Year

Venue

Title

2025

conf/ndss

Attributing Open-Source Contributions is Critical but Difficult: A Systematic Analysis of GitHub Practices and Their Impact on Software Supply Chain Security.

Jan-Ulrich Holtgrave Kay Friedrich Fabian Fischer Nicolas Huaman Niklas Busch Jan H. Klemmer Marcel Fourné Oliver Wiese Dominik Wermke Sascha Fahl

2025

conf/uss

Context Matters: Qualitative Insights into Developers' Approaches and Challenges with Software Composition Analysis.

Elizabeth Lin Sparsha Gowda William Enck Dominik Wermke

2024

conf/uss

Security and Privacy Software Creators' Perspectives on Unintended Consequences.

Harshini Sri Ramulu Helen Schmitt Dominik Wermke Yasemin Acar

2023

conf/uss

Pushed by Accident: A Mixed-Methods Study on Strategies of Handling Secret Information in Source Code Repositories.

Alexander Krause Jan H. Klemmer Nicolas Huaman Dominik Wermke Yasemin Acar Sascha Fahl

2023

conf/sp

"Always Contribute Back": A Qualitative Study on Security Challenges of the Open Source Supply Chain.

Dominik Wermke Jan H. Klemmer Noah Wöhler Juliane Schmüser Harshini Sri Ramulu Yasemin Acar Sascha Fahl

2023

conf/sp

It's like flossing your teeth: On the Importance and Challenges of Reproducible Builds for Software Supply Chain Security.

Marcel Fourné Dominik Wermke William Enck Sascha Fahl Yasemin Acar

2022

conf/sp

Committed to Trust: A Qualitative Study on Security & Trust in Open Source Software Projects.

Dominik Wermke Noah Wöhler Jan H. Klemmer Marcel Fourné Yasemin Acar Sascha Fahl

2022

conf/soups

If You Can't Get Them to the Lab: Evaluating a Virtual Study Environment with Security Information Workers.

Nicolas Huaman Alexander Krause Dominik Wermke Jan H. Klemmer Christian Stransky Yasemin Acar Sascha Fahl

2021

conf/uss

A Large-Scale Interview Study on Information Security in and Attacks against Small and Medium-sized Enterprises.

Nicolas Huaman Bennet von Skarczinski Christian Stransky Dominik Wermke Yasemin Acar Arne Dreißigacker Sascha Fahl

2021

conf/soups

On the Limited Impact of Visualizing Encryption: Perceptions of E2E Messaging Security.

Christian Stransky Dominik Wermke Johanna Schrader Nicolas Huaman Yasemin Acar Anna Lena Fehlhaber Miranda Wei Blase Ur Sascha Fahl

2021

conf/soups

Never ever or no matter what: Investigating Adoption Intentions and Misconceptions about the Corona-Warn-App in Germany.

Maximilian Häring Eva Gerlitz Christian Tiefenau Matthew Smith Dominik Wermke Sascha Fahl Yasemin Acar

2020

conf/soups

Cloudy with a Chance of Misconceptions: Exploring Users' Perceptions and Expectations of Security and Privacy in Cloud Office Suites.

Dominik Wermke Nicolas Huaman Christian Stransky Niklas Busch Yasemin Acar Sascha Fahl

2018

conf/soups

Developers Deserve Security Warnings, Too: On the Effect of Integrated Security Advice on Cryptographic API Misuse.

Peter Leo Gorski Luigi Lo Iacono Dominik Wermke Christian Stransky Sebastian Möller Yasemin Acar Sascha Fahl

2018

conf/acsac

A Large Scale Investigation of Obfuscation Use in Google Play.

Dominik Wermke Nicolas Huaman Yasemin Acar Bradley Reaves Patrick Traynor Sascha Fahl

2017

conf/ccs

A Stitch in Time: Supporting Android Developers in WritingSecure Code.

Duc Cuong Nguyen Dominik Wermke Yasemin Acar Michael Backes Charles Weir Sascha Fahl

2017

conf/uss

Lessons Learned from Using an Online Platform to Conduct Large-Scale, Online Controlled Security Experiments with Software Developers.

Christian Stransky Yasemin Acar Duc Cuong Nguyen Dominik Wermke Doowon Kim Elissa M. Redmiles Michael Backes Simson L. Garfinkel Michelle L. Mazurek Sascha Fahl

2017

conf/soups

Security Developer Studies with GitHub Users: Exploring a Convenience Sample.

Yasemin Acar Christian Stransky Dominik Wermke Michelle L. Mazurek Sascha Fahl