@inproceedings{SchuetzBreuerHoefkenetal.2013,
  author    = {Sch{\"u}tz, P. and Breuer, M. and H{\"o}fken, Hans-Wilhelm and Schuba, Marko},
  title     = {Malware proof on mobile phone exhibits based on GSM/GPRS traces},
  series = {The Second International Conference on Cyber Security, Cyber Peacefare and Digital Forensic (CyberSec 2013) : 04.03. - 06.03.2013, Kuala Lumpur, Malaysia},
  booktitle = {The Second International Conference on Cyber Security, Cyber Peacefare and Digital Forensic (CyberSec 2013) : 04.03. - 06.03.2013, Kuala Lumpur, Malaysia},
  publisher = {The Society of Digital Information and Wireless Communication},
  isbn      = {978-0-9853483-7-3},
  pages     = {89 -- 96},
  year      = {2013},
  language  = {en}
}
@inproceedings{BonneyNagelSchuba2016,
  author    = {Bonney, Gregor and Nagel, Stefan and Schuba, Marko},
  title     = {Risiko Smart Home - Angriff auf ein Babymonitorsystem},
  series = {Proceedings of DACH Security 2016, Klagenfurt, Austria, September 2016},
  booktitle = {Proceedings of DACH Security 2016, Klagenfurt, Austria, September 2016},
  editor    = {Schartner, P.},
  pages     = {371 -- 378},
  year      = {2016},
  abstract  = {Unser Zuhause wird zunehmend intelligenter. Smart Homes bieten uns die Steuerung von Haus- oder Unterhaltungstechnik bequem vom Smartphone aus. Junge Familien nutzen die Technologie, um mittels vernetzten Babymonitorsystemen ihren Nachwuchs von {\"u}berall aus im Blick zu haben. Davon auszugehen, dass solche Systeme mit einem Fokus auf Sicherheit entwickelt wurden, um die sehr pers{\"o}nlichen Daten zu sch{\"u}tzen, ist jedoch ein Trugschluss. Die Untersuchung eines handels{\"u}blichen und keineswegs billigen Systems zeigt, dass die Ger{\"a}te sehr einfach kompromittiert und missbraucht werden k{\"o}nnen.},
  language  = {de}
}
@inproceedings{SchwankeHoefkenSchuba2017,
  author    = {Schwanke, Peter and H{\"o}fken, Hans-Wilhelm and Schuba, Marko},
  title     = {Security Analysis of the ADS Protocol of a Beckhoff CX2020 PLC},
  pages     = {1 -- 5},
  year      = {2017},
  abstract  = {ICSs (Industrial Control Systems) and its subset SCADA systems (Supervisory Control and Data Acquisition) are getting exposed to a constant stream of new threats. The increasing importance of IT security in ICS requires viable methods to assess the security of ICS, its individual components, and its protocols. This paper presents a security analysis with focus on the communication protocols of a single PLC (Programmable Logic Controller). The PLC, a Beckhoff CX2020, is examined and new vulnerabilities of the system are revealed. Based on these findings recommendations are made to improve security of the Beckhoff system and its protocols.},
  language  = {en}
}
@inproceedings{KueppersSchubaNeugebaueretal.2023,
  author    = {K{\"u}ppers, Malte and Schuba, Marko and Neugebauer, Georg and H{\"o}ner, Tim and Hack, Sacha},
  title     = {Security analysis of the KNX smart building protocol},
  series = {ARES '23: Proceedings of the 18th International Conference on Availability, Reliability and Security},
  booktitle = {ARES '23: Proceedings of the 18th International Conference on Availability, Reliability and Security},
  publisher = {ACM},
  doi       = {10.1145/3600160.3605167},
  pages     = {1 -- 7},
  year      = {2023},
  abstract  = {KNX is a protocol for smart building automation, e.g., for automated heating, air conditioning, or lighting. This paper analyses and evaluates state-of-the-art KNX devices from manufacturers Merten, Gira and Siemens with respect to security. On the one hand, it is investigated if publicly known vulnerabilities like insecure storage of passwords in software, unencrypted communication, or denialof-service attacks, can be reproduced in new devices. On the other hand, the security is analyzed in general, leading to the discovery of a previously unknown and high risk vulnerability related to so-called BCU (authentication) keys.},
  language  = {en}
}
@inproceedings{LogenHoefkenSchuba2012,
  author    = {Logen, Steffen and H{\"o}fken, Hans and Schuba, Marko},
  title     = {Simplifying RAM Forensics : A GUI and Extensions for the Volatility Framework},
  series = {2012 Seventh International Conference on Availability, Reliability and Security (ARES), 20-24 August 2012, Prague, Czech Republic},
  booktitle = {2012 Seventh International Conference on Availability, Reliability and Security (ARES), 20-24 August 2012, Prague, Czech Republic},
  publisher = {IEEE},
  address   = {New York},
  isbn      = {978-1-4673-2244-7},
  doi       = {10.1109/ARES.2012.12},
  pages     = {620 -- 624},
  year      = {2012},
  abstract  = {The Volatility Framework is a collection of tools for the analysis of computer RAM. The framework offers a multitude of analysis options and is used by many investigators worldwide. Volatility currently comes with a command line interface only, which might be a hinderer for some investigators to use the tool. In this paper we present a GUI and extensions for the Volatility Framework, which on the one hand simplify the usage of the tool and on the other hand offer additional functionality like storage of results in a database, shortcuts for long Volatility Framework command sequences, and entirely new commands based on correlation of data stored in the database.},
  language  = {en}
}
@inproceedings{BroennerHoefkenSchuba2016,
  author    = {Broenner, Simon and H{\"o}fken, Hans-Wilhelm and Schuba, Marko},
  title     = {Streamlining extraction and analysis of android RAM images},
  series = {Proceedings of the 2nd international conference on information systems security and privacy},
  booktitle = {Proceedings of the 2nd international conference on information systems security and privacy},
  organization    = {ICISSP International Conference on Information Systems Security and Privacy <2, 2016, Rome, Italy>},
  isbn      = {978-989-758-167-0},
  doi       = {10.5220/0005652802550264},
  pages     = {255 -- 264},
  year      = {2016},
  language  = {en}
}
@inproceedings{SerrorHenzeHacketal.2018,
  author    = {Serror, Martin and Henze, Martin and Hack, Sacha and Schuba, Marko and Wehrle, Klaus},
  title     = {Towards in-network security for smart homes},
  series = {13th International Conference on Availability, Reliability and Security, ARES 2018; Hamburg; Germany; 27 August 2018 through 30 August 2018},
  booktitle = {13th International Conference on Availability, Reliability and Security, ARES 2018; Hamburg; Germany; 27 August 2018 through 30 August 2018},
  isbn      = {978-145036448-5},
  doi       = {10.1145/3230833.3232802},
  pages     = {Article numer 3232802},
  year      = {2018},
  language  = {en}
}