The research group SECUSO (Security • Usability • Society) belongs to the Institute of Applied Informatics and Formal Description Methods (AIFB) of the Karlsruhe Institute of Technology (KIT). The group was founded in 2011 by Prof. Dr. Melanie Volkamer at the TU Darmstadt. SECUSO moved to the Karlsruhe Institute of Technology at the beginning of 2018. SECUSO is a member of Kastel, K-CIST and KD²Lab.

Technical project report about graphical passwords on the Hololens published (24-03-2025)

The technical project report "Project Report HSF Research Area 4 -Graphical Authentication on Augmented Reality" by Melanie Volkamer, Reyhan Duzgun, Tobias Hilt, Philipp Matheis and Peter Mayer has been published. In a between-subjects lab study with 126 participants, three different combinations of grid size and secret length for the “Things” authentication scheme were examined. While a two-row layout with a total of 10 images showed slight advantages over the other variants, the qualitative feedback indicates that the optimal user experience can be achieved by allowing users to adjust the grid size individually. This technical project report was written as part of the subtopic ‘Methods for Engineering Secure Systems’ of the Helmholtz Topic ‘Engineering Secure Systems (ESS)’.

Read the report
SECUSO supports awareness day at TU Freiberg (21-03-2025)

On Wednesday, April 2, 2025, an awareness day on cybersecurity will take place at the TU Bergakademie Freiberg. Materials from the SECUSO research group on the topic of phishing will be used for the event. Our NoPhish materials were developed to help users better understand attacks in the form of fraudulent messages and learn how to protect themselves. NoPhish introduces the topic of phishing and shows how to recognize implausible, fraudulent messages, messages with dangerous links and messages with dangerous attachments.

To the materials and more information on NoPhish
What to do if your website has been hacked? (19-03-2025)

Over the past three years websites have been identified that are affected by unauthorized malicious website redirects, an attack type similar to SEO spam, resulting in links to fake shops in the search engine results of a website. As part of the INSPECTION project funded by the German Federal Ministry of Education and Research (BMBF), two videos were created by the SECUSO research group in order to explain this problem clearly and provide those affected with measures to identify whether they themselves have been hacked, how to fix the problem and how they can protect themselves in the future. These videos and other results of the project are now available on the SECUSO website.

Go to the website
Privacy Friendy Apps have been moved to KIT account (17-03-2025)

Our Privacy Friendly Apps (PFA) have been moved from our SECUSO account to the official KIT Play Store account today. Our apps can now be found here - still easily recognizable by the blue logo background. There will be no change for users of our apps in the F-Droid Store!

To the PFAs