Edgar R. Weippl
The Christian Doppler Laboratory for Security and Quality Improvment in the Production System Lifecycle
Please also visit my home page at SBA Research and for recent talks and other activies see our news on the home page.
Please schedule an appointment with me by email prior to coming to my office hour.
NEW VENUE: Please come to my office at SBA Research (Favoritenstr. 16, 2nd floor)
Contact Information at TU Wien. Please use the TU E-Mail for all questions concerning classes, labs and thesis requests.
Contact Information at SBA Research
Google Scholar Profile
List of Publications
Seminar papers, Student Projects (Seminare, Praktika, etc.)
Have a look at some of my students' great work.
PhD - Organizational Information
A very good overview of what PhD is, what the standards are, etc.: http://spaf.cerias.purdue.edu/grads.html
What is the difference between a master's degree and a Ph.D.? Please read:
Jason Hong. 2013. Ph.D. students must break away from undergraduate mentality. Commun. ACM 56, 7 (July 2013), 10-11. DOI=10.1145/2483852.2483857 http://doi.acm.org/10.1145/2483852.2483857 (CACM Blog)
You and Your Research (transcript)
What a great PhD thesis should like:
Old, but still valid. The Researcher's Bible by Alan Bundy, Ben du Boulay, Jim Howe and Gordon Plotkin from the University of Edinburgh.
Systemic Reviews for Software Engineering.
Articles you should read:
Master's Thesis - Organizational Information
You will need to take some courses in IT security (at TU) and at least one 'praktikum' with me before you can do a Master's thesis with me.
Your thesis needs to be written in English.
Please look at Purdue's Online Writing Lab. It is a great resource!'
Please prepare an abstract for the thesis that contains following items
Minimum standards for a passing grade (in addition to standards set forth by the Dean):
Links of the Dean's office that you should look at:
- Problem statement and Goal of the work
- Expected outcome / results
- Research methodology
- Preliminary schedule and planned workpackages
- State-of-the art (including at least 4 references to relevant research)
Open Research Topics
- Bidding strategies and fraud
- Cost calculation and risk analysis (break even, etc) for cloud storage, energy efficiency (encryption) (starting points http://dx.doi.org/10.1109/MC.2010.115 http://dx.doi.org/10.1109/MC.2010.98)
- e-commerce protocols in practice (fairness, ttp, ...)
- Database Forensics (Oracle Flashback Queries, System tables, Oracle Label Extensions)
- Studies / Questionnaires: e.g. E2E auditable e-voting protocols
- Compare vulnerabilities of different types of open source software (Moodle vs. Bulleting boards)
Text books I like
- William Stallings, Computer Security, Pearson International Edition. Very good book. Required reading for all serious master's students.
- Matt Bishop, Computer Security: Art and Science (Do not by mistake get 'Introduction to Computer Security'). The most comprehensive book. Required Reading for PhD candidates. Unfortunately there are many errors in the book, making parts almost unreadable without the errata (http://nob.cs.ucdavis.edu/book/book-aands/index.html)
- Gary McGraw, Software Security: Building Security In. Excellent book for all software developers
- Dieter Gollmann, Computer Security. Short but good depth.
- Michael Howard, The Security Development Lifecycle. Excellent book. Get this one or Gary McGraw's.
- Julia Allen, Software Security Engineering. Nice if you have enough budget.
- Charles E. Pfleeger, Security in Computing. A classic and excellent textbook, many parts are very easy and should be general knowledge of CS students.
Research Methods in Social Sciences
- Nicola Döring, Jürgen Bortz, Sandra Poschl, Forschungsmethoden und Evaluation: in den Sozial- und Humanwissenschaften, Springer, 2014.
- Uwe Flick, Qualitative Sozialforschung, rowohlts enzyklopädie, 2007 (3. Auflage 2010).
Conferences, Journals, Videos & other stuff
that can give you ideas on research topics
Datenschutz-Erklärung der TU Wien
Impressum: Edgar Weippl, Wien, private Website im Rahmen der Tätigkeit in der Information & Software Engineering Group an der TU Wien.