Vincent Haupert

Security Researcher, Consultant, Speaker

What I am all about

I am a research fellow and PhD candidate at the IT Security Infrastructures Lab in the Computer Science Department of the Friedrich-Alexander University Erlangen-Nürnberg. My main interests are authentication, system security and software protection of mobile devices. Particularly the security of mobile banking and of young financial startups (fintechs) is one of my major research subjects.

Starting in July 2019, I take the position as Chief Information Security Officer at IconicFinance in Munich.

I do freelance work in the field of information security on a regular basis. Mainly, I've been working as a mobile security consultant for popular German banks, fintechs and car manufacturers as well as their suppliers. I've worked for companies throughout the EU and also the US, though.

My work receives broad coverage in the media and quality press making me a well-received speaker and panelist.

CV Overview

CV Overview

Work Experience

From July 2019

Chief Information Security Officer

IconicFinance GmbH

Munich, Germany

2015 - present

Freelancer

Consulting in the field of information security.

2017 - 2019

Co-Founder

Security assessments for Android and iOS applications.

3rd Place BaystartUP Business Plan Competition

Pentive UG i. L.

Nürnberg, Germany

2016 - 2019

Research Fellow

Responsible for the research project Software-based Hardening for Mobile Applications.

Friedrich-Alexander University Erlangen-Nürnberg

Erlangen, Germany

2013 - 2016

Research Assistant

Tutor for the courses Hacking Lab and Software Reverse Engineering. Research in the field of system and mobile security.

Friedrich-Alexander University Erlangen-Nürnberg

Erlangen, Germany

2013 - 2016

Working Student

Software Engineer in the department of IT Security Products.

DATEV eG

Nürnberg, Germany

2010 - 2013

Apprenticeship

IT specialist (Fachinformatiker Anwendungsentwicklung).

DATEV eG

Nürnberg, Germany

Education

2016 - present

Doctoral Studies

Information Security.
Thesis: “Security of Mobile Banking between Innovation and Regulation.”

Friedrich-Alexander University Erlangen-Nürnberg

Erlangen, Germany

2014 - 2016

Master's Degree Programme

Computer Science

Friedrich-Alexander University Erlangen-Nürnberg

Erlangen, Germany

Deutschlandstipendium: scholarship for highly talented students

Federal University of Paraná

Curitiba, Brazil

DAAD UNIBRAL scholarship
DAAD FITweltweit scholarship

2011 - 2014

Bachelor's Degree Programme

Computer Science

Friedrich-Alexander University Erlangen-Nürnberg

Erlangen, Germany

Language Skills

German

Native speaker

English

Highly proficient in speech and writing

Portuguese

Very good command

Talks

Gemalto

Grenzen und Perspektiven im Mobilebanking

Zurich. March 28, 2019

Mastercard Advisory Board

Fintech Security

Berlin. October 11, 2018

Bitkom

Sicherheitsanforderungen im Digital Banking

Berlin. July 5, 2018

LKA Baden-Württemberg

Sicherheit beim Mobilebanking

Stuttgart. April 12, 2018

Elster-Dialog

Grenzen und Perspektiven mobiler Smartphoneauthentifizierung am Beispiel digitaler Bankgeschäfte

Starnberg. January 22, 2018

34th Chaos Communication Congress

Die fabelhafte Welt des Mobilebankings

Leipzig. December 27, 2017

DG Verlag Karten-Forum

Sicherer Zugriff auf das Bankkonto

Bad Homburg. November 6, 2017

Reiner SCT Bankentag

Sicherheit App-basierter TAN-Verfahren

Bochum. March 9, 2017

33th Chaos Communication Congress

Shut Up and Take My Money! The Red Pill of N26 Security

Hamburg. December 27, 2016

32th Chaos Communication Congress

(Un)Sicherheit von App-basierten TAN-Verfahren im Onlinebanking

Leipzig. December 28, 2015

Panels, Podcasts & Discussions

Payment & Banking FinTech Podcast

SCA und seine Anforderungen

June 7, 2019

Banking Exchange

Security

Frankfurt on the Main. September 27, 2018

EKS Kartensicherheit 2018

Zahlen Sie eigentlich schon mit Ihrem Smartphone?

Offenbach on the Main. September 25, 2018

Payment & Banking FinTech Podcast

PSD2 Security

March 16, 2018

RatePAY

Ask Me Anything

March 8, 2018

Payment Exchange

Cybercrime

January 26, 2018

American Express Insights Network

Sicherheit im Zahlungsverkehr

September 14, 2017

Deutschlandfunk "Marktplatz"

Auf Nummer sicher? Bezahlen und überweisen im Internet

July 13, 2017

Payment & Banking FinTech Podcast

Sicherheit bei Fintechs

January 9, 2017

Academic Publications

2019

Haupert, Vincent, and Stephan Gabert. "Where to Look for What You See Is What You Sign? User Confusion in Transaction Security." Proceedings of the ESORICS 2019, Luxemburg. Cham, Switzerland: Springer International Publishing, 2019.
Haupert, Vincent, and Stephan Gabert. "How to Attack PSD2 Internet Banking." Proceedings of the FC 2019, Saint Peter Basseterre. Cham, Switzerland: Springer International Publishing, 2019.

2018

Kraus, Malte, and Vincent Haupert. "The Swift Language from a Reverse Engineering Perspective." Proceedings of the ROOTS, Vienna. New York, NY, USA: ACM International Conference Proceedings Series (ICPS), 2018.
Haupert, Vincent, et al. "Honey, I Shrunk Your App Security: The State of Android App Hardening." Proceedings of the DIMVA 2018, Paris. Ed. Giuffrida, Bardin; Sébastien, Blanc Gregory. Cham, Switzerland: Springer International Publishing, 2018. 69-91.
Haupert, Vincent, and Gaston Pugliese. "Ich sehe was, das du nicht siehst: Die Realität von Mobilebanking zwischen allgemeinen und rechtlichen Anforderungen." Proceedings of the Sicherheit, Schutz und Zuverlässigkeit, Konstanz; Ed. Langweg, Hanno; Meier, Michael; Witt, Bernhard C.; Reinhardt, Delphine. Bonn: Köllen Druck+Verlag GmbH, 2018. 157-168.
Haupert, Vincent, and Tilo Müller. "On App-based Matrix Code Authentication in Online Banking." Proceedings of the ICISSP 2018, Funchal, Madeira. Ed. Furnell Steven; Mori Paolo; Camp Olivier. Setúbal: SciTePress, 2018. 149-160.

2017

Haupert, Vincent, Dominik Maier, and Tilo Müller. "Paying the Price for Disruption: How a FinTech Allowed Account Takeover." Proceedings of the ROOTS, Vienna, Austria. New York, NY, USA: ACM, 2017. 7:1-7:10.
Hoffmann, Jochen, Vincent Haupert, and Felix Freiling. "Anscheinsbeweis und Kundenhaftung beim Online-Banking." Zeitschrift für das gesamte Handelsrecht und Wirtschaftsrecht 181.5 (2017): 780-816.
Haupert, Vincent, and Tilo Müller. "Rest In Protection: A Kernel-Level Approach to Mitigate RIP Tampering." Proceedings of the ICISSP 2017, Porto. Ed. Mori, Paolo; Furnell, Steven; Camp, Olivier. Setúbal: SciTePress, 2017. 25-37.

2016

Haupert, Vincent, and Tilo Müller. "Auf dem Weg verTAN: Über die Sicherheit App-basierter TAN-Verfahren." Proceedings of the Sicherheit, Schutz und Zuverlässigkeit, Bonn. Ed. Meier, Michael; Reinhardt, Delphine; Wendzel, Steffen. Bonn: Köllen Druck+Verlag GmbH, 2016. 101-112.

Contact

Address
Wehrlestr. 2
81679 München
Bavaria, Germany
Email
hello@vincent-haupert.de (PGP)
Phone Number
+49 911 1338 6030
VATIN
DE301770807