Prof. Dr. Dominik Herrmann

The focus of our work is the protection of information systems and the protection of privacy with technical mechanisms. To this end, we analyze and evaluate existing systems and develop protective mechanisms. We cooperate with working groups in the fields of machine learning (inference attacks, online tracking), law (data protection, law enforcement) and ethics (value-oriented system design).


9 Nov

Nutzung unseres Aufnahmestudios. Wir stellen allen Lehrenden an der Universität weiterhin unser Aufnahmestudio zur Verfügung: Details und Hinweise zur Nutzung

28 Aug

ARES Best Paper Award. Our study “How do app vendors respond to subject access requests? A longitudinal privacy study on iOS and Android Apps” received the ARES 2020 Best Paper Award. Download paper (open access) or watch the video (15 min). A summary is available on Twitter.

27 Aug

Appointments and teaching online. We try to minimize personal contacts. Please write an e-mail or give us a call. Lectures, tutorials, and seminars in Winter Term 2020/21 will be carried out online. Please sign up in the respective VC courses for further information.

12 Dec 2019

PET-CON 2019 in Bamberg. We have hosted PET-CON 2019 in Bamberg. PET-CON brings together students (B.Sc., M.Sc., PhD), junior researchers, privacy activists and other interested people to discuss work in progress. Dates and location of the next PET-CON will be published on the PET-CON Website.

31 Oct 2019

End of the H2020 CANVAS Project on Cybersecurity Ethics. Over the last three years, researchers all over Europe have created a MOOC, Briefing Packages, a Reference Curriculum with Case Studies, and a Book. All results are available for free and Open Access:

Project in the Spotlight: PrivacyScore

One of our ongoing projects is (in public beta since June 2017). PrivacyScore is an automated website scanner that allows anyone to investigate websites for privacy and security issues. Users can submit URLs of individual websites or scan a list of related websites to learn how they compare against each other.

On the one hand public benchmarks improve transparency for citizens, on the other the benchmarks can be of use for data protection agencies that want to or have to audit content providers in their jurisdiction. In the long run we want to find out whether public "blaming and shaming" and/or transparent comparisons of sites within its peer group create additional incentives that increase the willingness of site operators to implement additional security/privacy measures.

We are hiring!

We have several open positions for student assistants ("SHKs") and research assistants ("Wissenschaftliche Mitarbeiter") at the moment.

  1. Student assistant (40 hours/month): supporting development of PrivacyScore (requirements: experience in web development with Python and JavaScript, e.g., Vue.js)
  2. Research and teaching assistant (TV-L E13 contract, prerequisite: advanced knowledge of information security and privacy)

Please contact Dominik Herrmann if you want to apply or if you want to obtain more details about one of the positions.