Home | deutsch  | Legals | Data Protection | Sitemap | KIT
Dr.-Ing.  Peter Mayer

Dr.-Ing. Peter Mayer

Group: SECUSO
Office Hours: n.V.
Room: 3A-11.2
CS 05.20

Phone: +49 721 608-46108
peter mayerQvb7∂kit edu


Contact

PGP-Key: Key
Fingerprint: 50BF A9C0 4DAF 2A3A E4E4 9A1A 2AC5 5373 4687 FF06

S/MIME-Certificate: Certificate

Curriculum Vitae

Peter Mayer is a postdoctoral researcher in the SECUSO Research Group of Prof. Dr. Melanie Volkamer at Karlsruhe Institute of Technology. His research focuses on security awareness and education, usable authentication, and password managers. Having obtained his Bachelor's degree from Technische Universität Darmstadt in 2012, he graduated from Technische Universität Darmstadt with a Master's degree in IT-Security in 2014. He defended his PhD thesis on "Secure and Usable User Authentcation" at Karlsruhe Institute of Technology in November 2019.

Research Interests

  • Usable Authentication
  • Password Managers
  • Applied Cryptography
  • Security Awareness
  • E-Mail Security

Research Projects

Teaching

  • SoSe 2020: Codierungstheorie und Kryptographie (seminar), Praktikum Security, Usability and Society (programming lab), Seminar Security, Usability und Society (seminar)
  • WiSe 2019: Security, Usability, Society (programming lab), Sicherheit (programming lab)
  • SoSe 2019: Informationssicherheit (lecture), Codierungstheorie und Kryptographie (seminar)
  • WiSe 2018: Security, Usability, Society (programming lab), Sicherheit (programming lab)
  • SoSe 2018: Informationssicherheit (lecture), Praktikum Privacy Friendly Apps (programming lab), Seminar Betriebliche Informationssysteme: Datenschutz und IT-Sicherheit (seminar)
  • WiSe 2017: Usable Security and Privacy (programming lab)
  • SoSe 2017: Human Factors in Security (lecture at Karlstad University, Sweden), Usable Security and Privacy (programming lab)
  • WiSe 2016: Usable Security and Privacy (programming lab)
  • SoSe 2016: Usable Security and Privacy (programming lab)
  • WiSe 2015: Einführung in Trusted Systems / Computer Security (lecture), Usable Security and Privacy (programming lab)
  • SoSe 2015: Einführung in Trusted Systems (lecture)

Co-supervision

Master and Diploma Theses

  • Christopher Beckmann (supervised by Peter Mayer and Prof. Dr. Melanie Volkamer): Development and analysis of a secure and usable data backup system for privacy friendly apps (on-going)
  • Christoph Wütschner (supervised by Peter Mayer and Prof. Dr Melanie Volkamer): Iterative Neugestaltung der Grafischen Benutzeroberfläche eines Passwort Wiederherstellungsprogramms für Laien (September 2018)
  • Daniel Theiß (supervised by Peter Mayer and Prof. Dr. Melanie Volkamer): A new recovery mechanism for two-factor authentication (May 2017)
  • Kristoffer Braun & Philipp Rack (supervised by Peter Mayer and Prof. Dr. Melanie Volkamer): Shoulder-surfing resistente Authentifizierung mit Gamepads (March 2017)
  • Michael Seidel (supervised by Peter Mayer and Prof. Dr. Melanie Volkamer): Alternative authentication schemes to manage passwords in Firefox (April 2016)

Bachelor Theses

  • Ebru Karavar (supervised by Peter Mayer, Benjamin Reinheimer, and Prof. Dr. Melanie Volkamer): Snapchat, Instragram und co: Generationsunterschiede bzgl. Privacy-Verständnis (January 2020)
  • Marie-Claire Thiery (supervised by Peter Mayer and Prof. Dr. Melanie Volkamer): Fehleinschätzung von Passwortrichtlinien – Ursachen und wie dagegen vorgegangen werden kann (November 2019)
  • Anna Sinitsyna (supervised by Peter Mayer and Prof. Dr. Melanie Volkamer): WebAuthn - A Study On User Perception And Trust (November 2019)
  • Fabian Ballreich (supervised by Peter Mayer and Prof. Dr. Melanie Volkamer): Hot-Spot Security and Awareness (October 2019)
  • Nils Muzzulini (supervised by Peter Mayer and Prof. Dr. Melanie Volkamer): Investigation of Two-Factor Authentication in the Context of Automatic Password Change (May 2018)
  • Mathieu Christmann (supervised by Prof. Dr. Melanie Volkamer and Peter Mayer): Entscheidungsprozesse bei der Auswahl von Password Composition Policies  (March 2018)
  • Thomas Weber (supervised by Peter Mayer and Prof. Dr. Melanie Volkamer): Implementation of a collaborative authentication research platform (November 2017)
  • Philip Stumpf (supervised by Peter Mayer and Prof. Dr. Melanie Volkamer): Entwicklung einer Plattform zur Entscheidungshilfe für Authentifizierungsmechanismen (October 2017)
  • Mustafa Kargi (supervised by Peter Mayer and Prof. Dr. Melanie Volkamer): Conception and Implementation of a Password Recovery Tool for Laymen (September 2016)
  • Hermann Berket (supervised by Peter Mayer and Prof. Dr. Melanie Volkamer): Automatisierter Passwort-Reset in Firefox (April 2016)
  • Dominik Gopp (supervised by Peter Mayer and Prof. Dr. Melanie Volkamer): Secure storage of passwords and effective re-covery/reset (February 2015)

Scientific Services

Reviewing Activities

  • ECIS (2018)
  • ICIS (2019)
  • Ifip SEC (2015)
  • USEC (2015, 2016, 2017)
  • IEEE Transactions on Information Forensics & Security (2017, 2020)
  • International Journal of Human-Computer Studies (2018, 2019)
  • Journal of Information Security and Applications (2017, 2019)

Program Commitee Memberships

  • Mensch und Computer 2015 / Workshop "Usable Security" (2015)
  • EuroUSEC (2019)
  • WAY (2019)

Organizing Commitee Memberships

  • ACSAC (2019, 2020)
  • EuroUSEC (2020)

Talks

Der sichere Umgang mit Passwörtern - Helping Users to Achieve Secure and Usable User Authentication
FH Münster GUDialog - Münster, Germany
15th January 2020

Better Password Entry On the Couch
PasswordsCon 2019 - Stockholm, Sweden
25th November 2019

Helping Users to Authenticate Securely
Freie Universität Berlin - Berlin, Germany
20th September 2019

Effektive Anti-Phishing Materialien
Public IT-Security - Berlin, Germany
2nd September 2019

Helping Users to Authenticate Securely
The George Washington University - Washington D.C., USA
26th August 2019

I (don't) see what you typed there! Shoulder-surfing resistant password entry on gamepads
Conference on Human Factors in Computing Systems - Glasgow, UK
6th May 2019

On The Systematic Development and Evaluation Of Password Security Awareness-Raising Materials
Annual Computer Security Applications Conference - San Juan, USA
7th December 2018

Sensibilisierungsforschung: Wie erreichen Sie die Kolleginnen und Kollegen nachhaltig und effektiv?
IT-SIBe Jahrestagung - Brühl, Germany
10th September 2018

Motivating Users to Consider Recommendations on Password Management Strategies
Symposium on Usable Privacy and Security - Dundee, UK
30th August 2018

Replication Study: A Cross-Country Field Observation Study of Real World PIN Usage at ATMs and in Various Electronic Payment Scenarios
Symposium on Usable Privacy and Security - Baltimore, USA
13th August 2018

ACCESSv2: A Collaborative Authentication Research and Decision Support Platform
Who are you? Adventures in Authentication Workshop - Baltimore, USA
12th August 2018

Addressing Misconceptions About Password Security Effectively
International Workshop on Socio-Technical Aspects in Security and Trust - Orlando, USA
5th December 2017

Schutz vor Phishing mit NoPhish
Wissenschaftstag „Sicherheit und Datenschutz im Internet“ - Darmstadt, Germany
18th September 2017

Reliable Behavioural Factors in the Information Security Context
International Conference on Availability, Reliability and Security - Reggio Calabria, Italy
29th
 August 2017

Human Factors in IT Security
secUnity International Summer Schooon „Economics of IT Security and Privacy“ - Darmstadt, Germany
8th
 August 2017

A Second Look at Password Composition Policies in the Wild: Comparing Samples from 2010 and 2016
Symposium on Usable Privacy and Security - Santa Clara, USA
13th
July 2017

Phishing und andere betrügersiche Nachrichten
Safer Internet Day an der VHS Fulda - Fulda, Germany
7th
 February 2017

Enabling Automatic Password Change in Password Managers Through Crowdsourcing
International Conference on Passwords - Bochum, Germany
6th December 2016 (watch it online)

Supporting Decision Makers in Choosing Suitable Authentication Schemes
International Symposium on Human Aspects of Information Security & Assurance - Frankfurt, Germany
20th July 2015

Secure and Efficient Key Derivation in Portfolio Authentication Schemes Using Blakley Secret Sharing
Annual Computer Security Applications Conference - Los Angeles, USA
11th December 2015

Graphische Passwörter als Alternative zu Textpasswörtern?
Usable Security Day - Darmstadt, Germany
16th July 2015

Authentication Schemes - Comparison and Effective Password Spaces
International Conference on Information Systems Security - Hyderabad, India
19th December 2014

Are Graphical Authentication Mechanisms As Strong As Passwords?
Federated Conference on Computer Science and Information Systems - Krakow, Poland
September 2013

Publikationen


2020
Security and Privacy Awareness in Smart Environments – A Cross-Country Investigation.
Kulyk, O.; Reinheimer, B.; Aldag, L.; Mayer, P.; Gerber, N.; Volkamer, M.
2020. Financial Cryptography and Data Security Workshop on Usable Security (AsiaUSEC), February 14, 2020 Sabah, Malaysia., Springer
Secure and Usable User Authentication. Dissertation.
Mayer, P.
2020, März 4. Karlsruhe. doi:10.5445/IR/1000117445
2019
Keep on rating – on the systematic rating and comparison of authentication schemes.
Zimmermann, V.; Gerber, N.; Mayer, P.; Kleboth, M.; Preuschen, A. von; Schmidt, K.
2019. Information and computer security, 26 (5), 621–635. doi:10.1108/ICS-01-2019-0020
Poster: On The Systematic Development and Evaluation Of Password Security Awareness-Raising Materials.
Mayer, P.; Schwartz, C.; Volkamer, M.
2019. 15th Symposium on Usable Privacy and Security (SOUPS 2019), Santa Clara, CA, USA, 11.–13. August 2019
Erklärvideo “Online-Betrug” – Nach nur fünf Minuten Phishing E-Mails nachweislich signifikant besser erkennen.
Volkamer, M.; Renaud, K.; Reinheimer, B.; Rack, P.; Ghiglieri, M.; Gerber, N.; Mayer, P.; Kunz, A.
2019. IT-Sicherheit als Voraussetzung für eine erfolgreiche Digitalisierung : Tagungsband zum 16. Deutschen IT-Sicherheitskongress, 307–318, SecuMedia Verlag, Gau-Algesheim
I (don’t) see what you typed there! Shoulder-surfing resistant password entry on gamepads.
Mayer, P.; Gerber, N.; Reinheimer, B.; Rack, P.; Braun, K.; Volkamer, M.
2019. Proceedings of the 2019 CHI Conference on Human Factors in Computing Systems, Paper 549, ACM, New York. doi:10.1145/3290605.3300779
2018
Analyse der Sicherheit und Erinnerbarkeit der DsiN-Passwortkarte.
Mayer, P.; Kunz, A.; Volkamer, M.
2018. Datenschutz und Datensicherheit, 42 (5), 307–310. doi:10.1007/s11623-018-0946-9
Assistance in Daily Password Generation Tasks.
Marky, K.; Mayer, P.; Gerber, N.; Zimmermann, V.
2018. 2018 Joint ACM International Conference on Pervasive and Ubiquitous Computing, UbiComp 2018 and 2018 ACM International Symposium on Wearable Computers, ISWC 2018; Singapore; Singapore; 8 October 2018 through 12 October 2018, 786–793, ACM Press, New York (NY). doi:10.1145/3267305.3274127
On The Systematic Development and Evaluation Of Password Security Awareness-Raising Materials.
Mayer, P.; Schwartz, C.; Volkamer, M.
2018. ACSAC ’18 Proceedings of the 34th Annual Computer Security Applications Conference, San Juan, PR, USA — December 03 - 07, 2018, 733–748, ACM, New York (NY). doi:10.1145/3274694.3274747
ACCESSv2: A Collaborative Authentication Research and Decision Support Platform.
Mayer, P.; Stumpf, P.; Weber, T.; Volkamer, M.
2018. Who are you? Adventures in Authentication Workshop 2018, co-located with SOUPS 2018 at the Baltimore Marriott Waterfront in Baltimore, MD, USA, August 12–14, 2018, 5 S
The Quest to Replace Passwords Revisited - Rating Authentication Schemes.
Zimmermann, V.; Gerber, N.; Kleboth, M.; Preuschen, A. von; Schmidt, K.; Mayer, P.
2018. Proceedings of the 12th International Symposium on Human Aspects of Information Security and Assurance (HAISA 2018), Dundee, UK, August 29 - 31, 2018. Ed.: N. Clarke, 38–48, Centre for Security, Communications and Network Research, University of Plymouth, UK
Motivating Users to Consider Recommendations on Password Management Strategies.
Mayer, P.; Kunz, A.; Volkamer, M.
2018. International Symposium on Human Aspects of Information Security Assurance, (HAISA 2018), Dundee, Scotland, 29th - 31st August 2018, 28–37, University of Plymouth, Plymouth
Developing and Evaluating a Five Minute Phishing Awareness Video.
Volkamer, M.; Renaud, K.; Reinheimer, B. M.; Rack, P.; Ghiglieri, M.; Mayer, P.; Kunz, A.; Gerber, N.
2018. Trust, Privacy and Security in Digital Business - 15th International Conference (TrustBus 2018), Regensburg, Germany, September 5–6, 2018. Ed.: S. Furnell, 119–134, Springer, Cham
Poster: Addressing Misconceptions About Password Security Effectively.
Mayer, P.; Volkamer, M.
2018. Fourteenth Symposium on Usable Privacy and Security (SOUPS 2018 Posters), Baltimore, MD, USA, 12.–14.08.2018
A Concept and Evaluation of Usable and Fine-Grained Privacy-Friendly Cookie Settings Interface.
Kulyk, O.; Mayer, P.; KäferO.; Volkamer, M.
2018. The 17th IEEE International Conference On Trust, Security And Privacy In Computing And Communications (TrustCom 2018), New York, NY, August 1-3, 2018, 1058–1063, IEEE, Piscataway, NJ. doi:10.1109/TrustCom/BigDataSE.2018.00148
Replication Study: A Cross-Country Field Observation Study of Real World PIN Usage at ATMs and in Various Electronic Payment Scenarios.
Volkamer, M.; Gutmann, A.; Renaud, K.; Gerber, P.; Mayer, P.
2018. Fourteenth Symposium on Usable Privacy and Security (SOUPS), Baltimore, MD, USA, August 12–14, 2018, USENIX Association, Berkeley (CA)
Human Factors in Security.
Gerber, P.; Ghiglieri, M.; Henhapl, B.; Kulyk, O.; Marky, K.; Mayer, P.; Reinheimer, B.; Volkamer, M.
2018. Sicherheitskritische Mensch-Computer-Interaktion, 83–98, Springer Vieweg, Wiesbaden. doi:10.1007/978-3-658-19523-6_5
2017
Analysis of the Security and Memorability of the Password Card.
Mayer, P.; Kunz, A.; Volkamer, M.
2017. ACSAC 2017, Orlando, FL, December 4–8, 2017
Addressing Misconceptions About Password Security Effectively.
Mayer, P.; Volkamer, M.
2017. 7th International Workshop on Socio-Technical Aspects in Security and Trust (STAST), Orlando, Florida, USA, December 5, 2017, 16–27, ACM. doi:10.1145/3167996.3167998
Reliable Behavioural Factors in the Information Security Context.
Mayer, P.; Kunz, A.; Volkamer, M.
2017. 12th International Conference on Availability, Reliability and Security (ARES), Reggio Calabria, Italy, August 29 - September 01, 2017, Art.Nr. a9, ACM, New York (NY). doi:10.1145/3098954.3098986
A Second Look at Password Composition Policies in the Wild: Comparing Samples from 2010 and 2016.
Mayer, P.; Kirchner, J.; Volkamer, M.
2017. 13th Symposium on Usable Privacy and Security (SOUPS), Santa Clara, CA, USA, July 12–14, 2017, 13–28, USENIX Assoc., Berkeley (CA)
Productivity vs. Security: Mitigating Conflicting Goals in Organizations.
Mayer, P.; Gerber, N.; McDermott, R.; Volkamer, M.; Vogt, J.
2017. Information and computer security, 25 (2), 137–151. doi:10.1108/ICS-03-2017-0014
Poster: Secure Storage of Masked Password.
Mayer, P.; Volkamer, M.
2017. 2nd IEEE European Symposium on Security and Privacy, Paris, F, April 26-28, 2017
2016
POSTER: Towards Collaboratively Supporting Decision Makers in Choosing Suitable Authentication Schemes.
Mayer, P.; Neumann, S.; Volkamer, M.
2016. 23rd ACM Conference on Computer and Communications Security, CCS´16, Vienna, Austria, October 24-28, 2016, 1817–1819, ACM, New York, NY. doi:10.1145/2976749.2989045
Enabling Automatic Password Change in Password Managers Through Crowdsourcing.
Mayer, P.; Berket, H.; Volkamer, M.
2016. The 11th International Conference on Passwords (PASSWORDS2016), Bochum, Germany, 5 - 7 December 2016, 6 S., Springer, Cham
Supporting Decision Makers in Choosing Suitable Authentication Schemes.
Mayer, P.; Neumann, S.; Storck, D.; Volkamer, M.
2016. Tenth International Symposium on Human Aspects of Information Security & Assurance (HAISA 2016), Frankfurt, Germany, July 19-21, 2016, 67–77, University of Plymouth, Plymouth
Teaching Phishing-Security: Which Way is Best?.
Stockhardt, S.; Reinheimer, B.; Volkamer, M.; Mayer, P.; Kunz, A.; Rack, P.; Lehmann, D.
2016. 31st International Conference on ICT Systems Security and Privacy Protection - IFIP SEC 2016, Ghent, Belgium, May 30th - June 1st, 2016, 135–149, Springer, Cham. doi:10.1007/978-3-319-33630-5_10
ZeTA-zero-trust authentication: Relying on innate human ability, not technology.
Gutmann, A.; Renaud, K.; Maguire, J.; Mayer, P.; Volkamer, M.; Matsuura, K.; Müller-Quade, J.
2016. 1st IEEE European Symposium on Security and Privacy, EURO S and P 2016, Saarbrücken, 21 - 24 March, 2016, 357–371, IEEE, Piscataway, NJ. doi:10.1109/EuroSP.2016.35
2015
Secure and Efficient Key Derivation in Portfolio Authentication Schemes Using Blakley Secret Sharing.
Mayer, P.; Volkamer, M.
2015. Annual Computer Security Applications Conference, 431–440, ACM. doi:10.1145/2818000.2818043
2014
Authentication Schemes - Comparison and Effective Password Spaces.
Mayer, P.; Volkamer, M.; Kauer, M.
2014. Information Systems Security (ICISS), Hyderabad, India, December 16-20, 2014. Ed.: A. Prakash, 204–225, Springer, Cham. doi:10.1007/978-3-319-13841-1_12
2013
Are Graphical Authentication Mechanisms As Strong As Passwords?.
Renaud, K.; Mayer, P.; Volkamer, M.; Maguire, J.
2013. 2013 Federated Conference on Computer Science and Information Systems, FedCSIS 2013, Krakow, Poland, 8th - 11th September 2013, 837–844, IEEE, Piscataway, NJ