New email address

Due to internal restructuring at our University, our contact email address is now:

(the old and no longer usable address was

31 Aug 2016

Launch of new research project CLEARER


We can proudly announce the start of our new research project “CLEARER: Erfüllung von Compliance‐Anforderungen durch automatisierte Bearbeitung von IT-Sicherheitsvorfällen”. CLEARER started on May 1st and will be completed in April 2018.

The goal of CLEARER is the development of a SIEM system with an automatic integration of compliance requirements into it. It will utilize novel network security approaches and distributive computing to meet the specific requirements of small and medium enterprises (SMEs) like ease of integration, small administrative effort and cost effectiveness.

CLEARER will benefit from the experiences that we and our partners DECOIT GmbH, IT-Security@Work GmbH and macmon secure GmbH have gathered during our previously security research projects. The IF-MAP based software developed during the SIMU project will be extended and enhanced to create more sophisticated tools that allow for better automation and address the limited possibilities of SMEs in security expert knowledge and resources.

The CLEARER research project is funded by the German Federal Ministry for Economic Affairs and Energy in the range of the Central Innovation Programme for SMEs (BMWi, FKZ: ZF4202902HB6).

20 Jun 2016

Subsite for new research project added

alternate text

A new subsite for the current research project IQM4HD (Intelligent Quality Monitoring for Heterogeneous Data) was added to our website.

14 Apr 2016

Some impressions from Cebit 2016

Here are some impressions of the Trust@HsH Cebit booth in Hall 6, Booth A18.

Joint stand of the state Lower Saxony at Cebit 2016
Figure 1: Joint stand of the state Lower Saxony at Cebit 2016
Booth of Trust@HsH at Cebit 2016 (with Thomas Oelsner)
Figure 2: Booth of Trust@HsH at Cebit 2016 (with Thomas Oelsner)
Prof. Dr. Volker Ahlers and Leonard Renners
Figure 3: Prof. Dr. Volker Ahlers and Leonard Renners
22 Mar 2016

Meet the Trust@HsH team on CeBIT 2016

alternate text

During this year’s CeBIT (March 14th to 18th), the Trust@HsH research group will present their work on the Evaluation of Security-Relevant Network (Meta)Data as one of 17 exhibitors of the joint stand of the state Lower Saxony, titled Innovationsland Niedersachsen (innovation state Lower Saxony). At the both, universities and research organizations show their research results as well as companies and founder show their development.

We will showcase our latest work in visualization of network security (see VisITMeta project) and Security Information and Event Management (see SIMU project ).

Together with a few slides about our work, we would be pleased to show you a high level demonstration of our open source IF-MAP tools.

The Trust@HsH team will be happy to welcome you in Hall 6, at booth A18!

11 Mar 2016

Poster on "Visualization of Network Security Policies" presented at this years VizSec Symposium in Chicago

alternate text

At the 12th IEEE Symposium on Visualization for Cyber Security (VizSec) on October 24th in Chicago, the Trust@HsH research group presented their poster on Visualization of Network Security Policies.

The poster describes our approach of how to combine sensor data, policy data and evaluation data in one data model (IF-MAP) and how a GUI (built on VisITMeta) can emphasize their relationships among themselves to allow a user to analyse when and why an evaluation was triggered and which sensor data was evaluated by which policy element.

The implementation of these features within irondetect and VisITMeta will be released during the next months.

Figure 1: Poster (see the full poster as PDF)

Here are some further impressions from Chicago.

State ballroom in the Palmer House Hilton, hosting the VizSec Symposium<
Figure 2: State ballroom in the Palmer House Hilton, hosting the VizSec Symposium
Cloud Gate sculpture on the AT&T Plaza at Millennium Park
Figure 3: Cloud Gate sculpture on the AT&T Plaza at Millennium Park
View to the east at the Chicago river
Figure 4: View to the east at the Chicago river
Elevated tracks at Wabash street with an L train
Figure 5: Elevated tracks at Wabash street with an L train

The VizSec symposium was held in conjunction with IEEE VIS and will return in 2016 in the city of Baltimore.

04 Nov 2015

Trust@HsH presents paper on SIMU research project at IDAACS 2015

alternate text alternate text

On September 25th at the 8th IEEE International Conference on Intelligent Data Acquisition and Advanced Computing Systems: Technology and Applications in Warsaw, the Trust@HsH research group presented their paper SIEM approach for a higher level of IT security in enterprise networks.

The conference tackeled many different topics in the area of data acquisition, representation and processing. Furthermore the use of these data and processes in various domains has been shown, one of them being the area of IT-security.

Within the paper, some results regarding the architecture and the evaluation workflow of the SIMU project were presented. More precisely it was shown how to integrate information from (open-source) off-the-shelf products using the IF-MAP protocol, how analysis on the data can be performerd automatically and how resulting incidents can be presented and managed in a user-friendly manner to support the resolution process.

The next IDAACS conference will take place in 2017 in Bukarest.

25 Sep 2015

ifmapj & ifmapcli - Support for ICS Security specification added

We added support for the metadata and extended identifiers specified in TNC IF-MAP Metadata for ICS Security to both our Java-library ifmapj and our command line tool-set ifmapcli.

ifmapj comes with new classes that allow to create the metadata and identifier objects needed to work with ICS specified entities, just like the already existing classes and methods that help using TNC IF-MAP Metadata for Network Security entities.

As an example of what’s possible with the new release of ifmapj, we also upgraded ifmapcli by CLI tools to publish ICS metadata and identifiers.

The sourcecode of both proiects is available at Github (ifmapj v2.3.0 and ifmapcli v0.3.0).

ifmapj is also available via Maven central.

27 Jul 2015
Hochschule Hannover
University of Applied Sciences and Arts
Faculty IV, Dept. of Computer Science
Ricklinger Stadtweg 120
30459 Hannover, Germany
Google+ Twitter Youtube Atom-Feed