Browse by Research Area

(2024) What is in the Chrome Web Store?

(2024) The Great Request Robbery: An Empirical Study of Client-side Request Hijacking Vulnerabilities on the Web.

(2024) Measuring the Effects of Stack Overflow Code Snippet Evolution on Open-Source Software Security.

(2023) Poster: From Hashes to Ashes – A Comparison of Transcription Services.

(2023) “We’ve Disabled MFA for You”: An Evaluation of the Security and Usability of Multi-Factor Authentication Recovery Deployments. (In Press)

(2023) Jack-in-the-box: An Empirical Study of JavaScript Bundling on the Web and its Security Implications.

(2023) Pakistani Teens and Privacy - How Gender Disparities, Religion and Family Values Impact the Privacy Design Space.

(2023) You Call This Archaeology? Evaluating Web Archives for Reproducible Web Security Measurements.

(2023) From Attachments to SEO: Click Here to Learn More about Clickbait PDFs! (In Press)

(2023) Cloud Watching: Understanding Attacks Against Cloud-Hosted Services.

(2023) Investigating Security Folklore: A Case Study on the Tor over VPN Phenomenon.

(2023) Empirical Research Methods in Usable Privacy and Security.

(2023) Investigating Verification Behavior and Perceptions of Visual Digital Certificates.

(2023) Pushed by Accident: A Mixed-Methods Study on Strategies of Handling Secrets in Source Code Repositories.

(2023) To Cloud or not to Cloud: A Qualitative Study on Self-Hosters’ Motivation, Operation, and Security Mindset.

(2023) Bilingual Problems: Studying the Security Risks Incurred by Native Extensions in Scripting Languages.

(2023) Extended Hell(o): A Comprehensive Large-Scale Study on Email Confidentiality and Integrity Mechanisms in the Wild.

(2023) SandDriller: A Fully-Automated Approach for Testing Language-Based JavaScript Sandboxes.

(2023) Silent Spring: Prototype Pollution Leads to Remote Code Execution in Node.js.

(2023) “Would You Give the Same Priority to the Bank and a Game? I Do Not!” Exploring Credential Management Strategies and Obstacles during Password Manager Setup.

(2023) Comparing Large-Scale Privacy and Security Notifications. (In Press)

(2023) "Always Contribute Back": A Qualitative Study on Security Challenges of the Open Source Supply Chain.

(2023) It's (DOM) Clobbering Time: Attack Techniques, Prevalence, and Defenses. (Submitted)

(2023) It’s like flossing your teeth: On the Importance and Challenges of Reproducible Builds for Software Supply Chain Security.

(2023) Perceptions of Distributed Ledger Technology Key Management - An Interview Study with Finance Professionals.

(2023) The Leaky Web: Automated Discovery of Cross-Site Information Leaks in Browsers and the Web.

(2023) SecBench.js: An Executable Security Benchmark Suite for Server-Side JavaScript.

(2023) Different Researchers, Different Results? Analyzing the Influence of Researcher Experience and Data Type During Qualitative Analysis of an Interview and Survey Study on Security Advice.

(2023) A Psychometric Scale to Measure Individuals’ Value of Other People’s Privacy (VOPP).

(2023) Why I Can't Authenticate --- Understanding the Low Adoption of Authentication Ceremonies with Autoethnography.

(2023) DiffCSP: Finding Browser Bugs in Content Security Policy Enforcement through Differential Testing.

(2023) A Systematic Study of the Consistency of Two-Factor Authentication User Journeys on Top-Ranked Websites.

(2023) Privacy Rarely Considered: Exploring Considerations in the Adoption of Third-Party Services by Websites.

(2022) Helping or Hindering? How Browser Extensions Undermine Security. (In Press)

(2022) Freely Given Consent? Studying Consent Notice of Third-Party Tracking and Its Violations of GDPR in Android Apps. (In Press)

(2022) HTML Violations and Where to Find Them: A Longitudinal Analysis of Specification Violations in HTML.

(2022) A World Wide View of Browsing the World Wide Web.

(2022) Where to Recruit for Security Development Studies: Comparing Six Software Developer Samples.

(2022) An open door may tempt a saint: Examining situational and individual determinants of privacy-invading behavior.

(2022) Developing a Psychometric Scale to Measure One’s Valuation of Other People’s Privacy.

(2022) Comparing User Perceptions of Anti-Stalkerware Apps with the Technical Reality.

(2022) If You Can’t Get Them to the Lab: Evaluating a Virtual Study Environment with Security Information Workers.

(2022) Industrial practitioners' mental models of adversarial machine learning.

(2022) Replication: Stories as Informal Lessons about Security.

(2022) The Security Lottery: Measuring Client-Side Web Security Inconsistencies.

(2022) Security at the End of the Tunnel: The Anatomy of VPN Mental Models Among Experts and Non-Experts in a Corporate Context.

(2022) Are HTTPS Configurations Still a Challenge?: Validating Theories of Administrators’ Difficulties with TLS Configurations.

(2022) Mental Models of the Internet and Its Online Risks: Children and Their Parent(s).

(2022) Hand Sanitizers in the Wild: A Large-scale Study of Custom JavaScript Sanitizer Functions.

(2022) To hash or not to hash: A security assessment of CSP’s unsafe-hashes expression.

(2022) 27 Years and 81 Million Opportunities Later: Investigating the Use of Email Encryption for an Entire University.

(2022) Committed to Trust: A Qualitative Study on Security & Trust in Open Source Software Projects.

(2022) How Does Usable Security (Not) End Up in Software Products? Results From a Qualitative Interview Study.

(2022) The State of the SameSite: Studying the Usage, Effectiveness, and Adequacy of SameSite Cookies.

(2022) Reproducibility and Replicability of Web Measurement Studies.

(2021) A Systematic Literature Review of Empirical Methods and Risk Representation in Usable Privacy and Security Research.

(2021) 12 Angry Developers – A Qualitative Study on Developers’ Struggles with CSP.

(2021) DoubleX: Statically Detecting Vulnerable Data Flows in Browser Extensions at Scale.

(2021) Preventing Dynamic Library Compromise on Node.js via RWX-Based Privilege Reduction.

(2021) What’s in the Box? Exploring the Inner Life of Neural Networks with Robust Rules.

(2021) Integrative analysis of epigenetics data identifies gene-specific regulatory elements.

(2021) Transferring Update Behavior from Smartphones to Smart Consumer Devices. (Submitted)

(2021) Where We Stand (or Fall): An Analysis of CSRF Defenses in Web Frameworks.

(2021) Delta-based Verification of Software Product Families.

(2021) When Life Gives You Oranges: Detecting and Diagnosing Intermittent Job Failures at Mozilla.

(2021) Differentiable Pattern Set Mining.

(2021) Graph Similarity Description: How Are These Graphs Similar?

(2021) Explanation Beats Context: The Effect of Timing & Rationales on Users’ Runtime Permission Decisions.

(2021) A Large-Scale Interview Study on Information Security in and Attacks against Small and Medium-sized Enterprises.

(2021) Never ever or no matter what: Investigating Adoption Intentions and Misconceptions about the Corona-Warn-App in Germany.

(2021) On the Limited Impact of Visualizing Encryption: Perceptions of E2E Messaging Security.

(2021) On the Usability of Authenticity Checks for Hardware Security Tokens.

(2021) Exploring Authentication for Security-Sensitive Tasks on Smart Home Voice Assistants.

(2021) JAW: Studying Client-side CSRF with Hybrid Property Graphs and Declarative Traversals.

(2021) Relative Flatness and Generalization.

(2021) Share First, Ask Later (or Never?) - Studying Violations of GDPR's Explicit Consent in Android Apps.

(2021) A Weaker Faithfulness Assumption based on Triple Interactions.

(2021) Careful Who You Trust: Studying the Pitfalls of Cross-Origin Communication.

(2021) Data-driven equation for drug-membrane permeability across drugs and membranes.

(2021) Measuring User Perception for Detecting Unexpected Access to Sensitive Resource in Mobile Apps. (Submitted)

(2021) Statically Detecting JavaScript Obfuscation and Minification Techniques in the Wild.

(2021) Investigating Car Drivers’ Information Demand after Safety and Security Critical Incidents.

(2021) Black Widow: Blackbox Data-driven Web Scanning.

(2021) Discovering reliable causal rules.

(2021) Estimating Conditional Mutual Information for Discrete-Continuous Mixtures using Multi-Dimensional Adaptive Histograms.

(2021) Exploring User-Centered Security Design for Usable Authentication Ceremonies.

(2021) Stop the Consent Theater.

(2021) Mining Easily Understandable Models from Complex Event Logs.

(2021) SUSAN: The Structural Similarity Random Walk Kernel.

(2021) They Would do Better if They Worked Together: The Case of Interaction Problems Between Password Managers and Websites.

(2021) Certified Abstract Cost Analysis.

(2021) Discovering Fully Oriented Causal Networks.

(2021) Reining in the Web's Inconsistencies with Site Policy.

(2021) Who's Hosting the Block Party? Studying Third-Party Blockage of CSP and SRI.

(2020) Just Wait For It... Mining Sequential Patterns with Reliable Prediction Delays. (In Press)

(2020) PMForce: Systematically Analyzing PostMessage Handlers at Scale.

(2020) The Relaxed Maximum Entropy Distribution and its Application to Pattern Discovery. (In Press)

(2020) Discovering Dependencies with Reliable Mutual Information.

(2020) Poster: Debugging Inputs. (In Press)

(2020) End User and Expert Perceptions of Threats and Potential Countermeasures.

(2020) Cash, Cards or Cryptocurrencies? A Study of Payment Culture in Four Countries.

(2020) Security, Availability, and Multiple Information Sources: Exploring Update Behavior of System Administrators.

(2020) User Mental Models of Cryptocurrency Systems - A Grounded Theory Approach.

(2020) Discovering Approximate Functional Dependencies using Smoothed Mutual Information.

(2020) Discovering Functional Dependencies from Mixed-Type Data.

(2020) Discovering Succinct Pattern Sets Expressing Co-Occurrence and Mutual Exclusivity.

(2020) A Tale of Two Headers: A Formal Analysis of Inconsistent Click-Jacking Protection on the Web.

(2020) Assessing the Impact of Script Gadgets on CSP at Scale.

(2020) Causal Inference on Discrete Data.

(2020) Is FIDO2 the Kingslayer of User Authentication? A Comparative Usability Study of FIDO2 Passwordless Authentication.

(2020) What is Normal, What is Strange, and What is Missing in an Knowledge Graph.

(2020) Raccoon: Automated Verification of Guarded Race Conditions in Web Applications.

(2020) Cross-Origin State Inference (COSI) Attacks: Leaking Web Site States through XS-Leaks.

(2020) Complex Security Policy? A Longitudinal Analysis of Deployed Content Security Policies.

(2020) Deceptive Previews: A Study of the Link Preview Trustworthiness in Social Platforms.

(2019) AdVersarial: Perceptual Ad Blocking meets Adversarial Machine Learning.

(2019) A Usability Evaluation of Let's Encrypt and Certbot: Usable Security Done Right.

(2019) Poster: Let History not Repeat Itself (this Time) - Tackling WebAuthn Developer Issues Early On.

(2019) Sets of Robust Rules, and How to Find Them.

(2019) Identifiability of Cause and Effect using Regularized Regression.

(2019) Modern MDL meets Data Mining Insights, Theory, and Practice.

(2019) ScriptProtect: Mitigating Unsafe Third-Party JavaScript Practices.

(2019) Short Text, Large Effect: Measuring the Impact of User Reviews on Android App Security & Privacy.

(2019) We Are Not Your Real Parents: Telling Causal from Confounded using MDL.

(2019) "If HTTPS Were Secure, I Wouldn't Need 2FA" - End User and Administrator Mental Models of HTTPS.

(2019) Stellungnahme gegenüber dem Landtag des Saarlandes in der Anhörung zur Drucksache 16/761 „Informationssicherheitsgesetz Saarland – IT-SiG SL“ sowie Änderung weiterer Vorschriften.

(2019) Stellungnahme gegenüber dem Landtag des Freistaats Sachen in der Anhörung zur Drucksache 6/16724 „Gesetz zur Neuordnung der Informationssicherheit im Freistaat Sachsen“.

(2019) Testing Conditional Independence on Discrete Data using Stochastic Complexity.

(2019) Approximating Algorithmic Conditional Independence for Discrete Data.

(2019) Stop to Unlock - Improving the Security of Android Unlock Patterns.

(2019) Comments on the “Draft Ethics Guidelines for Trustworthy AI” by the High-Level Expert Group on Artificial Intelligence.

(2019) Don’t Trust The Locals: Investigating the Prevalence of Persistent Client-Side Cross-Site Scripting in the Wild.

(2019) Geo-locating Drivers: A Study of Sensitive Data Leakage in Ride-Hailing Services.

(2019) Telling Cause from Effect by Local and Global Regression. (In Press)

(2019) Summarizing Dynamic Graphs using MDL.

(2018) Paris Call: Important Commitment Against The Arms Race With Cyber Weapons.

(2018) Rule Discovery for Exploratory Causal Reasoning.

(2018) Stochastic Complexity for Testing Conditional Independence on Discrete Data.

(2018) Accurate Causal Inference on Discrete Data.

(2018) Discovering Reliable Dependencies from Data: Hardness and Improved Algorithms.

(2018) Investigating System Operators' Perspective on Security Misconfigurations.

(2018) Causal Inference on Multivariate and Mixed Type Data.

(2018) Better managed than memorized? Studying the Impact of Managers on Password Strength and Reuse.

(2018) Generating Realistic Synthetic Population Datasets.

(2018) Transferring Tests Across Web Applications.

(2018) JAMI: Fast Computation of Conditional Mutual Information for ceRNA network analysis.

(2018) Origo: Causal Inference by Compression.

(2018) JaSt: Fully Syntactic Detection of Malicious (Obfuscated) JavaScript.

(2018) Causal Inference on Event Sequences.

(2018) Didn’t You Hear Me? — Towards More Successful Web Vulnerability Notifications.

(2018) Poster: The Petri Dish Attack - Guessing Secrets Based on Bacterial Growth.

(2018) The Case for Automatic Database Administration using Deep Reinforcement Learning.

(2018) DroidMate-2: A Platform for Android Test Generation.

(2018) Practical Test Dependency Detection.

(2018) Wo ist der Fehler und wie wird er behoben? Ein Experiment mit Softwareentwicklern.

(2017) An Exact and Sustainable Analysis of Non-preemptive Scheduling.

(2017) Die Blockchain im Spannungsfeld der Grundsätze der Datenschutzgrundverordnung.

(2017) Where is the Bug and How is It Fixed? An Experiment with Practitioners.

(2017) Lessons Learned from Using an Online Platform to Conduct Large-Scale, Online Controlled Security Experiments with Software Developers.

(2017) "I Have No Idea What I'm Doing" - On the Usability of Deploying HTTPS.

(2017) Security Developer Studies with GitHub Users: Exploring a Convenience Sample.

(2017) Quantifying Location Sociality.

(2017) Tatobjekt und Vortaten der Datenhehlerei (§ 202 d StGB).

(2017) Blocks and Chains: Introduction to Bitcoin, Cryptocurrencies, and their Consensus Mechanisms.

(2017) Quantifying the Resiliency of Replicated Networked Control Systems to Transient Faults.

(2017) Comparing the Usability of Cryptographic APIs.

(2017) How Developers Debug Software- The DBGBENCH Dataset.

(2017) Topic-driven testing.

(2017) Efficient fuzz testing leveraging input, code, and execution.

(2017) Efficient and Flexible Discovery of PHP Application Vulnerabilities.

(2017) FairTest: Discovering Unwarranted Associations in Data-Driven Applications.

(2017) How Internet Resources Might Be Helping You Develop Faster but Less Securely.

(2017) Offline Equivalence: A Non-preemptive Scheduling Technique for Resource-Constrained Embedded Real-Time Systems.

(2017) TimerShield: Protecting High-Priority Tasks from Low-Priority Timer Interference.

(2017) A Broad View of the Ecosystem of Socially Engineered Exploit Documents.

(2017) Exploring Design Directions for Wearable Privacy.

(2017) Datenschutz für Minderjährige nach der Europäischen Datenschutz-Grundverordnung (DSGVO) vom 27. April 2016.

(2017) How the Web Tangled Itself: Uncovering the History of Client-Side Web (In)Security.

(2017) Mit Schirm, Charme und Kamera – Verbotene Sendeanlagen i.S.d. § 90 TKG.

(2017) "My friend Cayla" - eine nach § 90 TKG verbotene Sendeanlage?

(2017) RedQueen: An Online Algorithm for Smart Broadcasting in Social Networks.

(2017) Richterliche Unabhängigkeit und Bring Your Own Device (BYOD) – Weg in die Zukunft oder unvertretbares Sicherheitsrisiko?

(2017) Spionagegeräte im Kinderzimmer? – Zur Problematik des § 90 TKG bei Smart Toys.

(2017) Strafbarkeit bei der digitalen Spurensuche – Eine rechtliche Bewertung von Honeypots.

(2017) Uncovering the Spatiotemporal Patterns of Collective Social Activity.

(2017) Accelerating Analytical Processing in MVCC using Fine-Granular High-Frequency Virtual Snapshotting.

(2017) Active Learning of Input Grammars.

(2017) Auf der Jagd nach Schwachstellen – Eine strafrechtliche Bewertung von Portscans.

(2017) Auf der Jagd nach Schwachstellen – Eine strafrechtliche Bewertung von Portscans.

(2017) Beyond Pairwise Similarity: Quantifying and Characterizing Linguistic Similarity between Groups of Languages by MDL.

(2017) CUT: automatic unit testing in the cloud.

(2017) Characterising the Difference and the Norm between Sequence Databases.

(2017) Correlation by Compression.

(2017) Datensicherheit und IT-Sicherheit in der Justiz.

(2017) Deemon: Detecting CSRF with Dynamic Analysis and Property Graphs.

(2017) Discovering Reliable Approximate Functional Dependencies.

(2017) Efficiently Discovering Locally Exceptional yet Globally Representative Subgroups.

(2017) Efficiently Discovering Unexpected Pattern Co-Occurrences.

(2017) Efficiently Summarising Event Sequences with Rich Interleaving Patterns.

(2017) An Exact and Sustainable Analysis of Non-preemptive Scheduling.

(2017) An Experimental Analysis of Different Key-Value Stores and Relational Databases.

(2017) FACETS : Adaptive Local Exploration of Large Graphs.

(2017) Identifying Consistent Statements about Numerical Data with Dispersion-Corrected Subgroup Discovery.

(2017) Keep me Updated: An Empirical Study of Third-Party Library Updatability on Android.

(2017) MDL for Causal Inference on Discrete Data.

(2017) Mining input grammars with AUTOGRAM.

(2017) Mit Schirm, Charme und Kamera – Verbotene Sendeanlagen i.S.d. § 90 TKG.

(2017) Model-based testing of end-user collaboration intensive systems.

(2017) O!Snap: Cost-Efficient Testing in the Cloud.

(2017) Origo: Causal Inference by Compression.

(2017) Proceedings of the ACM SIGKDD Workshop on Interactive Data Exploration and Analytics (IDEA).

(2017) Richterliche Unabhängigkeit und Bring Your Own Device (BYOD) – Weg in die Zukunft oder unvertretbares Sicherheitsrisiko?

(2017) Strafbarkeit bei der digitalen Spurensuche – Eine rechtliche Bewertung von Honeypots.

(2017) Summarising Event Sequences using Serial Episodes and an Ontology.

(2017) Supporting low-latency, low-criticality tasks in a certified mixed-criticality OS.

(2017) Swayam: distributed autoscaling to meet SLAs of machine learning inference services with resource efficiency.

(2017) Telling Cause from Effect by MDL-based Local and Global Regression.

(2017) Uncovering Structure-Property Relationships of Materials by Subgroup Discovery.

(2016) ESPRESSO: Explaining Relationships between Entity Sets.

(2016) On Profile Linkability despite Anonymity in Social Media Systems.

(2016) Software verstehen, zerstören, schützen mit automatischen Software-Modellen.

(2016) Ten Years of Knowledge Harvesting: Lessons and Challenges.

(2016) Ransomware als moderne Piraterie: Erpressung in Zeiten digitaler Kriminalität.

(2016) Metadaten – eine neue juristische Problemkategorie im Rahmen der elektronischen Aktenführung?

(2016) An Empirical Study of Textual Key-Fingerprint Representations.

(2016) Hey, You Have a Problem: On the Feasibility of Large-Scale Web Vulnerability Notification.

(2016) Automatisches Sicherheitstesten.

(2016) Smart-Home-Systeme in Zeiten digitaler Kriminalität.

(2016) Use the Force: Evaluating Force-sensitive Authentication for Mobile Devices.

(2016) Mining Sandboxes.

(2016) J-NERD: Joint Named Entity Recognition and Disambiguation with Rich Linguistic Features.

(2016) You Get Where You're Looking For: The Impact Of Information Sources On Code Security.

(2016) Anonymisierung, Pseudonymisierung und Transparenz für Big Data. Technische Herausforderungen und Regelung in der Datenschutz-Grundverordnung.

(2016) The Impact of Tangled Code Changes on Defect Prediction Models.

(2016) Thread-level Speculation with Kernel Support.

(2016) The Other Side of the Coin: User Experiences with Bitcoin Security and Privacy.

(2016) Datenspeicherung in modernen Fahrzeugen – wem „gehören” die im Fahrzeug gespeicherten Daten?

(2016) Dissemination Biases of Social Media Channels: On the Topical Coverage of Socially Shared News.

(2016) Distinguishing between Topical and Non-Topical Information Diffusion Mechanisms in Social Media.

(2016) EU-Datenschutz nach „Safe Harbor“.

(2016) Estimating Diffusion Networks: Recovery Conditions, Sample Complexity & Soft-thresholding Algorithm.

(2016) Hacking Session beim 25. EDV-Gerichtstag – Praktische Demonstrationen zur IT-Sicherheit.

(2016) Hardware-Keylogger: Die Tastatur in der Hand des Feindes.

(2016) Herausgabe der Personalakte eines Beamten an ein privates Unternehmen zum Zwecke der Aktendigitalisierung, Anmerkung zu OVG Schleswig, Beschl. v. 27.07.2016 – 2 MB 11/16.

(2016) Learning and Forecasting Opinion Dynamics in Social Networks.

(2016) Message Impartiality in Social Media Discussions.

(2016) On Testing Embedded Software.

(2016) On the Efficiency of the Information Networks in Social Media.

(2016) On the Wisdom of Experts vs. Crowds: Discovering Trustworthy Topical News in Microblogs.

(2016) Operational Analytics Data Management Systems.

(2016) Personenbezug bei dynamischen IP-Adressen – Anmerkung zur Entscheidung des EuGH vom 19.10.2016.

(2016) Pokémon GO – Technische Innovation und Strafrecht im Konflikt.

(2016) Sicherheit in der Gebäudeautomation.

(2016) Soziale Netzwerke im Fokus von Phishing-Angriffen - Eine Analyse aus technischer und rechtlicher Sicht -.

(2016) Understanding Same-Side Interactions with Wrist-Worn Devices.

(2016) You are not your Developer, either: A Research Agenda for Usable Security and Privacy Research Beyond End Users.

(2016) An experimental evaluation and analysis of database cracking.

(2016) Automatic Test Transfer across Applications.

(2016) Causal Inference by Compression.

(2016) Flexibly Mining Better Subgroups.

(2016) Gotchas from mining bug reports.

(2016) Hacking Session beim 25. EDV-Gerichtstag – Praktische Demonstrationen zur IT-Sicherheit.

(2016) Hardware-Keylogger: Die Tastatur in der Hand des Feindes.

(2016) Is Exploratory Search Different? A Comparison of Information Search Behavior for Exploratory and Lookup Tasks.

(2016) Keeping it Short and Simple: Summarising Complex Event Sequences with Multivariate Patterns.

(2016) Linear-Time Detection of Non-Linear Changes in Massively High Dimensional Time Series.

(2016) Machine Learning and Knowledge Discovery in Databases (ECML PKDD 2016).

(2016) Machine Learning and Knowledge Discovery in Databases (ECML PKDD 2016).

(2016) Metadaten – eine neue juristische Problemkategorie im Rahmen der elektronischen Aktenführung?

(2016) Patterns in Data Management.

(2016) Personenbezug bei dynamischen IP-Adressen – Anmerkung zur Entscheidung des EuGH vom 19.10.2016.

(2016) Pokémon GO – Technische Innovation und Strafrecht im Konflikt.

(2016) Post mortem auctoris? Software zur Unterstützung von Bibliotheken bei der Auffüllung ihrer Bestände.

(2016) Proceedings of the ACM SIGKDD Workshop on Interactive Data Exploration and Analytics (IDEA).

(2016) RUMA has it: rewired user-space memory access is possible!

(2016) Ransomware als moderne Piraterie: Erpressung in Zeiten digitaler Kriminalität.

(2016) Reconstructing an Epidemic over Time.

(2016) Runtime Fragility in Main Memory.

(2016) Sicherheit in der Gebäudeautomation.

(2016) Smart-Home-Systeme in Zeiten digitaler Kriminalität.

(2016) Switching to Git: The Good, the Bad, and the Ugly.

(2016) Universal Dependency Analysis.

(2016) An experimental comparison of thirteen relational equi-joins in main memory.

(2015) From Facepalm to Brain Bender: Exploring Client-Side Cross-Site Scripting.

(2015) In the Compression Hornet's Nest: A Security Study of Data Compression in Network Services.

(2015) Oblivion: Mitigating Privacy Leaks by Controlling the Discoverability of Online Information.

(2015) Generalized Task Parallelism.

(2015) Using Dynamic Symbolic Execution to Generate Inputs in Search-based GUI Testing.

(2015) Test Complement Exclusion: Guarantees from Dynamic Analysis.

(2015) On the Surprising Difficulty of Simple Things: The Case of Radix Partitioning.

(2015) A comparison of adaptive radix trees and hash tables.

(2015) It's Not a Bug, It's a Feature: How Misclassification Impacts Bug Prediction.

(2015) COEVOLVE: A Joint Point Process Model for Information Diffusion and Network Co-evolution.

(2015) Characterizing Information Diets of Social Media Users.

(2015) The Doppelgänger Bot Attack: Exploring Identity Impersonation in Online Social Networks.

(2015) Ein Bild der Zukunft? – Selbstentwickelte Betriebssysteme für Prüfungen am Beispiel des Saarbrücker Prüfungsrechner-Toolkits "Challenge OS".

(2015) Elektronischer Rechtsverkehr in Verfahren ohne Anwaltszwang - der Justizgewährungsanspruch des Bürgers als praktischer und theoretischer Störfaktor? - Anmerkungen insbesondere aus amtsrichterlicher Sicht.

(2015) The Many Shades of Anonymity: Characterizing Anonymous Social Media Content.

(2015) Microscopic Description and Prediction of Information Diffusion in Social Media: Quantifying the Impact of Topical Interests.

(2015) Oblivion: Mitigating Privacy Leaks by Controlling the Discoverability of Online Information.

(2015) Oblivion: Mitigating Privacy Leaks by Controlling the Discoverability of Online Information.

(2015) On the Reliability of Profile Matching Across Large Online Social Networks.

(2015) Quantifying Information Overload in Social Media and its Impact on Social Contagions.

(2015) Sampling Content from Online Social Networks: Comparing Random vs. Expert Sampling of the Twitter Stream.

(2015) A Seven-Dimensional Analysis of Hashing Methods and its Implications on Query Processing.

(2015) The Unexpected Dangers of Dynamic JavaScript.

(2015) jÄk: Using Dynamic Analysis to Crawl and Test Modern Web Applications.

(2015) AdaptiveNav: Adaptive Discovery of Interesting and Surprising Nodes in Large Graphs.

(2015) The Blind Men and the Elephant: About Meeting the Problem of Multiple Truths in Data from Clustering and Pattern Mining Perspectives.

(2015) The Case for Small Data Management.

(2015) Causal Inference by Direction of Information.

(2015) The Difference and the Norm — Characterising Similarities and Differences between Databases.

(2015) Getting to Know the Unknown Unknowns: Destructive-Noise Resistant Boolean Matrix Factorization.

(2015) Hidden Hazards: Finding Missing Nodes in Large Graph Epidemics.

(2015) Janiform intra-document analytics for reproducible research.

(2015) Multiprocessor real-time scheduling with arbitrary processor affinities: from practice to theory.

(2015) Non-Parametric Jensen-Shannon Divergence.

(2015) Proceedings of the ACM SIGKDD Workshop on Interactive Data Exploration and Analytics (IDEA).

(2015) Summarizing and Understanding Large Graphs.

(2014) XMLMate: Evolutionary XML Test Generation.

(2014) Probabilistic Prediction of Privacy Risks in User Search Histories.

(2014) Poster: Quasi-ID: In fact, I am a human.

(2014) Precise Client-side Protection against DOM-based Cross-Site Scripting.

(2014) Towards Detecting Anomalous User Behavior in Online Social Networks.

(2014) Automated Fixing of Programs with Contracts.

(2014) A Case Study of Research through the App Store: Leveraging the System UI as a Playing Field for Improving the Design of Smartphone Launchers.

(2014) Checking probabilistic noninterference using JOANA.

(2014) DOM-basiertes Cross-Site Scripting im Web: Reise in ein unerforschtes Land.

(2014) Deep Twitter diving: exploring topical groups in microblogs at scale.

(2014) Discovering Emerging Entities with Ambiguous Names.

(2014) Exception Handling for Dynamic Information Flow Control.

(2014) Extrinsic Influence Factors in Software Reliability: A Study of 200,000 Windows Machines.

(2014) A Fresh Look on Knowledge Bases: Distilling Named Events from News.

(2014) Incorporating Reputation Information into Decision-Making Processes in Markets of Composed Services.

(2014) Inferring user interests in the Twitter social network.

(2014) Interacting with 3D Content on Stereoscopic Displays.

(2014) Interrupted by a phone call: exploring designs for lowering the impact of call notifications for smartphone users.

(2014) Investigating the effectiveness of peephole interaction for smartwatches in a map navigation task.

(2014) JTACO: Test Execution for Faster Bounded Verification.

(2014) KnowLife: a Knowledge Graph for Health and Life Sciences.

(2014) Main Memory Adaptive Indexing for Multi-core Systems.

(2014) Mining Bug Data: A Practitioner’s Guide.

(2014) People on Drugs: Credibility of User Statements in Health Communities.

(2014) Personenbezug verhindern! Verschleierung von IP-Adressen in Webserver-Logfiles.

(2014) ProCrawl: Mining Test Models from Multi-user Web Applications.

(2014) Protecting Users Against XSS-based Password Manager Abuse.

(2014) Quantifying Information Overload in Social Media and Its Impact on Social Contagions.

(2014) Search-based Security Testing of Web Applications.

(2014) SurfacePhone: A Mobile Projection Device for Single- and Multiuser Everywhere Tabletop Interaction.

(2014) Test Generation Across Multiple Layers.

(2014) Understanding and Specifying Social Access Control Lists.

(2014) WebMate: Web Application Test Generation in the Real World.

(2014) Efficiently Spotting the Starting Points of an Epidemic in a Large Graph.

(2014) Frequent Pattern Mining.

(2014) Interaction Model to Predict Subjective-Specificity of Search Results.

(2014) MDL4BMF : Minimum Description Length for Boolean Matrix Factorization.

(2014) Multivariate Maximal Correlation Analysis.

(2014) Narrow or Broad? Estimating Subjective Specificity in Exploratory Search.

(2014) Personenbezug verhindern! Verschleierung von IP-Adressen in Webserver-Logfiles.

(2014) Proceedings of the ACM SIGKDD Workshop on Interactive Data Exploration and Analytics (IDEA).

(2014) Supporting Exploratory Search Through User Modelling.

(2014) Uncovering the Plot: Detecting Surprising Coalitions of Entities in Multi-Relational Schemas.

(2014) Unsupervised Interaction-Preserving Discretization of Multivariate Data.

(2014) VoG: Summarizing and Understanding Large Graphs.

(2013) 25 Million Flows Later - Large-scale Detection of DOM-based XSS.

(2013) Eradicating DNS Rebinding with the Extended Same-Origin Policy.

(2013) Hey, You, Get Off of My Clipboard. (Unpublished)

(2013) Checked coverage: an indicator for oracle quality.

(2013) A Comparative Study of Modern Inference Techniques for Discrete Energy Minimization Problem.

(2013) A Comparison of Knives for Bread Slicing.

(2013) Covering and Uncovering Equivalent Mutants.

(2013) DEMO: Secure and Customizable Web Development in the SAFE Activation Framework.

(2013) Detecting Deadlock in Programs with Data-Centric Synchronization.

(2013) Discovering semantic relations from the web and organizing them with PATTY.

(2013) Efficient Algorithms for Control Closures.

(2013) Elephant, Do Not Forget Everything! Efficient Processing of Growing Datasets.

(2013) Entwicklung sicherer Software durch Security by Design.

(2013) Fine-grained Semantic Typing of Emerging Entities.

(2013) Flexible Access Control for JavaScript.

(2013) Gem-based Entity-Knowledge Maintenance.

(2013) Generating Test Suites with Augmented Dynamic Symbolic Execution.

(2013) HYENA-live: Fine-Grained Online Entity Type Classification from Natural-language Text.

(2013) Implementing low-level browser-based security functionality.

(2013) It's not a bug, it's a feature: how misclassification impacts bug prediction.

(2013) Mining behavior models from enterprise web applications.

(2013) Mosquito: Another One Bites the Data Upload STream.

(2013) On sampling the wisdom of crowds: random vs. expert sampling of the twitter stream.

(2013) Predicting defects using change genealogies.

(2013) Reconstructing Core Dumps.

(2013) Sambamba: Runtime Adaptive Parallel Execution.

(2013) Search-based data-flow test generation.

(2013) Towards Zero-Overhead Static and Adaptive Indexing in Hadoop.

(2013) The Uncracked Pieces in Database Cracking.

(2013) WWHow! Freeing Data Storage from Cages.

(2013) WebMate: Generating Test Cases for Web 2.0.

(2013) What's in the apps for context?: extending a sensor for studying app usage to informing context-awareness.

(2013) Where Should We Fix This Bug? A Two-Phase Recommendation Model.

(2013) Wie realistisch ist ein "Recht auf Vergessenwerden"?

(2013) The impact of tangled code changes.

(2013) A study on icon arrangement by smartphone users.

(2013) How Achaeans Would Construct Columns in Troy.

(2013) CMI: An Information-Theoretic Contrast Measure for Enhancing Subspace Cluster and Outlier Detection.

(2013) Classifying code changes and predicting defects using changegenealogies.

(2013) Detecting Bicliques in GF[q].

(2013) Efficient Discovery of the Most Interesting Associations.

(2013) Efficient OR Hadoop: Why not both?

(2013) Maximum Entropy Models for Iteratively Identifying Subjectively Interesting Structure in Real-Valued Data.

(2013) Mining Connection Pathways for Marked Nodes in Large Graphs.

(2013) Mining Frequently Co-occurring Object Sets over Multiple Neighborhoods.

(2013) Proceedings of the ACM SIGKDD Workshop on Interactive Data Exploration and Analytics (IDEA).

(2013) Proceedings of the ACM SIGKDD Workshop on Outlier Detection and Description (ODD).

(2013) Summarizing Categorical Data by Clustering Attributes.

(2012) Adding fake facts to ontologies.

(2012) Automatically Generating Test Cases for Specification Mining.

(2012) Big Data Methods for Computational Linguistics.

(2012) Defending Against Large-scale Crawls in Online Social Networks.

(2012) Discovering and Exploring Relations on the Web.

(2012) EXSYST: Search-based GUI testing.

(2012) Efficient Big Data Processing in Hadoop MapReduce.

(2012) Exploring the design space of social network-based Sybil defense.

(2012) Fuzzing with Code Fragments.

(2012) Harmony and dissonance: organizing the people's voices on political controversies.

(2012) Isolating failure causes through test case generation.

(2012) KORE: keyphrase overlap relatedness for entity disambiguation.

(2012) LINDA: distributed web-of-data-scale entity matching.

(2012) Marathon: Detecting Atomic-Set Serializability Violations with Conflict Graphs.

(2012) Matching Points of Interest from Different Social Networking Sites.

(2012) Mining Models.

(2012) Mutation-Driven Generation of Unit Tests and Oracles.

(2012) Only Aggressive Elephants are Fast Elephants.

(2012) OpinioNetIt: A Structured and Faceted Knowledge-base of Opinions.

(2012) PATTY: A Taxonomy of Relational Patterns with Semantic Types.

(2012) PolariCQ: polarity classification of political quotations.

(2012) Predicting emerging social conventions in online social networks.

(2012) Proceedings of the Workshop on JavaScript Tools.

(2012) Proving programs continuous: technical perspective.

(2012) Sambamba: A Runtime System for Online Adaptive Parallelization.

(2012) Search-based system testing: high coverage, no false alarms.

(2012) Softer Smartcards: Usable Cryptographic Tokens with Secure Execution.

(2012) Understanding and combating link farming in the twitter social network.

(2012) A Weakly Supervised Model for Sentence-Level Semantic Orientation Analysis with Multiple Experts.

(2012) A data-centric approach to synchronization.

(2012) A dynamic program analysis to find floating-point accuracy problems.

(2012) A self-healing technique for Java applications.

(2012) Comparing Apples and Oranges : Measuring Differences between Exploratory Data Mining Results.

(2012) Discovering Descriptive Tile Trees by Fast Mining of Optimal Geometric Subtiles.

(2012) Fast and Reliable Anomaly Detection in Categoric Data.

(2012) Interactively and Visually Exploring Tours of Marked Nodes in Large Graphs.

(2012) The Long and the Short of It: Summarising Event Sequences with Serial Episodes.

(2012) Mining and Visualizing Connection Pathways in Large Information Networks.

(2012) Proceedings of the 12th IEEE International Conference on Data Mining Workshops (ICDMW), IEEE, 2012.

(2012) Proceedings of the ECML PKDD Workshop on Instant Interactive Data Mining (IID).

(2012) Spotting Culprits in Epidemics: How many and Which ones?

(2012) Summarising Event Sequences with Serial Episodes.

(2012) Summarizing Data Succinctly with the Most Informative Itemsets.

(2012) Where Do I Start? Algorithmic Strategies to Guide Intelligence Analysts.

(2012) \textsc Slim : Directly Mining Descriptive Patterns.

(2012) \textsc TourViz : Interactive Visualization of Connection Pathways in Large Graphs.

(2011) Analyzing facebook privacy settings: user expectations vs. reality.

(2011) An Efficient User Verification System via Mouse Movements.

(2011) The Eval that Men Do -- A Large-scale Study of the Use of Eval in JavaScript Applications.

(2011) Information flow analysis for JavaScript.

(2011) RAFT at work: speeding-up mapreduce applications under task and node failures.

(2011) RAFTing MapReduce: Fast recovery on the RAFT.

(2011) Relax and Let the Database Do the Partitioning Online.

(2011) Securing social networks.

(2011) Text-based CAPTCHA Strengths and Weaknesses.

(2011) Towards a One Size Fits All Database Architecture.

(2011) Trojan data layouts: right shoes for a running elephant.

(2011) Unicorn: Two-Factor Attestation for Data Security.

(2011) Comparing Apples and Oranges: Measuring Differences between Data Mining Results.

(2011) Krimp: Mining Itemsets that Compress.

(2011) MIME: A Framework for Interactive Visual Pattern Mining.

(2011) MIME: A Framework for Interactive Visual Pattern Mining.

(2011) Maximum Entropy Modelling for Assessing Results on Real-Valued Data.

(2011) Model Order Selection for Boolean Matrix Factorization.

(2011) The Odd One Out: Identifying and Characterising Anomalies.

(2011) Tell Me What I Need to Know: Succinctly Summarizing Data with Itemsets.

(2011) Unraveling tobacco BY-2 protein complexes with BN PAGE/LC-MS/MS and clustering methods.

(2011) When Pattern met Subspace Cluster, a Relationship Story.

(2010) What Makes a Good Bug Report?

(2010) Making Pattern Mining Useful.

(2010) Summarising Data by Clustering Items.

(2010) UP '10: Proceedings of the ACM SIGKDD Workshop on Useful Patterns.

(2010) Useful Patterns (UP’10) ACM SIGKDD Workshop Report.

(2009) Making Pattern Mining Useful.

(2009) P2P-Botnetz-Analyse--Waledac.

(2009) Walowdac-analysis of a peer-to-peer botnet.

(2009) Identifying the Components.

(2009) Low-Entropy Set Selection.

(2008) Filling in the Blanks - Krimp Minimisation for Missing Data.

(2008) Finding Good Itemsets by Packing Data.

(2008) Towards the next generation of bug tracking systems.

(2008) What makes a good bug report?

(2007) Quality of Bug Reports in Eclipse.

(2007) Characterising the Difference.

(2007) MDL for Pattern Mining.

(2007) Preserving Privacy through Data Generation.

(2006) Compression Picks Item Sets That Matter.

(2006) Item Sets that Compress.

(2004) Simulation and Optimization of Traffic in a City.