XML Encryption messages in in realistic environments.

PhD Thesis Defense

Mittwoch, 14. Dezember 2011

PhD thesis defense: Collin Mulliner, "On the impact of the Cellular Modem on the Security of Mobile Phones". 

Location: Auditorium 3, TEL 20     Time: 14:00 - 17:00

Talk announcement: Angelos Keromytis (Columbia University) - Time: Friday 16/12/2011, 10 - 11h, Room: Auditorium 3 (20th floor, TEL)

Montag, 05. Dezember 2011

Ttitle: REASSURE: a self-contained software hardening and self-healing mechanism

Abstract: Software errors are frequently responsible for the limited availability of services, loss of data, and many security compromises. Self-healing using rescue points (RPs) is a novel mechanism that can be used to recover software from unforeseen errors until a more permanent remedy, like a patch or update, is available. I will discuss REASSURE, a self-contained mechanism for recovering from such errors using RPs. Essentially, RPs are existing code locations that handle certain anticipated errors in the target application, usually by returning an error code. REASSURE enables the use of these locations to also handle unexpected faults. I will discuss our work on software self-healing mechanisms, including REASSURE and its predecessor (ASSURE), and our other ongoing work on software hardening.

Bio: Angelos D. Keromytis is an Associate Professor of Computer Science at Columbia University. His research interests are in the area of systems and network security, with a focus on software hardening and self-healing, artificial diversity, insider detection, and network denial of service protection. He is the author of more than 200 technical papers in conferences, journals and workshops, 10 issued patents, 7 Internet RFCs, a book on the use of graphics cards for cryptography and another on VoIP security. He has chaired or served on over 90 technical conference and workshop program committees. He has founded or co-founded 2 technology startups. He received his Ph.D. and M.Sc. from the University of Pennsylvania, and his B.Sc. from the University of Crete, in Greece.

NFC Privacy Paper with the Information & Privacy Commissioner Ontario, Canada

Dienstag, 29. November 2011

Mobile Near Field Communications (NFC) “Tap ‘n Go” – Keep it Secure and Private

This paper examines Near Field Communications (NFC) technologies and their growing deployment in mobile devices. Four consumer use cases illustrate NFC functionalities and benefits. Privacy and security risks are identified, and solutions are offered for NFC mobile device and application developers that are informed by the Privacy by Design Foundational Principles.

Paper

Keynote talk at C&ESAR

Dienstag, 29. November 2011

Prof. Jean-Pierre Seifert will be delivering a Keynote talk on 'Femtocell Security' at C&ESAR conference at Rennes, France on 30 Nov. 2011.

Workshop Digital Footprint in Mobile Environments

Montag, 28. November 2011

We are presenting on NFC Security at the Joint Research Center of the European Commission at Ispra, Italy. 28-29 November 2011

Archive

* 24/11/2011 Paper at NDSS'12

Our paper, titled "Weaponizing Femtocells: The Effect of Rogue Devices on Mobile Telecommunications" is accepted at NDSS'12.

* 24/11/2011 ETSI Security Workshop 2012

We will be attending 7th ETSI Security Workshop'12 to discuss 'security challenges for Femtocell communication architecture'.

* 24/11/2011 Vortrag: Sicherheit mobiler Anwendungen/IT

Prof. Seifert hielt heute seinen Vortrag "Sicherheit mobiler Anwendungen/IT" im Rahmen des ZUKUNFTSFORUM ÖFFENTLICHE SICHERHEIT XIV, "Unsicherheit in der digitalen Welt" im Deutschen Bundestag, Berlin

* 19/11/2011 Google Developer Day Berlin

We have a booth at the Google Developer Day in Berlin. We present the current status of the L4Android project including our demos running on the Galaxy S2 and the Odroid-A tablet.

* 10/11/2011 Talk announcement: Gabriela Gheorghes (University of Trento) - Time: Wednesday 23/11/2011, 10 - 11h, Room: Auditorium 3 (20th floor, TEL)

Title

"On seeing and believing that security mechanisms work"

Abstract
"Policy enforcement means how to make sure that software behaves in line with a set of rules, or policies. In a world that is mobile and service-based,  logical applications are  distributed across hosts that cannot be fully controlled and can be malicious. Enforcing distributed access control requirements is hence critical, but is also tough. How do you know that a part of your system has violated a policy? What do you do in the face of a violation? How do you know that your security mechanism is good enough that violations won't pass through? I think that building controls to enforce security constraints involves too much believing and too little seeing. I will present a security mechanism for  distributed access control that, as a middleware tool, can enforce distributed policies across application components. With today's underrated security assessment, I will also  discuss a method to automatically evaluate how well a security mechanism really works."

Bio
Gabriela Gheorghe has been working on policy enforcement in distributed systems. In the security scene, she started off in 2005 by working for an antivirus for Avira. In 2007, she received her MSc degree in Computer Science from "Politehnica" University of Bucharest, with a project on securing geospatial Web services, led at the Universitaet der Bundeswehr Muenchen. During her PhD, she was a visiting researcher in the Distrinet group of K.U. Leuven and an intern at BT's Security Futures Practice group. She will defend her PhD thesis at the University of Trento in December.

*21/10/2011 Talk at Präventionskongress der Berliner Polizei

We attended Präventionskongress der Berliner Polizei  at Berlin and Prof. Jean-Pierre Seifert gave a talk on 'Live Hacking – Methoden der Hacker im IT-Netz' under the Internetkriminalität und Prävention theme.

*17/10/2011: Poster presentation in Chicago

We will present our poster 'Towards Detecting DMA Malware' at the ACM CCS Poster and Demo session on Wednesday, October 19, 2011

*17/10/2011: Paper presentation in Chicago

We will present our paper 'L4Android: A Generic Operating System Framework for Secure Smartphones' at the ACM CCS Workshop on Security and Privacy in Smartphones and Mobile Devices on Monday, October 17, 2011

*17/10/2011 Lecture "Foundations of Computer Security II"

This semester Prof. Jean-Pierre Seifert gives a lecture on the "Foundations of Computer Security II". It will take place in room TEL 1118/19 on Tuesdays, 08:00-10:00. The first meeting will take place on 25/10/201.

*11/10/2011 Talk at SKMM and HITB 2011 Kuala Lampur

Femtocell security team will be speaking at HITBSecConf 2011 Kuala Lampur on 13th October conference.hitb.org/hitbsecconf2011kul/ and invited at Malaysian Communications and Multimedia Commission (MCMC/SKMM) to attend network security workshop.

*10/10/2011: 6. Präventionskongress der Berliner Polizei am 20.10.11 zum Thema Internetkriminalität und Prävention

Auf dem 6. Präventionskongress der Berliner Polizei wird Prof. Seifert und sein Team einen Vortrag zum Thema Hackermethoden halten. Es wird eine Live-Demo präsentiert. Die Demo zeigt, wie Hacker Zugangsdaten für das Online-Banking sowie die mTAN erlangen können.

* 04/10/2011 Talk announcement: S. P. T. Krishnan (Institute for Infocomm Research, Singapore) - Time: Tuesday 11/10/2011, 16 - 18h, Room: TEL 1118/19

"Exploiting and Defending Smartphones on a larger-scale - an experience"

In this talk, I will share some of his research and development work done  in      the field of mobile exploitation and protecton. We have developed two major
toolchains STAMP (Security Testing Arsenal for Mobile Phones) and VEST (Vulnerability & Exploit Shield Trinity) for exposing platform vulnerabilities and shielding potential victims. Using our toolchain we have exposed vulnerabilities in multiple platforms - Symbian, iOS and recently Android. I will show a demo of our toolchains and also seek feedback from the audience.

Bio: S. P. T. Krishnan is a group leader and heads the mobile security group at Institute for Infocomm Research, Singapore.

*15/08/2011 Prof. Jean-Pierre Seifert will be delivering keynote talk at IFIP Summer School 2011 at University of Trento, Italy.

*12/08/2011 We will present our paper 'SMS-of-Death' at USENIX Security in San Francisco

*01/08/2011 We will be presenting our new results at Blackhat USA 11 talk on  'Femtocells: A poisonous needle in the operator's hay stack '.

*14/06/2011 Prof. Jean-Pierre Seifert will be giving a keynote talk on 'Access control (in theory) and modern Linux Phones' at ACM SACMAT.

*08/04/2011 We gave a talk on ' Femtocells: inexpensive devices to test UMTS/3G security' at HES 2011.

*30/03/2011 We attended Troopers 2011 security conference and presented our new results on femtocell security.

*29/03/2011 We attended ASMONIA workshop and gave a talk on Femtocell Security.

*09/03/2011 We are attending CanSecWest 2011 to give a talk on SMS security of Feature Phones.

*05/03/2011 We have released our L4Android project to the public as an open source project. L4Android runs Android on top of a L4-based microkernel. Check out our website l4android.org and follow us on twitter.

*01/03/2011 - 05/03/2011 We attended the Cebit 2011 in Hannover. Our booth was located in hall 9 booth B39 at the Berlin-Brandenburg booth.

*17/02/2011 We attended the Mobile World Congress in Barcelona to present two research projects

*27/12/2010 We are attending the 27th Chaos Communication Congress to give a talk on SMS security of Feature Phones.

*28/10/2010 We created an ISIS course for our lecture Hardware Security ([2010/2011 WiSe] Hardware Security). You can register for the course via: https://www.isis.tu-berlin.de/course/view.php?id=4116

*20/10/2010 The topics for the Computer Security Seminar as well as for the Computer Security Project are now online. Please come to the next Computer Security meeting (25th October, 10am room TEL 1118/19) to get your seminar/project topic. Your matriculation number (Matrikelnummer) is required. The meeting is a preparatory meeting, i.e., we will present the supervisors and topics.

*14/10/2010 We are attending NordSec 2010 and presenting a paper on Femtocell Security.

*14/10/2010 We are attendning Malware 2010 and presenting a paper on mobile botnets.

*14/10/2010 We attended ICIN 2010 conference and presented two papers on M2M Security [1] & on privacy leaks in mobile Internet access [2]. Collin Mulliner received "Best Paper" award for the paper on privacy leaks.

*9/10/2010 We attended ACM CCS 2010 and presented a poster and a demo.

* 21/06/2010 Ravishankar Borgaonkar and Kevin Redon gave a talk on 'Immature Femtocells' at EUSecWest 2010.

* 16/03/2010 Prof. Jean-Pierre Seifert will be attending WiSec 10.

* 12/3/2010 Collin Mulliner will be giving a talk on " Mobile Phone Security (Random tales from a mobile phone hacker) " at CanSecWest 2010.

* 3/3/2010 We attended CeBIT 2010 and demonstrated a poster on  "A secure and Reliable OS for Automotive Applications "

* 28/12/2009 Collin Mulliner gave a talk on " Fuzzing the Phone in your Phone " in 26th Chaos Communication Congress (26C3) Berlin, Germany.

CARDIS 2013
The 12th Smart Card Research and Advanced Application Conference will be hosted by SecT in Berlin!
Announcement

© FG SIDAR, GI

DIMVA 2013
The 10th Conference on Detection of Intrusions and Malware & Vulnerability Assessment (DIMVA Anniversary!) will be hosted by SecT in Berlin!
Official website