Projects
Our research has been supported over the last few years with more than 5 Mio. EUR by funding bodies including the
following:
Future Projects
We are always thinking about future research projects to pursue, many of
them with collaboration partners (for example in the context of european of national funding). A presentation on some
current ideas is available here as
slides and
audio. If you are interested, please get in
touch !
Current Projects
-
Industrial Data Space: Digital Souvereignty over Data, BMBF, 2015-2018.
- T-REQS: Template-based REquirements Quality improvement in Space engineering supported by an ontology-based
requirements meta-model, Networking/Partnering Initiative of the European Space Agency (ESA), 2016-2019.
- Data protection compliant indoor localization and tracking of persons (DILoTra), EU and RLP, ERDF 2014-2020
- Data Platform for the Connection of Cognitive Ports (DataPorts), EU, ERDF 2020-2022
- Next Level Ecosphere for Intelligent Industrial Production (IIP-Ecosphere), EU, ERDF 2020-2022
- Engineering Trustworthy Data-Intensive Systems (EnTrust) (Potentialbereich) RLP, 2020-2021
- Visual Privacy Management in User Centric Open Environments (VisiOn), EU H2020-DS-2014-1 IA
- Beyond One-Shot Security: Requirements-driven Run-time Security Adaptation
to Reduce Code Patching (SecVolution @ Run-Time) (DFG-SPP Design for Future, 2016-2019)
- Beyond One-Shot Security: Keeping Information Systems Secure through
Environment-Driven Knowledge Evolution (SecVolution) (DFG-SPP Design for Future, 2012-2016)
- Erklärbare KI für automatisierte Produktionssysteme (XAPS), BMBF, 2020-2021
Past Projects
- SECONOMICS (EU FET IP, 2012-2015)
- ClouDAT (IKT.NRW, 2012-2015)
- Enhancing UMLsec with Risk Analysis for Security Requirements (DFG-No. JU
2734/3-1)
- Architectures for Auditable Business Process Execution - Monitoring, Control, and
Compliance (Fraunhofer Attract Gruppe, 2009-2014)
- Secure Clouds (BMBF KMU-innovativ, 2011-2013)
- Modular Modeling of Delegation Security in Software Development (MoDelSec)
(DFG-SPP RS3, 2010-2012)
- Verifying Implementations of Security Protocols in C (Csec) (Microsoft Research
(Cambridge), 2008-2011).
- Cloud-Infrastructure, Infrastructure-Grant of the German Science Foundation (DFG), 2010
- Secure Change (EU FET IP, 2009-2012)
- Automated Verification of Security-Critical Software (VeriSec) (Royal
Society Industrial Fellowship with MS Research, 2008-2012)
- Royal Society Joint International Project with TU Munich (Prof. Dr. Dr.h.c. Manfred Broy) on Modelbased Formal Security Analysis of Crypto-Protocol Implementations, Aug. 2007-July
2009. Principal Investigator. (proposal (excerpt))
- Security & Privacy for All (EPSRC PPE)
- Royal Society Joint International Project with National Institute for Informatics, Japan (Prof. Shinichi Honiden)
on Relating Security Requirements and Design, Nov. 2007 - Oct 2009. Co-Investigator. (final report (excerpt))
- Modelling for Compliance (EPSRC CASE studentship with BT Research, 2008-2010)
- Royal Society Short Visit program for a visit at TU Munich (Prof. Dr. Dr.h.c. Manfred Broy) in June/July 2007.
Principal Investigator.
- Co-investigator in a preparatory study preparing a research program (valued at 15 Mio. Euro) of the German
Ministry of Science and Technology (BMBF) on the topic of product piracy prevention, Mar.-Sep. 2006.
- Acquisition and project leadership of an industrial collaboration project of TU Munich with a major German
reinsurer (Munich Re) from March 2006 until Dec. 2006 (methodology for IT security risk assessment)
- Invited participation in an NSF-funded preparatory project led by Prof. Robert B. France (Colorado State
University) on UML-based security analysis during 2005-2006
- Invited participation in an IBM-funded project lead by Prof. Bran Selic, IBM-Rational, on defining a formal
semantics for UML 2 during 2005-2006
- Acquisition and project leadership of the security working package at TU Munich in the project Verisoft of the German Ministry of Science and Technology (BMBF) from
July 2003 until July 2005. Goal: model-based development and analysis of a smart-card based biometric authentication
system using UMLsec together with the German Telecom. Other project partners included the German car manufacturer BMW
and the German chip manufacturer Infineon.
- Acquisition and project leadership of an industrial collaboration project of the TU Munich with a major German
bank (HypoVereinsbank) from May 2002 until Jan. 2003 (formal security analysis)
- Project leader of the TU Munich group in the project Fairpay
of the German Ministry of Economy from Oct. 2001 until Dec. 2002. Goal: model-based development and analysis of a
smart-card based electronic purse system using UMLsec. Other project partners included the German banks Deutsche Bank
and HypoVereinsbank.
- Acquisition and project leadership of industrial collaborations with the following companies (each a graduate
student contract):
- secaron AG (security consultancy), 08/05 - 02/06: tool-based security analysis approach
- MSG Systems (software house), 08/05 - 03/06: UML-based reengineering methods
- Munich Re, 05/05 - 01/06: end-to-end security architectures
- O2 (Germany), 04/05 - 01/06: UMLsec based IT security risk analysis approach
- BMW, 03/05 - 12/05: comparison of model-checking and traditional verification
- BMW, 12/04 - 08/05: IT security risk analysis of internal web-based information system
- Allianz (insurance company), 11/04 - 08/05: IT security analysis of signature pad architectures
- Infineon, 11/04 - 08/05: IT security risk analysis methods
- Munich Re, 10/04 - 10/05: IT security risk analysis methods
- O2 Germany, 09/04 - 03/05: empirical comparison of code analysis approaches
- BMW, 08/04 - 04/05: knowledge-based business process support