Faculty
Winter Term 2023/2024: Busy Beaver Teaching Award "Foundations of Cybersecurity 1", Saarland University
2024: Distinguished Reviewer Award: NDSS
2023: Distinguished Paper Award: IEEE S&P
2021: Best Reviewer Award: ACM CCS
Summer term 2021: top 5 "digital teaching" lecture (out of 117) at CS Department of Saarland University
Winter Term 2018/2019: Busy Beaver Teaching Award "Foundations of Cybersecurity 1", Saarland University
Summer Term 2018: Busy Beaver Teaching Award "Web Security", Saarland University
2015/2016: Finalist for Best Dissertation Award (CAST e.V.)
2009/2010: Best German Bachelor Thesis (CAST e.V.)
Dr. Ben Stock is a tenured faculty at the CISPA Helmholtz Center for Information Security. Prior to that, he completed the tenure track at CISPA and was a research group leader and previously postdoctoral researcher at the Center for IT-Security, Privacy and Accountability at Saarland University in the group of Michael Backes. Before joining CISPA, he was a PhD student and research fellow at the Security Research Group of the University Erlangen-Nuremberg, supervised by Felix Freiling. During that time, he was fortunate enough to join Ben Livshits and Ben Zorn at Microsoft Research in Redmond for an internship.
His research interests lie within Web Security, Network Security, Reverse Engineering, and Vulnerability Notifications. In addition, he enjoys the challenges provided in Capture the Flag competitions and is always trying to get more students involved in them (especially in the local team saarsec).
IEEE Symposium on Security and Privacy (S&P)
LeakyLinks: Measuring the Security and Privacy Risks of URL Scanning Services
ACM Internet Measurement Conference (IMC)
A Permissions Odyssey: A Systematic Study of Browser Permissions on Modern Websites
IEEE Cybersecurity Development (SecDev)
Behind the Curtain: A Server-Side View of Web Session Security
ACM Conference on Computer and Communications Security (CCS)
Head(er)s Up! Detecting Security Header Inconsistencies in Browsers
ACM ASIA Conference on Computer and Communications Security (AsiaCCS)
Open Access Alert: Studying the Privacy Risks in Android WebView’s Web Permission Enforcement
Usenix Security Symposium (USENIX-Security)
“<i>I have no idea how to make it safer</i>”: Studying Security and Privacy Mindsets of Browser Extension Developers
Usenix Security Symposium (USENIX-Security)
Double-Edged Shield: On the Fingerprintability of Customized Ad Blockers
Usenix Security Symposium (USENIX-Security)
Web Execution Bundles: Reproducible, Accurate, and Archivable Web Measurements
IEEE Symposium on Security and Privacy (S&P)
403 Forbidden? Ethically Evaluation Broken Access Control in the Wild
Network and Distributed System Security Symposium (NDSS)
Foundations of Web Security
This lecture covers the fundamental security problems that are prevalent on the Web as well as security mechanisms to mitigate them. A particular focus lies on the offensive side of Web security, whereas defense mechanisms merely need to be added to stop the attacks.
Foundations of Cybersecurity 1
Students learn foundational security principles, basics of cryptography, network and network security, as well as privacy-preserving mechanisms. They learn to define security goals and are familiarized with the most common attack scenarios.