Send email Copy Email Address
Faculty

Sascha Fahl

Research Group
Empirical & Behavioral Security

Email

Address

Lange Laube 6
30159 Hannover (Germany)

Further Information

Short Bio

Prof. Dr. Sascha Fahl has been Pro­fes­sor for com­pu­ter sci­ence and head of the chair for usa­ble se­cu­ri­ty and pri­va­cy since April 2018. Pre­vious­ly, he was head of the in­for­ma­ti­on se­cu­ri­ty in­sti­tu­te at Leib­niz Uni­ver­si­ty in Han­no­ver (2017 - 2018). From 2016 to 2017 he was in­de­pen­dent re­se­arch group lea­der of the usa­ble se­cu­ri­ty and pri­va­cy group at CISPA. He re­cei­ved a PhD in com­pu­ter sci­ence from Leib­niz Uni­ver­si­ty Han­no­ver in 2016. In 2015 he was soft­ware en­gi­neer (SWE) in­tern in the Chro­me Se­cu­ri­ty team at Goog­le in Moun­tain View.

CV: Last stations

Since 2021
Tenured Faculty at CISPA Helmholtz Center for Information Security
Since 2019
Professor at Leibniz University Hannover
2018 – 2019
Associate Professor at Ruhr University Bochum
2017 – 2018
Deputy Professor at Leibniz University Hannover, Germany

Publications by Sascha Fahl

Year 2022

2022-01-01

They Would Do Better If They Worked Together: Interaction Problems Between Password Managers and the Web

Article

IEEE Security and Privacy They Would Do Better If They Worked Together: Interaction Problems Between Password Managers and the Web

Tags
Empirical & Behavioral Security
Authors
  • Nicolas Huaman
  • Sabrina Amft
  • Marten Oltrogge
  • Yasemin Acar
  • Sascha Fahl
Full Paper Visit Detail Page

Year 2021

2021-08-11

A Large-Scale Interview Study on Information Security in and Attacks against Small and Medium-sized Enterprises

Conference / Medium

Usenix Security Symposium (USENIX-Security)

Tags
Empirical & Behavioral Security
Authors
  • Nicolas Huaman
  • Bennet von Skarczinski
  • dominik.wermke
  • Christian Stransky
  • Yasemin Acar
  • Arne Dreißigacker
  • Sascha Fahl
Full Paper Visit Detail Page
2021-08-08

Never ever or no matter what: Investigating Adoption Intentions and Misconceptions about the Corona-Warn-App in Germany

Conference / Medium

Symposium on Usable Privacy and Security (SOUPS)

Tags
Empirical & Behavioral Security
Authors
  • Maximilian Häring
  • Eva Gerlitz
  • Christian Tiefenau
  • Matthew Smith
  • dominik.wermke
  • Sascha Fahl
  • Yasemin Acar
Full Paper Visit Detail Page
2021-08-08

On the Limited Impact of Visualizing Encryption: Perceptions of E2E Messaging Security

Conference / Medium

Symposium on Usable Privacy and Security (SOUPS)

Tags
Empirical & Behavioral Security
Authors
  • Christian Stransky
  • dominik.wermke
  • Johanna Schrader
  • Nicolas Huaman
  • Yasemin Acar
  • Anna Lena Fehlhaber
  • Miranda Wei
  • Blase Ur
  • Sascha Fahl
Full Paper Visit Detail Page
2021-08

Why Eve and Mallory Still Love Android: Revisiting TLS (In)Security in Android Applications

Conference / Medium

Usenix Security Symposium (USENIX-Security)

Tags
Secure Connected and Mobile Systems
Authors
Full Paper Visit Detail Page
2021-03-24

They Would do Better if They Worked Together: The Case of Interaction Problems Between Password Managers and Websites

Conference / Medium

IEEE Symposium on Security and Privacy (S&P)

Tags
Empirical & Behavioral Security
Authors
  • Nicolas Huaman
  • Sabrina Amft
  • Marten Oltrogge
  • Yasemin Acar
  • Sascha Fahl
Full Paper Visit Detail Page

Year 2020

2020-04-21

Listen to Developers! A Participatory Design Study on Security Warnings for Cryptographic APIs

Conference / Medium

International Conference on Human Factors in Computing Systems (CHI)
Listen to Developers! A Participatory Design Study on Security Warnings for Cryptographic APIs

Tags
Authors
Full Paper Visit Detail Page

Year 2019

2019-11-06

(Un)informed Consent: Studying GDPR Consent Notices in the Field

Conference / Medium

ACM Conference on Computer and Communications Security (CCS)
(Un)informed Consent: Studying GDPR Consent Notices in the Field

Tags
Authors
  • Christine Utz
  • Martin Degeling
  • Sascha Fahl
  • Florian Schaub
  • Thorsten Holz
Full Paper Visit Detail Page
2019-01-01

Replication: Do We Snooze If We Can't Lose? Modelling Risk with Incentives in Habituation User Studies

Conference / Medium

Usable Security and Privacy (NDSS Workshop) (USEC)
Replication: Do We Snooze If We Can't Lose? Modelling Risk with Incentives in Habituation User Studies

Tags
Authors
  • Karoline Busse
  • Dominik Wermke
  • Sabrina Amft
  • Sascha Fahl
  • Emanuel von Zezschwitz
  • Matthew Smith
Full Paper Visit Detail Page

Year 2018

2018-12-03

A Large Scale Investigation of Obfuscation Use in Google Play

Conference / Medium

Annual Computer Security Applications Conference (ACSAC)
A Large Scale Investigation of Obfuscation Use in Google Play

Tags
Authors
  • Dominik Wermke
  • Nicolas Huaman
  • Yasemin Acar
  • Bradley Reaves
  • Patrick Traynor
  • Sascha Fahl
Full Paper Visit Detail Page