Abstract: The disclosure relates to an analysis device configured to communicate with at least one node of an infrastructure of a distributed database via the communication interface in order to obtain authorization to detect intrusion of a computer system. The analysis device is also configured to detect, depending on whether the authorization is obtained, intrusion of the computer system based on an analysis of log messages of the computer system.

Abstract: Provided is a method for transmitting data packets over a network from a sender to a receiver via a communication link consisting of at least one transmission section, via which the data packet is transmitted from a sender node to a receiver node, the method having the following steps for at least one transmission section: first security information, which includes information about a cryptographic protective function used in the transmission of the data packet via an adjacent transmission section, is assigned to the data packet by the sender node, the data packet having the assigned security information is transmitted to the receiver node of the transmission section, the security information is checked in the receiver node against a preset guideline, and at least one measure is provided in accordance with the result of the check.

Abstract: The invention relates to a booting device (2) for a computer element (1) for booting the computer element (1), wherein the booting device (2) comprises a memory unit (3) for storing a protection code (4), and a protection unit (5) for checking the integrity of a software component (6) of the computer element (1) based on the protection code (4), wherein the booting device (2) is suitable for executing the software component (6) to boot the computer element (1), wherein the protection code (4) can be at least partially changed from outside the booting device (2). The protection code, which serves to check the integrity of a booting process, can be changed and/or updated from outside the booting device, e.g. by a user.

Abstract: A method for protecting the integrity of log data. The log data includes a sequence of log data elements associated with an operation of a first logic circuit. The method includes receiving, at a second logic circuit remote from the first logic circuit, a log data element of the sequence of log data elements. Based on the log data element and secret information unknown to the first logic circuit, a protected log data element is generated at the second logic circuit is provided.

Abstract: The disclosure relates to an analysis device configured to communicate with at least one node of an infrastructure of a distributed database via the communication interface in order to obtain authorization to detect intrusion of a computer system. The analysis device is also configured to detect, depending on whether the authorization is obtained, intrusion of the computer system based on an analysis of log messages of the computer system.

Abstract: Provided is a method for transmitting data packets over a network from a sender to a receiver via a communication link consisting of at least one transmission section, via which the data packet is transmitted from a sender node to a receiver node, the method having the following steps for at least one transmission section: first security information, which includes information about a cryptographic protective function used in the transmission of the data packet via an adjacent transmission section, is assigned to the data packet by the sender node, the data packet having the assigned security information is transmitted to the receiver node of the transmission section, the security information is checked in the receiver node against a preset guideline, and at least one measure is provided in accordance with the result of the check.

Abstract: The proposal relates to a method for transmitting data in a network (NW) comprising a plurality M of communication apparatuses, with M?2, wherein the plurality M comprises a first communication apparatus (20) and a second communication apparatus (30), which are connected via a network connection section (NVA) for the purpose of transmitting data, having the steps of: a) ascertaining a time-of-flight property of data transmitted between the first communication apparatus (20) and the second communication apparatus (30) via the network connection section (NVA) by means of the first communication apparatus (20) and the second communication apparatus (30) in each case, b) deriving a secret by means of the first communication apparatus (20) and the second communication apparatus (30) in each case, by using the respective ascertained time-of-flight property, and c) transmitting a message protected by means of the derived secret between the first and second communication apparatuses (20, 30).

Abstract: The disclosure relates to a computer-implemented method for detecting an attack on a computer system or computer network. The method includes: inserting an analysis code or module for the computer system or computer network as a smart contract into a blockchain having a plurality of blocks linked to one another; defining parameters for the analysis code; executing the analysis code based on the parameters; and inserting the analysis result into the blockchain. At least a portion of the parameters corresponds to the behavior of the computer system or computer network and includes a log file of the computer system or computer network.

Abstract: A method for protecting the integrity of log data. The log data includes a sequence of log data elements associated with an operation of a first logic circuit. The method includes receiving, at a second logic circuit remote from the first logic circuit, a log data element of the sequence of log data elements. Based on the log data element and secret information unknown to the first logic circuit, a protected log data element is generated at the second logic circuit is provided.