News
Post by ATHENE researchers on the APNIC blog: DNS-over-TCP is considered vulnerable
In their latest post on the APNIC blog, ATHENE-researchers discuss recent recommendations to use TCP instead of UDP for sending DNS packets. In order to be able to traverse a network more easily, large packets are often divided into smaller packets by means of so-called IP fragmentation. TCP with Path MTU Discovery (PMTUD) was recently proposed as an alternative to this IP fragmentation. In this context, the recommendation was made to use TCP instead of UDP for sending DNS packets. This is based on the assumption that TCP is resistant to IP fragmentation attacks.
read more
KIKu project launched - ATHENE researchers develop app to support cultural and investigative authorities
A central challenge in combating the illegal trade in stolen cultural property is that illegally traded objects are difficult to identify. The KIKu project - AI for the Protection of Cultural Property - funded by the Federal Government Commissioner for Culture and the Media, aims to facilitate the work of the responsible actors, especially customs and police: To this end, researchers at Fraunhofer SIT are working with cosee GmbH to develop an app that uses artificial intelligence to provide automated information on whether, for example, an antique vase or statue could come from a looted dig or was illegally acquired in some other way.
read more
Elisa Bertino becomes new member of the ATHENE Advisory Board
We are very pleased to announce that Prof. Dr. Elisa Bertino, Purdue University, USA, will join the ATHENE Advisory Board. Together with other internationally recognized and highly qualified cybersecurity experts from business, industry and research, she will advise ATHENE on its scientific and research strategy direction.
read more
ATHENE researchers facilitate exchange on migration and agility of PQC procedures
Prof. Andreas Heinemann and Prof. Alexander Wiesmaier from Darmstadt University of Applied Sciences (h_da) are working on post-quantum cryptography in the ATHENE project "Agile and Easy-to-Use Integration of PQC Schemes" and on how existing IT architectures can be converted to quantum computer-resistant encryption methods. Because when the powerful quantum computer arrives, the internet as we know it today would no longer be secure. Currently used, so-called public-key encryption methods would then no longer be valid. The two h_da professors are working with their teams to be prepared for this time. In order to be able to use the knowledge of as many scientists as possible for their research, they have set up the freely accessible community website https://fbi.h-da.de/cma.
read more
ATHENE is cooperation partner of FrauMachtDigital
BPW Germany e.V. - one of the largest and oldest professional networks for employed and self-employed women - advocates, among other things, equal participation of women in digitization and more visibility of female role models in the digital space. The FrauMachtDigital campaign launched by the network aims to break down gender stereotypes in STEM subjects and professions, give women widespread access to digital education opportunities, and promote digital skills among girls and women. ATHENE is one of the campaign's cooperation partners.
read more
Successful submissions on top conference ACM CCS 2021
Researchers from Fraunhofer SIT and TU Darmstadt involved in ATHENE placed 6 papers and 3 posters at the prestigious ACM Conference on Computer and Communications Security (CCS) 2021. The A* ranked ACM CCS is the flagship annual conference of the Special Interest Group on Security, Audit and Control (SIGSAC) of the Association for Computing Machinery (ACM). The conference brings together information security researchers, practitioners, developers, and users from all over the world to explore cutting-edge ideas and results.
read more
Best Research Paper Award for ATHENE researchers
The paper "Analyzing and Securing SOME/IP Automotive Services with Formal and Practical Methods", written by ATHENE researchers Timm Lauser, Dustin Kern and Prof. Christoph Krauß, all of Darmstadt University of Applied Sciences, and Daniel Zelle, Fraunhofer SIT, was awarded with the Best Research Paper Award at the "International Conference on Availability, Reliability and Security", ARES for short.
read more
Lecture Series "Sichere Kritische Infrastrukturen"
In the winter semester 2021/2022, the lecture series "Sichere Kritische Infrastrukturen" will be offered again at the TU Darmstadt. The series of events will focus on various critical infrastructures and their security challenges. Speakers from research institutions, companies, public authorities or operators of critical infrastructures will shed light on individual facets of the topic in their lectures. The lecture series is organized by ATHENE researchers Prof. Matthias Hollick and Prof. Christian Reuter as well as Prof. Jens Ivo Engels from TU Darmstadt.
read more
Effective security notifications for website operators
An interdisciplinary study by researchers from TU Darmstadt, Otto Friedrich University Bamberg and Goethe University Frankfurt shows how website operators can be most effectively informed about inadequate data protection configurations. In this way, authorities and security researchers will be able to persuade website providers to recognise and correct deficiencies as effectively as possible in the future. The research team also provides the tool "Check Google Analytics", which can be used to check the correct activation of IP anonymisation when integrating Google Analytics.
The study was supported by the German Research Foundation (DFG) as part of the Research Training Group 2050 "Privacy and Trust for Mobile Users" and by the Federal Ministry of Education and Research (BMBF) and the Hessian Ministry of Science and the Arts (HMWK) as part of the ATHENE funding.
read more
Data protection-compliant deletion of personal data in the event of security incidents
Information security incidents occur in a wide variety of forms. If personal data is also involved, it also becomes a data protection incident. ATHENE scientist and data protection expert Dr. Annika Selzer explains how to delete such data in compliance with data protection regulations in the article "Data protection-compliant deletion of data protection and information security incidents", published in BvD News 2/21.
read more