SBA Research
Werbung
SBA Research Angewandte Forschung Angewandtes Wissen UBIT Club IT, 12. Mai 2015 „Best of Cybersecurity“ SBA – Die Fakten • gegründet 2006 • größtes Forschungszentrum für IT-Sicherheit und einer der größten Sicherheitsdienstleister in der DACH-Region • Know-how in Forschung, Audits, Consulting, Implementierung und Betrieb unter einem Dach • über 90 Personen und ca. 70+ VZÄs angestellt UBIT Club IT, 12. Mai 2015 „Best of Cybersecurity“ 3 Main Areas Research Information Security Services Software Engineering UBIT Club IT, 12. Mai 2015 „Best of Cybersecurity“ Research Area 1 (GRC): Governance, Risk and Compliance P1.1: Risk Management and Analysis P1.2: Secure BP Modeling, Simulation and Verification P1.3: Computer Security Incident Response Team P1.4: Awareness and E-Learning Area 2 (DSP): Data Security and Privacy P2.1: Privacy Enhancing Technologies P2.2: Enterprise Rights Management P2.3: Digital Preservation Area 3 (SCA): Secure Coding and Code Analysis P3.1: Malware Detection and Botnet Economics P3.2: Systems and Software Security P3.3: Digital Forensics Area 4 (HNS): Hardware and Network Security P4.1: Hardware Security and Differential Fault Analysis P4.2: Pervasive Computing P4.3: Network Security of the Future Internet UBIT Club IT, 12. Mai 2015 „Best of Cybersecurity“ Empirical Research • Dropbox • Amazon Martin Mulazzani, Sebastian Schrittwieser, Manuel Leithner, Markus Huber, and Edgar R. Weippl. Dark clouds on the horizon: Using cloud storage as attack vector and online slack space. USENIX Security, 8/2011. Amir Herzberg and Haya Shulman and Johanna Ullrich and Edgar R. Weippl, Cloudoscopy: Services Discovery and Topology Mapping, in Proceedings of the ACM Cloud Computing Security Workshop (CCSW) at ACM CCS 2013, 2013. • • WhatsApp Sebastian Schrittwieser, Peter Fruehwirt, Peter Kieseberg, Manuel Leithner, Martin Mulazzani, Markus Huber, and Edgar R. Weippl. Guess who is texting you? evaluating the security of smartphone messaging applications. In Network and Distributed System Security Symposium (NDSS 2012), Feb 2012. Philipp Winter and Richard Koewer and Martin Mulazzani and Markus Huber and Sebastian Schrittwieser and Stefan Lindskog and Edgar R. Weippl, Spoiled Onions: Exposing Malicious Tor Exit Relays, in Proceedings of the 14th Privacy Enhancing Technologies Symposium, 2014 • • Facebook Markus Huber, Sebastian Schrittwieser, Martin Mulazzani, and Edgar Weippl. Appinspect: Large-scale evaluation of social networking apps. In ACM Conference on Online Social Networks (COSN), 2013. Tor GSM Adrian Dabrowski, Nicola Pianta, Thomas Klepp, Martin Mulazzani, and Edgar R. Weippl, IMSI-Catch Me If You Can: IMSI-Catcher-Catchers in Proceedings of ACSAC, 2014 UBIT Club IT, 12. Mai 2015 „Best of Cybersecurity“ Research Network Universities of Applied Science FH Technikum Wien Non-Univ. Research Institutions FH Campus Vienna FH OÖ / Hagenberg Donau Univ. Krems FH St. Pölten Salzburg Research AIT SBA Joanneum A-SIT University of Economics University of Vienna Vienna University of Techn. Univ. Graz Univ. Innsbruck Univ. Linz Universities UBIT Club IT, 12. Mai 2015 „Best of Cybersecurity“ Research Network Imperial College UK Bar Ilan University Israel IPICS Consortium NII, Japan University of Manheim U.C. Santa Barbara USA EURECOM, France SBA North Eastern University USA Vietnam Purdue University, Indiana University of Regensburg Darmstadt Germany Silesian Univ. of Technology Poland UBIT Club IT, 12. Mai 2015 „Best of Cybersecurity“ Information Security Services Security Management Security Testing & Guidance Trusted Services Business Impact & Risk Analysis Penetration Testing Vulnerability Management IT/IS Audit Cyber Security APT Protection/Response & Lastline ISO 27001 GAP Analysis SDLC Consulting Control Review & IS ControlPoint ISO 27001 / ISMS Consulting Source Code Analysis – A7700 Source Code Review & Checkmarx Security Awareness & Perception Security Architecture Review Incident Response Training | Coaching | Talks UBIT Club IT, 12. Mai 2015 „Best of Cybersecurity“ Information Security Services Analysis & Design Security Strategy Security Organization Business Impact Analysis Risk Analysis ISO27001 Gap Analysis SDLC Gap Analysis Security Architecture Review Security Technology Review Implementation Security (Management) Processes ISO27001 Consulting Audit SDLC Consulting Penetration Testing Continuous Jour-Fixe Vulnerability Management Service Lastline (APT Protection) ISControlPoint (ISMS Support) Incident Response Improvement Source Code Analysis Control Review Security Awareness Trainings Security Measures Maturity Level Improvement UBIT Club IT, 12. Mai 2015 „Best of Cybersecurity“ Software Engineering Consulting Implementation Research Development Life Cycle SharePoint Prototypes Architecture Development (.Net & Java) Algorithms Development Concepts SQL Analytics / Reporting Machine Learning System Migration Mobile Applications Community Versions (ISContolPoint) Secure Software Development Support/Automization/Scripting Evaluations Training | Coaching | Speeches & Talks UBIT Club IT, 12. Mai 2015 „Best of Cybersecurity“ Partner und Kunden Government: Financial Institutions: UBIT Club IT, 12. Mai 2015 „Best of Cybersecurity“ Partner und Kunden UBIT Club IT, 12. Mai 2015 „Best of Cybersecurity“ Forschungskooperation UBIT Club IT, 12. Mai 2015 „Best of Cybersecurity“ Auftragsforschung • Innovationsscheck (PLUS) • Feasibility Studie • Basisprogramm Einzelprojekt • Competence Headquarters www.innovationcoaches.at UBIT Club IT, 12. Mai 2015 „Best of Cybersecurity“ Forschungsprojekte • Kooperative Forschungsprojekte im Rahmen von nationalen und internationalen Ausschreibungen • FFG: IKT der Zukunft, Produktion der Zukunft, Mobilität der Zukunft, Energieforschung • KIRAS: Nationale Sicherheitsforschung • H2020: Europäische Forschungsprojekte UBIT Club IT, 12. Mai 2015 „Best of Cybersecurity“ sbaPRIME UBIT Club IT, 12. Mai 2015 „Best of Cybersecurity“ Leistungsüberblick • Quartalsweise Events • Regelmäßige Informationsupdates • Zwei Kurse pro Jahr • Analystengespräch • Evaluierte Security-Lösungen • Entwicklungen aus dem Forschungsumfeld ohne zusätzliche Lizenzkosten UBIT Club IT, 12. Mai 2015 „Best of Cybersecurity“ SBA Accelerator Programm UBIT Club IT, 12. Mai 2015 „Best of Cybersecurity“ Strategische Ziele • Unterstützung von Gründern, die Lösungen im Informationssicherheitsumfeld entwicklen • Förderung von Europäischen Security Lösungen & Forschung • Fokussierung auf die DACH Region & angrenzende Länder UBIT Club IT, 12. Mai 2015 „Best of Cybersecurity“ 3 Phasen 1. Security Ideen Wettbewerb 2. Forschung & Entwicklung 3. Business Development & Support UBIT Club IT, 12. Mai 2015 „Best of Cybersecurity“ Timeline • Start des Wettbewerbs: Ende Mai 2015 • Einreichungen bis: 1. Oktober 2015 • 1-3 Ideen/Start-Ups bekommen die Möglichkeit zu einem 1-wöchigen Workshop in Wien im Oktober • Jurysitzung & Ergebnisse: Ende Oktober UBIT Club IT, 12. Mai 2015 „Best of Cybersecurity“ Daniela Friedl SBA Research gGmbH Favoritenstraße 16, 1040 Wien +43 699 115 18 148 [email protected] [email protected] www.sba-research.org UBIT Club IT, 12. Mai 2015 „Best of Cybersecurity“
