Team and Contributors

PrivacyScore is the result of the work of many contributors.

Universität Hamburg, Germany

Multiple researchers and students of the Security in Distributed Systems Group at Universität Hamburg have been working on the design and the implementation of PrivacyScore.

  • Matthias Marx (research assistant)
  • Tobias Müller (research assistant)
  • Pascal Wichmann (student assistant)
  • Rick Trojahn (student)
  • Kim-Otto Daetz (student)

At the moment, most of the virtual machines that are being used for scanning are hosted in Hamburg.

University of Bamberg, Germany

Prof. Dr. Dominik Herrmann heads the Privacy and Security in Information Systems Group. Henning Pridöhl is a research assistant in that group.

TU Darmstadt, Germany

Max Maass contributes to PrivacyScore in various ways, for instance by implementing tests. He works in the Secure Mobile Networking Lab at TU Darmstadt, as a PhD student in the Doctoral College “Privacy and Trust for Mobile Users”.

Universität Kassel, Germany

Anne Laubach contributes to PrivacyScore by sharing her expertise regarding legal implications. She is a PhD student in the Doctoral College “Privacy and Trust for Mobile Users”.

Fachhochschule Münster, Germany

Prof. Dr.-Ing. Sebastian Schinzel works at the Department of Electrical Engineering and Computer Science and contributes to PrivacyScore by providing computing resources for scanning.

Universität Siegen, Germany

Marvin Hebisch and Nico Vitt are business informatics students in the School of Economic Disciplines. They have implemented the first working prototype of PrivacyScore.

Acknowledgements

We are grateful to the authors of the following tools, which are being used in PrivacyScore or have inspired our work.

  • OpenWPM by Steven Englehardt and Arvind Narayanan (Center for Information Technology Policy, Princeton University), which is used for most of the checks in the NoTrack group.
  • testssl.sh by Dirk Wetter, which is used to perform most of the checks in the EncWeb and EncMail groups.
  • WebbKoll developed by dataskydd.net, which inspired us to start PrivacyScore.
  • securityheaders.io maintained by Scott Helme, which analyzes issues with HTTP security headers in much more detail than PrivacyScore.
  • Mozilla Observatory, which also reports on various issues with HTTP security headers.
  • https.jetzt, a site that provides scan results about the HTTPS deployment of websites of German public authorities.
We are also grateful to the participants of PET-CON 2017.1 and to members of digitalcourage e.V. for their valuable feedback. This work has been co-funded by the DFG as part of project C.1 and C.2 within the RTG 2050 “Privacy and Trust for Mobile Users”.

How can I contribute?

Great that you want to help! There are several possibilities, for instance:

  • If you are working at research institution you could contribute virtual machines (minimum of 1 CPU core, 1.5 GB RAM, 10 GB HDD, Debian Stretch) to better distribute the work.
  • Once we have released the source code you can contribute by improving the existing checks and writing new ones (see our list of checks for details).