Articles
Lectures
Law Studies
Rocket Science
GnuPG
CV/Resume
Favorite (IT-)Books
The Network Security Toolbox
Favorite Movie Quotes
New York, NY


Mag. Lukas Feiler, SSCP
As a Stanford University/University of Vienna Transatlantic Technology Law Forum (TTLF) Fellow and Forum on Contemporary Europe (FCE) Research Fellow, I am currently working on my PhD in law. I received my law degree from the University of Vienna in July 2008 and an SSCP certification from (ISC)² in March 2009. Since October 2005 I have been working at the European Center for E-Commerce and Internet Law, since Oct 2007 in the position of Vice Director. Additionally, I am working (remotely) as an application developer and system administrator for Empowered Media, New York, NY. I am also doing some technical as well as legal consulting for NEA, a software company based in Vienna. In the past, I interned with the European Commission, DG Information Society & Media, Unit A.3: "Internet; Network and Information Security", spent a semester at Santa Clara University studying U.S. information technology law, worked at Fiaxon Ltd, Leeds, UK and taught TCP/IP networking and PHP & MySQL application development at the SAE Institute Vienna. Somewhere in between I find time to continue the development of my open source projects, most notably PEAR XML_Query2XML and lukasfeiler.com-bigqmail.patch

Please feel free to contact me by writing to lukas.feiler@lukasfeiler.com.
News   
  • 2010-06-01: My article "Identity Theft - Rechtlicher Rahmen" was published in OUTPUT
    This article discusses the the legal framework in which impersonation fraud (aka "identity theft") occurs in the EU and the U.S.

  • 2010-04-29: My article "New Approaches to Network and Information Security Regulation: The EU Telecoms Package" was published in Computer Law Review International (CRi)
    This article discusses the new notification regimes for Data Security Breaches and Network Security Breaches.

  • 2009-12-04: Materials from my guest lecture on cryptography are now online
    On December 4th, I was given the opportunity to hold a guest lecture at the my old high school (Bundesrealgymnasium Wien 9) on cryptography.

  • 2009-11-06: Read my interview about the transposition of the EU Data Retention Directive in Austria and Germany, Pressetext Austria, 6 November 2009
    In the interview, I talk about the legality of the EU Data Retention Directive with regard to fundamental rights and the possible ramifications of a case still pending before the German Constitutional Court (BVerfG).

  • 2009-10-27: Read my interview about identity theft and data protection online, derStandard.at, 26 October 2009
    This article discusses identity theft, data protection online and the myth of the Internet as a legal vacuum.

  • 2009-10-05: My article "Data Breach Notification nach ästerreichischem Recht" was published in Medien und Recht
    This article discusses Data Breach Notification with a special focus on the Austrian law.

  • 2009-09-15: My article "Meinungsäußerung: Online anonym" was published in OUTPUT
    This article discusses the protection of anonymous free speech online.

  • 2009-09-09: Security Breach Notification: Informationspflichten bei der Verletzung der Sicherheit personenbezogener Daten, in Feiler/Raschhofer (Hrsg), Innovation und internationale Rechtspraxis(2009), WUV
    Discusses Security Breach Notification with a special focus on the EU telecoms package.

  • 2009-05-15: My article "Data Mining als Anti-Terror-Maßnahme" was published in OUTPUT
    This article discusses the proportionality and suitability of data mining as a tool for fighting terrorism.

  • 2009-03-08: XML_Query2XML v1.7.1 was released!
    This release brings performance enhancements due to refactoring of internal classes and an improved caching implementation.

  • 2009-02-17: Read my interview about the ECJ's ruling on the legality of the EU Data Retention Directive, print edition of Die Presse, 17. February 2009
    The ECJ found the Data Retention Directive to be within the competences of the European Community.

  • 2009-02-06: My article "Freedom of Information: Recht auf Transparenz" was published in OUTPUT
    This article discusses the state of Freedom of Information in the EU and Austria.

  • 2009-02-02: Zankl (Hrsg), "Auf dem Weg zum Überwachungsstaat?" (2009) is now available in book stores!!
    I co-authored this book :-)

  • 2008-09-04: My article "Personenbezogene Daten: Data Breach Notification" was published in OUTPUT
    This article discusses the purpose of Data Breach Notification Laws.

  • 2008-07-07: My seminar paper "The Data Retention Directive" was published on rechtsprobleme.at
    This paper discusses the legality of the Data Retention Directive (2006/24/EC) with regard to European fundamental rights and the competences of the EC.

  • 2008-07-02: My article "Offene Formate: Eine rechtliche Notwendigkeit" was published in OUTPUT
    This article (written in German) describes circumstances under which European antitrust law might require the support for standardized document formats.

  • 2008-05-16: My presentation slides for yesterday's talk "Open Source and Copyright Law" at the Vienna Linuxwochen 2008 are now online.
    After having given a talk on computer crime law at the Linuxwochen in 2006 and on the EU Data Retention Directive in 2007, it was finally Copyright Law's turn in 2008 :-)

  • 2008-05-12: My article "XML_Query2XML. Mit PHP von SQL zu XML" was published in PHPSolutions Magazine
    This article (written in German) provides a tutorial for how to most effectively use my PEAR package XML_Query2XML.

  • 2008-05-07: My article "Online-Vertrag: Abschluss nur nach Extra-Mail-Bestätigung?" was published in OUTPUT
    This article discusses a legislative proposal by the Austrian Parliament that if implemented, would not only fail to achieve its objective but would also pose serious limits on today's e-commerce.

  • 2008-05-02: XML_Query2XML v1.7.0 was released!
    this release adds support for PEAR Net_LDAP2, implements 'limit' and 'offset' options for the MDB2 and DB drivers, improves the logging functionality and consolidates the unit tests

  • 2008-04-22: Read my interview on e-contract formation published in the print edition of Die Presse, 22. April 2008
    The Austrian Parliament discussed mandatory confirmation mails for e-contract formation.

  • 2008-03-20: XML_Query2XML downloaded 10.000 times!
    The PEAR package XML_Query2XML has now more than 10.000 downloads :-)

  • 2008-03-14: live on Radio ORANGE: discussing government hacking, the new police powers (Section 53 Sicherheitspolizeigesetz) and the data retention directive
    live on Radio ORANGE/Netwatcher together with Dr. Lennart Binder (the defense attorney in Austria's first government hacking case) and Dr. Kurt Einzinger, Secretary General of Internet Service Providers Austria (ISPA).

  • 2008-02-29: live on Radio ORANGE: discussing secret surveillance without judicial oversight
    live on Radio ORANGE/Netwatcher together with Alexander Zach, member of the Austrian Parliament: discussing secret surveillance without judicial oversight and the new German Federal Constitutional Court's ruling on the constitutional right to confidentiality and integrity of one's computer system

  • 2008-02-10: a new version of the lukasfeiler.com-bigqmail.patch is now available
    the combined patch now contains the outgoingips patch and a dns patch to better handle DNS responses larger than 512 bytes

  • 2008-01-06: XML_Query2XML v1.6.0 was released
    this stable release introduces no changes since 1.6.0RC1

  • 2008-01-02: XML_Query2XML v1.6.0RC1 was released
    This release candidate adds LDAP support and implements an open driver architecture

  • 2007-10-07: XML_Query2XML v1.5.0 was released
    no changes since 1.5.0RC1

  • 2007-09-30: XML_Query2XML v1.5.0RC1 was released
    This release candidate improves performance by at least 30%

  • 2007-09-03: XML_Query2XML v1.4.0 was released
    This release adds support for PDO - thereby supporting SQLite 3

  • 2007-08-26: XML_Query2XML v1.3.0 was released
    This release provides enhanced support for CDATA sections, binary data (via base64 encoding) and dynamic XML element names.

  • 2007-08-07: My article "Second Hand Software: Geschäfte mit Risiko" was published in OUTPUT
    This article describes the first-sale doctrine as it applies to Austrian copyright law.

  • 2007-07-25: IBM developerWorks published an article on my PEAR package XML_Query2XML: "Turn SQL into XML with PHP - Easily convert the results of a database query into an XML document"
    The article was written by Vikram Vaswani.

  • 2007-06-22: An article I co-authored "Vorratsdatenspeicherung - Kommt der Überwachungsstaat?" was published in Anwalt Aktuell
    The article describes the EU Data Retention Directive and its implementation in Austria

  • 2007-06-06: Watch my interview on Okto.TV regarding the EU Data Retnetion Directive
    Recorded May 31 2007; German only

  • 2007-06-03: Listen to my radio interview on Radio Orange regarding the EU Data Retnetion Directive
    Recorded May 31 2007; German only

  • 2007-06-02: Additional information about my lecture on the EU Data Retention Directive ("Überwachungsstaat vs Bürgerrechte") is now available
    The directive itself, an extensive analysis by the european center for e-commerce and internet law, related movies, documentaries and more

  • 2007-05-31: The presentation slides used for today's talk about the EU Data Retention Directive ("Überwachungsstaat vs Bürgerrechte") are now available
    More information to follow

  • 2007-05-26: XML_Query2XML v1.2.1 was released
    This release makes it easier to dump all contents of a database to XML

  • 2007-05-26: a new version of the lukasfeiler.com-bigqmail.patch is now available
    the make commands that need to be run were missing

  • 2007-05-01: Visit my talk at the Vienna LinuxWeeks 31. May 2007, discussing the EU Data Retention Directive ("Überwachungsstaat vs Bürgerrechte")
    The EU Data Retention Directive as well as its Austrian implementation will be subject to this talk. Ways to circumvent the new surveillance measures will also be covered (e.g. EFF's Tor).

  • 2007-04-22: lukasfeiler.com-bigqmail-20070421.patch now also available via www.qmail.org
    It's a new version of a combined patch for carrier-grade qmail mail server installations and includes netqmail-1.05-tls-smtpauth, the validrcptto.cdb patch, the big-concurrency.patch, the doublebounce-trim.patch and the big-ext-todo patch (EXTTODO patch and big-todo patch)

  • 2007-04-15: XML_Query2XML v1.2.0 was released
    This release adds the capability to handle data sources that use another character encoding than ISO-8859-1; it is now also possible to use to use another XML encoding than UTF-8 (e.g. ISO-8859-1)

  • 2007-04-06: lukasfeiler.com-bigqmail-20070406.patch is now available
    It's a combined patch for carrier-grade qmail mail server installations and includes netqmail-1.05-tls-smtpauth, the validrcptto.cdb patch, the big-concurrency.patch, the doublebounce-trim.patch and the big-ext-todo patch (EXTTODO patch and big-todo patch)

  • 2007-03-16: My article "Botnets: Spamming, Phishing und DDoS Attacks im großen Stil" was published in Anwalt Aktuell
    Explains why botmasters might not be criminally liable in Austria

  • 2007-02-03: XML_Query2XML v1.1.0 was released
    I am proud to announce the second stable release of XML_Query2XML: it is now possible to integrate other XML data sources

  • 2007-01-19: Threat Update: Man-in-the-Middle Attacks
    Discusses the nature of and the criminal liability for Man-in-the-Middle (MITM) Attacks

  • 2006-12-04: XML_Query2XML v1.0.0 was released
    I am proud to announce the first stable release of XML_Query2XML

  • 2006-11-04: XML_Query2XML v0.8.0 was released
    Due to security considerations this release does not use eval() anymore

  • 2006-11-01: My article "Zur Sinnhaftigkeit der europäischen Data Retention Richtlinie" was published in OUTPUT
    (output is an Austrian magazine for business & IT)

  • 2006-10-14: XML_Query2XML v0.7.0 was released
    This release adds support for the database abstraction library ADOdb

  • 2006-10-08: Threat Update: Social Engineering
    Discusses the criminal liability for social engineering in Austria

  • 2006-09-28: XML_Query2XML v0.6.1 was released
    This release fixes a minor bug with PHP5 prior to 5.1.0

  • 2006-07-29: My article "Haften Hersteller oder Händler für Sicherheitslücken in Standardsoftware?" was published in OUTPUT
    (output is an Austrian magazine for business & IT)

  • 2006-06-15: Tor - A technical analysis EFF's onion router
    This article (written in German) shows why Tor makes the EU data retention directive useless

  • 2006-06-14: Threat Update: Botnets - in depth legal and technical analysis
    Think of a hacker building a network of 10,000+ compromised machines ...

  • 2006-06-02: new section: Articles
    The new sections also includes regularly published Informations Securty Threat Updates

  • 2006-06-01: Linuxwochen - Hacking und Computerstrafrecht: presentation slides online
    Today I gave a talk at the Linuxwochen in Vienna on computer crime law - presentation slides and some additional information are now available

  • 2006-04-23: XML_Query2XML v0.6.0 released as official PEAR package
    XML_Query2XML finally got accepted as an official PEAR package! See also http://pear.php.net/package/XML_Query2XML

  • 2006-04-12: list of great IT security articles added to Favorite (IT-)Books
    all are available online: includes some papers from phrack, the famous Empirical Study of the Reliability of UNIX Utilities, a couple of Spafford articles and lots more

  • 2006-04-09: lukasfeiler.com-qmail v0.1.1 released
    includes new patch for Clam AV v0.88.1

  • 2006-04-09: 18 information security standards addedd to Favorite (IT-)Books
    ISO/IEC 27001, 17799, German BSI standards, NIST publications; the common criteria and the orange book are still to follow

  • 2006-04-08: new seminar paper on cybercrime
    Zur strafrechtlichen Beurteilung von IT-Sicherheitsluecken

  • 2006-04-01: lukasfeiler.com-qmail released
    qmail with TLS and SMTP auth & Courier-IMAP/POP3 & MySQL & Clam AV & SpamAssassin - all with virtual domain support

  • 2006-03-19: new section "New York, NY" was added
    it contains a Google Map Mashup and two posters

  • 2006-03-17: Query2XML v0.5.1 released
    full PEAR coding convention complience

  • 2006-03-14: Query2XML v0.5.0 released
    new exception handling, MDB2 support and new unit tests

    		•


    § 25 MedienG
    This piece of Austrian legislation requires a maintainer of a web site to publish his name and inhabitance. I believe that this takes away a very important aspect of free speech on the Internet: anonymity. The Supreme Court of the United States ruled 1995 in McIntyre v. Ohio Elections Commission that anonymity is an aspect of the freedom of speech protected by the First Amendment. Unfortunately Austrian and European courts do not consider anonymity to be protected under Article 10 ECHR ("Freedom of expression").
    In case you do not know how to run the Unix command whois lukasfeiler.com: my name is Lukas Feiler and I live in Vienna, Austria.