Benjamin Reinheimer M.Sc.

Doctoral Researcher

Technische Universität Darmstadt
Department of Computer Science
Building S4|14
Mornewegstr. 30
D-64293 Darmstadt
Germany

Room: 3.1.19
Tel: +49(0)6151/16-20810
Fax: +49(0)6151/16-23202
Email: benjamin.reinheimer(a-t)secuso.org

PGP-Key: Key
Fingerprint: CF32 A5B0 56C9 3559 D7EA BC70 2DC1 54B9 5D88 719F

Curriculum Vitae

Benjamin Reinheimer is a doctoral researcher in the SECUSO Research Group of Prof. Dr. Melanie Volkamer at CRISP (former CASED) /TU Darmstadt since May 2017. His research is supervised by Prof. Dr. Melanie Volkamer and focuses on privacy in smart home environments. In the past he finished his Business Psychology Bachelor program at the University of Applied Science Fresenius and graduated from the Technische Universität Darmstadt with a Master's degree in Psychology. His thesis on the evaluation and further development of the TORPEDO thunderbird Add-On was supervised by Prof. Dr. Melanie Volkamer.

Currently, he is involved in the EU project GHOST which aims to develop an user-centered solution for controlling privacy in smart home environments.

Research Interests

  • User oriented communication of security and privacy issues
  • Human-computer-interaction in general
  • Usable security and privacy
  • Security education

Publications

User experiences of TORPEDO: TOoltip-powered phishing email DetectiOn [to appear]

Author Melanie Volkamer, Karen Renaud, Benjamin Reinheimer, Alexandra Kunz
Date February 2017
Kind Article
JournalComputers & Security
ISSN0167-4048
DOIhttps://doi.org/10.1016/j.cose.2017.02.004
KeywordsPhishing detection, Email, Thunderbird, Usable security, Tooltips, User studies
KeyTUD-CS-2017-0034
Research Areas Security, Usability and Society, CYSEC
Abstract Abstract We propose a concept called TORPEDO to improve phish detection by providing just-in-time and just-in-place trustworthy tooltips. These help people to identify phish links embedded in emails. TORPEDO's tooltips contain the actual URL with the domain highlighted. Link activation is delayed for a short period, giving the person time to inspect the URL before they click on a link. Furthermore, TORPEDO provides an information diagram to explain phish detection. We evaluated TORPEDO's effectiveness, as compared to the worst case "status bar" as provided by other Web email interfaces. People using TORPEDO performed significantly better in detecting phishes and identifying legitimate emails (85.17% versus 43.31% correct answers for phish). We then carried out a field study with a number of TORPEDO users to explore actual user experiences of TORPEDO. We conclude the paper by reporting on the outcome of this field study and suggest improvements based on the feedback from the field study participants.
Website http://www.sciencedirect.com/science/article/pii/S0167404817300275
[Export this entry to BibTeX]

Important Copyright Notice:

The documents contained in these directories are included by the contributing authors as a means to ensure timely dissemination of scholarly and technical work on a non-commercial basis. Copyright and all rights therein are maintained by the authors or by other copyright holders, notwithstanding that they have offered their works here electronically. It is understood that all persons copying this information will adhere to the terms and constraints invoked by each author's copyright. These works may not be reposted without the explicit permission of the copyright holder.

Talks

Sharing Information with Web Services–A Mental Model Approach in the Context of Optional Information.
In: International Conference on Human-Computer Interaction (HCII) - Vancouver.
July 2017.

Phishing und andere betrügersiche Nachrichten
In: Safer Internet Day - Polizeipräsidium Südhessen - Darmstadt
7th
February 2017

Teaching Phishing-Security: Which Way is Best?
In: 31st International Conference on ICT Systems Security and Privacy Protection (IFIP SEC) - Ghent.
May 2016.

Encouraging Privacy-Aware Smartphone App Installation: What Would the Technically-Adept Do
In: NDSS Usable Security Workshop (USEC) -  San Diego.
February 2016.

NoPhish App Evaluation: Lab and Retention Study
In: NDSS Usable Security Workshop (USEC) - San Diego.
February 2015.

Training

Cybercrime - Praktische Tipps zum Schutz im Internet
Phishing Detection Training with NoPhish Material at Volkshochschule Darmstadt.
September 2016.

NoPhish Inhouse Workshop
Workshop on Phishing Detection at Polizeipräsidium Südhessen.
May 2016.

Cybercrime - Praktische Tipps zum Schutz im Internet 
Phishing Detection Training with NoPhish Material at Volkshochschule Darmstadt.
November 2015.

Research Activities

Summer School Participation: IPICS academic summer school (July 4-15, 2016) hosted by the Computer Security and Industrial Cryptography research group (COSIC) at KU Leuven, Belgium.

A A A | Drucken Print | Impressum Impressum | Sitemap Sitemap | Suche Search | Kontakt Contact | Website Analysis: More Information
zum Seitenanfangzum Seitenanfang