Secure Web Applications Group

• Lecture
• Wednesday, 12:15-13:45
• inverted classroom with Q&A meetings (planned for in-person)
• Ben Stock

This lecture covers the foundations of Web Security. More precisely, the course will cover client-and server-side security and also discuss infrastructure security and attacks.

For more information, please refer to the CMS.

• Proseminar
• Kickoff: May 6, 2022; 10:00 - 12:00
• Ben Stock

This course is about the discussion and presentation of recent topics in Web Security. Each student will be assigned one topic to present and two additional topics for discussion. For the presentation topic, each student will have two presentations: one during the semester and one in a full-day session in the semester break. For each topic, there will be two papers (one to be presented during the semester, the other in the break). Each student will also be assigned two topics for discussion: this implies that the student reads the paper to be presented and needs to prepare three questions to be discussed with the presenter. Furthermore, after each presentation, all students provide feedback to the presenter on what to improve in the presentation.

More information on the CMS.

• Lecture
• Monday 12:00-14:00
• Günter-Hotz-Hörsaal
• Ben Stock

Students learn foundational security principles, basics of cryptography, network and network security, as well as privacy-preserving mechanisms. They learn to define security goals and are familiarized with the most common attack scenarios.

More information on the CMS.

• Seminar
• Kickoff: October 25, 2021

In this seminar, students are exposed to recent high-quality research in the area of Web security. The seminar is comprised of a weekly meeting, in which every student has to present one paper from a given research area. Moreover, other students are expected to be familiar with the works as well, to allow for a meaning full discussion (i.e., a "reading group" situation).

More information on the CMS.

• Lecture
• Friday, 10:00-12:00
• virtual, inverted classroom with Q&A meetings
• Ben Stock

This lecture covers the foundations of Web Security. More precisely, the course will cover client-and server-side security and also discuss infrastructure security and attacks.

For more information, please refer to the CMS.

• Lecture
• Monday, 10:00-12:00
• virtual, inverted classroom with Q&A meetings
• Ben Stock

In the winter term, we will offer a lecture on various aspects of Web security. More precisely, the course will cover client-and server-side security and also discuss infrastructure security and attacks.

For more information, please refer to the CMS.

• Lecture
• Tuesday 10:00-12:00
• virtual
• Ben Stock

Students learn foundational security principles, basics of cryptography, network and network security, as well as privacy-preserving mechanisms. They learn to define security goals and are familiarized with the most common attack scenarios.

More information on the CMS.

• Lecture
• Monday, 10:00-12:00
• E9.1, Lecture Hall
• Ben Stock

In the winter term, we will offer a lecture on various aspects of Web security. More precisely, the course will cover client-and server-side security and also discuss infrastructure security and attacks.

For more information, please refer to the CMS.

• Lecture
• Monday 12:00-14:00
• GHH
• Ben Stock

Students learn foundational security principles, basics of cryptography, network and network security, as well as privacy-preserving mechanisms. They learn to define security goals and are familiarized with the most common attack scenarios.

More information on the CMS.

• Seminar
• Kickoff: October 24th, 10:00

In this seminar, students are exposed to recent high-quality research in the area of Web security. The seminar is comprised of a weekly meeting, in which every student has to present one paper from a given research area. Moreover, other students are expected to be familiar with the works as well, to allow for a meaning full discussion (i.e., a "reading group" situation).

More information on the CMS.

• Lecture
• Wednesday, 10:00-12:00
• E9.1, Lecture Hall
• Ben Stock

In the summer term, we will offer a lecture on various aspects of Web security. More precisely, the course will cover client-and server-side security and also discuss infrastructure security and attacks.

For more information, please refer to the CMS.

• Proseminar
• Every second Wednesday, 12:00 - 14:00


• E9.1, Lecture Hall
• Bugiel, Nürnberger, Sorge, Stock, Tippenhauer

Goal of this Proseminar is to give students a deeper understanding of the typical security problems and weaknesses that pervade all kinds of IT systems today. To provide a more solid understanding of the discussed attack techniques, this seminar strongly mixes theoretical and practical aspects. On the one hand, participants are conveyed the typical Proseminar learning contents (e.g., presentation techniques, etc.). On the other hand, the participants are required to also learn and apply established tools for exploiting and attacking IT systems in the context of capture-the-flag styled exercises.

For more information and the schedule, please see CMS.

• Lecture
• Friday 14:00-16:00
• GHH
• Ben Stock

Students learn foundational security principles, basics of cryptography, network and network security, as well as privacy-preserving mechanisms. They learn to define security goals and are familiarized with the most common attack scenarios.
Note: This year's iteration will differ significantly from the previous year due to content being moved between Cysec 1 and 2.

More information on the course website.

• Seminar
• Kickoff: October 24th, 10:00
• Secure Web Applications Group

In this seminar, students are exposed to recent high-quality research in the area of Web security. The seminar is comprised of a weekly meeting, in which every student has to present one paper from a given research area. Moreover, other students are expected to be familiar with the works as well, to allow for a meaning full discussion (i.e., a "reading group" situation).

More information on the seminar website.

• Lecture
• Wednesday, 10:00-12:00
• E9.1, Lecture Hall
• Ben Stock

In the summer term, we will offer a lecture on various aspects of Web security. More precisely, the course will cover client-and server-side security and also discuss infrastructure security and attacks.

For more information, please refer to course website.

• Proseminar
• Every second Wednesday, 12:00 - 14:00


• E9.1, Lecture Hall
• Sorge, Stock, Bugiel, Nürnberger

Goal of this Proseminar is to give students a deeper understanding of the typical security problems and weaknesses that pervade all kinds of IT systems today. To provide a more solid understanding of the discussed attack techniques, this seminar strongly mixes theoretical and practical aspects. On the one hand, participants are conveyed the typical Proseminar learning contents (e.g., presentation techniques, etc.). On the other hand, the participants are required to also learn and apply established tools for exploiting and attacking IT systems in the context of capture-the-flag styled exercises.

For more information and the schedule, please see CMS.

• Lecture
• Friday 14:00-16:00
• GHH
• Michael Backes, Ben Stock

Students learn the basics of cryptography, privacy-preserving mechanisms, system security, and Web security. They learn to define security goals and are familiarized with the most common attack scenarios.

More information on the course website.

• Seminar
• Kickoff: October 20th
• CISPA Researchers

In this CISPA-wide seminar, students will research and present state of the art on several research areas which are covered by the staff at CISPA. We will simulate a conference, i.e., students will submit their papers on specific deadline, will critically review other students' papers, and work in comments of others into their paper. Finally, we will organize a conference, where students present their work to all participants.

More information on the seminar website.

• Block Course
• 28.8. - 8.9.
• E9.1, Lecture Hall
• Ben Stock, Michael Backes

In the summer term, we will offer a lecture on various aspects of Web security. More precisely, the course will cover client- and server-side security and also discuss infrastructure security and attacks.

More information on the course website.