Items where Author is "Fahl, Sascha"

Up a level
Export as [feed] Atom [feed] RSS 1.0 [feed] RSS 2.0
Group by: Item Type | No Grouping
Number of items: 43.

Amft, Sabrina and Höltervennhoff, Sandra and Huaman, Nicolas and Krause, Alexander and Simko, Lucy and Acar, Yasemin and Fahl, Sascha
(2023) “We’ve Disabled MFA for You”: An Evaluation of the Security and Usability of Multi-Factor Authentication Recovery Deployments.
In: The 30th ACM Conference on Computer and Communication Security, 26.11.2023-30.11.2023, Copenhagen, Denmark.
Conference: CCS ACM Conference on Computer and Communications Security
(In Press)

Krause, Alexander and Klemmer, Jan H. and Huaman, Nicolas and Wermke, Dominik and Acar, Yasemin and Fahl, Sascha
(2023) Pushed by Accident: A Mixed-Methods Study on Strategies of Handling Secrets in Source Code Repositories.
In: 32nd USENIX Security Symposium, 9-11 Aug 2023, Anaheim, CA, USA.
Conference: USENIX-Security Usenix Security Symposium

Amft, Sabrina and Höltervennhoff, Sandra and Huaman, Nicolas and Acar, Yasemin and Fahl, Sascha
(2023) “Would You Give the Same Priority to the Bank and a Game? I Do Not!” Exploring Credential Management Strategies and Obstacles during Password Manager Setup.
In: Nineteenth Symposium on Usable Privacy and Security, 06.08.2023-08.08.2023, Anaheim, CA, USA.
Conference: SOUPS Symposium On Usable Privacy and Security

Wermke, Dominik and Klemmer, Jan H. and Wöhler, Noah and Schmüser, Juliane and Harshini Sri Ramulu, Yasemin Acar and Fahl, Sascha
(2023) "Always Contribute Back": A Qualitative Study on Security Challenges of the Open Source Supply Chain.
In: 44th IEEE Symposium on Security and Privacy (S&P '23), 22-25 May 2023, HYATT REGENCY, SAN FRANCISCO, CA.
Conference: SP IEEE Symposium on Security and Privacy

Fourné, Marcel and Wermke, Dominik and Enck, William and Fahl, Sascha and Acar, Yasemin
(2023) It’s like flossing your teeth: On the Importance and Challenges of Reproducible Builds for Software Supply Chain Security.
In: 44th IEEE Symposium on Security and Privacy (S&P '23), 22-25 May 2023, San Francisco, CA.
Conference: SP IEEE Symposium on Security and Privacy

Utz, Christine and Amft, Sabrina and Degeling, Martin and Holz, Thorsten and Fahl, Sascha and Schaub, Florian
(2023) Privacy Rarely Considered: Exploring Considerations in the Adoption of Third-Party Services by Websites.
In: PETS 2023.
Conference: PETS Privacy Enhancing Technologies Symposium (was International Workshop of Privacy Enhancing Technologies)

Kaur, Harjot and Amft, Sabrina and Votipka, Daniel and Acar, Yasemin and Fahl, Sascha
(2022) Where to Recruit for Security Development Studies: Comparing Six Software Developer Samples.
In: 31st USENIX Security Symposium, August 10-12, 2022, Boston, MA, USA.
Conference: USENIX-Security Usenix Security Symposium

Huaman, Nicolas and Krause, Alexander and Wermke, Dominik and Klemmer, Jan H. and Stransky, Christian and Acar, Yasemin and Fahl, Sascha
(2022) If You Can’t Get Them to the Lab: Evaluating a Virtual Study Environment with Security Information Workers.
In: Eighteenth Symposium on Usable Privacy and Security, 08.08 - 09.08.2022, Boston, MA.
Conference: SOUPS Symposium On Usable Privacy and Security

Stransky, Christian and Wiese, Oliver and Roth, Volker and Acar, Yasemin and Fahl, Sascha
(2022) 27 Years and 81 Million Opportunities Later: Investigating the Use of Email Encryption for an Entire University.
In: 43rd IEEE Symposium on Security and Privacy.
Conference: SP IEEE Symposium on Security and Privacy

Wermke, Dominik and Wöhler, Noah and Klemmer, Jan H. and Fourné, Marcel and Acar, Yasemin and Fahl, Sascha
(2022) Committed to Trust: A Qualitative Study on Security & Trust in Open Source Software Projects.
In: 43rd IEEE Symposium on Security and Privacy.
Conference: SP IEEE Symposium on Security and Privacy

Gutfleisch, Marco and Klemmer, Jan H. and Busch, Niklas and Acar, Yasemin and Sasse, M. Angela and Fahl, Sascha
(2022) How Does Usable Security (Not) End Up in Software Products? Results From a Qualitative Interview Study.
In: 43rd IEEE Symposium on Security and Privacy (S&P '22).
Conference: SP IEEE Symposium on Security and Privacy

Huaman, Nicolas and von Skarczinski, Bennet and Wermke, Dominik and Stransky, Christian and Acar, Yasemin and Dreißigacker, Arne and Fahl, Sascha
(2021) A Large-Scale Interview Study on Information Security in and Attacks against Small and Medium-sized Enterprises.
In: In 30th USENIX Security Symposium, USENIX Security '21, August 11-13, 2021, Vancouver, B.C., Canada.
Conference: USENIX-Security Usenix Security Symposium

Häring, Maximilian and Gerlitz, Eva and Tiefenau, Christian and Smith, Matthew and Wermke, Dominik and Fahl, Sascha and Acar, Yasemin
(2021) Never ever or no matter what: Investigating Adoption Intentions and Misconceptions about the Corona-Warn-App in Germany.
In: Seventeenth Symposium on Usable Privacy and Security, SOUPS 2021., August 8-10, 2021.
Conference: SOUPS Symposium On Usable Privacy and Security

Stransky, Christian and Wermke, Dominik and Schrader, Johanna and Huaman, Nicolas and Acar, Yasemin and Fehlhaber, Anna Lena and Wei, Miranda and Ur, Blase and Fahl, Sascha
(2021) On the Limited Impact of Visualizing Encryption: Perceptions of E2E Messaging Security.
In: Seventeenth Symposium on Usable Privacy and Security, SOUPS 2021., August 8-10, 2021.
Conference: SOUPS Symposium On Usable Privacy and Security

Oltrogge, Marten and Huaman, Nicolas and Amft, Sabrina and Acar, Yasemin and Backes, Michael and Fahl, Sascha
(2021) Why Eve and Mallory Still Love Android: Revisiting TLS (In)Security in Android Applications.
In: 30th USENIX Security Symposium (USENIX Security 21).
Conference: USENIX-Security Usenix Security Symposium
(In Press)

Huaman, Nicolas and Amft, Sabrina and Oltrogge, Marten and Acar, Yasemin and Fahl, Sascha
(2021) They Would do Better if They Worked Together: The Case of Interaction Problems Between Password Managers and Websites.
In: 42nd IEEE Symposium on Security and Privacy, IEEE S&P 2021., May 24-27, 2021.
Conference: SP IEEE Symposium on Security and Privacy

Ghorbani Lyastani, Sanam and Schilling, Michael and Fahl, Sascha and Backes, Michael and Bugiel, Sven
(2018) Better managed than memorized? Studying the Impact of Managers on Password Strength and Reuse.
In: 27th USENIX Security Symposium (USENIX Security 18).
Conference: USENIX-Security Usenix Security Symposium

Wermke, Dominik and Huaman, Nicolas and Acar, Yasemin and Reaves, Bradley and Traynor, Patrick and Fahl, Sascha
(2018) A Large Scale Investigation of Obfuscation Use in Google Play.
CoRR, abs/18.

Oltrogge, Marten and Derr, Erik and Stransky, Christian and Acar, Yasemin and Fahl, Sascha and Rossow, Christian and Pellegrino, Giancarlo and Bugiel, Sven and Backes, Michael
(2018) The Rise of the Citizen Developer: Assessing the Security Impact of Online App Generators.
In: 39th IEEE Symposium on Security and Privacy (SP '18).
Conference: SP IEEE Symposium on Security and Privacy

Stransky, Christian and Acar, Yasemin and Nguyen, Duc Cuong and Wermke, Dominik and Redmiles, Elissa M. and Kim, Doowon and Backes, Michael and Garfinkel, Simson and Mazurek, Michelle and Fahl, Sascha
(2017) Lessons Learned from Using an Online Platform to Conduct Large-Scale, Online Controlled Security Experiments with Software Developers.
In: Proceedings of the 10th USENIX Workshop on Cyber Security Experimentation and Test (CSET '17).

Acar, Yasemin and Stransky, Christian and Wermke, Dominik and Mazurek, Michelle and Fahl, Sascha
(2017) Security Developer Studies with GitHub Users: Exploring a Convenience Sample.
UNSPECIFIED.

Acar, Yasemin and Backes, Michael and Fahl, Sascha and Garfinkel, Simson and Kim, Doowon and Mazurek, Michelle and Stransky, Christian
(2017) Comparing the Usability of Cryptographic APIs.
In: 38th IEEE Symposium on Security and Privacy (S&P '17).
Conference: SP IEEE Symposium on Security and Privacy

Fischer, Felix and Böttinger, Konstantin and Xiao, Huang and Stransky, Christian and Acar, Yasemin and Backes, Michael and Fahl, Sascha
(2017) Stack Overflow Considered Harmful? The Impact of Copy&Paste on Android Application Security.
In: 38th IEEE Symposium on Security and Privacy (S&P '17).
Conference: SP IEEE Symposium on Security and Privacy

Acar, Yasemin and Backes, Michael and Fahl, Sascha and Kim, Doowon and Mazurek, Michelle L. and Stransky, Christian
(2017) How Internet Resources Might Be Helping You Develop Faster but Less Securely.
IEEE Security & Privacy.

Acar, Yasemin and Stransky, Christian and Wermke, Dominik and Weir, Charles and Mazurek, Michelle L. and Fahl, Sascha
(2017) Developers Need Support, Too: A Survey of Security Advice for Software Developers.
In: IEEE Cybersecurity Development, SecDev 2017, Cambridge, MA, USA, September 24-26, 2017.

Derr, Erik and Bugiel, Sven and Fahl, Sascha and Acar, Yasemin and Backes, Michael
(2017) Keep me Updated: An Empirical Study of Third-Party Library Updatability on Android.
In: Proceedings of the 24th ACM Conference on Computer and Communication Security (CCS'17).
Conference: CCS ACM Conference on Computer and Communications Security

Nguyen, Duc Cuong and Wermke, Dominik and Acar, Yasemin and Backes, Michael and Weir, Charles Alexander Forbes and Fahl, Sascha
(2017) A Stitch in Time: Supporting Android Developers in Writing Secure Code.
In: Proceedings of the 24th ACM Conference on Computer and Communications Security (CCS '17).
Conference: CCS ACM Conference on Computer and Communications Security

Ghorbani Lyastani, Sanam and Schilling, Michael and Fahl, Sascha and Bugiel, Sven and Backes, Michael
(2017) Studying the Impact of Managers on Password Strength and Reuse.
CoRR, abs/17.

Acer, Mustafa Emre and Stark, Emily and Felt, Adrienne Porter and Fahl, Sascha and Bhargava, Radhika and Dev, Bhanu and Braithwaite, Matt and Sleevi, Ryan and Tabriz, Parisa
(2017) Where the Wild Warnings Are: Root Causes of Chrome HTTPS Certificate Errors.
In: Proceedings of the 2017 ACM SIGSAC Conference on Computer and Communications Security, CCS 2017, Dallas, TX, USA, October 30 - November 03, 2017.
Conference: CCS ACM Conference on Computer and Communications Security

Schürmann, Dominik and Busse, Karoline and Smith, Matthew and Fahl, Sascha and Dechand, Sergej and Acar, Yasemin
(2016) An Empirical Study of Textual Key-Fingerprint Representations.
In: Proceedings of the 25th USENIX Security Symposium (USENIX Security '16).
Conference: USENIX-Security Usenix Security Symposium

Acar, Yasemin and Backes, Michael and Bugiel, Sven and Fahl, Sascha and McDaniel, Patrick and Smith, Matthew
(2016) SoK: Lessons Learned From Android Security Research For Appified Software Platforms.
In: 37th IEEE Symposium on Security and Privacy (S&P '16).
Conference: SP IEEE Symposium on Security and Privacy

Acar, Yasemin and Backes, Michael and Fahl, Sascha and Kim, Doowon and Mazurek, Michelle and Stransky, Christian
(2016) You Get Where You're Looking For: The Impact Of Information Sources On Code Security.
In: 37th IEEE Symposium on Security and Privacy (S&P '16).
Conference: SP IEEE Symposium on Security and Privacy

Acar, Yasemin and Fahl, Sascha and Mazurek, Michelle
(2016) You are not your Developer, either: A Research Agenda for Usable Security and Privacy Research Beyond End Users.
In: IEEE SecDev 2016.

Fahl, Sascha
(2016) On the importance of ecologically valid usable security research for end users and IT workers.
Doctoral thesis, University of Hanover, Hannover, Germany.

Oltrogge, Marten and Acar, Yasemin and Dechand, Sergej and Smith, Matthew and Fahl, Sascha
(2015) To Pin or Not to Pin—Helping App Developers Bullet Proof Their TLS Connections.
In: 24th USENIX Security Symposium (USENIX Security 15).
Conference: USENIX-Security Usenix Security Symposium

Perl, Henning and Dechand, Sergej and Smith, Matthew and Arp, Daniel and Yamaguchi, Fabian and Rieck, Konrad and Fahl, Sascha and Acar, Yasemin
(2015) Vccfinder: Finding potential vulnerabilities in open-source projects to assist code audits.
In: Proceedings of the 22nd ACM SIGSAC Conference on Computer and Communications Security.
Conference: CCS ACM Conference on Computer and Communications Security

Unger, Nik and Dechand, Sergej and Bonneau, Joseph and Fahl, Sascha and Perl, Henning and Goldberg, Ian and Smith, Matthew
(2015) SoK: Secure Messaging.
In: 2015 IEEE Symposium on Security and Privacy, SP 2015, San Jose, CA, USA, May 17-21, 2015.
Conference: SP IEEE Symposium on Security and Privacy

Fahl, Sascha and Dechand, Sergej and Perl, Henning and Fischer, Felix and Smrcek, Jaromir and Smith, Matthew
(2014) Hey, NSA: Stay Away from my Market! Future Proofing App Markets against Powerful Attackers.
In: Proceedings of the 2014 ACM SIGSAC Conference on Computer and Communications Security, Scottsdale, AZ, USA, November 3-7, 2014.

Harbach, Marian and Fahl, Sascha and Smith, Matthew
(2014) Who's Afraid of Which Bad Wolf? A Survey of IT Security Risk Awareness.
In: IEEE 27th Computer Security Foundations Symposium, CSF 2014, Vienna, Austria, 19-22 July, 2014.
Conference: CSF IEEE Computer Security Foundations Symposium (was CSFW)

Fahl, Sascha and Acar, Yasemin and Perl, Henning and Smith, Matthew
(2014) Why eve and mallory (also) love webmasters: a study on the root causes of SSL misconfigurations.
In: 9th ACM Symposium on Information, Computer and Communications Security, ASIA CCS '14, Kyoto, Japan - June 03 - 06, 2014.

Perl, Henning and Fahl, Sascha and Smith, Matthew
(2014) You Won't Be Needing These Any More: On Removing Unused Certificates from Trust Stores.
In: Financial Cryptography and Data Security - 18th International Conference, FC 2014, Christ Church, Barbados, March 3-7, 2014, Revised Selected Papers.

Fahl, Sascha and Harbach, Marian and Oltrogge, Marten and Muders, Thomas and Smith, Matthew
(2013) Hey, You, Get Off of My Clipboard.
In: UNSPECIFIED Springer Berlin Heidelberg, Berlin, Heidelberg, pp. 144-161. ISBN 978-3-642-39884-1
(Unpublished)

Fahl, Sascha and Harbach, Marian and Muders, Thomas and Baumgärtner, Lars and Freisleben, Bernd and Smith, Matthew
(2012) Why Eve and Mallory Love Android: An Analysis of Android SSL (in)Security.
In: Proceedings of the 2012 ACM Conference on Computer and Communications Security.
Conference: CCS ACM Conference on Computer and Communications Security

This list was generated on Sun Dec 22 08:56:23 2024 CET.