Anne Hennig, M.A.

Anne Hennig, M.A.

  • Kaiserstraße 89
    76133 Karlsruhe

Contact

PGP-Key: Key

Fingerprint: 43A6 924C 9016 7184 F057 7BB4 E861 E57D DC05 0806

S/MIME: Certificate

Curriculum Vitae

Anne Hennig is a research assistant in the SECUSO Research Group of Prof. Dr. Melanie Volkamer since January 2021. She graduated from the Karlsruhe Instituteof Technology (KIT) with a Master’s degree in Science Communication in 2020.

In her research, she focuses on how to communicate security and privacy issues to the public. She was supporting the INSPECTION project from January 2021 to November 2023. Since then she conducts research on design patterns for vulnerability notifications as part of the “Human and Societal Factors” research group in the Helmholtz Association funded subtopic “Engineering Secure Systems” at KIT and is responsible for the project "Security Notifications: How to design messages that convince website owners to fix hacks and misconfigurations on their websites" since October 2024.

Research Interests

  • Web Security
  • Vulnerability Notifications
  • Communication of Security and Privacy Issues
  • Security Awareness

Research Projects

Teaching

Wintersemester 2024/2025:

- Praktikum Security, Usability und Society (Bachelor, Master)

- Seminar Security and Privacy Awareness (Master)

- Seminar Datenschutz und Informationssicherheit (Bachelor)

Sommersemester 2024

- Praktikum Security, Usability und Society (Bachelor, Master)

Wintersemester 2023/2024

- Praktikum Security, Usability und Society (Bachelor, Master)

- Seminar Informationssicherheit und Datenschutz (Bachelor)

- Seminar Security and Privacy Awareness (Master)

Sommersemester 2022:

- Praktikum Security, Usability und Society (Bachelor, Master)

Wintersemester 2021/2022:

- Seminar Informationssicherheit und Datenschutz (Bachelor)

Sommersemester 2021:

- Praktikum Security, Usability und Society (Bachelor, Master)

Co-Supervision

Bachelor Theses
  • Thanusha Santhakumar (supervised by Anne Hennig and Prof. Dr. Melanie Volkamer): "Replikationsstudie: Usable Security - A Systematic Literature Review" (2024)
  • Nhu Thi Thanh Vuong (supervised by Anne Hennig and Prof. Dr. Melanie Volkamer): „Ihre Website wurde gehackt“ - Wie wurden Website-Besitzer:innen über Sicherheitslücken auf ihren Website informiert? (Dezember 2022)

 

Master Theses
  • Rozalina Doneva (supervised by Anne Hennig, Prof. Dr. Jörn Müller-Quade, and Prof. Dr. Melanie Volkamer): "Fear Appeals in Cybersecurity: How effective are they really?" (2024)

Scientific Services

Program Commitee Memberships
  • International Conference on Availability, Reliability and Security (ARES 2025)
  • European Symposium on Usable Security (EuroUSEC 2024)
  • International Conference on Availability, Reliability and Security (ARES 2024)
  • Symposium on Usable Privacy and Security, Poster Jury (SOUPS 2024)
Publicity (Co-) Chair
  • European Symposium on Usable Security (EuroUSEC 2023)
  • European Symposium on Usable Security (EuroUSEC 2022)
  • Fachtagung GI Sicherheit (Sicherheit 2022)
  • European Symposium on Usable Security (EuroUSEC 2021)
Reviewing Activities
  • European Conference on Information Systems (ECIS 2024)
  • Conference on Human Factors in Computing Systems (CHI 2024)
  • European Symposium on Usable Security (EuroUSEC 2023)
  • International Conference on Availability, Reliability and Security (ARES 2022 - Sub-Reviewer)

Talks

Conference Talks
  • "Your website has been hijacked: Raising awareness for an invisible problem"
    Fachtagung Sicherheit 2022
    April 2022
     
  • "Your Cookie Disclaimer is not in line with the ideas of the GDPR. Why?"
    Human Aspects of Information Security and Assurance (HAISA 2022)
    July 2022
  • "Vision: What the Hack Is Going On? A First Look at How Website Owners Became Aware That Their Website Was Hacked"
    European Symposium on Usable Security (EuroUSEC 2023)
    October 2023

 

Invited Talks
  • "Cybersicherheit im Netz - Was tun, wenn meine Unternehmenswebsite gehackt wurde?"
    Internet Security Days (ISD 2023)
    September 2023
  • "Cybersicherheit im Netz - Was tun, wenn meine Unternehmenswebsite gehackt wurde?"
    21. Fachmesse für Elektro, Energie, Gebäude und Industrie (eltefa 2023)
    March 2023
  • "Your website has been hacked - How to effectively inform website owner?"
    Swiss Websecurity Day (SWSD 2022)
    October 2022

Publications


Wirkung von Webshop-Gütesiegeln – Perspektive der Nutzenden
Aldag, L.; Hennig, A.; Volkamer, M.
2024. Datenschutz und Datensicherheit - DuD, 48 (8), 526–531. doi:10.1007/s11623-024-1962-6
Understanding issues related to personal data and data protection in open source projects on GitHub
Hennig, A.; Schulte, L.; Herbold, S.; Kulyk, O.; Mayer, P.
2023. arxiv. doi:10.48550/arXiv.2304.06367
Vision: What the hack is going on? A first look at how website owners became aware that their website was hacked
Hennig, A.; Thi Thanh Vuong, N.; Mayer, P.
2023. EuroUSEC ’23: Proceedings of the 2023 European Symposium on Usable Security, 312–317, Association for Computing Machinery (ACM). doi:10.1145/3617072.3617101
Beware of website hackers: Developing an awareness video to warn for website hacking
Hennig, A.; Schmidt-Enke, L.; Mutter, M.; Mayer, P.
2023, August. 19th Symposium on Usable Privacy and Security. Co-located with USENIX Security ’23 (SOUPS 2023), Anaheim, CA, USA, August 6–8, 2023
Ihre Website wurde gehackt: Awareness schaffen für ein unsichtbares Problem
Hennig, A.; Mayer, P.; Volkamer, M.
2023. 2023 Nationale Konferenz IT-Sicherheitsforschung : Die digital vernetzte Gesellschaft stärken (2023), Berlin, Germany, March 13–15, 2023
How to best inform website owners about vulnerabilities on their websites
Hennig, A.; Neusser, F.; Pawelek, A. A.; Herrmann, D.; Mayer, P.
2022. European Symposium on Usable Security (EuroUSEC 2022), Karlsruhe, Germany, September 29–30, 2022
Your Cookie Disclaimer is not in line with the ideas of the GDPR. Why?
Hennig, A.; Dietmann, H.; Lehr, F.; Mutter, M.; Volkamer, M.; Mayer, P.
2022. Human Aspects of Information Security and Assurance. Ed.: N. Clarke, 218–227, Springer-Verlag. doi:10.1007/978-3-031-12172-2_17
Standing out among the daily spam: How to catch website owners’ attention by means of vulnerability notifications
Hennig, A.; Neusser, F.; Pawelek, A. A.; Herrmann, D.; Mayer, P.
2022. Conference on Human Factors in Computing Systems (CHI ’22) : Extended Abstracts, Art.-Nr.: 317, Association for Computing Machinery (ACM). doi:10.1145/3491101.3519847
Your website has been hijacked: Raising awareness for an invisible problem
Hennig, A.
2022. Sicherheit 2022 : Sicherheit, Schutz und Zuverlässigkeit : Konferenzband der 11. Jahrestagung des Fachbereichs Sicherheit der Gesellschaft für Informatik e.V. (GI), 5.-8. April 2022 in Karlsruhe. Ed.: C. Wressnegger, 1–6, Gesellschaft für Informatik (GI). doi:10.18420/sicherheit2022_18
Vorsicht vor Betrügern im Internet - Was beim Kauf von Corona-Schnelltests im Netz zu beachten ist
Volkamer, M.; Mayer, P.; Hennig, A.
2021, March 8
Sicher durchs Internet - Aktionen der Forschungsgruppe SECUSO zum Safer Internet Day am 9. Februar 2021
Volkamer, M.; Hennig, A.
2021, February 9
Einflussfaktoren bei der Social-Media-Nutzung in der Wissenschaftskommunikation = Impacts on the communication of scientists in social media
Hennig, A.; Kohler, S.
2020. Publizistik, 65 (4), 593–615. doi:10.1007/s11616-020-00618-z