HomepageResearchInformations- und Systemsicherheit

Information and System Security

Information and system security is a central problem for our modern, increasingly networked society. We investigate the risks to which software systems are exposed and work to ensure that security aspects are integrated into the development process of new systems right from the start.

Latest Research News

09.03.2023
News, Information and System Security

Security for Smart Speakers

Smart speakers are highly popular and can be operated via voice commands. However, their microphones are always active, which raises concerns about…

27.02.2023
Information and System Security, Development Methods and Tools

Cyber Resilience in Critical Infrastructures

Cyber-attacks on critical infrastructures are increasing across Europe. The DYNABIC* project delivers software solutions to enable operators to…

15.09.2022
Press Release, People and Awards, Information and System Security

Great Success: Lucas Davi receives ERC Starting Grant

For his research in the field of software security, Dr. Lucas Davi, assistant professor at paluno, the Ruhr Institute for Software Technology at the…

Selected Projects

European Union (EU) - Duration: 12/2022 - 11/2025

DYNABIC: Dynamic business continuity of critical infrastructures on top of adaptive multi-level cybersecurity

The DYNABIC project delivers software solutions to enable critical infrastructure operators to proactively respond to cyber-attacks.
German Research Foundation (DFG) - Duration: 09/2020 - 08/2023

RAIN­COAT: Ran­do­miza­t­i­on in Se­cu­re Na­no-Sca­le Micro­ar­chi­tec­tu­res

The aim of the project is to investigate the security-relevant implications of new technology building blocks, such as NRAM, and to develop countermeasures for possible attack vectors. At the same time, existing security gaps, induced e.g. by branch predictors, are to be closed.
German Research Foundation (DFG) - Duration: 12/2018 - 12/2025

Cyber Security in the Age of Large-Scale Adversaries

Das Exzellenzcluster nimmt Maßnahmen gegen mächtige Angreifer von großen Vereinigungen, staatlichen Oranisationen oder aus dem Bereich der organisierten Kriminalität in den Fokus. Dabei wird ein europaweit einzigartiger Ansatz verfolgt: Führende WissenschaftlerInnen aus den Fachrichtungen Informatik, Mathematik und Ingenieurwesen kooperieren mit Forschenden aus der Psychologie, um das Zusammenspiel von menschlichem Verhalten und IT-Sicherheit zu untersuchen.
German Research Foundation (DFG) - Duration: 12/2013 - 12/2022

SFB 1119 CROSSING

Der Sonderforschungsbereich CROSSING entwickelt Kryptographie-basierte Sicherheitslösungen, um die Sicherheit und Vertrauenswürdigkeit in neuen und zukünftigen IT-Systemen sicherzustellen.
European Union (EU) - Duration: 04/2018 - 01/2021

Methods and tools for GDPR compliance through Privacy and Data Protection Engineering

Das Projektziel besteht darin, die Erstellung von Produkten, Systemen und Dienstleistungen zu fördern, welche die Privatsphäre und die personenbezogenen Daten der EU-Bürger schützen.
European Union (EU) - Duration: 01/2017 - 12/2019

RestAssured: Secure Data Processing in the Cloud

The RestAssured project dvelops solutions for cloud systems that are able to react to changes in the environment or requirements by making appropriate adjustments at runtime.
German Research Foundation (DFG) - Duration: 04/2016 - 03/2019

iObserve2: Integrated Observation and Modeling Techniques to Support Adaptation and Evolution of Software Systems

The joint project iObserve belongs to the Priority Program 1593 (Design For Future - Managed Software Evolution). There are developed new monitoring and modeling techniques for cloud software.
German Research Foundation (DFG) - Duration: 09/2015 - 03/2020

Interdisciplinary Research Training Group "User-Centred Social Media"

Das Graduiertenkolleg UCSM bietet eine interdisziplinäre Forschungsumgebung mit den Hauptdisziplinen Informatik und Psychologie. Aus dieser interdisziplinären Perspektive adressiert es Forschungsherausforderungen im Zusammenhang mit Social Media, die als komplexe soziotechnische Systeme verstanden werden.

Working Groups and People

System Security (SYSSEC)

System Security (SYSSEC)
Professor Dr. Lucas Davi

Main research: software security, system security, trusted computing, mobile security, security for cyber-physical systems

Software Engineering (SWE)

Software Engineering (SWE)
Professor Dr. Maritta Heisel

Main research: methods of software development, requirements engineering, pattern-based software development, safety, security, privacy protection, data protection, risk management

Software Systems Engineering (SSE)

Software Systems Engineering (SSE)
Professor Dr. Klaus Pohl

Main research: adaptive systems, Big Data, cloud computing, cyber physical systems, service orientation, variability management, requirements engineering

Intelligent Embedded Systems (ES)

Embedded Systems (ES)
Professor Dr. Gregor Schiele

Main research: Embedded Machine Learning, Programming Adaptive Embedded Systems, IoT Deployment and the Edge, Embedded Security