Welcome to KASTEL Security Research Labs
The Competence Center for Applied Security Technology (KASTEL) is a competence center for cyber security initiated by the German Federal Ministry of Education and Research (BMBF).
Following the motto "Comprehensible security in the networked world“, KASTEL addresses the challenges posed by the increasing interconnection of previously isolated systems. Of particular importance are the consequences of digitalization in the area of critical infrastructures, for example in the energy industry, in networked mobility or in industrial production.
KASTEL bundles the competencies in the field of IT security at the research location Karlsruhe. The goal is to develop a comprehensive approach instead of isolated partial solutions. The focus will be on comprehensive security in specific application areas, such as power grids, smart mobility, or intelligent factories.
To ensure this security, new threats must be modeled, security objectives described and new methods developed. This can only be achieved through collaboration between cryptographers, IT security specialists, software engineers, network experts, jurists, economists and social scientists - as is the case here at KASTEL.
KASTEL started in 2011 with a term of four years. After a successful evaluation in 2014, the term was extended by the BMBF, and after another successful scientific evaluation and a strategic assessment by the Helmholtz Association, it was finally decided to permanently fund KASTEL.
The KASTEL Institute of Information Security and Reliability at KIT, part of the KASTEL Security Research Labs, can be found here.
Prof. Dr. Jörn Müller-Quade, who together with Jessica Heesen heads the IT Security, Privacy, Law and Ethics working group of the "Plattform Lernende Systeme", has published a paper on the criticality of AI systems in their respective application contexts as part of this working group. The goal of the paper is to identify those AI systems that require regulation to ensure security and trustworthiness. The group refers to the criticality approach, on which an EU proposal for regulating AI systems is also based, with which they critically engage. The Learning Systems Platform is an expert network on the topic of artificial intelligence that aims to act as an independent broker to promote interdisciplinary exchange and social dialogue on AI.Link to download the paper
Prof. Dr. Jörn Müller-Quade spoke on November 4 at an event organized by the VDMA on quantum leaps in mechanical engineering. Other participants and speakers included Dr. Carmen Kempka, alumni of the Cryptography and Security Working Group at KASTEL, Rouven Floeter, Global Product Manager Cybersecurity and Quantum-Safe at Hitachi Energy, and Dr. Wolfgang Klasen, head of the Embedded Security Research Group at Siemens. The event focused on IT security in the context of quantum computers and industry, with a focus on the mechanical engineering sector. Central topics of the panel discussion were the consequences and impact of quantum computers on different areas and possibilities to implement quantum safe systems in the future.
CAST stands for Competence Center for Applied Security Technology. CAST is a competence network, where knowledge about security technologies is communicated for all levels of knowledge. The competence center helps end users with information events, consulting, workshops and tutorials to better assess the use of security technologies. The SECUSO research group is now part of the network.More information
The paper "Security Engineering of Patient-Centered Health Care Information Systems in Peer-to-Peer Environments: Systematic Review" by Imrana Abduallahi Yari, Tobias Dehling, Felix Kluge, Jürgen Geck, Bjoern Eskofier and Ali Sunyaev has been published in the Journal of Medical Internet Research. In this paper, the authors use a systematic literature review to examine how to overcome the inherent security issues of peer-to-peer patient-centered health care information systems (PHS). The security problems of using PHS in peer-to-peer networks are identified, different peer-to-peer architectures are investigated and a suitable architecture for use in PHS is proposed.To the paper
Free apps are mainly financed through advertisements, tracker and user data. But not our Privacy Friendly Apps: No data are collected and not user profiles are compiled. Chip.de describes in a detailed review the functionalities of the Privacy Friendly Weather App. The bottom line is: The app is straightforward and clever and users are not bothered by location trackers. And the best: It’s free and truly privacy friendly!Read the full report
The registration for the second KASTEL Distinguished Lecture is now open. On November 12th, Prof. Christopher Kruegel will talk about “Finding vulnerabilities in Embedded Software”. Prof. Kruegel is Professor of Computer Science at UC Santa Barbara. He was also a co-founder of Lastline. In his talk, Prof. Krueger will discuss some of the static and dynamic analysis techniques that he has developed to address the challenges posted by proprietary software, which many of the devices use. The talk will be held in-person and streamed online.Register now