easy website builder

Andreas Gutmann

I'm a MCSA Fellow and a PhD Student in the Information Security Research Group of the Department of Computer Science at University College London (UCL). My PhD research is focused around usability, security, and privacy properties of transaction authentication and part of the Privacy&Us Marie Sklodowska-Curie Innovative Training Network.  My supervisor is Dr. Steven J. Murdoch.

I'm a researcher at the VASCO Data Security Innovation Centre in Cambridge. I've been a visiting researcher at University of Glasgow (2015, 2016), University of Tokyo (2016), Karlstad University (2016), USECON – Experience design & consulting (2017), and Goethe University Frankfurt (2017). Previously, I've worked at Technische Universität Darmstadt.

My research interests are mainly in the area of human factors in privacy and security, especially in the context of authentication. I'm always open to new collaborations on these and similar topics. Feel free to send me an email to [first (dot) last (at) vasco (dot) com] if you think I might be interested in your work.

My work is supported by the EU Horizon 2020 Marie Sklodowska-Curie Innovative Training Network [grant number project 675730].


Gutmann, A., Volkamer, M. and Renaud, K., 2016. "Memorable And Secure: How Do You Choose Your PIN?". In Proceedings of the Tenth International Symposium on Human Aspects of Information Security & Assurance (HAISA) (pp. 156-166).

Gutmann, A., Renaud, K., Maguire, J., Mayer, P., Volkamer, M., Matsuura, K., and Müller-Quade, J., 2016. "ZeTA-Zero-Trust Authentication: Relying on Innate Human Ability, Not Technology". In 2016 IEEE European Symposium on Security and Privacy (EuroS&P) (pp. 357-371). IEEE.

Marky, K., Gutmann, A., Rack, P. and Volkamer, M., 2016. "Privacy Friendly Apps-Making Developers Aware of Privacy Violations".  In 1st International Workshop on Innovations in Mobile Privacy and Security (IMPS), pp. 46-48.

Gutmann, A., Renaud, K., and Volkamer, K., 2015. "Nudging Bank Account Holders Towards More Secure PIN Management". Journal of Internet Technology and Secured Transaction (JITST), Vol. 4, No. 2, pp. 380 - 386.


Memorable And Secure: How Do You Choose Your PIN?. Tenth International Symposium on Human Aspects of Information Security & Assurance. July, 21st 2016.

Human Factors in PIN Security. Social ICT Research Center at University of Tokyo, Japan, http://www.sict.i.u-tokyo.ac.jp/ (Japanese). June, 22th 2016.

ZeTA - Zero-Trust Authentication: Relying on Innate Human Ability, not Technology. European Symposium on Security and Privacy (EuroS&P 2016). March, 24th 2016.

Teaching and supervision

Technische Universität Darmstadt
  • WS 2015/16: Security, Usability and Society (Seminar)
  • WS 2015/16: Forschungs- und Anwedungsgebiete von Psychologie in IT (Guest presentation at seminar)
  • WS 2015/16: Insecure Communications (Guest lecture at University of Glasgow)

Sergej Reißig (supervised by Prof. Dr. Melanie Volkamer and Dipl.-Inform. Andreas Gutmann): "Sicherheits- und Benutzbarkeitsuntersuchungen von Strategien zum Merken von Passwörtern". Bachelor Thesis.

Academic services

Reviewer for Journals (e.g. International Journal of Human-Computer Studies) and Conferences (e.g.  CHI).