RUB » HGI » SecHuman » Summerschool


The Horst Görtz Institute for IT-Security invites all postdocs, doctoral students and master students to participate at the

SecHuman Summer School „Usable Security and Privacy“
31st of July - 3rd of August 2017, Ruhr University Bochum, Germany

The Summer School addresses young researchers with various backgrounds including technical disciplines, but also from other areas including law, linguistics, journalism, media science, education as well as social science with an interest in interdisciplinary questions in IT-Security.

IT-Security research has been focusing mostly on improving technical mechanisms (e.g., encryption techniques) and developing IT-Security tools (e.g., Anti-virus programs, authentication). Human behavior (the behavior of developers and users) has been neglected so far. Yet, we know that many security problems arise from human error. Since the 90’s the research area “Usable Security” hast been emphasizing aspects of (erroneous) human behavior causing to security problems. Usable Security focuses on improving usability of IT-Security tools.

In this Summer School we will discuss aspects of Usability in the area of IT-Security . Over the course of four days, we invite you to discuss issues related to Usable Security. The last day will be especially dedicated to privacy issues. The rich programme of our Summer School includes various talks related to Usable Security. Discussions and exercises allow for sufficient opportunities to gain in-depth understanding and relate to your own experiences. The Summer School will be held in English with the exception of the last day with talks in German language.

The Summer School is funded by the Center of Advanced Internet Studies (CAIS)

Invited Speakers

Prof. Jason Hong, Carnegie Mellon University, US

Jason Hong is an associate professor in the Human Computer Interaction Institute, part of the School of Computer Science at Carnegie Mellon University. He works in the areas of usability, mobility, privacy, and security, and his research has been featured in the New York Times, MIT Tech Review, CBS, CNN, Slate, the World Economic Forum, and more. Jason is also a co-founder of Wombat Security Technologies, which focuses on the human side of computer security. Jason received his PhD from Berkeley and his undergraduate degrees from Georgia Institute of Technology. Jason has participated on DARPA's Computer Science Study Panel (CS2P), is an Alfred P. Sloan Research Fellow, a Kavli Fellow, a PopTech Science fellow, a New America National Cybersecurity Fellow, and currently holds the HCII Career Development fellowship.

Prof. Angela Sasse, UCL London, UK

Angela Sasse is the Professor of Human-Centred Technology in the Department of Computer Science at University College London, UK. A usability researcher by training, she started investigating the causes and effects of usability issues with security mechanisms in 1996. In addition to studying specific mechanisms such as passwords, biometrics, and access control, her research group has developed human-centred frameworks that explain the role of security, privacy, identity and trust in human interactions with technology. She is currently the Director of the multidisciplinary UK Research Institute for Science of Cyber Security (RISCS), funded by EPSRC and GCHQ and now its second phase. The nature and importance of the work was showcased in this Nature article last year.

Prof. Matthew Smith, University of Bonn, Germany

Matthew Smith is a Professor for Usable Security and Privacy at the University of Bonn, Germany. His research is focused on human factors of security and privacy mechanisms with a wide range of application areas, including SSL and network security, authentication, mobile and app security and, most recently, usable security for developers and administrators. His work has been published at amongst others IEEE Security and Privacy, ACM CCS, USENIX Security, NDSS, ACM SIGCHI and USENIX SOUPS the Symposium on Usable Security and Privacy. In 2015 his ERC Starting Grant “Frontiers of Usable Security” was selected for funding.

Dr. Elizabeth Stobert, ETH Zürich, Switzerland

Elizabeth Stobert is a postdoctoral researcher at ETH Zurich working in the Systems Security group with Srdjan Capkun. She received her PhD in computer science from Carleton University in 2015, and also holds an MA in psychology. Her research is in usable security, examining the human factors affecting authentication schemes. Her work is interdisciplinary and integrates research and perspectives from cognitive psychology into the design and evaluation of computer security products.

Speakers invited for Privacy Issues:

Prof. Karl Riesenhuber, Ruhr University Bochum, Germany

Prof. Dr. Karl Riesenhuber, M.C.J., born 1967, studied Law in Freiburg i.B. und Austin/Texas, earned his Ph.D. (Dr. iur.) 1997 at Potsdam University and his Habilitation 2002 at the University of Erlangen-Nuremberg with a thesis on System and Principles of European Contract Law. From 2002 he first was visiting professor, from 2004 to 2006 full professor for Private Law at Europa-University Viadrina, Frankfurt (Oder). Since 2006 he is full professor for Private Law, German and European Business and Economic Law at Ruhr-University Bochum. Since 2015 Professor Riesenhuber is also judge at the Higher Regional Court (Oberlandesgericht) in Hamm/Westfalia. The focus of research is on German and European Private Law, Employment Law and Data Protection, Copyright Law and Legal Methods.

Prof. Frank Rosenkranz, Ruhr University Bochum, Germany

Prof. Dr. Frank Rosenkranz is Junior Professor for Private Law in the Digital Era. The focus of his research is on the effects of digitalisation on the current and future private law, especially on contracts on digital contents. He studied Law at Europa-University Viadrina in Frankfurt (Oder) and completed the practical legal training (Rechtsreferendariat) in Bochum. He earned his ph.d. (Dr. iur.) in 2014 with a thesis on the Temporal Effects of Judgements of the European Court of Justice. Further fields of interest are Legal Methods and Private Law Consumer Protection.

Prof. Tobias Gostomzyk, TU Dortmund, Germany

Prof. Dr. Tobias Gostomzyk studied Law and Journalism in Hamburg and Strasbourg. He received his doctorate in 2005 with the topic „The public responsibility of courts in media society“ and worked after completing his legal clerkship from 2006 until 2012 as an attorney for media law, internet law and law of Telecommunication in Cologne and Hannover. Since 2012 Prof. Dr. Gostomzyk holds the chair for Media Law at the University of Dortmund (TU-Dortmund) where he teaches media law to journalism students. Among other topics, his field of research covers also the question of how legal standards are practiced and enforced in social networks compared to conventional medial standards in print journalism and television.

Reflection Summer School

The SecHuman Summer School entitled Thema "Usable Security and Privacy" took place from July 31st until August 3rd at the Ruhr-University Bochum. The first three days dealt with the Topic Usable Security, which looks at the improvement of Usability of IT-Security Tools. The welcome address was given by HGI Professor Christof Paar followed by a presentation by Prof. Jason Hong of the Carnegie Mellon University. His talk discussed the social factors of Cybersecurity. Subsequently Prof. Mathew Smith from the Bonn University and Dr. Elizabeth Stobert gave presentations as well. The next two days were held by Prof. Angela Sasse (UCL London) who dedicated a complete teaching module to the summer school. Prof. Angela Sasse is one of the founders of the research area Usable Security. Last but not least, the topic Privacy was presented and discussed by Professor Riesenhuber and Prof. Rosenkranz of the Ruhr University as well as Prof. Gostomzyk (TU Dortmund) and Dr. Behling (Layer ant WTS Legal). We thank the participants for their active participation and the speakers for the tremendous amount of work they put in developing and presenting their research.

A wonderful first SecHuman Summer School is finished! Thanks to the fabulous speakers!

Here some statements of our participants:

"I enjoyed the open exchange of the various disciplines during the lectures. This way I have quickly found a partner for the next academic project and he does not come from computer
sciences. Now we can complement each other wonderfully." Max, student of computer science from the University of Applied Sciences Düsseldorf

"I am in charge of supporting the “Usable Security and Privacy” lecture here at the Ruhr University. Therefore, the SecHuman Summer School helped me to increase my knowledge regarding the latest topics in this field presented by well-known experts. The atmosphere was very
friendly and I look forward to similar meetings in the future." Henri Hosseini

“This was my first ever Summer School, and it was a pleasant and interesting experience. The school was able to have multiple fascinating topics which really encapsulated the area of Usable Security. The school only served to strengthen my interest in the subject and was a fantastic opportunity to network with like-minded researchers. I would highly recommend this school to anyone just beginning their life as a researcher.“ Adam Jenkins

Summer School Programme
(opens as PDF)

Summer School Poster
(opens as PDF)