Hot Topics

academicpapers

Identifying People by Their Browsing Histories

| | academicpapers, Browsers, identification, Privacy
Interesting paper: "Replication: Why We Still Can't Browse in Peace: On the Uniqueness and Reidentifiability of Web Browsing Histories": We examine the threat to individuals' privacy based on the feasibility of reidentifying ...
Schneier on Security

Using Disinformation to Cause a Blackout

| | academicpapers, disinformation, Infrastructure, socialmedia
Interesting paper: "How weaponizing disinformation can bring down a city's power grid": Abstract: Social media has made it possible to manipulate the masses via disinformation and fake news at an unprecedented scale ...
Schneier on Security

Adversarial Machine Learning and the CFAA

| | academicpapers, courts, Fraud, machinelearning
I just co-authored a paper on the legal risks of doing machine learning research, given the current state of the Computer Fraud and Abuse Act: Abstract: Adversarial Machine Learning is booming with ...
Schneier on Security

Securing the International IoT Supply Chain

| | academicpapers, Cybersecurity, hardware, internetofthings, securitypolicies, supplychain
Together with Nate Kim (former student) and Trey Herr (Atlantic Council Cyber Statecraft Initiative), I have written a paper on IoT supply chain security. The basic problem we try to solve is: ...
Schneier on Security

The Unintended Harms of Cybersecurity

| | academicpapers, cyberattack, cybercrime, Cybersecurity, riskassessment, risks
Interesting research: "Identifying Unintended Harms of Cybersecurity Countermeasures": Abstract: Well-meaning cybersecurity risk owners will deploy countermeasures (technologies or procedures) to manage risks to their services or systems. In some cases, those countermeasures ...
Schneier on Security

Analyzing IoT Security Best Practices

| | academicpapers, internetofthings, nationalsecuritypolicy, securityengineering
New research: "Best Practices for IoT Security: What Does That Even Mean?" by Christopher Bellman and Paul C. van Oorschot: Abstract: Best practices for Internet of Things (IoT) security have recently attracted ...
Schneier on Security

Security Analysis of the Democracy Live Online Voting System

| | academicpapers, reverseengineering, securityanalysis, voting
New research: "Security Analysis of the Democracy Live Online Voting System": Abstract: Democracy Live's OmniBallot platform is a web-based system for blank ballot delivery, ballot marking, and (optionally) online voting. Three states ...
Schneier on Security

Password Changing After a Breach

| | academicpapers, breaches, passwords
This study shows that most people don't change their passwords after a breach, and if they do they change it to a weaker password. Abstract: To protect against misuse of passwords compromised ...
Schneier on Security

Fooling NLP Systems Through Word Swapping

| | academicpapers, algorithms, artificialintelligence, machinelearning
MIT researchers have built a system that fools natural-language processing systems by swapping words with synonyms: The software, developed by a team at MIT, looks for the words in a sentence that ...
Schneier on Security

Voatz Internet Voting App Is Insecure

| | academicpapers, android, blockchain, voting, Vulnerabilities
This paper describes the flaws in the Voatz Internet voting app: "The Ballot is Busted Before the Blockchain: A Security Analysis of Voatz, the First Internet Voting Application Used in U.S. Federal ...
Schneier on Security
Load more