@article{SchubaWrona2000,
  author    = {Schuba, Marko and Wrona, Konrad},
  title     = {Mobile Chip Electronic Commerce: Enabling Credit Card Payment for Mobile Devices / Schuba, Marko ; Wrona, Konrad},
  pages     = {1 -- 6},
  year      = {2000},
  language  = {en}
}
@article{SchubaWrona2001,
  author    = {Schuba, Marko and Wrona, Konrad},
  title     = {Security for Mobile Commerce Applications / Schuba, Marko ; Wrona, Konrad},
  pages     = {1 -- 8},
  year      = {2001},
  language  = {en}
}
@article{SchubaWronaZavagli2001,
  author    = {Schuba, Marko and Wrona, Konrad and Zavagli, Guido},
  title     = {Mobile Payments - State of the Art and Open Problems / Wrona, Konrad ; Schuba, Marko ; Zavagli, Guido},
  series = {Electronic commerce : second international workshop ; proceedings / WELCOM 2001, Heidelberg, Germany, November 16-17, 2001. Ludger Fiege ... (ed.)},
  journal   = {Electronic commerce : second international workshop ; proceedings / WELCOM 2001, Heidelberg, Germany, November 16-17, 2001. Ludger Fiege ... (ed.)},
  publisher = {Springer},
  address   = {Berlin},
  isbn      = {978-3-540-42878-7},
  pages     = {88 -- 100},
  year      = {2001},
  language  = {en}
}
@article{SchubaBusboomHerwonoetal.2002,
  author    = {Schuba, Marko and Busboom, Axel and Herwono, Ian and Zavagli, Guido},
  title     = {Unambiguous Device Identification and Fast Connection Setup in Bluetooth / Busboom, Axel ; Herwono, Ian ; Schuba, Marko ; Zavagli, Guido},
  series = {European wireless 2002 : next generation wireless networks: technologies, protocols, services and applications ; technical sessions: 26 - 28 February 2002, tutorials: 25 February 2002, Centro Affari, Florence, Italy ; proceedings / sponsored by EUREL ... General chair: Luciano Lenzini},
  journal   = {European wireless 2002 : next generation wireless networks: technologies, protocols, services and applications ; technical sessions: 26 - 28 February 2002, tutorials: 25 February 2002, Centro Affari, Florence, Italy ; proceedings / sponsored by EUREL ... General chair: Luciano Lenzini},
  pages     = {1 -- 5},
  year      = {2002},
  language  = {en}
}
@article{ClaessensFuchsbergerGuentheretal.2003,
  author    = {Claessens, J. and Fuchsberger, A. and G{\"u}nther, C. and Horn, G. and Howker, K. and Hulsebosch, R.J. and Mitchell, C. and Paterson, K. and Preneel, B. and Schellekens, D. and Schuba, Marko},
  title     = {Pioneering Advanced Mobile Privacy and Security},
  pages     = {1 -- 17},
  year      = {2003},
  language  = {en}
}
@article{HulseboschGuentherHornetal.2004,
  author    = {Hulsebosch, R. J. and G{\"u}nther, C. and Horn, C. and Holtmanns, S. and Howker, K. and Paterson, K. and Claessens, J. and Schuba, Marko},
  title     = {Pioneering Advanced Mobile Privacy and Security},
  series = {Security for mobility},
  journal   = {Security for mobility},
  editor    = {Mitchell, Chris J.},
  publisher = {Institution of Electrical Engineers},
  address   = {London},
  isbn      = {9781849190886},
  doi       = {10.1049/PBTE051E_ch},
  pages     = {383 -- 432},
  year      = {2004},
  language  = {en}
}
@article{SchubaGerstenbergerLahaije2004,
  author    = {Schuba, Marko and Gerstenberger, Volker and Lahaije, Paul},
  title     = {Internet ID - Flexible Reuse of Mobile Phone Authentication Security for Service Access / Schuba, Marko ; Gerstenberger, Volker, ; Lahaije, Paul},
  pages     = {1 -- 7},
  year      = {2004},
  language  = {en}
}
@article{MausHoefkenSchuba2011,
  author    = {Maus, Stefan and H{\"o}fken, Hans-Wilhelm and Schuba, Marko},
  title     = {Forensic Analysis of Geodata in Android Smartphones},
  pages     = {1 -- 11},
  year      = {2011},
  language  = {en}
}
@article{SchaeferHoefkenSchuba2011,
  author    = {Schaefer, Thomas and H{\"o}fken, Hans-Wilhelm and Schuba, Marko},
  title     = {Windows Phone 7 from a Digital Forensics' Perspective},
  publisher = {Springer},
  address   = {Berlin},
  year      = {2011},
  language  = {en}
}
@article{SchubaHoefkenSchaefer2012,
  author    = {Schuba, Marko and H{\"o}fken, H. and Schaefer, T.},
  title     = {Smartphone Forensik},
  series = {Hakin9 : Practical Protection (2012)},
  journal   = {Hakin9 : Practical Protection (2012)},
  publisher = {-},
  isbn      = {1733-7186},
  pages     = {10 -- 20},
  year      = {2012},
  language  = {de}
}
@inproceedings{LogenHoefkenSchuba2012,
  author    = {Logen, Steffen and H{\"o}fken, Hans and Schuba, Marko},
  title     = {Simplifying RAM Forensics : A GUI and Extensions for the Volatility Framework},
  series = {2012 Seventh International Conference on Availability, Reliability and Security (ARES), 20-24 August 2012, Prague, Czech Republic},
  booktitle = {2012 Seventh International Conference on Availability, Reliability and Security (ARES), 20-24 August 2012, Prague, Czech Republic},
  publisher = {IEEE},
  address   = {New York},
  isbn      = {978-1-4673-2244-7},
  doi       = {10.1109/ARES.2012.12},
  pages     = {620 -- 624},
  year      = {2012},
  abstract  = {The Volatility Framework is a collection of tools for the analysis of computer RAM. The framework offers a multitude of analysis options and is used by many investigators worldwide. Volatility currently comes with a command line interface only, which might be a hinderer for some investigators to use the tool. In this paper we present a GUI and extensions for the Volatility Framework, which on the one hand simplify the usage of the tool and on the other hand offer additional functionality like storage of results in a database, shortcuts for long Volatility Framework command sequences, and entirely new commands based on correlation of data stored in the database.},
  language  = {en}
}
@article{SchubaHoefken2012,
  author    = {Schuba, Marko and H{\"o}fken, Hans},
  title     = {Backtrack5: Datensammlung und Reporterstellung f{\"u}r Pentester mit MagicTree / H{\"o}fken, Hans ; Schuba, Marko},
  series = {Hakin9. 73 (2012), H. 3},
  journal   = {Hakin9. 73 (2012), H. 3},
  publisher = {-},
  isbn      = {1733-7186},
  pages     = {12 -- 16},
  year      = {2012},
  language  = {de}
}
@inproceedings{SchuetzBreuerHoefkenetal.2013,
  author    = {Sch{\"u}tz, P. and Breuer, M. and H{\"o}fken, Hans-Wilhelm and Schuba, Marko},
  title     = {Malware proof on mobile phone exhibits based on GSM/GPRS traces},
  series = {The Second International Conference on Cyber Security, Cyber Peacefare and Digital Forensic (CyberSec 2013) : 04.03. - 06.03.2013, Kuala Lumpur, Malaysia},
  booktitle = {The Second International Conference on Cyber Security, Cyber Peacefare and Digital Forensic (CyberSec 2013) : 04.03. - 06.03.2013, Kuala Lumpur, Malaysia},
  publisher = {The Society of Digital Information and Wireless Communication},
  isbn      = {978-0-9853483-7-3},
  pages     = {89 -- 96},
  year      = {2013},
  language  = {en}
}
@inproceedings{StoebeHoefkenSchubaetal.2013,
  author    = {St{\"o}be, Rolf and H{\"o}fken, Hans-Wilhelm and Schuba, Marko and Breuer, Michael},
  title     = {Artificial ageing of mobile devices using a simulated GSM/GPRS network},
  series = {Eighth International Conference on Availability, Reliability and Security (ARES) : 2-6 Sept. 2013, Regensburg},
  booktitle = {Eighth International Conference on Availability, Reliability and Security (ARES) : 2-6 Sept. 2013, Regensburg},
  publisher = {IEEE},
  pages     = {493 -- 497},
  year      = {2013},
  language  = {en}
}
@inproceedings{LindenlaufHoefkenSchuba2015,
  author    = {Lindenlauf, Simon and H{\"o}fken, Hans-Wilhelm and Schuba, Marko},
  title     = {Cold Boot Attacks on DDR2 and DDR3 SDRAM},
  series = {10th International Conference on Availability, Reliability and Security (ARES) 2015},
  booktitle = {10th International Conference on Availability, Reliability and Security (ARES) 2015},
  doi       = {10.1109/ARES.2015.28},
  pages     = {287 -- 292},
  year      = {2015},
  language  = {en}
}
@inproceedings{BraunHoefkenSchubaetal.2015,
  author    = {Braun, Sebastian and H{\"o}fken, Hans-Wilhelm and Schuba, Marko and Breuer, Michael},
  title     = {Forensische Sicherung von DSLRoutern},
  series = {Proceedings of D-A-CH Security 2015. St. Augustin 8. und 9. September 2015},
  booktitle = {Proceedings of D-A-CH Security 2015. St. Augustin 8. und 9. September 2015},
  pages     = {11 S.},
  year      = {2015},
  language  = {de}
}
@book{GalleyMinoggioSchubaetal.2016,
  author    = {Galley, Birgit and Minoggio, Ingo and Schuba, Marko and Bischoff, Barbara and H{\"o}fken, Hans-Wilhelm},
  title     = {Unternehmenseigene Ermittlungen : Recht - Kriminalistik - IT},
  publisher = {Erich Schmidt Verlag},
  address   = {Berlin},
  isbn      = {978-3-503-16531-5},
  pages     = {XIII, 372 S.},
  year      = {2016},
  language  = {de}
}
@article{KoenigVoelkerWolfetal.2016,
  author    = {K{\"o}nig, Johannes Alexander and V{\"o}lker, Veronika and Wolf, Martin and Schuba, Marko},
  title     = {Gamified Hacking Offence Simulation-based Training (GHOST)},
  series = {Crisis Prevention},
  volume    = {2016},
  journal   = {Crisis Prevention},
  number    = {3},
  publisher = {Beta},
  address   = {Bonn},
  pages     = {44 -- 46},
  year      = {2016},
  language  = {de}
}
@inproceedings{BroennerHoefkenSchuba2016,
  author    = {Broenner, Simon and H{\"o}fken, Hans-Wilhelm and Schuba, Marko},
  title     = {Streamlining extraction and analysis of android RAM images},
  series = {Proceedings of the 2nd international conference on information systems security and privacy},
  booktitle = {Proceedings of the 2nd international conference on information systems security and privacy},
  organization    = {ICISSP International Conference on Information Systems Security and Privacy <2, 2016, Rome, Italy>},
  isbn      = {978-989-758-167-0},
  doi       = {10.5220/0005652802550264},
  pages     = {255 -- 264},
  year      = {2016},
  language  = {en}
}
@inproceedings{GranatHoefkenSchuba2017,
  author    = {Granat, Andreas and H{\"o}fken, Hans-Wilhelm and Schuba, Marko},
  title     = {Intrusion Detection of the ICS Protocol EtherCAT},
  pages     = {1 -- 5},
  year      = {2017},
  abstract  = {Control mechanisms like Industrial Controls Systems (ICS) and its subgroup SCADA (Supervisory Control and Data Acquisition) are a prerequisite to automate industrial processes. While protection of ICS on process management level is relatively straightforward - well known office IT security mechanisms can be used - protection on field bus level is harder to achieve as there are real-time and production requirements like 24x7 to consider. One option to improve security on field bus level is to introduce controls that help to detect and to react on attacks. This paper introduces an initial set of intrusion detection mechanisms for the field bus protocol EtherCAT. To this end existing Ethernet attack vectors including packet injection and man-in-the-middle attacks are tested in an EtherCAT environment, where they could interrupt the EtherCAT network and may even cause physical damage. Based on the signatures of such attacks, a preprocessor and new rule options are defined for the open source intrusion detection system Snort demonstrating the general feasibility of intrusion detection on field bus level.},
  language  = {en}
}