Yasemin Acar

Researcher
Website:
https://yaseminacar.de/
Email:
acar@sec.uni-hannover.de

Postal Address

Yasemin Acar
Fachgebiet IT-Sicherheit
Room A418
Welfengarten 1
30167 Hannover

Selected Publications

Cloudy with a Chance of Misconceptions: Exploring Users' Perceptions and Expectations of Security and Privacy in Cloud Office Suites
Dominik Wermke, Christian Stransky, Nicolas Huaman, Niklas Busch, Yasemin Acar, and Sascha Fahl. Sixteenth Symposium on Usable Privacy and Security, SOUPS 2020, August 12-14, 2020
Website PDF Abstract Cite URL
Poster: When Brave Hurts Privacy: Why Too Many Choices do More Harm Than Good
Anna Lena Fehlhaber, Marco Gutfleisch, Daniel Theis, Florian Wallkoetter, Yasemin Acar, and Sascha Fahl. In 41st IEEE Symposium on Security and Privacy, IEEE S&P 2020, May 18-20, 2020
Cite URL
Poster: Perceptions of Handling Sensitive Data in Cloud Office Applications
Dominik Wermke, Christian Stransky, Nicolas Huaman, Niklas Busch, Alexander Krause, Yasemin Acar, and Sascha Fahl. In 41st IEEE Symposium on Security and Privacy, IEEE S&P 2020, May 18-20, 2020
PDF Abstract Poster Cite URL
Listen to Developers! A Participatory Design Study on Security Warnings for Cryptographic APIs
Peter Leo Gorski, Yasemin Acar, Luigi Lo Iacono, and Sascha Fahl. CHI '20: CHI Conference on Human Factors in Computing Systems, Honolulu, HI, USA, April 25-30, 2020
PDF Abstract Cite DOI
Poster: Towards Understanding the WhatsApp Dilemma
Christian Stransky, Dominik Wermke, Johanna Schrader, Nicolas Huaman, Anna Lena Fehlhaber, Yasemin Acar, and Sascha Fahl. In 28th USENIX Security Symposium, USENIX Security 2019, Santa Clara, CA, USA, August 14-16, 2019
Poster Cite URL
Poster: Project Leine - A Virtualized Study Infrastructure
Dominik Wermke, Nicolas Huaman, Christian Stransky, Yasemin Acar, and Sascha Fahl. In 26th Annual Network and Distributed System Security Symposium, NDSS 2019, San Diego, California, USA, February 24-27, 2019
PDF Abstract Poster Cite URL
Poster: A Large Scale Investigation of Obfuscation Use in Google Play
Dominik Wermke, Nicolas Huaman, Yasemin Acar, Bradley Reaves, Patrick Traynor, and Sascha Fahl. In 26th Annual Network and Distributed System Security Symposium, NDSS 2019, San Diego, California, USA, February 24-27, 2019
PDF Abstract Poster Cite URL
A Large Scale Investigation of Obfuscation Use in Google Play
Dominik Wermke, Nicolas Huaman, Yasemin Acar, Bradley Reaves, Patrick Traynor, and Sascha Fahl. Proceedings of the 34th Annual Computer Security Applications Conference, ACSAC 2018, San Juan, PR, USA, December 03-07, 2018
PDF Abstract Cite DOI
Developers Deserve Security Warnings, Too: On the Effect of Integrated Security Advice on Cryptographic API Misuse
Peter Leo Gorski, Luigi Lo Iacono, Dominik Wermke, Christian Stransky, Sebastian Möller, Yasemin Acar, and Sascha Fahl. Fourteenth Symposium on Usable Privacy and Security, SOUPS 2018, Baltimore, MD, USA, August 12-14, 2018.
PDF Abstract Cite URL
The Rise of the Citizen Developer: Assessing the Security Impact of Online App Generators
Marten Oltrogge, Erik Derr, Christian Stransky, Yasemin Acar, Sascha Fahl, Christian Rossow, Giancarlo Pellegrino, Sven Bugiel, and Michael Backes. 2018 IEEE Symposium on Security and Privacy, SP 2018, Proceedings, 21-23 May 2018, San Francisco, California, USA
PDF Abstract Cite DOI
Poster: On the Effect of Security Warnings on Cryptographic API Misuse
Peter Leo Gorski, Luigi Lo Iacono, Yasemin Acar, Sebastian Moeller, Christian Stransky, and Sascha Fahl. In 39th IEEE Symposium on Security and Privacy, IEEE S&P 2018, San Francisco, CA, USA, May 21-23, 2018
PDF Abstract Cite URL
Your Secrets Are Safe: How Browsers' Explanations Impact Misconceptions About Private Browsing Mode
Yuxi Wu, Panya Gupta, Miranda Wei, Yasemin Acar, Sascha Fahl, and Blase Ur. Proceedings of the 2018 World Wide Web Conference on World Wide Web, WWW 2018, Lyon, France, April 23-27, 2018
PDF Abstract Cite DOI
Keep me Updated: An Empirical Study of Third-Party Library Updatability on Android
Erik Derr, Sven Bugiel, Sascha Fahl, Yasemin Acar, and Michael Backes. Proceedings of the 2017 ACM SIGSAC Conference on Computer and Communications Security, CCS 2017, Dallas, TX, USA, October 30 - November 03, 2017
PDF Abstract Cite DOI
A Stitch in Time: Supporting Android Developers in Writing Secure Code
Duc-Cuong Nguyen, Dominik Wermke, Yasemin Acar, Michael Backes, Charles Weir, and Sascha Fahl. Proceedings of the 2017 ACM SIGSAC Conference on Computer and Communications Security, CCS 2017, Dallas, TX, USA, October 30 - November 03, 2017
PDF Abstract Cite DOI
Developers Need Support, Too: A Survey of Security Advice for Software Developers
Yasemin Acar, Christian Stransky, Dominik Wermke, Charles Weir, Michelle L. Mazurek, and Sascha Fahl. IEEE Cybersecurity Development, SecDev 2017, Cambridge, MA, USA, September 24-26, 2017
PDF Abstract Cite DOI
Lessons Learned from Using an Online Platform to Conduct Large-Scale, Online Controlled Security Experiments with Software Developers
Christian Stransky, Yasemin Acar, Duc-Cuong Nguyen, Dominik Wermke, Doowon Kim, Elissa M. Redmiles, Michael Backes, Simson L. Garfinkel, Michelle L. Mazurek, and Sascha Fahl. 10th USENIX Workshop on Cyber Security Experimentation and Test, CSET 2017, Vancouver, BC, Canada, August 14, 2017
PDF Abstract Cite URL
Security Developer Studies with GitHub Users: Exploring a Convenience Sample
Yasemin Acar, Christian Stransky, Dominik Wermke, Michelle L. Mazurek, and Sascha Fahl. Thirteenth Symposium on Usable Privacy and Security, SOUPS 2017, Santa Clara, CA, USA, July 12-14, 2017
PDF Abstract Cite URL
Stack Overflow Considered Harmful? The Impact of Copy&Paste on Android Application Security
Felix Fischer, Konstantin Böttinger, Huang Xiao, Christian Stransky, Yasemin Acar, Michael Backes, and Sascha Fahl. 2017 IEEE Symposium on Security and Privacy, SP 2017, San Jose, CA, USA, May 22-26, 2017
PDF Abstract Cite DOI
Comparing the Usability of Cryptographic APIs
Yasemin Acar, Michael Backes, Sascha Fahl, Simson L. Garfinkel, Doowon Kim, Michelle L. Mazurek, and Christian Stransky. 2017 IEEE Symposium on Security and Privacy, SP 2017, San Jose, CA, USA, May 22-26, 2017
PDF Abstract Cite DOI
How Internet Resources Might Be Helping You Develop Faster but Less Securely
Yasemin Acar, Michael Backes, Sascha Fahl, Doowon Kim, Michelle L. Mazurek, and Christian Stransky. IEEE Security & Privacy, 15 (2), p. 50-60, 2017.
PDF Abstract Cite DOI
You are Not Your Developer, Either: A Research Agenda for Usable Security and Privacy Research Beyond End Users
Yasemin Acar, Sascha Fahl, and Michelle L. Mazurek. IEEE Cybersecurity Development, SecDev 2016, Boston, MA, USA, November 3-4, 2016
PDF Abstract Cite DOI
An Empirical Study of Textual Key-Fingerprint Representations
Sergej Dechand, Dominik Schürmann, Karoline Busse, Yasemin Acar, Sascha Fahl, and Matthew Smith. 25th USENIX Security Symposium, USENIX Security 16, Austin, TX, USA, August 10-12, 2016.
Cite URL
You Get Where You're Looking for: The Impact of Information Sources on Code Security
Yasemin Acar, Michael Backes, Sascha Fahl, Doowon Kim, Michelle L. Mazurek, and Christian Stransky. IEEE Symposium on Security and Privacy, SP 2016, San Jose, CA, USA, May 22-26, 2016
PDF Abstract Cite DOI
SoK: Lessons Learned from Android Security Research for Appified Software Platforms
Yasemin Acar, Michael Backes, Sven Bugiel, Sascha Fahl, Patrick D. McDaniel, and Matthew Smith. IEEE Symposium on Security and Privacy, SP 2016, San Jose, CA, USA, May 22-26, 2016
Cite DOI
Poster: When Laziness Snaps Back – The Impact of Code Generators on App (In)Security
Yasemin Acar, Michael Backes, Sascha Fahl, and Christian Stransky. In 1st IEEE European Symposium on Security and Privacy, IEEE EuroS&P 2016, Saarbrücken, Germany, March 21-24, 2016
Cite URL
Poster: Towards Ecological Validity for Password Alternative User Studies
Yasemin Acar, Michael Backes, Sascha Fahl, Maximilian Koch, and Christian Stransky. In 1st IEEE European Symposium on Security and Privacy, IEEE EuroS&P 2016, Saarbrücken, Germany, March 21-24, 2016
Cite URL
VCCFinder: Finding Potential Vulnerabilities in Open-Source Projects to Assist Code Audits
Henning Perl, Sergej Dechand, Matthew Smith, Daniel Arp, Fabian Yamaguchi, Konrad Rieck, Sascha Fahl, and Yasemin Acar. Proceedings of the 22nd ACM SIGSAC Conference on Computer and Communications Security, Denver, CO, USA, October 12-16, 2015
Cite DOI
To Pin or Not to Pin-Helping App Developers Bullet Proof Their TLS Connections
Marten Oltrogge, Yasemin Acar, Sergej Dechand, Matthew Smith, and Sascha Fahl. 24th USENIX Security Symposium, USENIX Security 15, Washington, D.C., USA, August 12-14, 2015.
Cite URL
Why eve and mallory (also) love webmasters: a study on the root causes of SSL misconfigurations
Sascha Fahl, Yasemin Acar, Henning Perl, and Matthew Smith. 9th ACM Symposium on Information, Computer and Communications Security, ASIA CCS '14, Kyoto, Japan - June 03 - 06, 2014
Cite DOI
On the ecological validity of a password study
Sascha Fahl, Marian Harbach, Yasemin Acar, and Matthew Smith. Symposium On Usable Privacy and Security, SOUPS '13, Newcastle, United Kingdom, July 24-26, 2013
Cite DOI