This international and interdisciplinary workshop is part of a series of events organized by the Horizon 2020 project CANVAS. The goal of CANVAS is to inform deciders and policy makers about issues at the intersection of ethics and cybersecurity by creating briefing packages, whitepapers, and materials for teaching (MOOC, reference curriculum, and a book). Our event brings together scholars and practitioners. This includes actors who need protection for themselves or for their organization as well as those who have to deal with the consequences of untraceability and online anonymity.

At the workshop computer scientists, legal professionals, journalists, and policy makers will share their experience and discuss what can or cannot be solved with technology and which ethical choices should be considered. Besides talks and plenty of time for discussion, there will be two sessions with hands-on operational security (OpSec) trainings for persons exposed to a high level of risk, such as journalists, lawyers, medical professionals, and activists. The outcomes of the workshop will serve as input for the deliverables of CANVAS.

Topics Overview

We need more security! Protecting high-value secrets and vulnerable humans. Operational security training I: Why is it so difficult to get it right? Hacking to help: moral and legal difficulties of independent security research. Anonymity on the internet: challenges for activists and law enforcement. Exploits and exploration: balancing harm and utility in academia and practice. Your privacy is important to us: conflicts in the corporate environment. Operational security training II: pragmatic recommendations for the paranoid.

seven thematic sessions spread over two days

Thirteen Speakers

Hakan Tanriverdi investigative and data journalist Anne Roth senior advisor for digital policy in the German federal parliament Fabian Prasser data privacy researcher at TU München Oksana Kulyk usable security and privacy researcher at ITU Copenhagen Alexander von Gernler head of research at genua GmbH and vice president of Gesellschaft für Informatik e.V. Hanno Böck journalist and security researcher Ninja Marnau senior legal researcher at CISPA Helmoltz Center for Information Security Jens Kubieziel privacy activist at Zwiebelfreunde e.V. Christian Schorr senior public prosecutor at Generalstaatsanwaltschaft Bamberg / Zentrum Cybercrime Bayern Philipp Winter internet data scientist at CAIDA Fabian Beterke security researcher at MWR InfoSecurity Hannes Saarinen data protection officer at F-Secure Gari Walkowitz corporate ethics researcher at TU München

Workshop Program

Updated on March 24, 2019.

Monday – 25 March 2019

10.30

Participants Arriving

Welcome Coffee

11.00

Session 1

We need more security! Protecting high-value secrets and vulnerable humans.
Hakan Tanriverdi
Bayerischer Rundfunk
Security and Privacy in Investigative Journalism
Anne Roth
digital policy advisor in the German federal parliament
Digital Violence - more than Hate Speech and Online Mobbing
Fabian Prasser
TU München
Privacy risk management with the ARX Data Anonymization Tool

12.30

Lunch Break

Lunch is served on site (for all registered participants).

13.30

Session 2

Operational security training I: why is it so difficult to get it right?
Members of PSI Group
University of Bamberg
OpSec Training I (60 min)
Oksana Kulyk
ITU Copenhagen
The challenge of making security and privacy usable
Alexander von Gernler
genua GmbH / Gesellschaft für Informatik
This war of mine: Insights from a privacy self-experiment

15.30

Coffee Break


16.00

Session 3

Hacking to help: moral and legal difficulties of independent security researchers.
Hanno Böck
journalist / security researcher
Technical Perspective
Ninja Marnau
CISPA Helmholtz Center
Legal Perspective

17.30

Closing of Day 1


19.00

Dinner

For fully paying participants only. Location will be announced at a later time.

Tuesday – 26 March 2019

09.00

Session 4

Anonymity on the internet: challenges for privacy activists and law enforcement.
Jens Kubieziel
zwiebelfreunde.de / torservers.net
Experiences with running Tor nodes
Christian Schorr
Generalstaatsanwaltschaft Bamberg / Zentrum Cybercrime Bayern
Security and privacy as challenges for law enforcement

10.30

Coffee Break


11.00

Session 5

Exploits and exploration: balancing harm and utility in academia and practice.
Philipp Winter
CAIDA (United States)
Ethical Internet measurement: from outages to anonymity
Fabian Beterke
bytegeist GmbH / MWR InfoSecurity
On the need of offensive security research

12.30

Lunch Break

Lunch is served on site (for all registered participants).

13.30

Session 6

Your privacy is important to us: conflicts and hypocrisy in the corporate environment.
Hannes Saarinen
Data Protection Officer of F-Secure
GDPR: promoting and inhibiting cyber security work
Gari Walkowitz
TU München
Individual and Corporate Moral Hypocrisy

14.30

Session 7

Hands-on operational security II: pragmatic recommendations for the paranoid.
Members of PSI Group
University of Bamberg
OpSec Training II (60 min)

15.30

Closing of Day 2


Venue

The workshop takes place at University of Bamberg in room MG2/00.010 on the ground floor of the building MG2. Information on how to reach Bamberg can be found on the website of the university.

Address of building MG2:
Markusstraße 8a, 96047 Bamberg, Germany

Open workshop venue in Google Maps

Building MG2
© Jürgen Schabel/Uni Bamberg

Accomodation and Sights

We have allocated a number of rooms in hotels in the city. You cannot book these rooms online. To book one of these rooms, you have to contact the hotel directly and state the booking code CANVAS. When you book via e-mail, please include your name and invoice address, date of arrival, and date of departure. To secure the booking you will have to provide a credit card number and expiration date (either include it in the e-mail or, preferably, via phone). Please ask the hotels for their cancellation and check-in times.

The following table contains our negotiated rates (all incl. breakfast) and the deadline until our rooms are reserved at that rate.

Name Rate (EUR) Book via Available until
Ibis Styles
Lange Straße 29
(10 min walk)
59 ha736@accor.com
Phone: +49 951-942530
March 3
Hotel Central
Promenadestraße 3
(11 min walk)
79 (1 night)
74 (2 nights)
69 (3 nights)
info@central-bamberg.de
Phone: +49 951-981260
March 3
Best Western Hotel
Luitpoldstraße 7
(13 min walk)
95 info@bwhotel-bamberg.de
Phone: +49 951-510900
March 3

While our room reservations have expired on March 3, you may still be able to book a room in one of the three hotels via a booking portal or the hotel’s website.

You may find cheaper options on your favorite hotel booking portal. Other recommended hotels are Hotel Wohnbar (check-in after 7 pm has to be negotiated) and Welcome Kongresshotel.

Save some time for visiting Bamberg’s medieval old town!